Ed Stoffel

David Crist writes in today's NY Times that Iran's small boats are actually a big problem that we've known about for years.

In December, the Whidbey Island, a Navy dock-landing ship, fired warning shots at small Iranian craft that came too close. Three days later the frigate Carr was forced to use its ship’s horn to ward off three Iranian small boats, two of which were armed, according to Navy spokesmen. While these incidents may not seem alarming to those who’ve never served on a potentially vulnerable modern warship, they fit into a worrisome pattern, a two-decade-old military strategy by Iran intended to counter the United States presence in the Persian Gulf.

 Iran's Small Boats Are a Big Problem, David Crist, NY Times

Opera Mini is a browser people are running on their PDAs. Problem is, they are modifying all the webpages, and decrypting your SSL traffic. Doing so, they're causing webpages pages you thought were secure to travel in the clear, exposing your passwords, credit card information, and everything you thought was encrypted on the net...

Steve Gibson: Now, the reason they're doing this is that this server that the Opera Mini browser connects to is really doing a lot of good work for the user. It is rewriting pages, web pages on the fly, rewriting JavaScript on the fly, essentially turning web pages that were never designed to be seen on a very small screen on a very lightweight and lower powered browser, making them work. ... If you need full end-to-end encryption, you should use a full web browser such as Opera Mobile. Opera Mini users a transcoder server, as they call it, to translate HTML, CSS, JavaScript into a more compact format. It will also shrink any images to fit the screen of your handset. This translation step makes Opera Mini fast, small, and also very cheap to use. To be able to do this translation the Opera Mini server needs to have access to the unencrypted version of the web page. Therefore, no end-to-end encryption between the client and the remote web server is possible.

 Transcript of Episode 126, Security Now

Steve Gibson responds to an inquiry about the insecurity of wireless keyboards, informing listeners of Security Now that the Microsoft Wireless keyboards are so easy to intercept and decode, it's child's play:

Steve: Yup. Get a load of this. It's not a 1-bit shift register. It's a 1-byte static byte that is XORed with the data from the keyboard.

Leo: So would that be pretty easy to reverse engineer?

Steve: Leo, it'd be hard not to reverse engineer. It is horrifying. It's horrifying.

Leo: And this is true not just for Microsoft, but do other keyboards do it this way?

Steve: Well, apparently Logitech has recognized that this is a problem that's sooner or later going to get exposed. Microsoft's wireless keyboards do this. The 1000 series and the 2000 series have been examined. The 3000 and the 4000 have not been. But it appears to be the same for them. Logitech has, like, a secure connect...

Leo: They have an encrypted keyboard, yeah.

Steve: Yeah. And so they're boasting about that. But the extremely popular Microsoft keyboards, during the so-called "association phase," the keyboard chooses a random byte, one byte of randomness, and provides it to the reader. Then the keystrokes you type are XORed with that one byte. Which means, as we know, there are 256 possible combinations of one byte, that the one byte can have. All you have to do is suck in a bunch of characters, you know, wait a few minutes for someone to type 20 or 30, and then in a heartbeat you could check every possible byte. One of them will turn what they're typing into English or clear text or whatever language they're typing in. In that case, at that point, their keyboard is decrypted for all intents and purposes, deciphered. What this means, of course, is that in a situation where people are within sniffing distance, radio distance of a keyboard, you absolutely have to consider that it is not safe. Keyboards are using a low frequency, 27MHz, which is extremely easy to receive, meaning that in an apartment building, neighbors who have a wireless keyboard could have everything they're typing trivially decrypted, if it's at least on these Microsoft Series 1000 and 2000 keyboards, and probably other keyboards. So it's definitely a concern.

 Transcript of Episode 122, Security Now

The following sites are in the Intelligence Summit Webring...