In this homework, you'll get to carry out some of the computations used to break Enigma codes (and gain an appreciation for why machines were needed to help search for keys).

You have intercepted the following message: (spaces added for readability)

ZDOCF CDFAZ QBVZD FAWBC AYPDK MHWIN ELTKL IRDUJ PEMMK CQDHX RPNIM

Based on previous intercepts, you suspect that the message contains the plaintext CELEBRATEVICTORY.

Section 15.1 of Körner discusses the use of cribs to discover scrambler settings, and illustrates how the process is independent of the plugboard settings. His discussion (some of which is summarized here) is an elaboration on the ideas behind Turing's bombes as discussed in class. You will be using the method he describes to check scrambler settings for the message.

1. While you suspect the presence of the crib CELEBRATEVICTORY, you are not sure where that text occurs in the message. Using the ciphertext below, mark the first five places where the crib cannot begin. (Cross off the ciphertext letter if the crib cannot begin at that letter.) You may find it useful to copy the crib and the ciphertext onto two separate strips of graph paper, with one letter per box.

   ZDOCF CDFAZ QBVZD FAWBC AYPDK MHWIN ELTKL IRDUJ PEMMK CQDHX RPNIM
   

   The places where the crib can't start are marked with an X.

     XX  XXX                
   ZDOCF CDFAZ QBVZD FAWBC AYPDK MHWIN ELTKL IRDUJ PEMMK CQDHX RPNIM
   

2. Even if all of the places where the crib can't be aligned are eliminated, there are still many places where the crib can be aligned. So that you don't have to test them all, you may assume that the crib should start at either the 15th ("D") or the 25th ("K") letter of the ciphertext. Only one of these can be right. Which one is it?

   25th, because starting at the 15th letter means that the B in CELEBRATE lines up with a B in the ciphertext.

3. You have been assigned two of the 26³ possible scrambler settings to test. The alphabets generated by successive scrambler positions are shown in the following tables, along with the crib:

   setting #1 plain letter cipher alphabet cipher letter ABCDEFGHIJKLMNOPQRSTUVWXYZ C SXJMWHZFLCTIDVQROPAKYNEBUG K E YFZPHBUEWSLKNMXDTVJQGRIOAC M L LDEBCTSNXYWAOHMUVZGFPQKIJR H E XIDCLROTBWVEPSGMUFNHQKJAZY W B NPKJWLSORDCFTAHBZIGMXYEUVQ I R PLMSFEUQVORBCTJAHKDNGIXWZY N A IXRFLDVQAZMEKSTWHCNOYGPBUJ E T MZNJIYPQEDUVACSGHTORKLXWFB L E IDUBXVRLAPTHZSWJYGNKCFOEQM T V WLDCQPZUOTVBXRIFENYJHKAMSG K I LXFPKCVSNTEARIWDZMHJYGOBUQ L C LDNBRUPJTHXAQCVGMEZIFOYKWS I T GCBNSOATQXWRYDFUILEHPZKJMV R O WRMOUHIFGZLKCYDVSBQXEPATNJ D R DEZABMJXYGOVFTKRSPQNWLUHIC U Y SNUTRZHGXMOQJBKWLEADCYPIVF J

   setting #2 plain letter cipher alphabet cipher letter ABCDEFGHIJKLMNOPQRSTUVWXYZ C YFZPHBUEWSLKNMXDTVJQGRIOAC K E LDEBCTSNXYWAOHMUVZGFPQKIJR M L XIDCLROTBWVEPSGMUFNHQKJAZY H E NPKJWLSORDCFTAHBZIGMXYEUVQ W B PLMSFEUQVORBCTJAHKDNGIXWZY I R IXRFLDVQAZMEKSTWHCNOYGPBUJ N A MZNJIYPQEDUVACSGHTORKLXWFB E T IDUBXVRLAPTHZSWJYGNKCFOEQM L E WLDCQPZUOTVBXRIFENYJHKAMSG T V LXFPKCVSNTEARIWDZMHJYGOBUQ K I LDNBRUPJTHXAQCVGMEZIFOYKWS L C GCBNSOATQXWRYDFUILEHPZKJMV I T WRMOUHIFGZLKCYDVSBQXEPATNJ R O DEZABMJXYGOVFTKRSPQNWLUHIC D R SNUTRZHGXMOQJBKWLEADCYPIVF U Y TZVYLPIXGMQEJURFKOWANCSHDB J

   Write the ciphertext letters corresponding to the correct position for the crib (as determined in the previous problem) in the right column of both tables.

