Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
Cory Doctorow NONCONSENSUAL BLUE TICK Profile picture
@doctorow
Sep 18, 2020 13 tweets 4 min read Read on X
Andrey Bezrukov and Elena Vavilova were Russian spies who operated in the USA for 20 years (this is the basis for "The Americans"); they were caught in 2010. "Compromised," is the new memoir by Peter Strzok, the FBI agent who had their case.

hmhbooks.com/shop/books/Com…

1/
As @mattblaze writes, a throwaway detail in the book resolves a longstanding cryptographic mystery: that of a Cuban "numbers station" that operated for years, including a decade where it behaved very erratically (by numbers station standards).

mattblaze.org/blog/neinnines/

2/
Some background. Numbers stations - ratio stations in which people (or synthesized voices) read out strings of random numbers - are a means of messages for use with "one-time pads," a cryptographic tool that is, in theory, unbreakable.

3/
One-time pads are collections of random numbers used to encipher messages through simple operations: adding each byte of your message to the next number on the pad. If the pad is truly random, secret and never reused, the code can't be broken.

numbers-stations.com/articles/how-t…

4/
If your spies are sent abroad with a thick one-time pad, then you can simply broadcast your messages over the entire region in which they operate, and they can use their pads to decipher the messages, while your adversaries just get random numbers

5/
Numbers stations, like the powerful shortwave transmitter in Bauta, Cuba, were used to communicate with Soviet (and, later, Russian) spies in the US in this way.

6/
Though one-time pad messages can't be deciphered, it's still possible to leak information using numbers stations. If a radio station ceases operation every time a spy travels, then your adversary can match the station's operating schedule with suspects' itineraries.

7/
To prevent this "traffic analysis" attack, the station broadcasted dummy traffic (random numbers that WEREN'T encoded messages) every single day, even if the spies were not listening that day.

8/
However, for mysterious reasons - still not understood - the dummy traffic never contained the number nine ("nueve"). That made it easy to tell the real numbers station traffic from the dummy traffic, and from there, it was possible to derive the spies' travel schedules.

9/
Even with this glaring error, it took a DECADE for the FBI to get enough timing information to make their move. That was a whole decade in which the Cuban numbers station was making this weird, stupid blunder.

10/
One-time pads are incredibly powerful, but they're also super-awkward and unforgiving. An error as simple as pad re-use can blow them up, as happened with the notorious Venona affair:

nsa.gov/news-features/…

11/
As Blaze writes, "OTPs have long been a favorite of hucksters selling supposedly 'unbreakable' crypto. Remember this story next time someone tries to sell you their super-secure one-time-pad crypto. If actual Russian spies can't use it securely, chances are neither can you."

12/
Blaze was one of the researchers who followed - and recorded! - the Cuban numbers station, and noted the mysterious and telling absence of "nueve" in some of the traffic. He's posted a recording of the station to his site:

mattblaze.org/private/17435k…

eof/

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Cory Doctorow NONCONSENSUAL BLUE TICK

Cory Doctorow NONCONSENSUAL BLUE TICK Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @doctorow

Cory Doctorow NONCONSENSUAL BLUE TICK Profile picture
Oct 11
I am an environmentalist, but I'm not a climate activist. I used to be - I even used to ring strangers' doorbells on behalf of Greenpeace.

1/ A field of utility scale solar. Behind the mountains on the horizon line loom two logos: the original EFF 'clenched fist and lightning bolt' logo and the first Earth Day logo. They are reflected in the solar panels. Behind them roils hellish red-shot smoke.
If you'd like an essay-formatted version of this thread to read or share, here's a link to it on pluralistic.net, my surveillance-free, ad-free, tracker-free blog:

pluralistic.net/2025/10/11/cyb…

2/
But a quarter of a century ago, I fell in with the Electronic Frontier Foundation and became a lifelong digital rights activist, and switched to cheering on environmental activists from the sidelines of their fight:



3/eff.org
Read 53 tweets
Cory Doctorow NONCONSENSUAL BLUE TICK Profile picture
Sep 27
Like you, I'm sick to the back teeth of talking about AI. Like you, I keep getting dragged into AI discussions. Unlike you‡, I spent the summer writing a book on why I'm sick of AI⹋, which @fsgbooks will publish in 2026.

‡probably

⹋"The Reverse Centaur's Guide to AI"

1/ A Zimbabwean one hundred trillion dollar bill; the bill's iconography have been replaced with the glaring red eye of HAL 9000 from Stanley Kubrick's '2001: A Space Odyssey' and a stylized, engraving-style portrait of Sam Altman. Image: TechCrunch https://commons.wikimedia.org/wiki/File:Sam_Altman_-_TechCrunch_Disrupt_SF_2017_(36522988343).jpg CC BY 2.0 https://creativecommons.org/licenses/by/2.0/deed.en -- Cryteria (modified) https://commons.wikimedia.org/wiki/File:HAL9000.svg CC BY 3.0 https://creativecommons.org/licenses/by/3.0/deed.en
If you'd like an essay-formatted version of this thread to read or share, here's a link to it on pluralistic.net, my surveillance-free, ad-free, tracker-free blog:

pluralistic.net/2025/09/27/eco…

2/
A week ago, I turned that book into a speech, which I delivered as the annual Nordlander Memorial Lecture at Cornell, where I'm an AD White Professor-at-Large.

