Return to Unfiction unforum
 a.r.g.b.b 
FAQ FAQ   Search Search 
 
Welcome!
New users, PLEASE read these forum guidelines. New posters, SEARCH before posting and read these rules before posting your killer new campaign. New players may also wish to peruse the ARG Player Tutorial.

All users must abide by the Terms of Service.
Website Restoration Project
This archiving project is a collaboration between Unfiction and Sean Stacey (SpaceBass), Brian Enigma (BrianEnigma), and Laura E. Hall (lehall) with
the Center for Immersive Arts.
Announcements
This is a static snapshot of the
Unfiction forums, as of
July 23, 2017.
This site is intended as an archive to chronicle the history of Alternate Reality Games.
  

The time now is Tue Nov 19, 2024 3:27 pm
All times are UTC - 4 (DST in action)		 View posts in this forum since last visit
View unanswered posts in this forum
Calendar
 Forum index » Archive » Archive: Perplex City » PXC: General/Updates
[UPDATE] May 25 - Sentinel - New Article - Next-Gen Keys
View previous topicView next topic
Page 1 of 2 [16 Posts]   Goto page: 1, 2 Next
Author Message
Mima
Decorated


Joined: 17 Feb 2005
Posts: 260

 		[UPDATE] May 25 - Sentinel - New Article - Next-Gen Keys
Next-Gen Keys Susceptible to Djinn
By AMBER MAI-WAN
A secret report leaked to the Sentinel by a source at Centrifuge indicates that the next-generation key hardware unveiled with great pomp last week is not immune to Djinn-style attacks; in fact, the keys are more susceptible.

"It's like the Djinn designer knew exactly how our tech would develop," marveled analyst Cora Llewellyn, of independent technology consulting firm TechNow, after the Sentinel showed her the report. "If this report is accurate, then the virus' creator was about five steps ahead of the bleeding edge."

According to the report, the original Djinn, which was never fully reverse-engineered, used a particular vulnerability in modern key hardware, called Magic Lamp, to infiltrate and attack. But previously unknown components of Djinn also include code to attack next-generation keys in which the old Magic Lamp vulnerability has been closed.


Advertisement

Llewellyn explained: "The designer knew exactly how the first-wave Djinn worked and how it could be prevented. But the worm appears to have been written with those preventative measures in mind; it makes some very smart guesses about how we'd try to fix it, and what new vulnerabilities this would uncover as development progressed." The report estimates that, by exploiting this new flaw, this virus can cause the same amount of damage as the first Djinn, but in about a fifth the time frame.

Centrifuge denied that the report was accurate, but indicated that it has delayed the launch of its much-anticipated Key Extension series due to manufacturing hangups.

The Djinn worm swept through the Academy and some other large city institutions last year, causing data and productivity losses of up to PCL750m.

PostPosted: Wed May 25, 2005 3:43 pm
 View user's profile Visit poster's website MSN Messenger
 Back to top 
BrianEnigma
Entrenched


Joined: 05 Oct 2003
Posts: 1199
Location: Pacific Northwest

 		The Microsoft of keys
So it would appear that Centrifuge is the only manufacturer of keys...?
_________________
Y0 Resources / VP Wiki / PXC Catalog / Metacortex

PostPosted: Wed May 25, 2005 3:53 pm
 View user's profile Visit poster's website
 Back to top 
Enigmaster
Decorated


Joined: 16 Nov 2004
Posts: 274
Location: Jersey, CI

 		Re: [UPDATE] May 25 - Sentinel - New Article - Next-Gen Keys
The Sentinel wrote:
The Djinn worm swept through the Academy and some other large city institutions last year, causing data and productivity losses of up to PCL750m.


Interesting... I wonder when exactly last year the first Djinn attacked; sometime just after jan 16th, perhaps? Hmm... The error logs didn't have a date on them did they? Because I imagine it's that sort of info that got lost...
_________________
| Enigmaster³ | Noxious Ideas |

PostPosted: Wed May 25, 2005 4:03 pm
 View user's profile Visit poster's website MSN Messenger
 Back to top 
Leeravitz
Unfettered

Joined: 14 May 2005
Posts: 450
Location: Stevenage, England

 		Centrifuge have presumably taken the reins over from Key Surety, as per prior Sentinel reports. The implication would seem to have been that they were, for some time, contesting the same markets, and that this contest inspired an internalised 'one - upmanship' that advanced security tech. solidly within the City in the prior decade.

