Revamped knapsack code offers online security for the future
Washington State University mathematicians have designed an encryption code capable of fending off the phenomenal hacking power of a quantum computer.
Using high-level number theory and cryptography, the researchers reworked an infamous old cipher called the knapsack code to create an online security system better prepared for future demands.
The findings were recently published in the journal The Fibonacci Quarterly.
Quantum computers are near
Quantum computers operate on the subatomic level and theoretically provide processing power that is millions, if not billions of times faster than silicon-based computers. Several companies are in the race to develop quantum computers including Google.
Internet security is no match for a quantum computer, said Nathan Hamlin, instructor and director of the WSU Math Learning Center. That could spell future trouble for online transactions ranging from buying a book on Amazon to simply sending an email.
Hamlin said quantum computers would have no trouble breaking present security codes, which rely on public key encryption to protect the exchanges.
In a nutshell, public key code uses one public “key” for encryption and a second private “key” for decoding. The system is based on the factoring of impossibly large numbers and, so far, has done a good job keeping computers safe from hackers.
Quantum computers, however, can factor these large numbers very quickly, Hamlin said. But problems like the knapsack code slow them down.
Fortunately, many of the large data breaches in recent years are the result of employee carelessness or bribes and not of cracking the public key encryption code, he said.
A new public key code
Looking to protect future online information, Hamlin and retired mathematics professor William Webb turned to the long-abandoned knapsack code. To bring it up to quantum level – and possibly use it as a new type of public key encryption – the researchers first engineered new numbering systems for the code.
“We used alternate ways of representing numbers,” said Hamlin.
In effect, they created new digital systems with much greater complexity than society’s day-to-day decimal and binary systems.
“By using very complicated number strings, we produced a new version of the knapsack code that can’t be broken by the usual cyber attack methods,” said Webb.
As a result, Hamlin and Webb believe the redesigned knapsack code could offer a viable alternative for public key encryption with quantum computing.
The knapsack problem is a theoretical puzzle dating back to at least 1897 and is very difficult to solve in its most general form.
“Basically, it asks if you have one big number (the knapsack) and lots of small numbers (objects), what is the subset of small numbers (or objects) that will perfectly fill the knapsack? The concept was used to create a code called the knapsack code,” explained Webb.
“The knapsack code was originally suggested as a tool for public key encryption in the 1970s, but it was broken by two different methods and people lost interest in it,” he said.
Webb’s idea to bring it out of storage was at first an intellectual exercise.
“Knapsack is a simple, elegant code but it was broken,” said Webb. “We wondered if it could be fixed and redesigned to be secure. The challenge was intriguing.”
Hamlin said they made corrections at the fundamental level of the code, which repaired many of its weak spots. This let it block a greater array of cyber attacks, including those using basis reduction, one of the decoding methods used to break the original knapsack code, he said.
“Basis reduction is a big hammer to use against this code and, after testing, we think it’s secure against this type of attack and would offer an alternative code for quantum computing,” Hamlin said.
The Latest on: Cybersecurity
via Google News
The Latest on: Cybersecurity
- Zoom’s Cybersecurity Redemption Won’t Be Complete Until They Do This One Final Thingon June 26, 2020 at 1:29 pm
But it’s not the last leadership step they need to make before their cybersecurity redemption is complete. Next week Zoom exists the 90-day sprint their CEO implemented to deal with a wide range of ...
- The Cybersecurity 202: Democrats and Republicans unite to push for a new cybersecurity czaron June 26, 2020 at 5:35 am
A bipartisan group of lawmakers is pushing to create a new White House czar to lead cybersecurity decision-making throughout the government. Creating a new national cybersecurity director would mark ...
- Best in Tech 2020: Cybersecurity Association of Maryland, Inc.on June 26, 2020 at 5:00 am
Though it started as a resource for businesses, the Cybersecurity Association of Maryland's "SWAT Team" has found another group of users they can help: individuals experiencing data breaches of their ...
- Cybersecurity: Dangerous ransomware learns a new trickon June 26, 2020 at 4:14 am
Already one of the most dangerous forms of ransomware, now Sodinokibi looks like it could also be attempting to make money from stolen payment information too.
- There is no cybersecurity silver bulleton June 26, 2020 at 3:20 am
Businesses of all sizes still harbor the belief that simply having a cybersecurity strategy and implementing the right policies is the complete answer to defending against cybercrime. However, the ...
- Working From Home? Take These Critical Cybersecurity Precautionson June 26, 2020 at 3:07 am
To understand our cybersecurity better I got in touch with Eric O'Neill, former FBI Special Agent and the National Cybersecurity Strategist for VMWare Carbon Black. He laid out the reasons for the ...
- Core cybersecurity principles for new companies and productson June 25, 2020 at 8:03 pm
A new World Economic Forum report outlines core cybersecurity principles and points to how companies must reduce cyber risk to remain competitive.
- Salesforce Joins Cybersecurity Firm Tanium's Funding Roundon June 25, 2020 at 4:38 pm
Salesforce invested in a funding round for cybersecurity company Tanium, which is now valued at about $9 billion.
- Why Cybersecurity Is Really A Business Problemon June 25, 2020 at 10:14 am
When cybersecurity spending isn’t being driven by a business case, endpoints become more complex, chaotic, and nearly impossible to protect.
- Cybersecurity firm Tanium hits $9 billion valuation after being backed by Salesforce Ventureson June 25, 2020 at 5:11 am
The "significant investment" has seen the company's value jump by over a third in two years.
via Bing News