Pigeon Feed
View unanswered posts | View active topics It is currently Wed Jan 17, 2018 2:12 am



Reply to topic  [ 6 posts ] 
 NSA: Support of backdoored Dual_EC_DRBG was regrettable 
Author Message
User avatar

Joined: Thu Mar 31, 2011 4:00 pm
Posts: 10071
Post NSA: Support of backdoored Dual_EC_DRBG was regrettable
NSA official: Support of backdoored Dual_EC_DRBG was “regrettable”

Agency supported crypto function for years after "trap door" was disclosed.

Link


Fri Jan 16, 2015 2:44 pm
Profile
User avatar

Joined: Thu Mar 31, 2011 4:00 pm
Posts: 10071
Post Re: NSA: Support of backdoored Dual_EC_DRBG was regrettable
NSA officials shepherded Dual EC_DRBG through the National Institute of Standards and Technology (NIST) in 2006. A year later, researchers from Microsoft presented evidence that the number generator contained a type of backdoor known to cryptographers as a "trap door."

The weakness, the researchers said, allowed those who knew the specific NSA-generated points on the standard's elliptic curve to work backward to guess any crypto key created by the generator. Despite widespread coverage of the research and concern expressed by security experts, the NSA continued to support Dual EC_DRBG.

It wasn't until September 2013—six years after the research came to light—that RSA advised customers to stop using the NSA-influenced code.


The trouble is that on closer examination, the letter doesn't express regret for the inclusion of Dual EC DRBG in national standards. The transgression Dr. Wertheimer identifies is simply the fact that NSA continued to support the algorithm after major questions were raised. That's bizarre.

Even worse, Dr. Wertheimer reserves a substantial section of his letter for a defense of the decision to deploy Dual EC. It's those points that I'd like to address in this post.


Fri Jan 16, 2015 2:48 pm
Profile
User avatar

Joined: Thu Mar 31, 2011 4:00 pm
Posts: 10071
Post Re: NSA: Support of backdoored Dual_EC_DRBG was regrettable
Image


Sat May 16, 2015 3:51 am
Profile
User avatar

Joined: Thu Mar 31, 2011 4:00 pm
Posts: 10071
Post Re: NSA: Support of backdoored Dual_EC_DRBG was regrettable
Image


Sat May 16, 2015 3:55 am
Profile
User avatar

Joined: Thu Mar 31, 2011 4:00 pm
Posts: 10071
Post Re: NSA: Support of backdoored Dual_EC_DRBG was regrettable


Sat May 16, 2015 3:56 am
Profile
User avatar

Joined: Thu Mar 31, 2011 4:00 pm
Posts: 10071
Post Re: NSA: Support of backdoored Dual_EC_DRBG was regrettable


Sat May 16, 2015 4:07 am
Profile
Display posts from previous:  Sort by  
Reply to topic   [ 6 posts ] 

Who is online

Users browsing this forum: No registered users and 1 guest


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
cron
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group.