SSN

Security of Systems and Networks

Part 2 Enigma2 November 2009

Practical

● Labs ● Vigenère● Progress assignments● Evaluation Thursday 16:00● Flight change Geneva

Enigma

● One of many rotor machines● Well known from WWII● Extensively documented many anecdotes● Others:● Sigaba (United States)● Typex (Britain)● Lorenz SZ 40/42 (Germany) ● Siemens and Halske T52 (Germany)

Enigma

1928 Patent

Enigma

● Polyalphabetic substitution cipher ● 3 wheels + reflector● Long “period” 26 × 25 × 26 =16900 ● Roughly 3 * 10^114 possibilities● Exhaustive search impossible● Safe if principle and wiring would be known

– At least that was intended...

Enigma in Action

Use the paper Enigma

WRC FHFM ZEQN WGLV ZEXY

Startposition MCK

Only 26 charactersX = Period

Y = Comma

UD = Question Mark

XX = Colon

YY = Dash/Hyphen/Slant

KK*****KK = Parenthesis

J*****J = Stress Mark

Numbers are written out as words

The Wehrmacht used other abbreviations:

KLAM = Parenthesis

ZZ = Comma

X = Full stop (end of sentence)

YY = Point or dot

X****X = Inverted commas

Question mark ( Fragezeichen in German) is usually abbreviated to one of the three following forms:

FRAGE, FRAGEZ or FRAQ

Foreign names, places etc. twice delimited by "X", e.g. XPARISXPARISX

The letters CH is written as Q, e.g. ACHT was written as AQT, RICHTUNG as RIQTUNG

It was prohibited to encipher the word "null" several times in succession. For several nulls these

abbreviations are used:

