Skip to main content

How do Star Trek command codes secure anything?


Inspired by the answer to this question:


Are there instances of Starfleet officers using the same authorization codes in more than one episode?



I wondered how these command codes secure anything.


Two codes that can setup the self destruction of the ship and override security are:



  • Janeway Pi 1-1-0

  • Tuvok pi alpha


So the command codes of Starfleet officers that enable the destruction of the ship are merely the name of the officer, the word "pi" and 3 to 5 numbers or letters. Nothing that would be considered in today’s world as a remotely secure password. Even a pin (4 numbers) is more secure than Janeway’s 1-1-0.


And on the other hand, after the code is used (and spoken out loud) the first time it is compromised if anybody is nearby and heard it.


So how can this code be secure? I'm sure the computer has other secure options to identifiy who is using the code. Does the code work only if the correct person uses it? If Kim uses the Janeway code to initialize sef destruction, will he get an access denied?


This questions answer seem to imply it:



How do command authorization codes work in Star Trek?


If so, then why use seemingly-worthless codes at all? Against what and how do they secure anything?



Answer




There are essentially three different types of factors in authentication:



  • Something you know (eg. password)

  • Something you have (eg. key)

  • Something you are (eg. fingerprint)



Two factors are inherently stronger than one, and even if an individual factor may be weak on it's own, combining it with others can still be sufficiently strong.


In Star Trek, one factor that seems almost ubiquitous across the board is voice authentication. We see it used in every instance of self-destruct sequence initiation shown here:





So at the very least, you're going to need a voice match, which would be your vocal sound (something you are) produced by something capable of producing those sounds (something you have) and using your unique speech patterns (something you know). I imagine there's alternatives to this in the event a person is unable to speak (while we've not seen it used before to my knowledge, it would likely require other forms of verification in its place).


Besides voice, there are three other apparent types of verification we see as well (of which at least one is always in use):



  • Security code

  • Hand print verification


  • Additional user verification (more people verifying)


In addition to the above, we know location can also play a factor, as seen in the following video (Data locks command access to the bridge):





And lastly, we already know that combadges can track location of their owners to the ship (which on its own could help confirm a voice match). But per the following, they can also communicate identity to starfleet computers for logging purposes (acting at a "key" of sorts):



Starfleet combadges silently provided identification to starship computers. For example, when a person wearing a combadge accessed a certain console, the computer logged the individual's identification to that access. (TNG: "The Drumhead")




Combining all of the above, including implied measures like location tracking and combadge authentication, and it appears that we actually have pretty comprehensive security coverage. At this point, we can stop looking at the command code as the main barrier, and start looking at it as a small part to the whole, more akin to a pin code, to help avoid certain specific attack vectors.


Of all the other factors above, it is the only one that requires something you know. So if someone were to take over your body, clone you, etc, they would still be lacking in full control over the ship.


While the code may seem short in combating the above, consider that the ship itself may not be so forgiving to multiple wrong guesses. Likewise, a longer code is harder to memorize than a small 3-4 character code that changes periodically, and officers would be less likely to change it frequently. Longer codes are possible to designate as we see Data do in the second video, but at that point he's combating all the captain's other authentication abilities to override and potentially break Data's own elevated access.


All this to say, none of those factors on their own are sufficient to protect a starship. but together they are fairly robust against multiple vectors, and far beyond the level most present day security systems.


Comments

Post a Comment

Popular posts from this blog

harry potter - Did Dolores Umbridge Have Any Association with Voldemort (or Death Eaters) before His Return?

I noticed that Dolores Umbridge was born during the first Wizarding War, so it's very likely she wasn't a Death Eater then (but she is pretty evil -- who knows?). After that Voldemort was not around in a way that could affect many people, and most wouldn't know he was planning to rise again. During that time, and up through Voldemort's return (in Goblet of Fire ), did Umbridge have any connection with the Death Eaters or with Voldemort? Was she doing what she did on her own, or was it because of an association with Voldemort or his allies? Answer Dolores Umbridge was definitely not a good person. However, as Sirius points out, "the world isn't split into good people and Death Eaters". Remember that he also says that he doesn't believe Umbridge to be a Death Eater, but that she's evil enough (or something like that). I think there are two strong reasons to believe that: Umbridge was proud to do everything according to the law, except when she trie...
Post a Comment
Read more

What is the etymology of Doctor Who?

I recently decided to watch Doctor Who, and started viewing the 2005 version. I have the first two episodes from the first season, and I can't help but wonder what is the etymology of the name "Doctor Who"? And why does the protagonist call himself "the Doctor" (or is it "the doctor")? Answer In the very first episode of Doctor Who (way back in 1963), the Doctor has a granddaughter going by the name "Susan Foreman", and the junkyard where the TARDIS is has the sign "I.M. Foreman". Barbara, who becomes one of the Doctor's companions, calls him "Doctor Foreman" (probably assuming that is his name given his relationship to Susan), and Ian (another early companion) does the same in the second episode, to which the Doctor says: Eh? Doctor who? What's he talking about? "Foreman" is most likely selected as a convenient surname for Susan to use because it happened to be on display near where the TARDIS landed....
Post a Comment
Read more

story identification - Animation: floating island, flying pests

At least 20 years ago I watched a short animated film which stuck in my mind. The whole thing was wordless, possibly European, and I'm pretty sure I didn't imagine it... It featured a flying island which was inhabited by some creatures who (in my memory) reminded me of the Moomins. The island was frequently bothered by large winged animals who swooped around, although I don't think they did any actual damage. At the end one of the moomin creatures suddenly gets a weird feeling, feels forced to climb to the top of the island and then plunges down a shaft right through the centre - only to emerge at the bottom as one of the flyers. Answer Skywhales from 1983. The story begins with a man warning the tribe of approaching skywhales. The drummers then warn everybody of the hunt as everyone get prepared to set "sail". Except one man is found in his home sleeping as the noise wake him up. He then gets ready and is about to take his weapon as he hesitates then decides ...
Post a Comment
Read more