Ops 的个人资料Operational Security照片日志列表更多  |  工具 帮助 |
|
|
2月13日 Codebusters Crack Encryption Key It took four years, 331,000 participants and a difficult legal case, but the relentless efforts of Distributed.net and its supporters have finally broken a 64-bit encryption key developed by RSA Data Securities.
When Distributed.net set up shop in 1997 to test various forms of encryption by essentially breaking through them, organizers figured it could take 100 years to uncover the RC5-64 sequence due to limited computer power and the fact that so many people would have to participate in the effort. Still, they forged ahead. "We had confidence the rate would improve and that Moore's Law would help us cut down on that time," said David "Nugget" McNett, president of Distributed.net. Not to mention a $10,000 reward put up by RSA. (Ultimately, $6,000 went to Distributed.net to cover its operational costs, participants voted to give another $2,000 to the Free Software Foundation and the winner took home the remaining two grand.) There was so much data to analyze for the project that when the key was eventually found in mid-September, McNett and his crew of participants around the world initially overlooked the winning entry. It read: "The unknown message is: Some things are better left unread." The man who discovered the secret message used a 450-MHz Pentium II to find the solution. A resident of Tokyo, Japan, he has asked to remain anonymous. With so much time and hardware needed to process the keyspace, it would seem that 64-bit encryption is secure, right? McNett isn't convinced. "(It's) safe for any secret that's not still a secret in two years," he said. "I certainly wouldn't use it to keep the secret formula to Coca-Cola a secret. People with secrets to keep should factor in not only the importance of the secret but the timeliness." While the accomplishment of breaking the 64-bit encryption standard is noteworthy, there are even greater challenges ahead for Distributed.net. Next up is breaking through RC5-72, RSA's next highest encryption key. RSA also has a 128-bit key, but trying to break a key that long is practically impossible because there are so many combinations of keys to consider, McNett said. "Major advances would have to be made in keyrate processing before that would be even approachable," he said. Along with SETI@Home, Distributed.net was one of the earliest distributed computing projects –- so-called because it split up a massive computing problem into small, manageable pieces solved by a large number of volunteers running programs on their individual computers. The nonprofit organization, based in Austin, Texas, relies on contributors to provide both servers and bandwidth. It shares office space with United Devices, a commercial operation that runs a distributed computing project geared toward finding cancer treatments. During the past two years, the quest to break RC5-64 has endured its share of intrigue. There was the legal case involving David McOwen, who was fired from his job at DeKalb Technical College and charged by the state of Georgia with putting the Distributed.net client on school computers without permission. The case outraged supporters of distributed computing projects, who raised more than half McOwen's $20,000 legal bill. The case was eventually settled. At one point, a laptop owned by one of the project's participants was stolen. Fortunately, the thief didn't realize that a program was running in the background on the computer he had swiped. When he connected the machine to the Internet, it reconnected the laptop to the Distributed.net servers, and the organization was able to track down the thief using his IP address. "Sort of like LoJack for the computer," chuckled McNett. 11月12日 Talking about REVERSING Secrets of Reverse EngineeringThis program is easy to use... Quote REVERSING Secrets of Reverse Engineering 10月29日 Who am I?Operations Security (OPSEC)OPSEC is the shorthand term for operations security. OPSEC is not a specific category of information. Rather, it is a process for identifying, controlling, and protecting generally unclassified information which, if it becomes known to a competitor or adversary, could be used to our disadvantage.
