Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.


DARPA Shredder Challenge: Who'll Solve $50,000 Puzzle?

Can you use determination and computational power to reassemble 6,068 pieces of paper into a readable document? DARPA hopes so.

Government Innovators
Slideshow: Government Innovators
(clickimage for larger view and for full slideshow)
More than 5,000 teams have signed up to compete in a Defense Advanced Research Projects Agency's (DARPA's) shredder challenge, and those that have solved the first two levels of the test have mainly used manual methods to reassemble shredded pieces of paper. Now, the agency says, it will take computational methods to solve the rest.

DARPA introduced the so-called Shredder Challenge last week. The task is to reassemble five shredded documents and $50,000 will go to the winner, which will be judged on the number of problems solved and their degree of difficulty.

The aim of the challenge is to develop ways to reconstruct shredded documents that U.S. soldiers come across to use to gather intelligence information. The Department of Defense (DOD) also wants to try to discern how enemies might be reassembling U.S. documents by crowdsourcing this activity.

The Obama administration has made ample use of crowdsourcing and challenges to help the feds solve technology and other problems, even creating an entire website for agencies to post challenges for people to solve for a range of cash prizes.

[ DARPA is trying a number of unusual tactics. Read DARPA Investigates Storytelling As Security Science. ]

Sixteen teams have solved the first Shredder Challenge puzzle and two have solved the second, mainly by manual means--such as printing, cutting out and sorting by hand the various pieces of the puzzle--and "sheer patience and determination," DARPA Director Regina E. Dugan said in a statement Wednesday.

The first two problems contained 224 and 373 pieces, respectively, and some teams already have used algorithms to separate pieces individually before sorting them, according to DARPA.

The next three get considerably more difficult, however, and if someone were to come up with a computational, automated means for reconstructing shredded documents, they "could find an advantage" for solving them, Dugan said.

To solve puzzle 3, teams must sort through and reassemble 1,115 pieces of paper, while puzzle 4 has 2,340 pieces and puzzle 5 has 6,068 pieces.

Dugan said it will be a combination of using "powerful computation methods with shared tasking and the diverse insights of the crowd" that will decide the winner of the challenge.

The Shredder Challenge website has received close to 4 million hits since Oct. 27, and more than 5,000 teams have registered to participate. The challenge also has inspired a lot of chatter online, as the teams involved are using blogs and a forum on the challenge's website to discuss the challenge and its technical aspects, according to DARPA.


Recommended Reading:

Comment  | 
Print  | 
More Insights
Newest First  |  Oldest First  |  Threaded View
User Rank: Apprentice
3/30/2012 | 9:30:31 AM
re: DARPA Shredder Challenge: Who'll Solve $50,000 Puzzle?
This challenge definitely required hard work. The winners did a great job on this. Being a part of the shredding Houston industry, it is amazing news for us to know that they were able to make a software to un-shred documents and important papers. We just hope it doesn't fall in the wrong hands.
COVID-19: Latest Security News & Commentary
Dark Reading Staff 7/14/2020
Omdia Research Launches Page on Dark Reading
Tim Wilson, Editor in Chief, Dark Reading 7/9/2020
Why Cybersecurity's Silence Matters to Black Lives
Tiffany Ricks, CEO, HacWare,  7/8/2020
Register for Dark Reading Newsletters
White Papers
Current Issue
Special Report: Computing's New Normal, a Dark Reading Perspective
This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
Flash Poll
The Threat from the Internetand What Your Organization Can Do About It
The Threat from the Internetand What Your Organization Can Do About It
This report describes some of the latest attacks and threats emanating from the Internet, as well as advice and tips on how your organization can mitigate those threats before they affect your business. Download it today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
PUBLISHED: 2020-07-14
In October from version 1.0.319 and before version 1.0.466, a user with access to a markdown FormWidget that stores data persistently could create a stored XSS attack against themselves and any other users with access to the generated HTML from the field. This has been fixed in 1.0.466. For users of...
PUBLISHED: 2020-07-14
Traccar GPS Tracking System before version 4.9 has a LDAP injection vulnerability. It occurs when user input is being used in LDAP search filter. By providing specially crafted input, an attacker can modify the logic of the LDAP query and get admin privileges. The issue only impacts instances with L...
PUBLISHED: 2020-07-14
An issue was discovered in Verint Impact 360 15.1. At wfo/help/help_popup.jsp, the helpURL parameter can be changed to embed arbitrary content inside of an iFrame. Attackers may use this in conjunction with social engineering to embed malicious scripts or phishing pages on a site where this product ...
PUBLISHED: 2020-07-14
An issue was discovered in Verint Impact 360 15.1. At wfo/control/signin, the rd parameter can accept a URL, to which users will be redirected after a successful login. In conjunction with CVE-2019-12784, this can be used by attackers to "crowdsource" bruteforce login attempts on the targe...
PUBLISHED: 2020-07-14
An issue was discovered in Verint Impact 360 15.1. At wfo/control/signin, the login form can accept submissions from external websites. In conjunction with CVE-2019-12783, this can be used by attackers to "crowdsource" bruteforce login attempts on the target site, allowing them to guess an...