Ironic yes
But safer than the cloud by a long shot
Internet's safe-keepers forced to postpone crucial DNSSEC root key signing ceremony – no, not a hacker attack, but because they can't open a safe
The organization that keeps the internet running behind-the-scenes was forced to delay an important update to the global network – because it was locked out of one of its own safes. “During routine administrative maintenance of our Key Management Facility on 11 February, we identified an equipment malfunction,” explained Kim …
-
-
-
Thursday 13th February 2020 09:55 GMT Anonymous Coward
Yep.
As with cryptographic keys, you cannot make something impossible to break/crack with brute force. You can only make it take too long or be uneconomical.
As safes are generally down to preventing theft, I see most consumer ones are not "safe". They are often able to be cracked/broken/opened in a few seconds let alone minuets if you lose the key.
Real security safes though are down to, as you say above, how long it takes to drill or crack with skill.
-
-
Thursday 13th February 2020 20:37 GMT J. Cook
Re: Yep.
Yep. we had a 'small business' grade safe that we had to hire a locksmith to drill open, because some chucklehead put his size 13's on the handle to try and open it, not realizing that it was double locked. Seems those have an intentional weak spot on the gear train to keep someone from brute-forcing the door open. It took longer for the 'smith to verify where to drill the hole with the manufacturer than to actually pop the thing open.
-
Friday 14th February 2020 14:00 GMT Peter2
Re: Yep.
AIUI, most home safes only have a safecracker rating of five minutes. The engineering needed to make a safe with a rating of more than hour puts it out of reach of most people.
Really?
Because firearms are stored in quite inexpensive boxes (~£75) which are designed to be impossible to gain entry to (even with heavy cutting equipment) in less than half an hour, and the locks are perfectly secure enough for the police to be happy with you storing firearms and ammunition in them which one assumes wouldn't be the case if you could sort of glance at it and find it opens.
If meanwhile a safemaker can for similar money only make something that's good for 5 minutes then something's wrong. I'd suspect that the safe makers are making good money out of their better safes for business use and simply don't want to sell a cheap home grade one that's as good as the more expensive ones to avoid losing money on businesses going for a home grade safe.
-
-
Friday 14th February 2020 16:33 GMT Peter2
Re: Yep.
Firearm cabinets made to British Standard BS7558/92 can be broken into in under 30 seconds?
If you can do it in 30 seconds with a twig then i'm sure that there are many laboratories that would love to either hire you, or buy whatever sort of twigs your using since they are obviously better at getting through steel plate than a 2kg sledgehammer applied to a chisel on weak spots.
BS7558/92 requires real world testing, and getting a pass requires multiple cabinets to survive enthusiastically applied attack for considerably longer than 30 seconds. The minimum failure IIRC would be only surviving ten minutes. When attacked with an industrial blowtorch.
-
-
Wednesday 22nd April 2020 12:28 GMT richard?
Re: Yep.
Obvious quote - "You're only supposed to blow the bloody doors off!"
Thermic lancing it would undoubtably work quickly, and almost certainly destroy the contents so kind of pointless.
As they said in the article, the safe contains "sensitive equipment" - not much point in beating up the safe if it destroys the hardware token in the process.
-
-
-
-
Friday 14th February 2020 16:03 GMT jason_derp
Re: Yep.
"Because firearms are stored in quite inexpensive boxes (~£75) which are designed to be impossible to gain entry to (even with heavy cutting equipment) in less than half an hour ..."
I'm pretty sure firearm safes are meant to deter children in the country I live in, and that's about it. We even have to have special ammo boxes because the safes aren't rated for their safe containment, so I doubt much work went into their locks either given the prices I see.
-
-
-
-
Friday 14th February 2020 10:51 GMT katrinab
Re: Yep.
If you had "the entire age of the universe" to crack an encryption key, you would spend your time developing faster / better hardware to do the brute force rather than try to do it on existing equipment.
If you had something that 20 years ago was going to take 50 years on an impossibly fast supercomputer to crack, how many milliseconds would it take a raspberry pi to do it today?
-
-
Thursday 13th February 2020 15:34 GMT Anonymous Coward
Re: Yep.
Real security safes though are down to, as you say above, how long it takes to drill or crack with skill.
More or less any large safe can be opened without much skill using a thermic lance, as there aren't any tough materials that can handle a sustained temperature of 4500 °C. You can see it done at https://www.youtube.com/watch?v=UMKBOoAOR7I Small safes aren't vulnerable because the lance will quickly destroy the contents of the safe, along with the safe itself, in the process.
If you need a good safe, you also need a good burglar alarm.
-
-
-
-
-
-
Thursday 13th February 2020 08:34 GMT Prst. V.Jeltz
Re: "during what was apparently a check"
But during what was apparently a check on the system on Tuesday night – the day before the ceremony planned for 1300 PST (2100 UTC) Wednesday – IANA staff discovered that they couldn’t open one of the two safes. One of the locking mechanisms wouldn’t retract and so the safe stayed stubbornly shut.