The OPSEC process is applied to a wide variety of situations in a competitive or adversary environment. If you have ever given a surprise party or attempted to make your house look lived in while you were away, by arranging for someone to pick up your newspapers or installing a light timer, you have practiced OPSEC. The following are just a few examples of things that, under certain circumstances, might provide clues that tip off a competitor or adversary to your plans or capabilities: supply and equipment orders, transportation plans, mission-specific training, changes in communication patterns, leaders' travel, inspection results. OPSEC is used by government agencies and contractors in the development and acquisition of new equipment, in intelligence collection, by war fighters at all levels, by crime fighters in many roles, as well as by private enterprise -- all to supplement traditional security measures for protecting potentially exploitable information. The OPSEC process is a risk management instrument that enables the manager or commander to view an operation or activity from the perspective of an adversary. The key feature of this approach is to look at our own methods and activities from the adversary’s viewpoint by putting ourselves in an adversary's shoes and asking the question: "What information do I need to know to thwart the other side’s intentions and actions, and what are the paths to the information I need?" The OPSEC process traditionally involves five interdependent phases. The first identifies critical information. That is, what are we trying to protect? Is it a single set of data relating to the timing (or other details) of a military operation? Or might it be a whole process embedded within an acquisition program? Or perhaps the patterns or profile of an undercover police officer? In each of these examples, there are data that need to be kept from someone (an opposing force, a foreign government, a foreign competitor, or a criminal). This leads to the second element -- an analysis of the threat. Who wants or needs our critical information? Who is our adversary (not necessarily an enemy)? An integral part of this phase is the identification of how our adversary might collect our information. Would he be likely to review open source literature, send corporate or state-sponsored spies to infiltrate or seek out the data, or use technical means such as eavesdropping, photographing, etc.? OPSEC considers a variety of potential adversaries -- ranging from the active (target or enemy or main competitor) to the passive (sympathizer or someone who supplies data to the active adversary) to the inadvertent (someone who accidentally gives away information) -- all of whom warrant recognition, assessment, and resolution of the particular level and type of threat they pose. The third phase looks at vulnerabilities, direct and indirect, surrounding our operation. We look at how the activity actually works, rather than how people think it works. We study the chronology and timing of events, along with the flow of information, to ascertain which adversary would be interested in what data, and how he would be able to obtain them. Are there things that we do to give away our data directly, or are there certain signs that would lead a prudent adversary to deduce our data (indicators or clues)? We consider the magnitude of the vulnerabilities, as well as the impact of the loss of our data. In other words, how big is the problem, and how bad is it? At this stage, the manager evaluates the risk to his or her operation or activity, asking: "Does the possible loss of information about my operation or activity warrant taking steps to reduce or (hopefully) negate the adversary’s potential efforts to thwart my operation or activity?" The costs associated with fixing the vulnerability are weighed against the cost of the loss of the data, keeping in mind the likelihood of our data being lost as well as the impact such loss would entail. One method to reach a reasonable conclusion of the practicality of solution(s) might be to multiply the estimated loss in dollars, by the impact of risk, by the likelihood of risk. The solution, in dollars must then be less expensive for the solution to be feasible. Countermeasures, finally, are the solutions that a manager employs to reduce risks to an acceptable level, whether by eliminating indicators or vulnerabilities, disrupting the effective collection of information, or by preventing the adversary from accurately interpreting the data. Countermeasures are dictated by cost, timing, feasibility, and the imagination of the personnel involved. The most effective tend to be simple, straightforward, and inexpensive procedural adjustments that fit the solution to the need. Countermeasures are instituted in rank order to protect the vulnerabilities having the most impact (in dollars, lives, mission failure, etc.). Multiple countermeasures, enacted together, often provide a synergistic effect that compounds the benefits without unduly raising the cost level. While OPSEC is not a cure-all, it is a vital, easy-to-use tool that ideally is instituted at the very onset of an activity. If the personnel involved develop an "OPSEC mindset," effectiveness is enhanced and mission success is more likely. OPSEC is neither difficult nor time-consuming; instead, it can easily become a "matter-of-course" process. Knowledge Is Power... ...Don't Have It Used Against You! Op.Sec 10月6日 Linksys Travel Router with SpeedBooster WTR54GSTiny Wireless G router offers easy setup, perfect for road warriors Internet access is becoming ubiquitous, but it's not always exactly where you want it to be. For example, sometimes if you're in a hotel room and you'd like wireless Internet access, there's only a wired network connection available. Other times, there are two of you with notebooks in the hotel room and only one wired connection. The Linksys Travel Router with SpeedBooster WTR54GS ($80) can solve that problem in an instant, turning any wired connection into a miniature wireless network. We took it out on