Technical Analysis of Jihadi encryption tools

Perhaps the title of the post is a misnomer. Intrepid infosec blogger Dancho gives a great analysis of the Global Islamic Media Front's boasting about their security toolset. See here and here for more. I confess to having missed this one entirely. I've not even heard of GIMF. However, as someone with a passing familiarity with encryption tools and network security, I can say that the key phrase in the article is this:

"If you perceive the Technical Mujahid magazine as a threat to the national security of any country, old issues of Phrack magazine must be giving you the nightmares."


I snarfed my Red Bull when I read that one. I used to be an avid reader of Phrack, 2600 and cDc's various white papers. In full nerd fashion, I went to HOPE twice and once even bamboozled my company into paying for it. At H2K one group emphatically decided I was an FBI agent and despite my protestations gave me a wide berth and breathlessly warned anyone I spoke to that I was a Fed. Rather amusing. (Oddly enough, a contact I made at that conference ended up working for a different three letter agency and in a truly bizarre turn of events I ended up working for him as a contractor but that's another story).

While I don't know enough about the tool(s) in question to comment on them it is no small thing that the Jihadis are expanding their battlespace to include cyberwarfare to the media warfare portfolio to round out their information warfare capabilities. Based on reading the posts above and their source material, I can tell you they are significantly behind the US Airforce in terms of preparedness and maturity. The specs noted seem impressive as they are current but more important (and unknown) is deployment and how good their opsec practices are. I disagree that a brute force attack would be ineffective against even 256 bit encryption as the algorithms are likely not employing strong passphrases which would cut the brute time required significantly. Additionally, the Jihadis tend to use a narrow set of key words and phrases as they are very evocative and easy to remember. I think I'm getting too far out on a limb here so I'll cut it short.

Comments

mkfreeberg said…
Take it easy on the Bull.

Two of the six guys in my office had a-fib in the last three years, which is WAY out of the norm. After their respective spectacular episodes, it came to light that the first guy was pounding Rock Stars all day every day, and the second guy was doing the same with Red Bull.

It messes with the electrical impulses that drive your heart. A can a day probably doesn't do anything to hurt. A can every other day would be much better. All things in moderation, ya know.

That having been said, the phrase "brute force," strictly interpreted, is not covered by your protestations. Brute force is supposed to be when all passphrase analysis has been shunted aside, and your attack descends to the level of a mathematical exhaustion on a bit-by-bit basis. An effective key strength of 256 bits in a symmetric encryption system should be adequate for the foreseeable future, classified technology aside.

Actually, I'd be interested in knowing if there's something that can crack 128, presuming it's a quality, peer-reviewed cipher.

Yes, I know what Hugh Jackman can do in the movies with a good-looking blonde globblin' his knob...but c'mon...
7:59 PM
The Last Ephor said…
I'm at one can every few days. Really only when I'm dragging from lack of sleep.

I was probably unclear about "brute" I was using it in the broader sense of hurling passwords/passphrases at the thing until you got something. Key intercept is clearly better but not easy.
9:22 AM
Post a Comment

Popular posts from this blog

For Gerard

 Many moons ago, I started reading blogs and shortly thereafter I started reading them.  I became discouraged because I read many writers, far more talented than me and the ease with which they elucidated the very points I wanted to make but so much more elegantly and completely that I just gave up.    Gerard of American Digest was one such writer.  His facility with prose and his ability to evoke emotion was remarkable.  I linked to him once with my nascent blog and he was kind enough to reach out to me and thank me for the link.  I literally had zero readers.  Just like now.  But that was the measure of the man.  He took the time to reach out to me and genuinely thank me for the link.   The closest I ever had to meeting the man was meeting Morgan in person.  Morgan and Gerard were friends.  They had an evident mutual respect for their respective works.   I never met Gerard, didn't know the man personally but having read his work I had a sense of the man.  He's dying now.  If
Read more

So....the autism thing

Since April is nearly over and it's autism awareness month, I suppose I should talk a bit about it. I guess the best way to start is to rehash the story of How I Got Here. My oldest was born in 1999. Healthy, happy and so on. One peculiar thing he did as an infant was to avoid eye contact. Our doctor assured us it was because he was so young and his eyesight was undeveloped and he was probably focusing on something in the background that was more interesting. Besides, babies don't recognize faces for a few months after birth. Only later did we find out that our doctor was an idiot. He was 16 mos. old when his little brother was born and he was walking and making wishes known by pulling me or my wife by the hand to whatever he wanted etc. He was fascinated with the wheels on toys. If you gave him a truck he'd turn it over and spin the wheels and smile. Only later would I find out this is a major warning sign. This was our first born and what the hell did I know?
Read more