Latency Ball is software handshake that allows you to swap passwords securely without certificate chains.
Have you ever wanted to exchange passwords without meeting someone but had no way of doing so?
Maybe you divided the password into 3 different parts and sent one part by email, another part by skype and the last bit by SMS. You split the password thinking that it is hard for hacker to have access to all 3 channels.
Gone are those days of worry - there is now a mechanism for exchanging details to set up a secure channel.
Latency Ball has mechanisms that detect man in the middle by measuring latency of communications in the handshake. Video is a component of the handshake.
Latency Ball uses layered encryption where each layers subsequent layer of encryption depends on the hash of the previous layer. It is done in such a way that you cannot decrypt any faster using more CPUs. The speed is limited by the speed of a single CPU. i.e. this mechanism depends on mechanical sympathy. It recognises that one of the main differences between Cloud CPUs and laptop / desktop CPUs is the number of them. If you cannot parallelise a task the speed of encryption / decryption depends on the speed of a single CPU.
By measuring latency we are able to detect man in the middle. If no man in the middle is detected we can know that the information to build a secure connection has been exchanged successfully. If we detect a man in the middle we drop the key exchange and know we cannot at this time have a secure connection.
This technology can be useful where SSL is not possible. SSL depends on a server having a fixed IP address which has been certified by a chain of certifiers. In the peer to peer world we cannot have this luxury: IP addresses can be changing constantly and peer trust chains are complex and error prone.
Latency Ball is core Java and uses symmetric and assymetric encrytion / decryption.
Note this technology can be used in more than one use case:
update credentials in corporate environment without sending keys by email or sharing USB flash keys.
sending passwords or the information to create a secure channel to someone where SSL cannot work
this can create an added layer of security for chat applications, It allows for true point to point encryption without a fixed IP address and chain of certificates.
Back: Projects
Page Author: JD