Security technology based on good vibes

Shaking atoms will generate random numbers for the encryption to be embedded in Intel's Pentium III. But be careful sending private email to your space-alien friends: The technology won't work in outer space.

Vibrating atoms are the key to an upcoming encryption strategy from Intel that will make it dramatically harder for hackers to crack confidential transactions and messages, the company said yesterday.

As announced this week, Intel will embed a random-number generator into the Pentium III processor that will be far superior to the software-based random-number generators currently in use because it depends upon the reaction of particles inside the processor at a particular point in time, said Pat Gelsinger, corporate vice president of the Desktop Products Group. This could lead to a wider acceptance of encryption, he said.

"Ultimately, this is about building a world of trusted connected computers."

The improvement comes from the nature of how random numbers are plucked by intruders. With software random-number generators, numerical patterns eventually emerge. If the numerical pattern is deciphered, a cryptographer can then determine the "random" number and crack the code. A random number is one of the crucial protections in a communication guarded by public-private key encryption. If someone determines the number, he or she can open the document.

Random numbers from hardware generators, by contrast, are almost purely random. With the Pentium III, for instance, the number will be determined by "thermal noise," or the rate at which different atoms in the processor's circuitry are vibrating at a random point in time, according to Michael Glancy, general manager of the Platform Security Division at Intel.

"Whenever you apply power to a circuit, you get vibration," he said, and the variations are virtually limitless. Heat fluctuates constantly inside a processor, changing the vibration rate. Different materials also vibrate a different rates and parts made from identical materials will still react differently to the same stimuli, producing different numbers.

The generator will determine the number by calculating the difference between the thermal noise given off by at least two sources on the processor, Glancy said.

The only time the generator will not work is if temperatures plummet to absolute zero, the nadir of temperature where no movement exists. "So it is inappropriate for intergalactic space travel," said Gelsinger.

The number generator itself will be located on the Pentium III chipset, the company said. It will become a usable feature in Pentium III PCs later in the year.