Key Surety had the contracts to look after Academy security, remember, on the night that it failed...

I certainly consider it have been in Centrifuge's interests to have seen such a failure occur, not least because it allowed them the opportunity to buy out Key Surety...

So, maybe Centrifuge does now control a monopoly on key manufacture...
_________________
What is the New Nature of the Catastrophe?

PostPosted: Wed May 25, 2005 4:13 pm
 View user's profile
 Back to top 
yanka
Fickle


Joined: 06 Oct 2003
Posts: 1214
Location: undesirable
Leeravitz wrote:
Key Surety had the contracts to look after Academy security, remember, on the night that it failed...

It wasn't KeySurety that had those contracts, but Centrifuge:
Quote:
Centrifuge's stock price has declined nearly 23% in the past year, in some part due to the debacle at the Academy. The Cube was stolen last January, and it is common knowledge that Centrifuge has a number of high-profile contracts for campus security, though of course the details are confidential. The internal Academy investigation is still ongoing, but has not publicly assigned any fault to Centrifuge in the matter.

from here.
_________________
Annushka has already bought the sunflower oil, and has not only bought it, but has already spilled it.

PostPosted: Wed May 25, 2005 4:30 pm
 View user's profile
 Back to top 
Leeravitz
Unfettered

Joined: 14 May 2005
Posts: 450
Location: Stevenage, England

 		Oh, yeah. Just goes to show how well I remember what I've read a few days previously. In that case, though, then the problem seems even more cut and dried - Key Surety got bought out by Centrifuge, and now experts have announced there is 'no more competition...'. So, I guess Centrifuge do have the monopoly on key manufacture now, at least inasmuch as Key Surety are now an 'indepedent subsidiary'.

So, I'll reverse my previous position. The Djinn virus initially hit Centrifuge products, and *Centrifuge* had the contract for Academy security. Was the release of Djinn the work of a lone wolf, or was it a corporate sabotage that went awry for Key Surety??
_________________
What is the New Nature of the Catastrophe?

PostPosted: Wed May 25, 2005 4:50 pm
 View user's profile
 Back to top 
yanka
Fickle


Joined: 06 Oct 2003
Posts: 1214
Location: undesirable

 		Here's what we have, so far, that might have anything to do with security systems being disabled at the Academy on Jan 16th:

1. "the thieves reprogrammed portions of the Academy's security systems, disabling three different forms of security without tripping warning alarms." - from here.

2. "Academy security personnel discovered the theft at 2am when security guard Mendling failed to check in for her shift change." - also from here.
Now, we've seen that Fran Mendling had shifts at Gatehouse 24. Presumably, she was scheduled to work at Gatehouse 24 on the 16th, and was murdered by whoever was trying to get through, thereby becoming unable to report for her shift change. The other possibilities: her shift was not at Gatehouse 24 that night; she got murdered before she took over her shift at Gatehouse 24 seem less likely. The first one - because then we don't get to use or uber-knowledge of Gatehouse 24 logs, and also because it just doesn't seem as cool Smile . The second one - because then the thieves would still have a problem with whoever was on guard at the gatehouse.

3. Djinn virus. "The original Djinn worm swept through the Academy last year. Several instances were also found in other large organizations around the city." - from here. Note that some copycat tried to replicate the virus, but wasn't as successful.
Anyway, we have no way of telling when exactly the worm "swept through the Academy" - before, on, or after Jan. 16th. But I'm somehow inclined to think that if this virus was responsible for the security mishap on the night of Cube theft, then either the Academy or the police would have made such implications somewhere already... for example, here.

4. "Centrifuge has a number of high-profile contracts for campus security, though of course the details are confidential. The internal Academy investigation is still ongoing, but has not publicly assigned any fault to Centrifuge in the matter." - from here.
I'm somewhat unclear as to what those portions of campus security had to do with keys. I'm not even sure that Centrifuge made keys before it acquired KeySurety.

