Forget networked PCs or even PlayStation 3s, components commonly found in plasma TVs are the latest thing in password cracking tools.

High performance FPGA (Field Programmable Gate Array) chips are the Chuck Norris of number crunching, equally suited to image processing and (with a bit of modification) password cracking.

During the Black Hat conference in Washington in February researcher Steve Mueller and David Hulton used FPGA kit in an attack that cracks standard GSM transmissions, encrypted using the A5/1 algorithm, in as little as 30 seconds.

The same technology can be applied to crack Bluetooth transmissions in as little as eight seconds, according to security consultancy SecureTest, which ran a demo of the technology at the recent Infosec conference.

Tom Beale, a consultant at SecureTest, explained that networks of FPGA boards can be linked together for password cracking. The really serious can splash out $120K for high-end FPGA kit from the likes of Pico Computing.

For SecureTest's purposes, FPGA boards from old LG plasma TVs did the job.

The beauty of FPGAs, according to Beale, is that they are customisable. The technology is typically used in applications such as product development for networking kit but, with skill, it can be applied to other purposes.

Beale explained that FPGAs are software programmable. It is possible to change logic block components implemented by the device even when it's running, a skill that requires knowledge of hardware programming language HDL.

Ken Munro, managing director of SecureTest, said the technology ups the ante in the battle between code makers and breakers. "Encryption is not the magic bullet. There are subtle issues," Munro explained.

FPGAs are usually slower than application-specific integrated circuit (ASIC) counterparts and draw more power so, powerful though they are, they certainly aren't the last word in password cracking. ®

Related stories

HP biased against BIOS password security (2 June 2008)
http://www.channelregister.co.uk/2008/06/02/hp_laptop_bios_security/
Dubai mobe cracking demo barred by Heathrow boffin bust (22 April 2008)
http://www.theregister.co.uk/2008/04/22/heathrow_crypto_search/
Paper clip attack skewers Chip and PIN (27 February 2008)
http://www.theregister.co.uk/2008/02/27/credit_card_reader_security_pants/
GPGPUs and FPGAs are now fully implanted in our brains (20 November 2007)
http://www.theregister.co.uk/2007/11/20/accelerators_fpga_gpu_sc07/
Developer deploys graphics cards to accelerate password cracks (24 October 2007)
http://www.theregister.co.uk/2007/10/24/elcomsoft_uses_geforce8_for_password_crack/
Rainbow warriors crack password hashes (10 November 2005)
http://www.theregister.co.uk/2005/11/10/password_hashes/
Cracking Windows passwords made easy (23 July 2003)
http://www.theregister.co.uk/2003/07/23/cracking_windows_passwords_made_easy/