00 = CENTA

000 = MILLE

0000 = MYRIA

Examples: 200 = ZWO CENTA, 00780 = CENTA SIEBEN AQT NULL

Enigma Software Emulator 6.1

http://users.telenet.be/d.rijmenants/en/enigmasim.htm

Double stepping● Example QDV start setting

http://enigmaco.de/enigma/enigma.html

Codebook SNE UvAGEHEIM! SONDER-MASCHINENSCHLUSSEL: SNE UVA NOVEMBER 2009

-------------------------------------------------------------------------------------------- |Tag |UKW| Walzenlage |Ringstellung| Steckerverbindungen | Kenngruppen | -------------------------------------------------------------------------------------------- | 30 | B | II I V | 22 20 12 | AZ BW FG HJ IU LM NO PS RX TY | WOG WFA NJD CEG | | 29 | B | III IV II | 13 22 08 | AW DT FS HM JY KN LU OP QZ VX | CIS WNK QZS KGQ | | 28 | C | III IV V | 02 06 19 | AD CH ER FW IL MQ NX OS PT UV | ZOT LAE EXU NET | | 27 | C | III V II | 12 21 10 | AQ BO CY DT EI GM KL PZ RX UV | JTA WUM AVM XKR | | 26 | B | I III II | 02 18 13 | AG BS CH DR KP LW MV NU OQ XY | UMW QXA WYP ORO | | 25 | B | I III II | 04 20 03 | AY CN DS HW JT KM LU OZ PR QV | LRH OYV XXT GJK | | 24 | C | III IV I | 21 09 08 | AB DW EL FP GK HY JV QZ ST UX | YCO GCN ZGQ FYK | | 23 | B | V II I | 06 26 22 | AC BZ DS EP FW GQ HL JN MV RT | MEX IHY GNH XUS | | 22 | C | III V IV | 23 03 07 | AE CW DS FT GR JV MX NU PQ YZ | HYF EVE FCH CRF | | 21 | C | I III II | 25 16 12 | BD CZ EN FW GO KP LR MY QV SX | OCR EVO RFY XAM | | 20 | C | I II IV | 19 07 15 | AQ BZ FL GN HJ IU KX OW PR TV | HLH TOB PUC XXP | | 19 | C | IV III V | 09 21 09 | AU BP CH DF GR KY LO MV NS TX | WFR KPF JOT CUB | | 18 | B | IV III V | 04 17 05 | AN BG CH FI KS MU PQ RX TZ VY | SUO YOT JNX IVS | | 17 | C | IV II III | 12 16 18 | AR BE CJ DP FW GS KN LO TV UY | VCY TOF ZOS FRU | | 16 | B | V IV II | 07 24 15 | AS BD CV EK FL GM HW NR QU TX | JGO IQV CBR HHD | | 15 | C | V I II | 15 20 25 | AN BY DL EM FQ GR IW JS OT UZ | UGU HWL JNL DGF | | 14 | C | IV V III | 08 21 06 | AU BC GN IZ JT KP LS OY QX VW | TRP IKI FWQ DJX | | 13 | B | V IV II | 07 15 24 | AK BY CH EO GL IR PX QW TZ UV | OJT OMG KOW MXY | | 12 | B | II V I | 05 22 09 | AV CF EH GT IZ JN LW MQ OP SX | LOP UTE CFY RXE | | 11 | B | II IV V | 25 07 26 | AT BW DH GN IK JY LP OS RU XZ | LKX MCI QAV LNX | | 10 | C | III II V | 07 11 10 | AV BD CM FX GS HN JR KL TY UZ | MDU KES LGJ GTV | | 09 | B | V IV II | 11 03 17 | AX BI DM EH FZ JS KN OP RU TV | DMM DKJ YUK QOW | | 08 | C | I III II | 19 04 09 | AC BF EL GZ HX IN JQ KT MO PR | BJG AOX RUI UUK | | 07 | C | III V I | 20 08 05 | BK CV ET FW GQ HX JP NR OU YZ | VZN XZK YWQ CYR | | 06 | C | V IV II | 06 11 05 | BW CG DZ EP FV HM JO KN SX UY | TTD XAX FFX DAN | | 05 | C | III I IV | 11 22 23 | AZ BJ DV EP FO GL HN IM RS UW | ZRJ SQB PFK WVP | | 04 | B | II III V | 08 11 05 | BJ CX DV EF GU HI KT LW PS RZ | TBT LBF IXE SQX | | 03 | C | V IV II | 05 11 15 | AW BM CJ DR EV GZ HO KU PQ TX | HID ZEC NXH HXO | | 02 | B | IV I III | 11 26 03 | AN BI CE DY FZ GR HT LQ SU WX | VVO GTC QPF OXT | | 01 | B | IV II I | 03 26 04 | AF BJ CQ DR EG IV KY LN MW UZ | JZC WLM VHM MPV | --------------------------------------------------------------------------------------------

Please decode-----------------------------------------------------------

Tag Walzenlage Ringstellung Steckerverbindungen

(Day) (Rotors) (Ringsetting) (Plug Connections)

-----------------------------------------------------------

| 03 | C | V IV II | 05 11 15 | AW BM CJ DR EV GZ HO KU PQ TX | HID ZEC NXH HXO |

| 02 | B | IV I III | 11 26 03 | AN BI CE DY FZ GR HT LQ SU WX | VVO GTC QPF OXT |

| 01 | B | IV II I | 03 26 04 | AF BJ CQ DR EG IV KY LN MW UZ | JZC WLM VHM MPV |

-----------------------------------------------------------

On day 02(today) the following message is intercepted:

U6Z DE C 1510 = 44 = SIH QUJ =

DXFEY IGHUE QYWVH OGSJQ BTYCE NUWGP LHSGP WT=

Cracking Enigma

● Polish ● Marian Rejewski

Cracking Enigma Weaknesses● Letter never translates to itself● Double sending of encoding settings● Chosen plaintext

– Standard message formats● CRIBS● Exhaustive search impossible● 10^114 (approximately 380 bits)● with known wiring and other operational

constraints, this is reduced to around 1023 (76 bits).[3]

Improvements

● From 3 wheels to choice 3 out of 5● Custom versions (different wiring)● Fourth wheel position● Steckerbrett● Procedural changes

Bombe

● Polish: bomba kryptologiczna● Alan Turing ● Read chapter from Crypto CD

American Bombe

Lorenz SZ 40 / SZ 42

Colossus