5. Aiko's sculptures were on display at the Museum, and they have the capability to communicate with keys - from here. They (the sculptures) were taken apart by the police, but we don't know what they concluded.

6. Five of Cups (the bar) had trafficked all sorts of stolen high-tech equipment, including equipment from the Academy. Now the bar owner is dead. There is a range of possibilities here: someone could have altered a stolen security "thing" and used it to get to the Academy; someone could have studied the equipment to develop bugs for it, and implement the breach remotely, etc.

So, it seems that we are being nudged towards "keys had something to do with the security problem that night" in a number of ways. But I still find it rather hard to believe that the Academy would implement something as common as keys as access devices to the highly secure portions of their buildings (like Gatehouse 24). The more common such a device is, the easier it is to replicate it, reprogram it, infect it, steal it, and do other generally bad things to gain access. It just seems to make more sense that something as secretive as the Academy research "place" would want to have their own, more custom, and, possibly, a lot more "hardcore" ID check system.
_________________
Annushka has already bought the sunflower oil, and has not only bought it, but has already spilled it.

PostPosted: Wed May 25, 2005 6:27 pm
 View user's profile
 Back to top 
<PSH>
Decorated


Joined: 28 Aug 2004
Posts: 187
Location: 127.0.0.1

 		That is a sweet rap up of security evens Yanka Shocked Very Happy

Quote:
"It's like the Djinn designer knew exactly how our tech would develop ... According to the report, the original Djinn, ... was never fully reverse-engineered..."

What? so basicly what thier admitting here is they never realy figured out how Djinn worked AND they didn't bother testing there "new" key to see if was vulnerable BEFORE it went to market... the least they could have done was field test (Red Team/Tiger Team test) the keys to see if they are resistant to all know attacks, these aren't just cellphones or gameboys, there your entire financial life in one little vulnerable package... Confused Rolling Eyes
_________________
"Oh, you cant help that," said the Cat; "we're all mad here. I'm mad. You're Mad."
"How do you know I'm mad?" said Alice.
"You must be," said the Cat, "or you wouldn't have come here."

PostPosted: Wed May 25, 2005 7:15 pm
 View user's profile
 Back to top 
Leeravitz
Unfettered

Joined: 14 May 2005
Posts: 450
Location: Stevenage, England

 		I'm glad that you put together that summing up. I'm not sure what it all adds up to, and it may well be the case that, for every significant fact included, another two are red herrings.

I am starting to feel that, now the informational supply is building up, we may need to start reassessing how we feel most of this material may or may not fit together.

Admitedly, I don't think we're 'missing' much from the information we've already been given, because we pore over it so diligently: I imagine that there are many pieces of the puzzles still missing.

Reactions like the current thread claiming the Reconstructionists did it are all very well, but seem like wishful speculation on the basis of nothing very conclusive. I hope that, if the PMs want us to solve a mystery properly, they'll be a bit more precise about giving us the relevant clues so that we can piece matters together...
_________________
What is the New Nature of the Catastrophe?

PostPosted: Wed May 25, 2005 7:16 pm
 View user's profile
 Back to top 
JebJoya
Unfettered


Joined: 13 Apr 2005
Posts: 679
Location: UK

 		Meh, I'll throw around some wild spec since you seem to hate it so much - the Cube is buried at the Acropolis, because Greece was mentioned by that old bint who died Smile

Erm, yeah, spec is bad. BAAAAAD...

But i love it...

Smile

Jeb
_________________
Jeb's ARG coming Autumn 2007...
Last FM Smile

PostPosted: Wed May 25, 2005 9:27 pm
 View user's profile AIM Address MSN Messenger
 Back to top 
DogsHead
Veteran

Joined: 11 Apr 2005
Posts: 142
Location: Sydney

 		OMG Jeb! That's it! You're a genius! It's so elegant and solid and... hang on a sec...


ahhh


spec


mmmm. crunchy.
_________________
135 of the 333
____________
Cassandra wrote:
one of the shoe-loving Academy gatehouse gals


PostPosted: Wed May 25, 2005 10:15 pm
 View user's profile
 Back to top 
Violet
Decorated

Joined: 08 Mar 2005
Posts: 217

 		Good theory Jeb, there's some mighty big rocks it could be under up there, grab spades and big ass lifting equipment and lets go!!!

