I used to be snow white, but I drifted - Mae West
|
|
|
AES encryption is cracked
CRYPTOGRAPHY RESEARCHERS have identified a weakness in the Advanced Encryption Standard (AES) security algorithm that can crack secret keys faster than before.
The crack is the work of a trio of researchers at universities and Microsoft, and involved a lot of cryptanalysis - which is somewhat reassuring - and still does not present much of a real security threat.
Andrey Bogdanov, from K.U.Leuven (Katholieke Universiteit Leuven), Dmitry Khovratovich, who is full time at Microsoft Research, and Christian Rechberger at ENS Paris were the researchers and it was Bogdanov that contacted The INQUIRER.
Although there have been other attacks on the key based AES security system none have really come close, according to the researchers. But this new attack does and can be used against all versions of AES.
This is not to say that anyone is in immediate danger and, according to Bogdanov, although it is four times easier to carry out it is still something of an involved procedure.
Recovering a key is no five minute job and despite being four times easier than other methods the number of steps required to crack AES-128 is an 8 followed by 37 zeroes.
"To put this into perspective: on a trillion machines, that each could test a billion keys per second, it would take more than two billion years to recover an AES-128 key," the Leuven University researcher added. "Because of these huge complexities, the attack has no practical implications on the security of user data." Andrey Bogdanov told The INQUIRER that a "practical" AES crack is still far off but added that the work uncovered more about the standard than was known before.
"Indeed, we are even not close to a practical break of AES at the moment. However, our results do shed some light into the internal structure of AES and indicate where some limits of the AES design are," he said.
He added that the advance is still significant, and is a notable progression over other work in the area.
"The result is the first theoretical break of the Advanced Encryption Standard - the de facto worldwide encryption standard," he explained. "Cryptologists have been working hard on this challenge but with only limited progress so far: 7 out of 10 for AES-128 as well as 8 out of 12 for AES-192 and 8 out of 14 rounds for AES-256 were previously attacked. So our attack is the first result on the full AES algorithm."
Bogdanov added that the crack works on all versions of AES and dispelled some myths about the technology as well.
"Unlike previous results on AES, we do not need any related keys which was a very strong and unrealistic assumption about the power of the attacker," he explained.
"Our attacks work in the classical single-key setting and, thus, apply in every context, however, with huge complexities so far. The practical consequence is that the effective key length of AES is about 2 bits shorter than expected - it is more like AES-126, AES-190, and AES-254 instead of AES-128, AES-192, and AES-256. We think it is a significant step toward the understanding of the real security of AES."
The attack has been confirmed by the creators of AES, Dr Joan Daemen and Professor Dr Vincent Rijmen, who also applauded it. µ
Tags: Security
Share this:
Share
Every article I read on cracking says the same thing: "AES is still secure""The CIA can't crack encryption" The general consensus seems to be that almost all of the used algorithms are secure and the breaks are not serious or any real threat. YOU HAVE BEEN BRAINWASHED. This a rare instance when Hollywood movies are closer to reality. Oh, I promise that there are guys who can truly crack block ciphers and even stream ciphers. They just don't tell you about it.
I think I'm not alone in not trusting that the US's NSA/CIA and such didn't manage to speed up the process and can break 128bit in a month but will not disclose that, we really would be the last to find out.
Same for china of course.
As for the comment by Don Smythe, I think you'll find truecrypt has an option to use two algorithms at the same time, and that there is a single algorithm that will not be broken by brute force/quantum computing as I recall (wasn't AES though).
Also: nobody gives a damn about secrets from 40/50 years ago. Hell - people don't even care about things done 2 years ago.
The advent of quantum computing over the next decades will enable easy decryption of Truecrypt volumes. Therefore, this is a reliable method of leaving information for 30-50 years which one does not wish disclosed now. The problem, as always, is somehow ensuring that the media itself will remain stable, and that it will remain accessible.
Example: Although I may have a low density 5.25 inch floppy from 1984, which is in perfect condition, I would dread finding someone who can read that for me. Probably cost lots of money.
Some may be interested in the technical article (or a draft of it), which is posted on the Microsoft Research site and is linked to by Andrey Bogdanov's personal K U Leuven web site.
http://research.microsoft.com/en-us/projects/cryptanalysis/aesbc.pdf