Sounds like the right people to me
-
Thursday 13th February 2020 08:42 GMT diodesign
Re: "during what was apparently a check"
I think it was more checking they were operational.
FWIW, ICANN has the ability to override protections and literally drill its way into accessing the KSK HSM but it's rather obvious if that were to happen.
The point being that IANA/ICANN staff can check security systems but there are tamper-proof protections and other layers to prevent actual access outside of a ceremony, unless you brute force your way in, which is, shall we say, detectable.
C.
-
Thursday 13th February 2020 10:34 GMT Anonymous Coward
Re: "during what was apparently a check"
I understand using a drill in an emergency situation. Even banks are forced to use drills if a safe deposit box can't be accessed for some reason, but that evidently leaves some evidences. Still, no one at the bank can "check" a safe box because the other key is not there.
Don't know what kind of tamper-proof bags they use, and how easy would be to replace them - since they do replace them after the ceremony.
It looks to me there's some security theatre, and the actual security is lower than they try to show.
-
-
-
Friday 14th February 2020 09:26 GMT Anonymous Coward
Re: "during what was apparently a check"
Reminds of my time in KSA back in the early 80's when Khamis Mushayt PRX-205 telephone exchange used to reboot Weds afternoons. This was remotely monitored from Riyadh and we couldn't out what was going on, so all aboard the Phillips Falcon 20 jet to suss it out. At 2pm the cleaner entered and proceeded to open the equipment rear doors and mop the cabling/pins. Quick exit to the local OASIS club - trebles all round!
-
-
Thursday 13th February 2020 08:42 GMT Anonymous Coward
official Safes
bad, bad memories there. One mis-set by ID10T who set numbers by leaning over to extreme side so the number seen was NOT the number in the middle of dial. Strangely enough, no-one could open it using numbers provided. Cue locksmith. Another where two tumblers locked and two unlocked. At least that time the new combination was tested with door open so repairs were possible. Safe was in a remote area so no chance of locksmith but it was extremely beneficial to have a large unit to stash items of high toxicity and other portable attractives.
Lastly, the mechanisms in safes are solidly constructed. Failure to retract suggests it was not unlocked. More likely, one set of tumblers combination was wrong, or worse, key and lock damaged.
-
Thursday 13th February 2020 19:11 GMT Jellied Eel
Re: official Safes
Failure to retract suggests it was not unlocked. More likely, one set of tumblers combination was wrong, or worse, key and lock damaged.
Or worse, the correct combination, but for the wrong safe. Which they may discover on opening and finding nothing but a stale fortune cookie. Mind you, safe-swapping may be harder than safe-cracking, assuming the environment has decent security.
-
Thursday 13th February 2020 23:03 GMT JimboSmith
Re: official Safes
There's a story about a bloke at the bbc in the 80's who reached a fairly senior position. During one of the government exercises for the transition to war (wintex/fallex) he received a call from the UKWMO (UK Warning and Monitoring Organisation) with the correct codeword "Falsetto". He said he was told to retrieve and prepare the attack warning (all clear, regional warning) cassettes in case they were needed. "Okay" he says "where are they???" They're in the safe in your office is the reply. He asks for the combination and is told he's supposed to know it! However he doesn't so calls his predecessor who will obviously have it. Sadly he says he doesn't know it either but not to worry just look at the picture on the wall behind the desk. "The combination is written on the back of that"
Only problem is that the new occupant had had that picture removed when he moved in as he found it awful.
-
-
-
-
-
Friday 14th February 2020 03:28 GMT Anonymous Coward
@AC ritual
indeed. Having done these procedures for a revenue raising gov department back in the day, ritual is an excellent description. Substituting suits and serious faces instead of mangled Gregorian chants and monk habits describes the ritual unlocking of the safe containing the "special" laptop, in front of witnesses from PHB delegate, application owner PM to IT security manager. Then the powering up, the selection of cert type, etc and the solitary creation of the magic passphrase, instantly written down and sealed inside two sealed and signed envelopes while everyone else kept their vision averted and selves across room. Then the key generation, copied to dedicated USB. Once all keys done, laptop off and back into safe, envelopes to another safe elsewhere behind lots of doors few could get past. All understandable and for once in security theater, necessary and sensible. No doubt my private phone and emails were monitored for a while afterward.
-
-
-
-
-
This post has been deleted by its author
-
-
-
-
Thursday 13th February 2020 15:11 GMT Antron Argaiv
Re: "WD-40 is not a lubricant!"
I made the mistake of using it to lubricate a door latch. Which now sticks when it gets cold. Had to flush out the waxy deposit with penetrating oil before it would loosen up.
Now, that being said, WD-40 IS an excellent product for keeping water out of places it doesn't belong, and that waxy deposit it leaves behind seems to be the reason.
