IT Security New technology for monitoring nuclear disarmament

Even though the Cold War has long been over, an estimated 14,550 atomic warheads still exist around the world. This number might be lower than it was at the peak of nuclear armament, when there were five times as many nuclear weapons, but on the other hand modern systems have a destructive force that is 1,000 times as high as that of the Hiroshima bomb.

Experts distinguish between high-alert nuclear weapons that are mounted to intercontinental missiles or bombers and can be launched in an instant, and weapons stored in silos or containers. The challenge lies in monitoring the number of the latter. Here, a technology might help, which is currently being developed by researchers at Horst Görtz Institute for IT Security (HGI) in Bochum.

Balance of superpowers

According to estimates by the Federation of American Scientists, the USA and Russia each possessed approx. 1,700 launch-ready long-range nuclear missiles in 2017; however, no details on those weapons are available due to the top-secret nature of this information.

Considering the large number of weapons, it is crucial to keep these two superpowers in balance. In order to ensure power balance and to agree on disarmament treaties, both sides must know if the respective other country adheres to the agreement. “Monitoring nuclear weapon brings with it technological problems that come as a surprise to laymen,” point out the researchers from Bochum. That’s because it is anything but trivial to monitor something that is top secret.

Construction and composition are supposed to remain secret

On the one hand, nuclear weapons are to be inspected, for example because the respective other party wants to know if a nation is secretly rendering warheads launch-ready that are officially kept in storage. On the other hand, it is important to ensure that as little information about nuclear bombs is released as possible. For the purpose of monitoring nuclear weapons, something that nobody is supposed to see has to be counted.

This is where a project comes in that had originally been developed by HGI researcher Dr Dr Ulrich Rührmair and Princeton University and in which Dr Christian Zenger and Prof Dr Christof Paar from HGI as well as Harvard University have been involved, too. The international team has devised a technology capable of monitoring stored nuclear weapons without revealing any secret information about those weapons and without relying on the hardware on location.

An dem Projekt zur Atomwaffenabrüstung arbeiten Christof Paar, Ulrich Rührmair und Christian Zenger (von links) gemeinsam mit der Princeton und Harvard University. © Roberto Schirdewahn

“We are only permitted to monitor the surface of the transport containers in which the weapons are kept: that means we can’t take X-ray images or record a bomb’s radioactive signature, because that would tell us something about its composition and construction,” explains Christian Zenger. “It is also pointless to put up cameras in the silo, as the hardware may be easily compromised and the images manipulated.” Nevertheless, it is necessary to have the capability to determine if anything inside the storage facility has been changed, for example if a warhead was secretly removed.

Two concepts combined

The researchers’ idea is based on so-called Virtual Proofs of Reality, a concept put forward by Rührmair and his colleagues in 2015. The other essential technique is so-called Physical Layer Security, which Christian Zenger has been studying since 2012.

The principle underlying Virtual Proofs of Reality is explained by Ulrich Rührmair: “We gave the question a lot of thought how physical statements between two parties in different locations can be proved via a digital communication channel.” For example: how can a person in Berlin prove to a person in Bochum that the temperature in the capital is 21 degrees centigrade? The concept also applies to far more complicated physical statements than current temperature, e.g. the location of certain objects inside a room. The items in questions can include nuclear weapons in a storage facility.

Radio wave map indicates changes

In order to identify changes in such a storage facility, researchers deploy electromagnetic waves in the radio frequency range. They are transmitted via an antenna and spread through the room. In the process, they are reflected by walls and objects. An antenna captures the returning waves. The IT experts thus compile a radio wave map of the room. Every change – for example if a warhead were to be removed from the storage facility – would change the reflexion pattern and could thus be detected.

This is what it might look like in practice: country A wants to know if the nuclear weapons in country B are stored according to the treaty and are not launch-ready. Both countries must agree to the monitoring system being installed in their storage facilities. Via the Internet, country A could then request the current radio wave map of the storage facility in country B.

Preventing manipulations

The system needs another component to be manipulation-proof. “We must make sure that a country cannot generate a radio wave map of a fully stocked nuclear silo in advance and then continues to send it to country A, even after the weapons had long been removed,” elaborates Ulrich Rührmair. To this end, the researchers have integrated a so-called challenge into the system.

Mit dem Verfahren lässt sich prinzipiell jeder beliebige Raum überwachen, zum Beispiel auch ein Tresor oder Geldautomat. © Roberto Schirdewahn

In addition to radio wave transmitters and receivers, 20 rotating mirrors are installed in the facility that is to be monitored, which can be remotely adjusted. The mirrors reflect the radio waves, thus changing the reflexion pattern in the room, with each mirror setting creating an individual pattern.

Security through mirrors

Prior to requesting the radio wave map, country A would align the mirrors in a specific position. In reply, country B would have to send the radio wave map of the room with the exact same mirror arrangement to country A. In order to generate the correct radio wave pattern, country B has to scan the room with the updated mirror setting – any saved radio wave maps would no longer apply.

Country A can verify the reply only if the reflexion patterns for a number of different mirror settings were measured and saved when the technology was first implemented. From this pool of mirror settings, country A could then specify one arrangement in each request. If country B sends the correct reflexion pattern back, country A knows that the room has been scanned according to the latest specifications, and is able to verify if any changes have been made.

Mirror arrangement mustn’t be predictable

With 20 mirrors, researchers are currently able to generate 2¹⁰⁰ different reflexion rooms; this means, billions of sextillions different combinations of mirror arrangements are possible in this setting. The challenge here is to make sure that the monitored country doesn’t learn to predict the next mirror setting over time. “It is after all conceivable that, after receiving a billion different mirror settings as a challenge, they will identify an algorithm for predicting the next mirror setting,” says Christof Paar. Were this the case, the country could generate the required radio wave map without scanning the room anew – and manipulating the nuclear silo in the meantime.

In order to prevent this scenario, the IT experts from Bochum deploy an unpredictable cryptographic protocol to align the mirrors. “The important thing is to ensure that the correlation between the challenge and the reply cannot be described by a system of linear equation,” says Zenger. “This is because such systems are relatively easy to figure out in mathematical terms.” The same applies to the physics, i.e. the mirror materials: their reflexion properties shouldn’t be linear either.

Security tests in the container

The researchers have set up a container with dummy warheads and mirrors on the RUB campus, testing the Physical Layer Security protocol under simulated real life conditions. They analyse the behaviour of reflexion patterns following changes in the room, for example when dummy warheads are displaced or removed. Moreover, they adapt the algorithms to the size of the room.

The RUB team had conducted initial tests in a tiny system: namely a lunchbox. Thus, they demonstrated the precision of their measurement technology: if they moved an item inside the box by 0.4 micrometres, the movement was flagged by the system.

In this context, it is necessary to prevent false alarm.

—
Christof Paar

It is perhaps not necessary for the method to be quite so precise in operation. “The reason is simple,” says Paar. “In this context, it is necessary to prevent false alarm.” Consequently, the system must be quite robust. The researchers have to take inaccuracies of measurement into account, up to a point, because the mirror setting cannot be controlled with absolute precision. The Bochum-based team is currently fine-tuning these details.

Other applications might benefit from the technology

The method that one day might be used for supervising nuclear disarmament can theoretically be deployed to monitor any kind of room, including a safe or cashpoint. Established in 2015 as an HGI spin-off, the start-up company Physec adapts the technology for use in other applications and is deeply involved in the project conducted in collaboration with Alexander Glaser and Sebastien Philippe from Princeton and Boaz Barak from Harvard University.