3/
Read 52 tweets
Cory Doctorow NONCONSENSUAL BLUE TICK Profile picture
Sep 24
Billionaires don't think we're real. How could they? How could you inflict the vast misery that generates billions while still feeling even a twinge of empathy for the sufferer in your extractive enterprise. No wonder Elon Musk calls us "NPCs":



1/ pluralistic.net/2025/08/18/see… An oil painting of a French king atop a throne, draped in sumptuous robes. His head has been replaced with a screaming, toothless man wearing a top-hat. Over his shoulder looms the hostile red eye of HAL 9000 from Stanley Kubrick's '2001: A Space Odyssey.' Image: Cryteria (modified) https://commons.wikimedia.org/wiki/File:HAL9000.svg CC BY 3.0 https://creativecommons.org/licenses/by/3.0/deed.en
If you'd like an essay-formatted version of this thread to read or share, here's a link to it on pluralistic.net, my surveillance-free, ad-free, tracker-free blog:

pluralistic.net/2025/09/24/rob…

2/
Ever notice how people get palpably stupider as they gain riches and power? Musk went from a cringe doofus to a world-class credulous dolt, and it seems like he loses five IQ points for every $10b that's added to his net worth.

3/
Read 26 tweets
Cory Doctorow NONCONSENSUAL BLUE TICK Profile picture
Sep 23
I'm only a few chapters into Bill McKibben's stupendous new book *Here Comes the Sun: A Last Chance for the Climate and a Fresh Chance for Civilization* and I already know it's going to change my outlook forever:



1/ billmckibben.com/books/here-com…A rooftop solar installation. Behind the roof rages a blazing forest fire. Reflected in the solar panels is the poop emoji from the cover of my book 'Enshittification,' which has angry eyebrows and a black, grawlix-filled bar across its mouth." Image: Bastique (modified) https://commons.wikimedia.org/wiki/File:Solar_Panels_on_Church_Roof_full.jpg CC BY 4.0 https://creativecommons.org/licenses/by/4.0/deed.en
If you'd like an essay-formatted version of this thread to read or share, here's a link to it on pluralistic.net, my surveillance-free, ad-free, tracker-free blog:

pluralistic.net/2025/09/23/our…

2/
McKibben is one of our preeminent climate writers and activists, noteworthy for his informed and brilliant explanations of the technical limits - and possibilities - of various climate interventions, and for his lifelong organizing work.

3/
Read 80 tweets
Cory Doctorow NONCONSENSUAL BLUE TICK Profile picture
Sep 22
One of the dumbest, shrewdest tricks corporate America ever pulled was teaching us all to reflexively say, "If a corporation blocks your speech, that doesn't violate the First Amendment and therefore it's not censorship":



1/ pluralistic.net/2022/12/04/yes…Two figures in royal robes seated back to back atop a pile of gold bars. One wears a tophat, the other, a crown in the form of a gilded crown. A forest of angled broadcast towers sits behind them. The sky is overshadowed by thunderheads.
If you'd like an essay-formatted version of this thread to read or share, here's a link to it on pluralistic.net, my surveillance-free, ad-free, tracker-free blog:

pluralistic.net/2025/09/22/one…

2/
Censorship isn't limited to government action: it's the act of preventing a message from a willing speaker from reaching a willing listener. The fact that it's censorship doesn't (necessarily) mean that it's illegitimate or bad.

3/
Read 62 tweets
Cory Doctorow NONCONSENSUAL BLUE TICK Profile picture
Sep 17
Conspiratorialism is downstream of the trauma of institutional failures.

Insitutional failures are downstream of regulatory capture.

Regulatory capture is downstream of monopolization.

Monopolization is downstream of the failure to enforce antitrust law.

1/ A four-doll matrioshke, unpacked and arranged 2x2. In order, the dolls' faces have been replaced with: the Qanon logo; an Oxycontin pill, the face of Robert Bork, and Mark Zuckerberg's metaverse avatar. Image: Vicent Ibáñez (modified) https://commons.wikimedia.org/wiki/File:Nina_Rusa._Mu%C3%B1eca_Rusa.JPG CC BY-SA 3.0 https://creativecommons.org/licenses/by-sa/3.0/deed.en -- RootOfAllLight (modified) https://commons.wikimedia.org/wiki/File:QAnon.png CC BY-SA 4.0 https://creativecommons.org/licenses/by-sa/4.0/deed.en
If you'd like an essay-formatted version of this thread to read or share, here's a link to it on pluralistic.net, my surveillance-free, ad-free, tracker-free blog:

pluralistic.net/2025/09/17/cau…

2/
Start with conspiratorialism and trauma. I am staunchly pro-vaccine. I have had so many covid jabs that I glow in the dark and can get impeccable 5g reception at the bottom of a coal-mine.

Nevertheless.

3/
Read 57 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us!

Send Email!

:(