I should modify my original statement, to say that WD-40 may be an excellent lubricant in the short term, but over the long term, it leaves deposits which may inhibit the free motion of the parts you were trying to lubricate. I have found it an excellent substance to use when attempting to remove car mufflers from those rubber donuts they mount them with. Loosens up all the dirt and rust and such, and the pin slides right out.
// Yeah, that's a can of WD-40 in the pocket
-
Thursday 13th February 2020 18:36 GMT Mike 16
Re: "WD-40 is not a lubricant!"
---
Loosens up all the dirt and rust and such, and the pin slides right out.
---
I have found that "starter fluid" (light oil propelled by ether) is the best aid to rusted bolts etc. Far more effective than WD40, IMHO. Got that trick from a retired locomotive maintenance guy, and been using it ever since, although I haven't been in a steam locomotive cab for over 40 years.
-
Wednesday 19th February 2020 12:56 GMT Scott Wheeler
Re: "WD-40 is not a lubricant!"
A 50/50 mix of acetone and ATF (automatic transmission fluid) is the best I've used. You need to make a new batch every so often, as the acetone evaporates even from a chemical wash-bottle.
For soaking components, diesel is good as it's cheap and a pretty good penetrating oil.
-
-
Thursday 13th February 2020 18:36 GMT Charles 9
Re: "WD-40 is not a lubricant!"
"I made the mistake of using it to lubricate a door latch. Which now sticks when it gets cold. Had to flush out the waxy deposit with penetrating oil before it would loosen up."
I believe that's why they say to use graphite powder when dealing with door mechanisms. Graphite is a dry lubricant.
-
-
-
Thursday 13th February 2020 12:54 GMT SVV
root key signing ceremony
This is all a little disappointing to me. Where are the bits about the Elders of the Internet in their hooded robes solemnly chanting mystical incantations in binary in order to open the door to the secret inner chamber where terrible secrets lurk, and he who must never be spoken of performs dreadful rites from the Book of the Face in order to prevent the global apocalypse of the untrusted site meltdown?
-
Thursday 13th February 2020 14:02 GMT Chris Evans
How long before things would stop working properly?
If this 'signing' has to be done regularly and it doesn't happen for what ever reason what happens?
What if both safes were inaccessible?
The 'override protections' seem to be ways to access the vaults.
I'm surprised there isn't at least a third safe!
With backups, father grandfather son is standard for normal data.
-
Thursday 13th February 2020 18:39 GMT Mike 16
Re: How long before things would stop working properly?
---
I'm surprised there isn't at least a third safe!
---
With the current ICANN, I would not be surprised to hear that there was a third safe, and it was in the undersea lair of some fabulously wealthy Bond Villain.
(I also question the premise that "things" are currently working "properly", with the plain-English definition of the word, but that's another thread.)
-
Thursday 13th February 2020 22:25 GMT Dave 32
Re: How long before things would stop working properly?
Yeah, it ought to be located on the other side of the world, in case some calamity happens to this side. And, it should be hosted by a country which knows how to implement physical security. Hmm, seems like North Korea would be the ideal location for it.
-
-
Friday 14th February 2020 11:32 GMT Anonymous Coward
Re: How long before things would stop working properly?
"I'm surprised there isn't at least a third safe!"
There is. A HSM sits in a secure warehouse somewhere, containing an encrypted copy of the KSK with "Recovery Key Share Holders" around the world possessing smartcards (shards) to decrypt it.
If both key management facilities fall into the ocean, 5-of-7 RKSH smartcards and an encrypted KSK smartcard can reconstitute KSK in a new HSM.
-
-
Thursday 13th February 2020 19:08 GMT Blofeld's Cat
Er ...
“During routine administrative maintenance of our Key Management Facility on 11 February, we identified an equipment malfunction,”
Translation: The Post-It note on the bottom of a desk drawer came off and disappeared into the nozzle of a vacuum cleaner before anyone noticed.
"We understand, however, that following an emergency meeting on Wednesday, the issue should be fixed by Friday, and the ceremony has now been moved to Saturday."
Translation: There are only two dozen more bin bags and the compactor to search.
-
-
Friday 14th February 2020 11:41 GMT Anonymous Coward
Re: DNS != "Internet".
Oh my. The author of that site seems to have far deeper problems than DNS. According to all the thoughty-trainy footnotes, IPv6 is not good, poor people should not have access to the Internet and he beats his "retarded girlfriend" "black and blue" regularly.
I wouldn't trust that man's opinion on anything.
-
-
Thursday 13th February 2020 22:57 GMT tip pc
A site on each us coast, seems like a disaster waiting to happen.
What happens if there is another global catastrophe that stops air travel or destroys both those locations, we are so reliant on dns to make the internet work, dns not working will just compound any disaster and probably cause much More dissent.
Any proper DR would have these systems spread across multiple continents not just 2 sides of 1 continent.
Biting the hand that feeds IT
