Re: What would you do?: Assume all Public Key Exchange models in use failed overnight

This wouldn't lead to wide-spread loss of electronic devices, and data.

Using formula from Physics, you can compute the effective force and field strength of a magnetic field given a distance in addition to strength. Like Gravity, the force of field strength relies on the strength of a charge, but the distance is much more important, since the distance is an inverse square applied to any change in charge/field.

So, double the charge, and double the distance, you halve the effective strength to the new distance. Because of this, the effective radius for any EMP bomb is very limited, and addition of more "power" to generate a strong field faces diminishing returns.

A single bomb over the US would not be enough-- even if the power source was nuclear. Many, many EMP would be needed, and then you would have to consider additional power requirements to push the EMI through shielded spaces, and underground storage systems.

This is a risk too. Maybe a topic for another thread on catastrophic failures like doomsday scenarios.

Re: What would you do?: Assume all Public Key Exchange models in use failed overnight

I asked Bruce Schneier(sorry don't mean to name drop) this very question at the QA at DEFCON. I'm paraphrasing my question, did he think that technology specifically Moores Law would render crypto moot. His respond also paraphrasing here was that the math is on the side of the cryptographer, and as technology increases it increases for the cryptographer as well. He also stated to not go after the crypto but to attack the implementation. His analogy being the encryption was like a stake in the ground, why run into the stake when you can go around it.

Just MHO, that perhaps for a short term period the attacker may have a slight edge, but it would be short lived at best.

thx-1138

Re: What would you do?: Assume all Public Key Exchange models in use failed overnight

My interpretation of the question revolved around the idea that one morning someone announces "We have a box that can break all common PKI based crypto" ala "Sneakers"

While not necessarily breaking the functions currently in place (money could still be transfered, cryptomail sent) but suddenly the mass assumption that it can't be broken in a reasonable time being crushed.

This is what I would fear more than any attack or sudden catastrophic event. Because a real failure of any system can be fixed. A wire breaks, you replace it. A server fails, you switch to the backup. The backup fails, you pray to spongebob.

The bits, bytes, metal, plastic, silicon, and even math that make up such 'secure' systems are built upon the basis of something much smaller and intangible; TRUST

If such a box or decryption system suddenly hit the world, that trust is broken. If that trust is broken, you cannot be reasonably sure that the incoming bank withdrawal request is real. You cannot trust the orders coming from higher up in command. Your not going to take the risk if that trust is broken.

Terrorism, asteroids, global warming, nuclear proliferation. These don't scare me. What does scare me is natural human reactions to fundamental changes in their base psychology. Things like alien life being proven. Religious nuts in general being proven wrong and then attempting to 'make it right'. Humans don't do well with change. To suddenly pull a rug out from a high level of trust (i.e. banking, chain of command) usually doesn't end well

Re: What would you do?: Assume all Public Key Exchange models in use failed overnight

So does that mean that SpongeBob is the one true god. ROFL

xor

Re: What would you do?: Assume all Public Key Exchange models in use failed overnight

I agree with astcell, what once was old tradecraft will be new again, I can very well see using USB dead drops that look like rocks, innocuous looking IR square taped on a mailbox when there's something new to communicate about, pre-timed F2F meets in a campus library, or any other well trafficked area. More use of one time pads and something a little more rocking than the Lincolnshire Poacher being broadcast on the Internet.

I'd keep listing suggestions, but the best ones are sitting in my WTSHTF plan.

Re: What would you do?: Assume all Public Key Exchange models in use failed overnight

According to most people, 'change' is something you keep in your pocket.

Re: What would you do?: Assume all Public Key Exchange models in use failed overnight

Fax
Telephone
Pen & paper
snail mail