PostPosted: Thu May 26, 2005 4:30 am
 View user's profile
 Back to top 
Crane
Veteran

Joined: 30 Apr 2005
Posts: 139
Location: England

 		I wish we knew a little more about PXC technology as a whole. For example, this Neuro Surpressant device used on Fran Mending (I can't let go of that one...); are such devices common weapons? The offhand reference to it suggests yes, but surely if they were very common, the police would have developed means to tell the time of death from people killed with them.
The reference to keys in that artists interview: "If you walked past and you had your key tuned into an audio channel, you'd think you heard voices whispering and stuff" implies to me that Keys have "channels" for different things, such as audio channels, video chanels, data channels, text channels and so on...
_________________
The Beginning of the Naked Kurt Jokes:
(18:19:40) Crane: *pictures Kurt getting changed*
(18:20:21) rjw76: Crane: bad :S now I'm thinking of the same thing Razz
(18:20:26) Crane: ^ ^

PostPosted: Thu May 26, 2005 9:58 am
 View user's profile
 Back to top 
Seej
Unfettered


Joined: 30 Nov 2004
Posts: 614

 		A couple of points worth mentioning - first, a Djinn is basically a Genie - Genie is just the Anglicised way of saying it. I guess this explains the naming of the Magic Lamp security exploit (apologies if this has been posted already).

Next,
yanka wrote:
So, it seems that we are being nudged towards "keys had something to do with the security problem that night" in a number of ways. But I still find it rather hard to believe that the Academy would implement something as common as keys as access devices to the highly secure portions of their buildings (like Gatehouse 24). The more common such a device is, the easier it is to replicate it, reprogram it, infect it, steal it, and do other generally bad things to gain access. It just seems to make more sense that something as secretive as the Academy research "place" would want to have their own, more custom, and, possibly, a lot more "hardcore" ID check system.


Relying on a system being secret to keep something secure is known as security through obscurity and is generally frowned upon in security circles. The thinking is basically, if you make the security system totally public then the smartest people in the world can all try to attack it and you get to see exactly how secure it really is. If you keep the system limited to a small number of people then there's a fair chance someone clever out there will eventually find out about it anyway and devise a way to break the security. Applies particularly to crypto, but it's true for all security measures (even simple stuff like mechanical locks etc.).

So while I agree that the Academy would probably want a custom-built system I would have expected that it would be based on principles that have been widely attacked and found to be secure.

PostPosted: Thu May 26, 2005 10:46 am
 View user's profile
 Back to top 
Leeravitz
Unfettered

Joined: 14 May 2005
Posts: 450
Location: Stevenage, England

 		Re: Djinn - This is yet another reference that makes me wonder if the PMs have been reading the same books I have! Hofstadter's 'Godel, Escher, Bach,' has a whole section that's devoted to playing on the idea of the genie (it's actually concerned with discussing how recursion works). The section is (groan!) called 'Djinn and Tonic'...

I think Hofstader's analogy is to the hierarchical Arabian traditions whereby the djinns were servitors of God, interposing at different levels between humanity and Heaven, so there's lots of stuff about the meta - genie, the meta - meta genie, the meta - meta - meta genie etc. In other words, you can gon on recursively iterating the number of djinns between yourself and God indefinitely!!

I doubt that has anything much to do with the virus, and I assume its been named Djinn for some other reason (because its hard to detect? it works 'like magic'??). But the point is simply that maybe such background reading may have given the PMs plenty of inspiration!!
_________________
What is the New Nature of the Catastrophe?

PostPosted: Thu May 26, 2005 11:58 am
 View user's profile
 Back to top 
Display posts from previous:   Sort by:   
Page 1 of 2 [16 Posts]   Goto page: 1, 2 Next
View previous topicView next topic
 Forum index » Archive » Archive: Perplex City » PXC: General/Updates
Jump to:  


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum
You cannot post calendar events in this forum



Powered by phpBB © 2001, 2005 phpBB Group