the road, field testing it in a variety of situations. The travel router fits in the palm of your hand, and is small enough to slip into even the tiniest crevices in your suitcase. It doesn't even require a bulky power adapter, either, because it's equipped with a retractable plug. With an easy push of a tab on the top of the router, the plug slides out and locks into place. It also has an internal antenna, further reducing its bulk. The result is a road-friendly package that weighs just ounces, encouraging you to take it along with you on every trip. On the side of the router is an Ethernet port and an Internet port. You plug a fast Internet cable into the blue Internet port, and then you can plug another Ethernet cable into the Ethernet port, and run that to a PC. But you probably won't want to do that, because the idea is to plug the Ethernet cable into this router and then use it as a wireless access point, where you and your comrades can then use the wireless cards on your laptops to quickly and easily share a single Internet connection. This way, multiple computers can use one Internet account to browse the Web, download e-mail and do anything on the Internet. In every instance, using this travel router was a breeze. The simplest way to use it is to merely plug it into the wall, connect it to a high-speed Internet connection, and then when you boot up your laptops, the WiFi cards immediately recognize the network and ask if you'd like to log on. If you don't mind using an unsecured connection, you're off and running. A few times, my travel companion and I simply logged into this connection, and it couldn't have been simpler to get onto the Internet. Absolutely no instructions or software were required. I also found using the router to be especially convenient even when I was traveling by myself, where I could use its wireless connection to relax on the hotel room couch or in the bed with the laptop rather than being tethered to hotel desks with their consistently uncomfortable chairs. Upon plugging in the travel router, it springs to life, its power indicator lighting up as well as its Internet and wireless indicator lights. Its wireless G signal (the 54Mbps connection otherwise known as 802.11g) was consistently clear and strong in both PCs with which we tested it, the connection quality registering as excellent in both. Even though neither of our test notebooks has a Linksys SpeedBooster-equipped card, when connected to the router both had Internet access that felt just as quick and responsive as it does at home on a 100 base-T Ethernet connection. However, if you use this Travel Router with a SpeedBooster wireless card from Linksys (or from one of the other manufacturers that have licensed from Broadcom the 125HSM technology on which SpeedBooster is based), Linksys says you can get 35 to 40% higher speed than with ordinary wireless G. Beyond sharing a wired Internet connection, the travel router is also adept at sharing a wireless hotspot connection, where more than one computer can use a single paid account. I'm sure proprietors of such accounts aren't too happy with this capability, but it's one that could help this router pay for itself at in just a few instances. A neat trick is the router's ability to enable secure encryption between one computer and another, while the it simultaneously picks up a wireless signal with which to communicate with the Internet. Wait. Two radio signals at the same time? You bet. The router can even act as a wireless network card in a pinch, allowing you to access a wireless network by connecting it to your laptop with an Ethernet cable. Going into the settings and allowing these secure connections is as simple as it could possibly be, especially using the included Linksys software. You're also able to choose even more advanced WiFi encryption, including the WPA2 personal and WPA2 mixed protocols that allow you to enhance security by using passwords that must be changed after a certain amount of time has passed. Another feature included in this Travel Router and many other Linksys products is the company's proprietary Secure Easy Setup, which only works with other Linksys wireless cards. This is not going to be useful for you if your laptop has an internal card that's not made by Linksys. However, if you do have all-Linksys equipment, you'll like the way you can push one button on the Travel Router and it automagically sets itself up with your wireless card. The Linksys Wireless-G Travel Router with Speed Booster elegantly solves a simple problem with a solution that is nearly effortless in its implementation. I often find myself in a situation where more than one laptop needs to access a single wired connection, and this product makes that leap every time, turning one into many with no gnashing of teeth. With Internet access going for upwards of $12 a day in most hotels, this little device can pay for itself after just a few trips. Highly recommended. 9.8 out of 10. Knowledge is Power! Op.Sec http://opsec.spaces.live.com |
Beginning with a basic primer on reverse engineering-including computer internals, operating systems, and assembly language-and then discussing the various applications of reverse engineering, this book provides readers with practical, in-depth techniques for software reverse engineering. The book is broken into two parts, the first deals with security-related reverse engineering and the second explores the more practical aspects of reverse engineering. In addition, the author explains how to reverse engineer a third-party software library to improve interfacing and how to reverse engineer a competitor"s software to build a better product.* The first popular book to show how software reverse engineering can help defend against security threats, speed up development, and unlock the secrets of competitive products.
OPSEC focuses on identifying and
protecting information that might provide a competitor or adversary with clues to our
plans or capabilities, and thereby enable the competitor or adversary to thwart a planned
operation or activity.|
|