4. Using the method described in Körner 15.1, determine which of the scrambler settings is the correct one. Is it setting #1 or setting #2? Show your work, including any plugboard settings you derive.

   Setting #1, because the setting A<->Y does not lead to a contradiction: A<->Y B<->R C<->T E<->U G<->M H<->H I<->I J<->S K<->K L<->N Q<->W V<->V

   With setting #2, all of the plugboard settings for A lead to contradictions and so the scrambler setting cannot possibly be correct.

5. Now that the scrambler setting for the start of the crib has been found, it is possible to conceptually turn the machine backwards to find the setting that was used at the start of the message. A longer sequence of scrambler alphabets is shown below. The settings are numbered so that #1 and #2 are the same as in the previous problem. Determine the scrambler setting at the start of the message.

   The initial setting is the one where, if the ciphertext starts there, the 25th letter of the ciphertext occurs at setting #1 (since this is where the crib starts, and setting #1 is at the start of the crib). Thus x+24 = 1 means that x = -23 is the initial setting. (It is x+24 instead of x+25 because advancing 24 characters from the start of the ciphertext brings us to the start of the crib, so advancing 24 settings from the initial setting brings us to the setting used at the start of the crib i.e. setting #1.)

   setting # cipher alphabet ABCDEFGHIJKLMNOPQRSTUVWXYZ -34 ULGJQZCWYDTBPONMESRKAXHVIF -33 HNQWKLOAUYEFRBGVCMXZIPDSJT -32 LMIRWXZVCSPABTYKUDJNQHEFOG -31 FSPKWAZTLVDIYRUCXNBHOJEQMG -30 EINJAYORBDTWUCGVSHQKMPLZFX -29 RKOIZYSVDWBTUQCXNAGLMHJPFE -28 FUMZXAJQPGVSCRTIHNLOBKYEWD -27 WVUYSXLNPKJGQHRIMOEZCBAFDT -26 OHYMWGFBRKJUDPANZITSLXEVCQ -25 UTWXPQSVJIMRKONEFLGBAHCDZY -24 KVEXCLNTMOAFIGJSZYPHWBUDRQ -23 DSVAKYLPUREGQXWHMJBZICONFT -22 VUTOPLHGKSIFRYDEXMJCBAZQNW -21 VOMLTPXJNHWDCIBFUYZEQAKGRS -20 NDXBHOLERQYGTAFWJIUMSZPCKV -19 OPXVIJZKEFHSUTABYWLNMDRCQG -18 JNPXFEZVRAQUSBWCKIMYLHODTG -17 BAONURQJZHPTSDCKGFMLEYXWVI -16 VGIMPYBWCZURDTXESLQNKAHOFJ -15 FSWUGAEQPVTROYMIHLBKDJCZNX -14 UILXONWVBRQCTFESKJPMAHGDZY -13 TZWXPGFONQRVSIHEJKMAYLCDUB -12 HNUXKSYARQEMLBPOJIFVCTZDGW -11 MENVBZLQSYWGACRXHOIUTDKPJF -10 OVRUGHEFYMNZJKAXSCQWDBTPIL -9 QEGYBKCVMOFTIZJXASRLWHUPDN -8 OWPFGDEVTNSXQJACMYKIZHBLRU -7 IFRYJBNZAEWOPGLMVCUXSQKTDH -6 YSEMCWXPZRNQDKUHLJBVOTFGAI -5 LMVJUNWZRDPABFTKYIXOECGSQH -4 DKEACURQYNBXTJSWHGOMFZPLIV -3 PSIZOTJYCGWNXLEAVUBFRQKMHD -2 CHAIRXQBDUZTNMWVGEYLJPOFSK -1 ZGYKXQBLMUDHIVWSFTPRJNOECA 0 CGASKWBJTHEYRQUXNMDIOZFPLV 1 SXJMWHZFLCTIDVQROPAKYNEBUG 2 YFZPHBUEWSLKNMXDTVJQGRIOAC 3 LDEBCTSNXYWAOHMUVZGFPQKIJR 4 XIDCLROTBWVEPSGMUFNHQKJAZY

