KW-37

From Wikipedia, the free encyclopedia

The KW-37, code named JASON, was an encryption system developed In the 1950s by the U.S. National Security Agency to protect fleet broadcasts of the U.S. Navy. Naval doctrine calls for warships at sea to maintain radio silence to the maximum extent possible to prevent ships from being located by potential adversaries using radio direction finding. To allow ships to receive messages and orders, the Navy broadcast a continuous stream of information, originally in Morse code and later using radio teletype. Messages were included in this stream as needed and could be for individual ships, battle groups or the fleet as a whole. Each ship's radio room would monitor the broadcast and decode and forward those messages directed at her to the appropriate officer.

The KW-37 was designed to automate this process. It consisted of two major components, the KWR-37 receive unit and the KWT-37 transmit unit. Each ship had a complement of KWR-37 receivers (usually at least two) that decoded the fleet broadcast and fed the output to teletype machines. KWT-37's were typically located at shore facilities, where high power transmitters were located.

The KWR-37 weighed 100 pounds (45 kg) and contained some 500 subminiature vacuum tubes, whose leads were soldered to printed circuit boards. Each flip-flop in the KW-37 required three tubes, placing an upper bound on the total number of stages in any shift registers used at 166. Squeezing so much logic in such a small and rugged package was quite a feat in the 1950s. With integrated circuit technology circa 2004, that much logic could fit on the period at the end of this sentence.

Each KWT-37 filled an entire relay rack with five stacked modules. A precision time reference occupied the bottom, three key generators occupied the middle and an alarm panel occupied the top position. The outputs of the three key generators were combined in a voting circuit. If one of the units' output did not match the other two, an alarm was sounded and the output from the two units that did agree continued to be used.

Each KWR-37 and each key generator in the KWT-37 had a common fill device (CFD) for loading keys (or as NSA calls them cryptovariables). The CFDs were similar to that first used in the KW-26, accepting punch cards in Remington Rand format. The key was changed every day at 0000 hours GMT. The receivers were synchronized to the transmitter at that time. If a receiver ever got out of sync, say due to a power failure, an operator had to set the current hour and minute on dials on the front panel. The KWR-37 would then "fast forward" through its key stream sequence until synchronization was re-established.

Large numbers of fleet broadcast key cards had to be produced and distributed to every Navy ship and many shore installations on a monthly basis, so many people had access to them. While the key cards were strictly accounted for, they were easy to copy. This proved to be a fatal weakness.

KWR-37s fell into North Korean hands when the USS Pueblo was captured in 1968. New keying material was issued to ships throughout the world to limit the ongoing damage. In 1985 it was revealed that the Walker spy ring had been selling key lists and cards to the Soviet Union for decades. KW-37 systems were taken out of service by the early 1990s.

[edit] Sources

Cipher machines
v  d  e
Rotor machines: CCM | Enigma | Fialka | Hebern | HX-63 | KL-7 | Lacida | M-325 | Mercury | NEMA | OMI | Portex | SIGABA | SIGCUM | Singlet | Typex
Mechanical: Bazeries cylinder | C-36 | C-52 | CD-57 | Cipher disk | HC-9 | Kryha | Jefferson disk | M-94 | M-209 | Reihenschieber | Scytale
Teleprinter: 5-UCO | BID 770 | KW-26 | KW-37 | Lorenz SZ 40/42 | Siemens and Halske T52
Secure voice: KY-3 | KY-57 | KY-58 | KY-68 | OMNI | SIGSALY | STE | STU-II | STU-III | VINSON | SCIP | Sectéra Secure Module
Miscellaneous: Cryptex | JADE | KG-84 | KL-43 | Noreen | PURPLE | Pinwheel | Rockex
Cryptography
v  d  e
History of cryptography | Cryptanalysis | Cryptography portal | Topics in cryptography
Symmetric-key algorithm | Block cipher | Stream cipher | Public-key cryptography | Cryptographic hash function | Message authentication code | Random numbers