It would cost TSA a penny if they give it to the agent and ask him to flip it. Head left tail right.
2 Likes
Is it just me or did the person narrating sound like Bertram Gilfoyle?
Yes, I think I sat behind Big Steve on my last flight. I couldnât see if he
was using the straw or not, but it was effective nonethelessâŚ
I personally enjoy the Dicenomicon, available for many flavors of tablets, and in heavy use when it comes to our Saturday night gamefest. Odds or evens, folks!
http://www.gandreas.com/iphone/dicenomicon/
You can be randomly selected from the pre-check line for additional screening as well. It happened to me last month â I got the dreaded SSSS mark on my boarding pass.
That how-to video is terribly irresponsible. Now terrorists will be able to create their own arrow randomizer to counter the TSAâs
1 Like
Think about the use case. None of the attacks that you could use on it if it were being used for computer security can be brought to bear here.
Any attack that can be based solely on observing the output is a potential vector. You wonât be able to manipulate, but you can predict.
1 Like
i dont understand what terrorist plot could have ever been foiled by making sure they arenât able to choose which of two identical lines they join in the first place
I just googled it, and time, in milliseconds, is the default seed for the java random class. Since the implementation in the linked video calls a new random every time, that means a new seed every time. I donât see a plausible attack vector here that would allow you to predict the outcome unless you could time your progress through the line with millisecond accuracy.
2 Likes
Apparently thatâs what they were trying to do but they had some high profile cases where they let a convicted felon through the faster lane and some controversy developed so the cancelled the randomized fast-lane.
I would argue that it didnât need to be random. It just needed to be more random then humans selecting 1-in-every-4-ish people to go to the regular line (selecting a likely ratio from the top of my head).
Also not sure itâs actually feasible to reasonably do random on an iPad without either a) calling out to a server (which would pose its own problems and attack vectors), or b) connecting some kind of dongle (which would be difficult to identify failure on unless the dongle self-deactivated when there was an issue with it).
I definitely agree that $47K is not outrageous for the development. Particularly once you consider the âthreatâ of on-going support.
I get it Every. Fucking. Time.
âRandomâ my ass.
1 Like
Have you ever FOIAd TSA, FBI, etc. for files related to you? Iâd be curious if it were me.
1 Like
Billable maintenance hours?
[quote=âslybevel, post:32, topic:76138, full:trueâ]I get it Every. Fucking. Time.
âRandomâ my ass.
[/quote]
Likewise.
I think it might be an Aspie thing. I look nervous in unfamiliar social situations because I am nervous.
It is a known insecure algorithm. When dealing with security âI canât think of a vectorâ doesnât cut it. You demonstrate why it is not a problem, you donât use hunches.
1 Like
True enough. That said, for purposes of the demo, though it would have taken longer than just using random, you could, for example, paint over the camera lens and use the LSB of pixels on the camera. It still wouldnât take >300k worth of work.
Like many programmers, I started out decades ago as a kid trying to learn how to make my own games. Of course, games make frequent use of random number generation. So I read about random number generation and Iâve seen this brought up so many times. âA pseudorandom algorithm isnât good enough! Itâs not true pure randomness! Even sampling the environment isnât random enough unless you have full control over the environment, and if you do, then itâs not random enough!â
Thatâs ridiculous. Not just in games, but in most real-life scenarios.
Give one example of how anyone could exploit it, even if they had memorized the algorithm. Not likely. If you observe long enough to recognize a pattern, then get in line but keep moving around to a different spot in line as people are waved left or right, youâre going to look suspicious.
What would be much easier? Get someone on the inside who would simply overlook you and choose someone else if the arrow pointed the wrong way. Or just bring a gun or a bomb along⌠They never seem to find those when theyâre tested.
The cryptographic purity of a random number generator is completely irrelevant in 99.999% of use-cases (other than cryptography). Anyone can come up with ways to cheat the system where the RNG doesnât matter, but no one can come up with a way where it does matter.
Itâs not a problem because itâs entirely irrelevant. If youâre randomly sampling people, then even with a hypothetical super-perfect randomization, people will get sent the wrong way. The only question then is how many. But thatâs irrelevant since it only takes one for your system to have failed, and basic math says that will happen either way. Add in human nature and human error, and itâll happen regardless, so it doesnât matter what algorithm you use for something like that.
1 Like
As with many of the things in my list, you have to assume that the TSA would ask âhow could an intelligent terrorist with knowledge of the app use it to defeat the system?â
If the random generator is weak enough that a hacker work out the seed (possibly with a compromised agent recording a long list of responses), and then predict what future responses will be, then this app is 100% worthless. Either by timing his place in the line correctly, or working with a compromised agent, he could be sure to be shuffled to the no-check line.
In the case of the 10-minute-app described in the video, the random generator is that weak (even though it meets your criterion of âmore random that humansâ), because he didnât even bother to use java.security.SecureRandom. With the random function he used, it really is weak enough that future values can be predicted.
Yes, there is the ânew seed every timeâ issue from above that makes it a bit more random, but that still isnât good enough with a compromised iPad â you could add a virus that rebooted or interacted with the app at exactly the right moment, and youâd still be having the valid app, with all security checks, but it would be making predictable responses.
So youâre saying that even with the hardware compromised, and the agent using it also compromised, and a superpowered attacker who can somehow control time to the millisecond in order to position himself precisely in a crowded airport, a marginally better random function would save the day (and not, perchance, emit the âwrongâ random response)? Thatâs some powerful magic!