   setting # cipher alphabet ABCDEFGHIJKLMNOPQRSTUVWXYZ 5 NPKJWLSORDCFTAHBZIGMXYEUVQ 6 PLMSFEUQVORBCTJAHKDNGIXWZY 7 IXRFLDVQAZMEKSTWHCNOYGPBUJ 8 MZNJIYPQEDUVACSGHTORKLXWFB 9 IDUBXVRLAPTHZSWJYGNKCFOEQM 10 WLDCQPZUOTVBXRIFENYJHKAMSG 11 LXFPKCVSNTEARIWDZMHJYGOBUQ 12 LDNBRUPJTHXAQCVGMEZIFOYKWS 13 GCBNSOATQXWRYDFUILEHPZKJMV 14 WRMOUHIFGZLKCYDVSBQXEPATNJ 15 DEZABMJXYGOVFTKRSPQNWLUHIC 16 SNUTRZHGXMOQJBKWLEADCYPIVF 17 TZVYLPIXGMQEJURFKOWANCSHDB 18 RHVUSGFBKLIJQYWZMAEXDCOTNP 19 SGRLHPBEMTQDIZXFKCAJVUYOWN 20 OUFNMCYKLRHIEDAQPJWXBZSTGV 21 NMIGJWDYCESQBAZVLUKXRPFTHO 22 WMQTKVHGXNERBJYZCLUDSFAIOP 23 PINMTJLXBFSGDCZAYWKEVURHQO 24 NIDCSWHGBXMYKAQVOUEZRPFJLT 25 ZFOQWBMUJIYNGLCXDSRVHTEPKA 26 ICBTPVJLAGRHWXUEYKZDOFMNQS 27 CNAJVHYFSDLKXBPOUWIZQERMGT 28 CIASNOPKBZHYWEFGTUDQRXMVLJ 29 EPZLAJWMXFRDHTVBUKYNQOGISC 30 ZDOBUYWMLVXIHSCRTPNQEJGKFA 31 HLFIWCUADQSBYVZTJXKPGNERMO 32 FVIJTANYCDRUWGQSOKPELBMZHX 33 FCBRHAVETYUPSWZLXDMIKGNQJO 34 ZSFKUCVQTWDXRPYNHMBIEGJLOA 35 JSEQCVKTOAGZWRIUDNBHPFMYXL 36 WCBRXSTZVKJYOQMUNDFGPIAELH 37 KPGYTNCSLZAIQFXBMWHEVURODJ 38 GEQTBHAFJIZUPXVMCWYDLORNSK 39 FDTBSANKUWHPOGMLXZECIYJQVR 40 BAGLQWCIHVMDKYSTEXOPZJFRNU 41 NSKLOZURMPCDIAEJWHBVGTQYXF 42 XKTILNWVDRBEPFZMSJQCYHGAUO 43 KESOBWJLXGAHPTDMUZCNQYFIVR

6. Decipher the entire message. You may need to find additional plugboard settings; if so, list the settings and explain how you figured them out.

   We start with (setting numbers are shown below)

                               C ELEBR ATEVI CTORY
   ZDOCF CDFAZ QBVZD FAWBC AYPDK MHWIN ELTKL IRDUJ PEMMK CQDHX RPNIM
   ----- ----- ----- ----- ---
   22221 11111 11119 87654 32101 23456 78911 11111 11122 22222 22233
   32109 87654 3210                       01 23456 78901 23456 78901
   

   and with known plugboard settings A<->Y B<->R C<->T E<->U G<->M H<->H I<->I J<->S K<->K L<->N Q<->W V<->V

   At this point, concentrate on filling in letters for which the plugboard setting is known. Starting at the beginning of the ciphertext (setting -23), the first letter is Z. We don't know anything about Z so we continue. The second letter (setting -22) is D - we don't know about D's plugboard setting either. Continue on to the fourth letter (C, setting -20). At this point we know that C->T via the plugboard, then T->M (scrambler setting -20), and M->G (known plugboard):

