|
í Shortcut: WP:CU Marking articles for cleanup This page is undergoing a transition to an easier-to-maintain format. ...
This Manual of Style has the simple purpose of making things easy to read by following a consistent format — it is a style guide. ...
Look up tempest in Wiktionary, the free dictionary. ...
Definition TEMPEST is a codename referring to investigations and studies of compromising emanations (CE). Compromising emanations are defined as unintentionial intelligence-bearing signals which, if intercepted and analyzed, disclose the national security information transmitted, received, handled or otherwise processed by any information-processing equipment. A code name or cryptonym is a word or name used clandestinely to refer to another name or word. ...
Compromising emanations consist of electrical or acoustical energy unintentionally emitted by any of a great number of sources within equipment/systems which process national security information. This energy may relate to the original message, or information being processed, in such a way that it can lead to recovery of the plaintext. Laboratory and field tests have established that such CE can be propagated through space and along nearby conductors. The interception/propagation ranges and analysis of such emanations are affected by a variety of factors, e.g., the functional design of the information processing equipment; system/equipment installation; and, environmental conditions related to physical security and ambient noise. The term "compromising emanations" rather than "radiation" is used because the compromising signals can, and do, exist in several forms such as magnetic and/or electric field radiation, line conduction, or acoustic emissions.[1]
The term TEMPEST is often used broadly for the entire field of Emission Security or Emanations Security (EMSEC). The term has been variously reported as standing for "Transient ElectroMagnetic Pulse Emanation STandard"[2] and "Telecommunications Electronics Material Protected from Emanating Spurious Transmissions."[3]
TEMPEST Documentation Basic TEMPEST information has not been classified since 1995. Although short excerpts from the main U.S. TEMPEST test standard, NSTISSAM TEMPEST/1-92, are now publicly available, all of the actual emanation limits and test procedures defined in it remain classified and have been redacted from the published version. The NATO equivalent, which is comprised of the test standards AMSG 720, AMSG 788, and AMSG 784, are still classified. A redacted version of the introductory TEMPEST handbook NACSIM 5000 was publicly released in December 2000. An example of a U.S. classified document; page 13 of a U.S. National Security Agency report [1] on the USS Liberty incident, partially declassified and released to the public in July 2003. ...
Motto: (Out Of Many, One) (traditional) In God We Trust (1956 to date) Anthem: The Star-Spangled Banner Capital Washington D.C. Largest city New York City None at federal level (English de facto) Government Federal constitutional republic - President George Walker Bush (R) - Vice President Dick Cheney (R) Independence from...
Redaction generally refers to the editing of text to turn it into a form suitable for publication, or to the result of such an effort. ...
NATO 2002 Summit in Prague The North Atlantic Treaty Organisation[1] (NATO), also called the North Atlantic Alliance, the Atlantic Alliance or the Western Alliance, is an international organisation for collective security established in 1949, in support of the North Atlantic Treaty signed in Washington, DC, on 4 April 1949. ...
Redaction generally refers to the editing of text to turn it into a form suitable for publication, or to the result of such an effort. ...
TEMPEST Certification The NSA publishes lists of labs approved for TEMPEST testing and equipment that has been certified. The United States Army has a TEMPEST testing facility, as part of the U.S. Army Information Systems Engineering Command, at Fort Huachuca, Arizona. Similar lists and facilities exist in other NATO countries. NSA can stand for: National Security Agency of the USA The British Librarys National Sound Archive This page concerning a three-letter acronym or abbreviation is a disambiguation page — a navigational aid which lists other pages that might otherwise share the same title. ...
It has been suggested that United States Army values be merged into this article or section. ...
USAF security troops on a training exercise on Fort Huachuca. ...
It has been suggested that Arizona Governors Mansion be merged into this article or section. ...
TEMPEST certification must apply to entire systems, not just to individual components, since connecting a single unshielded component (such as a cable) to an otherwise secure system could easily make it radiate dramatically more RF signal. This means that users who must specify TEMPEST certification could pay much higher prices, for obsolete hardware, and be severely limited in the flexibility of configuration choices available to them. A less-costly approach is to place the equipment in a fully shielded room. Entrance to a Faraday room A Faraday cage or Faraday shield is an enclosure formed by conducting material, or by a mesh of such material. ...
NONSTOP and HIJACK Two related areas of emissions security, code named NONSTOP and HIJACK, remain classified. NONSTOP is thought to involve potential compromising emissions from electronic systems when they are inadvertently irradiated by other radio signals, including ordinary cell phones. HIJACK may refer to active attacks of this nature. Motorola T2288 mobile phone A mobile phone is a portable electronic device which behaves as a normal telephone whilst being able to move over a wide area (compare cordless phone which acts as a telephone only within a limited range). ...
RED/BLACK Isolation TEMPEST standards require "RED/BLACK separation", i.e. maintaining distance or installing shielding between circuits and equipment used to handle classified or sensitive information (red) and normal unsecured circuits and equipment (black), the latter including those carrying encrypted signals. Manufacture of TEMPEST-approved equipment must be done under careful quality control to ensure that additional units are built exactly the same as the units that were tested. Changing even a single wire can invalidate the tests. The RED/BLACK concept refers to the careful segregation in cryptographic systems of signals that contain sensitive or classified plaintext information (RED signals) from those that carry encrypted information, or ciphertext (BLACK signals). ...
