Ryan's Currently Unnamed Blog

Post details: Pretty Good Privacy

07/27/06

08:31:53 pm, Categories: Computer Stuff, 512 words

Pretty Good Privacy

For a long time now, I've signed just about every single email that I've sent. A lot of times people ask me what it is... and sometimes they even think its a virus or something.

If you really want a good explanation, there's a few good writeups of the whole process that you can read.. I'll post those at the end of my discussion and I'll probably cover most of it here.

First, Pretty Good Privacy (PGP) is an encryption system that's designed to be about as secure as you could expect, given that you don't have much control over the people on the internet. Encryption is actually a fascinating topic, and if you're at all interested in the history, political impact, or how this stuff works, I HIGHLY recommend The Code Book: The Science of Secrecy from Ancient Egypt to Quantum Cryptography by Simon Singh. It goes all the back over 2000 years ago and does a very good job of simply explaining the challenges to strong encryption systems, and how one would go about trying to break such a system. There are some technical parts, but also some entertaining stories so its not mind numbing like a textbook. My non-technical friends will still find the book enjoyable... Go! Read it! Now!

There are many strong encryption algorithms that are nearly impossible to break by simply trying every password due to the large number of the possible passwords and the processing time to attempt a decryption. Some systems thought to be strong have been defeated after finding a mathmatical shortcut which dramatically reduces the number of possible 'keys' or by the tremendous growth in computing power. Things that were considered unbreakable during World War I, due to it taking hundreds of years to work out the decryption by hand, can now be broken in seconds on a computer that's considered worthless and obsolete.

With that said... today's algorithms are strong, and it would take hundreds of years on the largest supercomputer clusters to defeat them. A far better strategy is to steal the password. Before the advent of Public Key Encryption Systems... the same password was used to encrypt and decrypt a message. This raises the question of how does one go about communicating the password? Remember the guys in spy movies with briefcases handcuffed to their wrist... well.. PGP is a modern day version of that!

But what if you don't trust the messenger? Even if the key to the briefcase is sent seperately, how do you know that there isn't some conspiracy to get at your stuff? As a mental excercise... try to come up with some solutions to that problem... How would you send a locked container to someone so that only they can open it?

I have lots more to write about, and there's a point to why I'm talking about all of this... I'll get to that in a later post... Bonus points to anyone who gets the answer right a comment (and if I told you the answer already, you don't count! don't give it away)

15 comments • Trackback (0)

Trackback address for this post:

http://blog.rkware.com/htsrv/trackback.php/86

Comments, Trackbacks:

Comment from: maryannville [Member] · http://www.maryannville.com/forum

I am srue yuo mgnaaed to raed tihs eevn tguohh it is all mseessd up. But if snmeonoe form athnoer ctonruy wuold try to raed it, it wloud be rlaely dflcifiut. Irnteetisng, huh? (there is a big long sentence that explains it better but I can't find it right now. I know this is not encryption, but it reminded me of this)

07/27/06 @ 23:54

Comment from: maryannville [Member] · http://www.maryannville.com/forum

Ok, I found it!!!

Here is the paragraph:
"Aoccdrnig to rscheearch at an Elingsh uinervtisy, it deosn't mttaer in waht oredr the ltteers in a wrod are, olny taht the frist and lsat ltteres are at the rghit pcleas. The rset can be a toatl mses and you can sitll raed it wouthit a porbelm. Tihs is bcuseae we do not raed ervey lteter by ilstef, but the wrod as a wlohe."

Found this at:
http://joi.ito.com/archives/2003/09/14/ordering_of_letters_dont_matter.html

Just had to share...

07/28/06 @ 22:51

Comment from: Lilith [Visitor] · http://power-cams.com

I think i see a way it could work, but he has to have a similar lock he can put on the box.

Assuming he does, you could just send him the locked box, he adds his lock and returns it to you. You could remove your own lock, and sending it on a third trip back. Once he gets it, he can remove the lock that he added. :D

Only downside is it takes three trips instead of one, but it was locked the
entire time and both of you got to keep the keys!

07/29/06 @ 00:41

Comment from: maryannville [Member] · http://www.maryannville.com/forum

I like that 3 trip way (better than anything I came up with), but I am sure Ryan will not approve!! haha

Here are my ideas (which were all shot down already but I still think they are kind of good...)

