Entrance Hall VI: Mechanical Cipher Machines Jefferson Disk
Exhibit 29 of 37 1795 (Jefferson) · 1922 (M-94) Broken

Jefferson Disk

Thomas Jefferson's mechanical cipher — reinvented by the US Army 120 years later

InventorThomas Jefferson (1795) · Independently: Bazeries (1891)
Year1795
Key TypePhysical disk arrangement (25 disks)
Broken ByBrute force · Probable word attack
Modern LessonMechanical cipher → rotor machines

Why This Matters

Thomas Jefferson invented the wheel cipher in 1795, but it was never published. The same design was independently reinvented twice — by Bazeries in 1891 and by the US Army in 1922 as the M-94 — proving the concept’s fundamental soundness.

📜Historical Context

Thomas Jefferson invented the wheel cipher in 1795 as US Secretary of State. He never published it, and it sat in his papers until discovered in the 20th century. French cryptographer Étienne Bazeries independently invented essentially the same device in 1891. The US Army re-invented it again in 1922 as the M-94 and used it through WWII.

Jefferson's cylinder consisted of 36 wooden disks mounted on an iron spindle, each disk bearing the alphabet in scrambled order. A simplified version with 25 aluminum disks became the M-94, which served in all US military branches until replaced by the M-209 machine cipher in 1943.

⚙️How It Works
Device: N disks on a spindle, each with
scrambled alphabet around the edge

Encryption:
1. Set disks to spell out message
2. Read off any other row as ciphertext

Decryption:
1. Set disks to ciphertext
2. Look for a row that reads as English

M-94 specifications:
- 25 aluminum disks
- Each disk: alphabet in unique order
- Disk order = key (25! possible orders)
- Message length = 25 characters max
↓ read this column H QZMB YREK E TAON SDLW L PWGX FUCI P CVBK AJFH ! NDRF SIAO Rotate disks to spell HELP → read any other row as ciphertext Disk order is the key · 25! ≈ 1.55 × 10²⁵ possible orders
Jefferson Disk: disks rotated to spell the message; any other row becomes the ciphertext
💀How It Was Broken
Probable Word Attack
Complexity: Moderate

For each disk, only 25 possible decryptions exist. If a probable word (crib) is known, the attacker can align the crib against each row and check whether the remaining disks produce consistent plaintext. The M-94's 25-character message blocks create redundancy that allows systematic elimination.

🔬What It Teaches Modern Cryptography
Concept from Jefferson DiskModern Evolution
Physical disk arrangement as keyKey as configuration: RSA key = large number pair, AES key = 256-bit string
Multiple cipher rows per settingMultiple decryption candidates: birthday attacks on hash functions
Mechanical implementationHardware Security Modules (HSMs): crypto operations in dedicated hardware
Quick Facts
Exhibit29 of 37
Era1795 (Jefferson) · 1922 (M-94)
SecurityBroken
InventorThomas Jefferson (1795) · Independently: Bazeries (1891)
Year1795
Key TypePhysical disk arrangement (25 disks)
Broken ByBrute force · Probable word attack

Related Exhibits

Exhibit 30 Alberti Cipher Disk Same Hall Exhibit 21 Bazeries Cipher Disk Cipher Exhibit 27 Enigma Machine Same Hall
← Previous Lorenz Cipher