Correlated Emanations One aspect of TEMPEST testing that distinguishes it from limits on spurious emissions (e.g. FCC Part 15) is a requirement of absolute minimal correlation between radiated energy or detectable emissions and any plain text data that are being processed. It would stand to reason that this requirement holds in some form for other types of data as well. A spurious emission is any radio frequency not deliberately created or transmitted, especially in a device which normally does create other frequencies. ...
In the U.S., Part 15 is an often-quoted section of Federal Communications Commission (FCC) rules and regulations, regarding unlicensed transmissions. ...
Public research In 1985, Wim van Eck published the first unclassified technical analysis of the security risks of emanations from computer monitors. This paper caused some consternation in the security community, which had previously believed that such monitoring was a highly sophisticated attack available only to governments; van Eck successfully eavesdropped on a real system, at a range of hundreds of metres, using just $15 worth of equipment plus a television set. In consequence of this research such emanations are sometimes called "van Eck radiation", and the eavesdropping technique Van Eck phreaking, although it is realized that an unknown government researcher had discovered it long before. This technique is used as a plot point in Neal Stephenson's novel Cryptonomicon and in the Numb3rs Season 1 episode, 'Sacrifice'. 1985 (MCMLXXXV) was a common year starting on Tuesday of the Gregorian calendar. ...
The metre, or meter (U.S.), is a measure of length. ...
Van Eck phreaking is the process of eavesdropping on the contents of a CRT or LCD display using the electromagnetic emissions from it. ...
Neal Town Stephenson (born October 31, 1959) is an American writer, known primarily for his science fiction works in the postcyberpunk genre with a penchant for explorations of society, mathematics, currency, and the history of science. ...
Cryptonomicon is a 1999 novel by Neal Stephenson that concurrently follows the exploits of World War II-era cryptographers affiliated with Bletchley Park in their attempts to crack Axis codes and fight the Nazi submarine fleet, alongside the story of their descendants, who are attempting to use modern cryptography to...
NUMB3RS (Numbers) is an American television show that follows FBI Special Agent Don Eppes (Rob Morrow) and his mathematical genius brother, Charlie Eppes (David Krumholtz), who develops formulae to predict the actions of various criminals. ...
Markus Kuhn discovered several low-cost software techniques for reducing the chances that emanations from computer displays can be monitored remotely. With CRT displays and analogue video cables, filtering out high-frequency components from fonts before rendering them on a computer screen will attenuate the energy at which text characters are broadcast. With modern flat-panel displays, the high-speed digital serial interface (DVI) cables from the graphics controller are a main source of compromising emanations. Adding random noise to the less significant bits of pixel values may render the emanations from flat-panel displays unintelligible to eavesdroppers but is no secure method. Since DVI uses a certain bit code scheme for trying to transport an evenly balanced signal of 0 and 1 bits there may not be much difference between two pixel colours that differ very much in their colour or intensity. It may also be that the generated emanations may differ totally even if only the last bit of a pixel's colour is changed. The signal received by the eavesdropper does also depend on the frequency where he detects the emanations. The signal can be received on many frequencies at once and each frequency's signal differs in contrast and brightness related to a certain colour on the screen. One should not rely on adding noise but make use of so called tempestation of the equipment. There are few companies where such equipment may be bought or standard equipment be modified to confirm standards like NATO's AMSG 720B, 788 or 784. Dr. Markus G. Kuhn (born 1971 in Munich) is a German computer scientist, currently teaching and researching at the University of Cambridge Computer Laboratory. ...
Cathode ray tube employing electromagnetic focus and deflection Cutaway rendering of a color CRT Electron guns Electron beams Focusing coils Deflection coils Anode connection Mask for separating beams for red, green, and blue part of displayed image Phosphor layer with red, green, and blue zones Close-up of the phosphor...
This article or section does not cite its references or sources. ...
The Digital Visual Interface (DVI) is a video interface standard designed to maximize the visual quality of digital display devices such as flat panel LCD computer displays and digital projectors. ...
See also Computer surveillance is the act of surveiling peoples computer activity without their knowledge, by accessing the computer itself. ...
Many current computer systems have limited security precautions in place. ...
Antenna 4 (through the wire) in former Echelon intelligence gathering station at Silvermine, Cape Peninsula, South Africa. ...
Entrance to a Faraday room A Faraday cage or Faraday shield is an enclosure formed by conducting material, or by a mesh of such material. ...
In cryptography, a side channel attack is any attack based on information gained from the physical implementation of a cryptosystem, rather than theoretical weaknesses in the algorithms (compare cryptanalysis). ...
Notes - ^ Public version of NACSIM 5000 http://cryptome.org/nacsim-5000.htm
- ^ Computers and Security, vol. 7, number 4
- ^ See "TEMPEST 101" and "TEMPEST and QinetiQ" under External Links.
External links - Tempest -- TEMPEST - EMSEC Prevention of electronic eavesdropping, design engineering,, manufacturing, HERF,
EMP and EMI-EMC Testing services, Shielding effectiveness testing. |
Feeds |
Contact