[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Faster way to deescrow Clipper

To: [email protected]
Subject: Faster way to deescrow Clipper
From: Mike Ingle <[email protected]>
Date: Thu, 02 Jun 1994 19:39:05 -0400 (EDT)
Sender: [email protected]

The attack posted here uses a brute-force search to find a phony LEAF
which has a valid checksum. Instead, why not just initialize the chip
with a session key and get the LEAF. Reset the chip and initialize it
with a different session key, but send the first LEAF instead of the
second one. The LEAF would look good unless you tried to decrypt the
session key. The wrong-IV problem would remain. The NSA should have
designed the Clipper so that, if the IV was wrong, the chips would not
accept the LEAF. They also should have used a much larger (32-bit or
even 64-bit) checksum.

--- Mike

Follow-Ups:
- Re: Faster way to deescrow Clipper
  - From: Derek Atkins <[email protected]>
- Re: Faster way to deescrow Clipper
  - From: "Perry E. Metzger" <[email protected]>

Prev by Date: HACK - U HAVE NO PRIVACY
Next by Date: Re: HACK - U HAVE NO PRIVACY
Prev by thread: Re: HACK - U HAVE NO PRIVACY
Next by thread: Re: Faster way to deescrow Clipper
Index(es):
- Date
- Thread