1997-10-10 - Re: computationally infeasible jobs for MITMs (Re: Secure phone)

Header Data

From: Bill Stewart <stewarts@ix.netcom.com>
To: Adam Back <jad@dsddhc.com
Message Hash: d19bf550e264464ab59ffdfd41e7f5d75ada464712a2ff4fe917320224f02863
Message ID: <3.0.3.32.19971009111805.006aedf0@popd.ix.netcom.com>
Reply To: <3.0.3.32.19971008132417.00b0c6d0@labg30>
UTC Datetime: 1997-10-10 07:14:29 UTC
Raw Date: Fri, 10 Oct 1997 15:14:29 +0800

Raw message

From: Bill Stewart <stewarts@ix.netcom.com>
Date: Fri, 10 Oct 1997 15:14:29 +0800
To: Adam Back <jad@dsddhc.com
Subject: Re: computationally infeasible jobs for MITMs (Re: Secure phone)
In-Reply-To: <3.0.3.32.19971008132417.00b0c6d0@labg30>
Message-ID: <3.0.3.32.19971009111805.006aedf0@popd.ix.netcom.com>
MIME-Version: 1.0
Content-Type: text/plain



>> It would be easy enough to "trick" the MITM into exposing their
>> existance anyway, just by using digits that come up in conversation.
>> Humans would be able to come up with unique situations that the MITM
>> would find all but impossible to predict.  "Hey, Eric, I noticed
>> that the third digit of your IP address' second octet is the same as
>> the second digit of our exchange.  How's by you?"  A sudden dropout

Another game you can play, with the audio, is to have music playing in
the background, so Eve not only has to fake Alice's voice, but has to
fake Alice reading numbers against a background of an arbitrarily-selected
musical piece.

Now, the effectiveness of the technique may depend on the musical
tastes of the players ("Hey - that's not Toscanini conducting
Beethoven's Fifth - that's the Furtwangler version on Deutsche Gramophon!"/
"Oh, was that Elvis?  I guess so."/ "We're being MITMed - the Terrapin Station 
during the numbers was off the album, where Jerry remembered all the words, 
and now you're playing an audience tape version from Nassau in 89" )
and with some genres of music, it makes it easier to notice if 
there's a gap.
				Thanks!
					Bill
Bill Stewart, stewarts@ix.netcom.com
Regular Key PGP Fingerprint D454 E202 CBC8 40BF  3C85 B884 0ABE 4639

Thread

• Return to October 1997

• Return to “Adam Back <aba@dcs.ex.ac.uk>”
• Return to “Bill Frantz <frantz@netcom.com>”
• Return to “Bill Stewart <stewarts@ix.netcom.com>”
• Return to ““Carl M. Ellison” <cme@acm.org>”
• Return to “Eric Blossom <eb@comsec.com>”
• Return to “John Deters <jad@dsddhc.com>”

• Return to “The Spook <ts@dev.null>”

• Unknown thread root
  • 1997-10-02 (Fri, 3 Oct 1997 05:20:26 +0800) - Re: Secure phone - John Deters <jad@dsddhc.com>
    • 1997-10-03 (Sat, 4 Oct 1997 07:52:34 +0800) - Re: Secure phone - Eric Blossom <eb@comsec.com>
      • 1997-10-06 (Mon, 6 Oct 1997 16:08:02 +0800) - Re: Secure phone - Adam Back <aba@dcs.ex.ac.uk>
        • 1997-10-06 (Tue, 7 Oct 1997 04:02:19 +0800) - Re: Secure phone - Eric Blossom <eb@comsec.com>
          • 1997-10-06 (Tue, 7 Oct 1997 05:55:29 +0800) - using PGP email to authenticate Eric’s Secure phone - Adam Back <aba@dcs.ex.ac.uk>
        • 1997-10-07 (Tue, 7 Oct 1997 23:36:21 +0800) - Re: Secure phone - John Deters <jad@dsddhc.com>
          • 1997-10-07 (Wed, 8 Oct 1997 04:06:54 +0800) - Re: Secure phone - Eric Blossom <eb@comsec.com>
          • 1997-10-08 (Thu, 9 Oct 1997 02:34:10 +0800) - Re: Secure phone - John Deters <jad@dsddhc.com>
            • 1997-10-08 (Thu, 9 Oct 1997 06:55:21 +0800) - computationally infeasible jobs for MITMs (Re: Secure phone) - Adam Back <aba@dcs.ex.ac.uk>
            • 1997-10-09 (Thu, 9 Oct 1997 11:08:36 +0800) - Re: computationally infeasible jobs for MITMs (Re: Secure phone) - John Deters <jad@dsddhc.com>
            • 1997-10-10 (Fri, 10 Oct 1997 15:14:29 +0800) - Re: computationally infeasible jobs for MITMs (Re: Secure phone) - Bill Stewart <stewarts@ix.netcom.com>
              • 1997-10-10 (Fri, 10 Oct 1997 20:24:57 +0800) - authentication suggestion for secure phone (Re: computationally infeasible jobs for MITMs) - Adam Back <aba@dcs.ex.ac.uk>
              • 1997-10-10 (Fri, 10 Oct 1997 23:12:56 +0800) - Re: authentication suggestion for secure phone (Re: computationally infeasible jobs for MITMs) - John Deters <jad@dsddhc.com>
                • 1997-10-10 (Sat, 11 Oct 1997 01:21:13 +0800) - secure phone on a PCI card? (Re: authentication suggestion for secure phone) computationally infeasible jobs for MITMs) - Adam Back <aba@dcs.ex.ac.uk>
                  • 1997-10-10 (Sat, 11 Oct 1997 05:25:51 +0800) - Re: secure phone on a PCI card? (Re: authentication suggestion for secure phone) computationally infeasible jobs for MITMs) - Eric Blossom <eb@comsec.com>
                    • 1997-10-10 (Sat, 11 Oct 1997 07:40:56 +0800) - Re: secure phone on a PCI card? (Re: authentication suggestion for secure phone) computationally infeasible jobs for MITMs) - Adam Back <aba@dcs.ex.ac.uk>
              • 1997-10-10 (Sat, 11 Oct 1997 00:02:15 +0800) - Re: authentication suggestion for secure phone (Re: computationally infeasible jobs for MITMs) - The Spook <ts@dev.null>
          • 1997-10-09 (Thu, 9 Oct 1997 12:10:47 +0800) - Re: Secure phone - “Carl M. Ellison” <cme@acm.org>
      • 1997-10-06 (Tue, 7 Oct 1997 00:40:13 +0800) - Re: Secure phone - Bill Frantz <frantz@netcom.com>
        • 1997-10-06 (Tue, 7 Oct 1997 02:23:45 +0800) - Re: Secure phone - Adam Back <aba@dcs.ex.ac.uk>
          • 1997-10-06 (Tue, 7 Oct 1997 03:57:55 +0800) - Re: Secure phone - Eric Blossom <eb@comsec.com>
          • 1997-10-06 (Tue, 7 Oct 1997 04:02:35 +0800) - Re: Secure phone - Eric Blossom <eb@comsec.com>
        • 1997-10-07 (Tue, 7 Oct 1997 14:52:45 +0800) - Re: Secure phone - Bill Frantz <frantz@netcom.com>