Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 


Forgot your password?
Close
typodupeerror
×
Security

NSA Patents a Way To Spot Network Snoops 161

Posted by CmdrTaco from the welcome-to-the-holidays dept.
narramissic writes "The National Security Agency has patented a technique for figuring out whether someone is messing with your network by measuring the amount of time it takes to send different types of data and sounding an alert if something takes too long. 'The neat thing about this particular patent is that they look at the differences between the network layers,' said Tadayoshi Kohno, an assistant professor of computer science at the University of Washington. But IOActive security researcher Dan Kaminsky wasn't so impressed: 'Think of it as — if your network gets a little slower, maybe a bad guy has physically inserted a device that is intercepting and retransmitting packets. Sure, that's possible. Or perhaps you're routing through a slower path for one of a billion reasons.'"
This discussion has been archived. No new comments can be posted.

NSA Patents a Way To Spot Network Snoops More

NSA Patents a Way To Spot Network Snoops

Comments Filter:

  • NSA patenting it because... (Score:4, Insightful)

    by ATestR ( 1060586 ) on Monday December 22, 2008 @01:18PM (#26202403) Homepage

    They don't want any of US to have access to such technology when THEY slap the monitoring devices on our network.

  • Gov't patents (Score:4, Insightful)

    by Rinisari ( 521266 ) * on Monday December 22, 2008 @01:22PM (#26202467) Homepage Journal

    This is another example of the broken patent system. No government should be able to patent something--that technology was funded by the taxpayer and should thus be owned by the taxpayer, meaning that it is public and thus not patentable.

  • Re:Huh? (Score:3, Insightful)

    by internerdj ( 1319281 ) on Monday December 22, 2008 @01:25PM (#26202511)
    Because they are going to drop all their other methods of intrusion detection for this? It seems like a reasonable cue for a warning for something that is difficult to pinpoint. Especially if that warning were to kick off an automated task that kicked off a more intensive search/monitoring process.

  • Re:Averages (Score:2, Insightful)

    by Dusty00 ( 1106595 ) on Monday December 22, 2008 @01:27PM (#26202525)
    Also newsworthy as the NSA is an organization with theoretically no commercial interest. So they're filing for a patent for what reason?

  • Re:NSA patenting it because... (Score:5, Insightful)

    by SatanicPuppy ( 611928 ) * <SatanicpuppyNO@SPAMgmail.com> on Monday December 22, 2008 @01:28PM (#26202547) Journal

    I was thinking the same thing...But in this world, it's more likely that they patented it so that some stupid patent troll won't get the opportunity to sue the gov't.

  • Re:Averages (Score:1, Insightful)

    by Anonymous Coward on Monday December 22, 2008 @01:33PM (#26202611)

    To have the work out there for the general public to read. Remember besides patents having protections for their inventor it also provides that the inventor publish their invention or breakthrough in public view. I suggest this is the easiest way to have this work in the public domain so to speak.

  • Re:Averages (Score:3, Insightful)

    by SatanicPuppy ( 611928 ) * <SatanicpuppyNO@SPAMgmail.com> on Monday December 22, 2008 @01:34PM (#26202637) Journal

    So, if you slip your monitoring gear in on day 1, the only way it would be detectable is if you took it off, and the packets started going faster.

  • Re:Gov't patents (Score:4, Insightful)

    by JCSoRocks ( 1142053 ) on Monday December 22, 2008 @01:45PM (#26202791)
    I was actually confused by that when I first saw the headline. I didn't even know that the government could patent something. It's just so completely broken and silly that I never even considered it.

  • Comparing types (Score:2, Insightful)

    by Anonymous Coward on Monday December 22, 2008 @01:46PM (#26202819)

    It is not just measuring speed of network it is apparently measure differences in speeds of different network layers, or types of network traffic. Network congestion affects generally all types of packets the same. Snooping presumably may take longer to identify certain types of packets.
    Oh and a passive tap will only work with certain protocols, it can't work (or not easily) with Gigabit ethernet for example.

  • Comment removed (Score:5, Insightful)

    by account_deleted ( 4530225 ) on Monday December 22, 2008 @02:09PM (#26203143)
    Comment removed based on user account deletion

  • NSA secrets unveiled! (Score:3, Insightful)

    by PolygamousRanchKid ( 1290638 ) on Monday December 22, 2008 @02:10PM (#26203157)

    How come I have the sneaky feeling, that if the NSA discovered anything really spectacular ... I wouldn't be reading about it on Slashdot?

    "Cracking WPA2? No problem but it is patented by the NSA and documented by the USPTO" ... so you can read about it, but you have to license it from the NSA, if you want to use it.

    That business model ought to work.

  • Re:Gov't patents (Score:2, Insightful)

    by astrodoom ( 1396409 ) on Monday December 22, 2008 @02:15PM (#26203211)
    Once you pay the government, it stops becoming your money. You don't in any way own the road I drive on just because you pay your taxes. You may get some privileges to use it, but really, not even that. I mean, when they close the road I've never successfully gotten out of my car, showed them a 1099 tax form and forced them to let me drive on MY road...

  • Re:Averages (Score:1, Insightful)

    by Anonymous Coward on Monday December 22, 2008 @02:16PM (#26203227)

    However, if you do enough sampling over a period of time, you can make averages and see if some types/destinations of packets are possibly being messed with.

    And at that point it is much too late and your data is already compromised. I mean, how much sampling would you need to be sure that the cause of the delay is snooping versus some clod bringing a hub into work.

  • Re:NSA patenting it because... (Score:4, Insightful)

    by gnick ( 1211984 ) on Monday December 22, 2008 @03:23PM (#26204005) Homepage

    Two people/companies eventually coming to a solution that is sufficiently similar to violate patents is a long way from "obvious to someone who works in the field". And, assuming that the two people who identified the solution are the leaders in their field (because they reached the idea before the other 6.7 billion of us), they could be described as having "extraordinary skill in the art".

    There are a number of patents for designs that multiple developers reached independently and were awarded to the person who managed to file first (Edison seemed to have extraordinary luck in beating his competitors to the patent office). That doesn't necessarily make the solution obvious, just non-unique.

  • I'm going to patent a snooping device... (Score:3, Insightful)

    by Geraden ( 15689 ) on Monday December 22, 2008 @04:15PM (#26204541) Homepage
    that randomly adds delay to each packet before rebroadcasting it...making it impossible to get a good bearing on the latency in the network once it's installed.

Slashdot Top Deals

Top Ten Things Overheard At The ANSI C Draft Committee Meetings: (5) All right, who's the wiseguy who stuck this trigraph stuff in here?

Close