1) The sender has a master key for many locks, and he knows who has each of the keys.. So, he puts on lock #4 because he knows that the receiver (Bob) has key #4. Then when Bob (owner of key #4) gets the box, only his key will open the box and he can open it.

i guess this has to be vague though, like something where no preparation should be necessary... so idea #1 can't work because there has to be a guy with a master key and a bunch of other keys and that will never happen... I think I have spent wayyy too much time on this and the answer is probably something really easy! GRRRR

2) I will just bring the box over myself hahaha

ok that won't work

3) The sender can send the box over to the receiver and then the receiver can call Ryan and ask him what to do! lol

hahaha! Ok, there are way too many open questions here... Do these 2 people know each other? Is the receiver expecting a message from the sender or is this totally random and the receiver will just have to know HOW how to open the box and KNOW that he should open the box.

4) The receiver will send the open lock to the sender. The sender will put stuff in the box and lock the lock and send it back to the receiver. The receiver will have the lock to open the box and he will get what is inside.

5) Sender can think to himself, "hmmmm, is it really worth it for me to go through allllll this just to give this guy this damn box full of stuff??"

6) Only other thing I can think of is send the box to the receiver, and then have the receiver verify receipt of the box. Then have a different messenger send the key to the receiver in a package marked "Adult Incontinence Undergarments you Ordered". If the messenger opens that package, he is one messed up dude.

Ok, I have no clue. I need to know the answer.

07/29/06 @ 01:53

Comment from: RyanK [Member]

Wow! I've given that puzzle to LOTS of people and NOBODY has ever gotten the answer right! That's REALLY impressive! You didn't even need to ask any questions! YOU RSOSMRT! But then again, I knew you were really intelligent so I shouldn't be that surprised.

The 3 trips is normally what throws people... it definately requires some very creative and "outside-the-box" thinking (no pun intended). Wow.. that's all I can say... WOW!!

Still not sure if your (MA) guesses were real or if you were trying to be funny. Like I have the time (or the patience) to tell people what they can do with their boxes! lol

07/30/06 @ 02:00

Comment from: Lilith [Visitor] · http://power-cams.com

damnz st8 i r intelligent boyEE!
haha ;D

07/30/06 @ 02:03

Comment from: maryannville [Member] · http://www.maryannville.com/forum

I guess I was thinking too much INSIDE the box. hahaha

07/30/06 @ 04:24

Comment from: ugg outlet [Visitor] · http://www.uggsoutletugg.net/

It's a Very helpful article for me. Actually, I am fond of reading online punjabi news. Thanks for writing such a complete ..And,I wantn't to miss them.
Thank you for sharing..

12/30/10 @ 20:26

Comment from: UGG Bailey Button [Visitor] · http://www.baileybuttonugg.net/

First, in order to acquaint you with a general idea of the various kinds of our products. I enclose my website for your reference:Cheap Ugg Boots, Discount ,Replica Cheap shoes what do you like to?I am very happy to found your blog ..Thanks very much.

01/17/11 @ 23:36

Comment from: tiffany jewelry store [Visitor] · http://www.tiffanyllc.com/

It really is one pair of very useful articles for me. I have been looking forward to this very nice of tiffany jewelry. Thank you for writing this article, I will not miss it. Thanks for sharing.

02/19/11 @ 01:46

Comment from: fake rolex watches [Visitor] · http://www.erowatch.com

As the business grows, rolex replicas has also jumped into an international brand. It is worth mentioning that,replica rolex watches is the ancestor of today's brand-oriented, in order to protect the quality and brand name will be printed on their products, the history of fashion in the world, is the first one first.rolex replica watches, fake rolex, fake rolex watches .http://www.erowatch.com

08/14/11 @ 20:48

Comment from: Coach Outlet Online [Visitor] · http://www.mycoachoutletstoreonline.com

I read your article with great interest.Thank you for you sharing.

11/19/11 @ 02:16

Comment from: Coach Outlet Store Online [Visitor] · http://www.mycoachoutletstoreonline.com

I was very pleased to find this site.I wanted to thank you for this great read!

12/06/11 @ 03:15

Comment from: Coach Outlet Store Online [Visitor] · http://www.mycoachoutletstoreonline.com

I was very pleased to find this site.I wanted to thank you for this great read!

12/06/11 @ 03:18

Comment from: Coach Factory Outlet [Visitor] · http://www.buycoachfactoryoutlets.net

The Coach Factory Outlet are also accessible for vibrant colours and vogue style. They reflect the cheerful and lively disposition in the owner.

12/07/11 @ 01:40

Post details: Pretty Good Privacy

07/27/06

Pretty Good Privacy

Trackback address for this post:

Comments, Trackbacks: