Two working decipher keys giving various, valid results for one ciphered message - is it possible?

Multi tool use
Multi tool use

The name of the pictureThe name of the pictureThe name of the pictureClash Royale CLAN TAG#URR8PPP











up vote
2
down vote

favorite












Let's assume following scenario:



There's a ciphered message. Two decipher keys (let's name them A and B) are known.



Message deciphered with key A gives valid result - normal text but with no secret information. Let it be a poem or other meaningless content.



The same message deciphered with key B gives the right output, the real secret message revealed.



Please tell me, is it possible (or well-known and existing method/algorithm), or just a work of fiction? I've read about it in some novel a long time ago and tried to figure it out on my own, but with no result. But I'm rather ignorant in terms of cryptography so I might just miss something obvious.



Thank you in advance for any help - just a simple name of ciphering method or link to Wikipedia or something will be enough. I don't even dare to ask for the full and detailed explanation.






encryption keys







share|improve this question























  • The one of the simpler examples is one-time pad. Assume you have two texts, $X$ and $Y$. First pick a random key $A$ and compute ciphertext $C = X oplus A$. Then derive key $B$ as $B = C oplus Y$. So, $C oplus B = Y$ and $C oplus A = X$.
    – Carl Löndahl
    Sep 10 at 9:22















up vote
2
down vote

favorite












Let's assume following scenario:



There's a ciphered message. Two decipher keys (let's name them A and B) are known.



Message deciphered with key A gives valid result - normal text but with no secret information. Let it be a poem or other meaningless content.



The same message deciphered with key B gives the right output, the real secret message revealed.



Please tell me, is it possible (or well-known and existing method/algorithm), or just a work of fiction? I've read about it in some novel a long time ago and tried to figure it out on my own, but with no result. But I'm rather ignorant in terms of cryptography so I might just miss something obvious.



Thank you in advance for any help - just a simple name of ciphering method or link to Wikipedia or something will be enough. I don't even dare to ask for the full and detailed explanation.






encryption keys







share|improve this question























  • The one of the simpler examples is one-time pad. Assume you have two texts, $X$ and $Y$. First pick a random key $A$ and compute ciphertext $C = X oplus A$. Then derive key $B$ as $B = C oplus Y$. So, $C oplus B = Y$ and $C oplus A = X$.
    – Carl Löndahl
    Sep 10 at 9:22













up vote
2
down vote

favorite









up vote
2
down vote

favorite











Let's assume following scenario:



There's a ciphered message. Two decipher keys (let's name them A and B) are known.



Message deciphered with key A gives valid result - normal text but with no secret information. Let it be a poem or other meaningless content.



The same message deciphered with key B gives the right output, the real secret message revealed.



Please tell me, is it possible (or well-known and existing method/algorithm), or just a work of fiction? I've read about it in some novel a long time ago and tried to figure it out on my own, but with no result. But I'm rather ignorant in terms of cryptography so I might just miss something obvious.



Thank you in advance for any help - just a simple name of ciphering method or link to Wikipedia or something will be enough. I don't even dare to ask for the full and detailed explanation.






encryption keys







share|improve this question















Let's assume following scenario:



There's a ciphered message. Two decipher keys (let's name them A and B) are known.



Message deciphered with key A gives valid result - normal text but with no secret information. Let it be a poem or other meaningless content.



The same message deciphered with key B gives the right output, the real secret message revealed.



Please tell me, is it possible (or well-known and existing method/algorithm), or just a work of fiction? I've read about it in some novel a long time ago and tried to figure it out on my own, but with no result. But I'm rather ignorant in terms of cryptography so I might just miss something obvious.



Thank you in advance for any help - just a simple name of ciphering method or link to Wikipedia or something will be enough. I don't even dare to ask for the full and detailed explanation.






encryption keys




encryption keys






share|improve this question















share|improve this question













share|improve this question




share|improve this question








edited Sep 11 at 12:25









R1w

539221




539221










asked Sep 10 at 6:37









Bario Malotelli

92




92











  • The one of the simpler examples is one-time pad. Assume you have two texts, $X$ and $Y$. First pick a random key $A$ and compute ciphertext $C = X oplus A$. Then derive key $B$ as $B = C oplus Y$. So, $C oplus B = Y$ and $C oplus A = X$.
    – Carl Löndahl
    Sep 10 at 9:22

















  • The one of the simpler examples is one-time pad. Assume you have two texts, $X$ and $Y$. First pick a random key $A$ and compute ciphertext $C = X oplus A$. Then derive key $B$ as $B = C oplus Y$. So, $C oplus B = Y$ and $C oplus A = X$.
    – Carl Löndahl
    Sep 10 at 9:22
















The one of the simpler examples is one-time pad. Assume you have two texts, $X$ and $Y$. First pick a random key $A$ and compute ciphertext $C = X oplus A$. Then derive key $B$ as $B = C oplus Y$. So, $C oplus B = Y$ and $C oplus A = X$.
– Carl Löndahl
Sep 10 at 9:22





The one of the simpler examples is one-time pad. Assume you have two texts, $X$ and $Y$. First pick a random key $A$ and compute ciphertext $C = X oplus A$. Then derive key $B$ as $B = C oplus Y$. So, $C oplus B = Y$ and $C oplus A = X$.
– Carl Löndahl
Sep 10 at 9:22











2 Answers
2






active

oldest

votes

















up vote
2
down vote













This property can be achieved with a One-time pad.




"In fact, it is possible to "decrypt" out of the ciphertext any message whatsoever with the same number of characters, simply by using a different key, and there is no information in the ciphertext that will allow Eve to choose among the various possible readings of the ciphertext."




This is nicely shown in this example from Wikipedia (section "Attempt at cryptanalysis").






share|improve this answer



























    up vote
    -1
    down vote













    Thank you guys very much for your help and explanations.



    I've started to Google for more info about one-time pad technique and found another suitable solution called Denial Encryption. Well, two of the most interesting content is available here, at crypto.stackexchange.com.... unfortunately I didn't find them before - maybe I didn't specify the proper search query - please don't blame me :)



    Here they are, in case somebody looks for similar problem in future:



    Deniable Encryption (*term corrected according to comment by Gordon Davisson)



    Something similar, that could be helpful too



    Thank you again and have a nice day.



    P.S. I'm fully satisfied with answers received, so this topic could be freely closed/archived - I don't know how to do it on my own.






    share|improve this answer






















    • Correction: it's "deniable encryption". Web searches will work better with the correct spelling :-) And there's a tag for it here on crypto.se: deniable-encryption.
      – Gordon Davisson
      Sep 10 at 11:15











    • Yes, you're right - my fault. Thanks for letting me know, I've corrected the error.
      – Bario Malotelli
      Sep 10 at 11:59










    • Link-only answers are discouraged, as links go dead all the time. Please make the answer self-contained by quoting the relevant parts of the linked resources.
      – fkraiem
      Sep 10 at 12:20










    Your Answer




    StackExchange.ifUsing("editor", function ()
    return StackExchange.using("mathjaxEditing", function ()
    StackExchange.MarkdownEditor.creationCallbacks.add(function (editor, postfix)
    StackExchange.mathjaxEditing.prepareWmdForMathJax(editor, postfix, [["$", "$"], ["\\(","\\)"]]);
    );
    );
    , "mathjax-editing");

    StackExchange.ready(function()
    var channelOptions =
    tags: "".split(" "),
    id: "281"
    ;
    initTagRenderer("".split(" "), "".split(" "), channelOptions);

    StackExchange.using("externalEditor", function()
    // Have to fire editor after snippets, if snippets enabled
    if (StackExchange.settings.snippets.snippetsEnabled)
    StackExchange.using("snippets", function()
    createEditor();
    );

    else
    createEditor();

    );

    function createEditor()
    StackExchange.prepareEditor(
    heartbeatType: 'answer',
    convertImagesToLinks: false,
    noModals: false,
    showLowRepImageUploadWarning: true,
    reputationToPostImages: null,
    bindNavPrevention: true,
    postfix: "",
    noCode: true, onDemand: true,
    discardSelector: ".discard-answer"
    ,immediatelyShowMarkdownHelp:true
    );



    );













     

    draft saved


    draft discarded


















    StackExchange.ready(
    function ()
    StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fcrypto.stackexchange.com%2fquestions%2f62222%2ftwo-working-decipher-keys-giving-various-valid-results-for-one-ciphered-message%23new-answer', 'question_page');

    );

    Post as a guest

















    2 Answers
    2






    active

    oldest

    votes








    2 Answers
    2






    active

    oldest

    votes









    active

    oldest

    votes






    active

    oldest

    votes








    up vote
    2
    down vote













    This property can be achieved with a One-time pad.




    "In fact, it is possible to "decrypt" out of the ciphertext any message whatsoever with the same number of characters, simply by using a different key, and there is no information in the ciphertext that will allow Eve to choose among the various possible readings of the ciphertext."




    This is nicely shown in this example from Wikipedia (section "Attempt at cryptanalysis").






    share|improve this answer
























      up vote
      2
      down vote













      This property can be achieved with a One-time pad.




      "In fact, it is possible to "decrypt" out of the ciphertext any message whatsoever with the same number of characters, simply by using a different key, and there is no information in the ciphertext that will allow Eve to choose among the various possible readings of the ciphertext."




      This is nicely shown in this example from Wikipedia (section "Attempt at cryptanalysis").






      share|improve this answer






















        up vote
        2
        down vote










        up vote
        2
        down vote









        This property can be achieved with a One-time pad.




        "In fact, it is possible to "decrypt" out of the ciphertext any message whatsoever with the same number of characters, simply by using a different key, and there is no information in the ciphertext that will allow Eve to choose among the various possible readings of the ciphertext."




        This is nicely shown in this example from Wikipedia (section "Attempt at cryptanalysis").






        share|improve this answer












        This property can be achieved with a One-time pad.




        "In fact, it is possible to "decrypt" out of the ciphertext any message whatsoever with the same number of characters, simply by using a different key, and there is no information in the ciphertext that will allow Eve to choose among the various possible readings of the ciphertext."




        This is nicely shown in this example from Wikipedia (section "Attempt at cryptanalysis").







        share|improve this answer












        share|improve this answer



        share|improve this answer










        answered Sep 10 at 9:49









        Aleksander Rassasse

        779216




        779216




















            up vote
            -1
            down vote













            Thank you guys very much for your help and explanations.



            I've started to Google for more info about one-time pad technique and found another suitable solution called Denial Encryption. Well, two of the most interesting content is available here, at crypto.stackexchange.com.... unfortunately I didn't find them before - maybe I didn't specify the proper search query - please don't blame me :)



            Here they are, in case somebody looks for similar problem in future:



            Deniable Encryption (*term corrected according to comment by Gordon Davisson)



            Something similar, that could be helpful too



            Thank you again and have a nice day.



            P.S. I'm fully satisfied with answers received, so this topic could be freely closed/archived - I don't know how to do it on my own.






            share|improve this answer






















            • Correction: it's "deniable encryption". Web searches will work better with the correct spelling :-) And there's a tag for it here on crypto.se: deniable-encryption.
              – Gordon Davisson
              Sep 10 at 11:15











            • Yes, you're right - my fault. Thanks for letting me know, I've corrected the error.
              – Bario Malotelli
              Sep 10 at 11:59










            • Link-only answers are discouraged, as links go dead all the time. Please make the answer self-contained by quoting the relevant parts of the linked resources.
              – fkraiem
              Sep 10 at 12:20














            up vote
            -1
            down vote













            Thank you guys very much for your help and explanations.



            I've started to Google for more info about one-time pad technique and found another suitable solution called Denial Encryption. Well, two of the most interesting content is available here, at crypto.stackexchange.com.... unfortunately I didn't find them before - maybe I didn't specify the proper search query - please don't blame me :)



            Here they are, in case somebody looks for similar problem in future:



            Deniable Encryption (*term corrected according to comment by Gordon Davisson)



            Something similar, that could be helpful too



            Thank you again and have a nice day.



            P.S. I'm fully satisfied with answers received, so this topic could be freely closed/archived - I don't know how to do it on my own.






            share|improve this answer






















            • Correction: it's "deniable encryption". Web searches will work better with the correct spelling :-) And there's a tag for it here on crypto.se: deniable-encryption.
              – Gordon Davisson
              Sep 10 at 11:15











            • Yes, you're right - my fault. Thanks for letting me know, I've corrected the error.
              – Bario Malotelli
              Sep 10 at 11:59










            • Link-only answers are discouraged, as links go dead all the time. Please make the answer self-contained by quoting the relevant parts of the linked resources.
              – fkraiem
              Sep 10 at 12:20












            up vote
            -1
            down vote










            up vote
            -1
            down vote









            Thank you guys very much for your help and explanations.



            I've started to Google for more info about one-time pad technique and found another suitable solution called Denial Encryption. Well, two of the most interesting content is available here, at crypto.stackexchange.com.... unfortunately I didn't find them before - maybe I didn't specify the proper search query - please don't blame me :)



            Here they are, in case somebody looks for similar problem in future:



            Deniable Encryption (*term corrected according to comment by Gordon Davisson)



            Something similar, that could be helpful too



            Thank you again and have a nice day.



            P.S. I'm fully satisfied with answers received, so this topic could be freely closed/archived - I don't know how to do it on my own.






            share|improve this answer














            Thank you guys very much for your help and explanations.



            I've started to Google for more info about one-time pad technique and found another suitable solution called Denial Encryption. Well, two of the most interesting content is available here, at crypto.stackexchange.com.... unfortunately I didn't find them before - maybe I didn't specify the proper search query - please don't blame me :)



            Here they are, in case somebody looks for similar problem in future:



            Deniable Encryption (*term corrected according to comment by Gordon Davisson)



            Something similar, that could be helpful too



            Thank you again and have a nice day.



            P.S. I'm fully satisfied with answers received, so this topic could be freely closed/archived - I don't know how to do it on my own.







            share|improve this answer














            share|improve this answer



            share|improve this answer








            edited Sep 10 at 11:58

























            answered Sep 10 at 10:06









            Bario Malotelli

            92




            92











            • Correction: it's "deniable encryption". Web searches will work better with the correct spelling :-) And there's a tag for it here on crypto.se: deniable-encryption.
              – Gordon Davisson
              Sep 10 at 11:15











            • Yes, you're right - my fault. Thanks for letting me know, I've corrected the error.
              – Bario Malotelli
              Sep 10 at 11:59










            • Link-only answers are discouraged, as links go dead all the time. Please make the answer self-contained by quoting the relevant parts of the linked resources.
              – fkraiem
              Sep 10 at 12:20
















            • Correction: it's "deniable encryption". Web searches will work better with the correct spelling :-) And there's a tag for it here on crypto.se: deniable-encryption.
              – Gordon Davisson
              Sep 10 at 11:15











            • Yes, you're right - my fault. Thanks for letting me know, I've corrected the error.
              – Bario Malotelli
              Sep 10 at 11:59










            • Link-only answers are discouraged, as links go dead all the time. Please make the answer self-contained by quoting the relevant parts of the linked resources.
              – fkraiem
              Sep 10 at 12:20















            Correction: it's "deniable encryption". Web searches will work better with the correct spelling :-) And there's a tag for it here on crypto.se: deniable-encryption.
            – Gordon Davisson
            Sep 10 at 11:15





            Correction: it's "deniable encryption". Web searches will work better with the correct spelling :-) And there's a tag for it here on crypto.se: deniable-encryption.
            – Gordon Davisson
            Sep 10 at 11:15













            Yes, you're right - my fault. Thanks for letting me know, I've corrected the error.
            – Bario Malotelli
            Sep 10 at 11:59




            Yes, you're right - my fault. Thanks for letting me know, I've corrected the error.
            – Bario Malotelli
            Sep 10 at 11:59












            Link-only answers are discouraged, as links go dead all the time. Please make the answer self-contained by quoting the relevant parts of the linked resources.
            – fkraiem
            Sep 10 at 12:20




            Link-only answers are discouraged, as links go dead all the time. Please make the answer self-contained by quoting the relevant parts of the linked resources.
            – fkraiem
            Sep 10 at 12:20

















             

            draft saved


            draft discarded















































             


            draft saved


            draft discarded














            StackExchange.ready(
            function ()
            StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fcrypto.stackexchange.com%2fquestions%2f62222%2ftwo-working-decipher-keys-giving-various-valid-results-for-one-ciphered-message%23new-answer', 'question_page');

            );

            Post as a guest
































































            pDw UKMZT,tz
            -
            b Cx,UDVOTTA

            這個網誌中的熱門文章

            How to combine Bézier curves to a surface?

            圖片
            Clash Royale CLAN TAG #URR8PPP up vote 2 down vote favorite My aim is to smooth the terrain in a video game. Therefore I contrived an algorithm that makes use of Bézier curves of different orders. But this algorithm is defined in a two dimensional space for now. To shift it into the third dimension I need to somehow combine the Bézier curves. Given two curves in each two dimensions, how can I combine them to build a surface? I thought about something like a curve of a curve. Or maybe I could multiply them somehow. How can I combine them to cause the wanted behavior? Is there a common approach? In the image you can see the input, on the left, and the output, on the right, of the algorithm that works in a two dimensional space. For the real application there is a three dimensional input. The algorithm relays only on the adjacent tiles. Given these it will define the control points of the mentioned Bézier cur...
            閱讀完整內容

            Propositional logic and tautologies

            圖片
            Clash Royale CLAN TAG #URR8PPP up vote 0 down vote favorite Taken from P. Suppes "Introduction to logic" pp16 Starting from the sentence "If $P$ tautologically implies $Q$, then.." Question: Is it true that, at least within propositional logic, we are able to prove only tautologies or do I mis-understand something? If yes, is propositional logic special in some way? Is the notion of tautology meaningful only in propositional logic? logic propositional-calculus share | cite | improve this question edited Nov 29 '17 at 18:53 Mauro ALLEGRANZA 60.8k 4 46 105 asked Nov 29 '17 at 16:32 Alvin Lepik 2,448 9 20 add a comment  |  up vote 0 down vote favorite Taken from P. Suppes "Introduction to logic" pp16 Starting from the sentence "If $P$ tautologically implies $Q$, then.." Question: Is it true that, at least within propositional logic, we are able to prove only tautologi...
            閱讀完整內容

            Distribution of Stopped Wiener Process with Stochastic Volatility

            圖片
            Clash Royale CLAN TAG #URR8PPP up vote 0 down vote favorite Let $(W_s)_s geq 0$ be a Wiener process and $tau$ be a random variable with an exponential distribution with parameter $lambda$. Suppose that $W$ and $tau$ are independent. In this question, we see that the distribution of the stopped Wiener process $W_tau$ corresponds to a Laplace distribution with scale parameter $fracsigmasqrt2lambda$ where $sigma$ is the instantaneous variance of the Wiener process. Suppose now, that the variance $sigma^2$ also follows a stochastic process such that we have: $$dS = sigma SdW_s \ dsigma^2 = alphasigma^2dt + xisigma^2dW_sigma$$ where $alpha$ and $xi$ are independent of $S$ and $dW_s$ and $dW_sigma$ are independent Wiener processes. My aim is to derive the distribution of $log S_tau$. First, if $barV_T$ denotes the mean variance over some time interval $[0,T]$ defined by $$barV_T = frac1T intlimits_0^Tsigma^2(t)dt,$$ it is easy to show (Lemma of Îto) that $$...
            閱讀完整內容