      G                        C ELEBR ATEVI CTORY
   ZDOCF CDFAZ QBVZD FAWBC AYPDK MHWIN ELTKL IRDUJ PEMMK CQDHX RPNIM
   

   Continue in the same way, filling in only those letters for which all of the necessary plugboard settings are known:

      G  A  L  TI      NIG  T  C ELEBR ATEVI CTORY   RAJ  B E  L  NE
   ZDOCF CDFAZ QBVZD FAWBC AYPDK MHWIN ELTKL IRDUJ PEMMK CQDHX RPNIM
   

   At this point, it is necessary to start guessing - either guess plaintext and derive the resulting plugboard settings or guess plugboard settings and check for a contradiction. Noting that NIG*T looks like it could be NIGHT, let's guess a plaintext H. We know the plugboard takes H->H and the scrambler takes H->Y and the plugboard takes Y->A. This works out, so H is a good guess.

      G  A  L  TI      NIG HT  C ELEBR ATEVI CTORY   RAJ  B E  L  NE
   ZDOCF CDFAZ QBVZD FAWBC AYPDK MHWIN ELTKL IRDUJ PEMMK CQDHX RPNIM
   

   Continue guessing... Perhaps J*B is JOB. We don't know anything about the plugboard setting for O but we do know about C (the ciphertext), so we work backwards. C came from T (plugboard) which came from D (scrambler), so O<->D must be a plugboard setting.

      G  A  L  TI      NIG HT  C ELEBR ATEVI CTORY   RAJ OB E  L  NE
   ZDOCF CDFAZ QBVZD FAWBC AYPDK MHWIN ELTKL IRDUJ PEMMK CQDHX RPNIM
   

   Now we can proceed with ciphertext letters which are D or O, again working backward. The second letter is D, which came from O (plugboard), which came from D (scrambler), which came from O (plugboard).

    O G  A  L  TI      NIG HT  C ELEBR ATEVI CTORY   RAJ OB E  L  NE
   ZDOCF CDFAZ QBVZD FAWBC AYPDK MHWIN ELTKL IRDUJ PEMMK CQDHX RPNIM
   

   Continuing yields

    ONG  AT L  TI  S   NIG HT EC ELEBR ATEVI CTORY   RAJ OBWE  L  NE
   ZDOCF CDFAZ QBVZD FAWBC AYPDK MHWIN ELTKL IRDUJ PEMMK CQDHX RPNIM
   

   It is also now possible to work out the ciphertext N near the end: N comes from L (plugboard), L comes from D (scrambler), and D comes from O (plugboard). Also ciphertext A in the fourth group: A comes from Y (plugboard), Y comes from D (scrambler), D comes from O (plugboard). Also ciphertext E in the third-to-last group: E comes from U (plugboard), U comes from D (scrambler), D comes from O (plugboard). And ciphertext V in the third group: V comes from V (plugboard), V from D (scrambler), D from O (plugboard).

    ONG  AT L  TIO S  ONIG HT EC ELEBR ATEVI CTORY  ORAJ OBWE  L ONE
   ZDOCF CDFAZ QBVZD FAWBC AYPDK MHWIN ELTKL IRDUJ PEMMK CQDHX RPNIM
   

   This didn't yield any new plugboard settings, so we return to guessing plaintext. WE*L might be WELL: L->N, N->X, so X<->X.

    ONG  AT L  TIO S  ONIG HT EC ELEBR ATEVI CTORY  ORAJ OBWEL L ONE
   ZDOCF CDFAZ QBVZD FAWBC AYPDK MHWIN ELTKL IRDUJ PEMMK CQDHX RPNIM
   

   *ONE might be DONE: D->O, O->F, which means F<->P must be another plugboard setting. This allows some additional entries to be worked out.

    ONGR ATUL  TIO S TONIG HTWEC ELEBR ATEVI CTORY FORAJ OBWEL LDONE
   ZDOCF CDFAZ QBVZD FAWBC AYPDK MHWIN ELTKL IRDUJ PEMMK CQDHX RPNIM
   

   At this point, the plaintext can be guessed: CONGRATULATIONS TONIGHT WE CELEBRATE VICTORY FOR A JOB WELL DONE. The remaining plugboard setting not yet derived is Z<->Z.