Your question
Closed

NSA Paid RSA $10 Million to Use Flawed Security Standard

Tags:
  • Security
Last response: in Streaming Video & TVs
December 21, 2013 8:29:26 AM

I'm actually starting to question the reliability of some of these rumors. I mean, the NSA doesn't need to bribe them to put a flaw in as they can do it themselves.
Score
-14
December 21, 2013 9:06:35 AM

This another one of those "We need an NSA headline!" articles. The weaknesses for Dual_EC_DRBG have been known for a long time. It's unlikely that the NSA paid for the backdoor, they can pay their own people less for better results. As it is getting random numbers right is notoriously difficult, just google if want an interesting read on the subject.
Score
-14
December 21, 2013 9:25:33 AM

The NSA shills are out in full swing I see

We have documents that prove that the nsa paid to put in a back door, and and the nsa shills turn right up denying it
Score
12
December 21, 2013 9:29:37 AM

Thanks to the heroic freedom-fighter and whistle-blower Edward J. Snowden we now know that an army of private contractors and the US Military unlawfully monitors everyone’s telephone traffic, all your contact lists, text messages, passwords, GPS locations with dates and time, FaceBook posts & pictures, LinkedIn pages & pictures, your search engine keywords entered (yes – even the keywords typed in but you don’t press the enter key), all web sites visited, all your credit card numbers, all your inbound and outbound e-mail messages, your voice-print, and facial image (for facial recognition devices planted around the world used to identify your movement). They have also now installed traffic cameras in a ll major metro areas and on police cars that scan license plate tags and store that information in databases. I believe those databases are shared with the NSA. They store all that information permanently, under your name, at the US Military’s new massive Utah Data Center and can pull it up at any time in the future. They can even freely tap into the microphone and/or camera on your smart phone, tablet, laptop, PC, automobile’s OnStar system, xBox and similar Internet connected devices. Rest assured – if it connects to the Internet – the US Military can tap into it and illegally monitor you. And now we have learned they have back door access into all of RSA's encryption tools.
Score
17
December 21, 2013 10:32:35 AM

Quote:
The NSA shills are out in full swing I see

We have documents that prove that the nsa paid to put in a back door, and and the nsa shills turn right up denying it


Morons even more so. Clearly you didn't comprehend any of the comments.
Score
-12
December 21, 2013 10:34:55 AM

Quote:
all your contact lists, text messages, passwords, GPS locations with dates and time, FaceBook posts & pictures, LinkedIn pages & pictures, your search engine keywords entered (yes – even the keywords typed in but you don’t press the enter key),.....They can even freely tap into the microphone and/or camera on your smart phone


Great another troll complaining about the loss of freedoms and who doesn't understand how the technology works (excepting instant searches).
Score
-18
Anonymous
December 21, 2013 10:40:18 AM

"Thanks to the heroic freedom-fighter and whistle-blower Edward J. Snowden we now know that an army of private contractors and the US Military unlawfully monitors everyone’s telephone traffic, all your contact lists, text messages, passwords, GPS locations with dates and time, FaceBook posts & pictures, LinkedIn pages & pictures, your search engine keywords entered (yes – even the keywords typed in but you don’t press the enter key), all web sites visited, all your credit card numbers, all your inbound and outbound e-mail messages, your voice-print, and facial image (for facial recognition devices planted around the world used to identify your movement). They have also now installed traffic cameras in a ll major metro areas and on police cars that scan license plate tags and store that information in databases. I believe those databases are shared with the NSA. They store all that information permanently, under your name, at the US Military’s new massive Utah Data Center and can pull it up at any time in the future. They can even freely tap into the microphone and/or camera on your smart phone, tablet, laptop, PC, automobile’s OnStar system, xBox and similar Internet connected devices. Rest assured – if it connects to the Internet – the US Military can tap into it and illegally monitor you. And now we have learned they have back door access into all of RSA's encryption tools."

+1 rep. That's a nice post you got there. Yes, it's obviously biasd but at least you didn't attempt to fake it. It's a useful viewpoint to dwell on.
Score
3
Anonymous
December 21, 2013 10:48:20 AM

"
Great another troll complaining about the loss of freedoms and who doesn't understand how the technology works (excepting instant searches)."

Have you not heard of the massive data mapping programs? It has been semi-exposed for years now. I can fully believe that any data available has been collected, including 'illegal' data, which is just traded between foreign partners to circumvent the law.

The whole point of the science is to paint an accurate picture of all connections and persons of interest in such a way that you can know exactly what they are doing, and know it indirectly, by monitoring thousands of relative data points that ARE NOT directly related to them. It's very good theory, and military policy, but I don't support a military/defense state. I don't want to live in a 'safe' world where we are owned and manipulated by other humans who happen to be in the seats of power.

Hopefully one day society will ascend to a higher moral or perhaps an AI will rise that we can trust (or will be forced to trust), whom can run the world.. but as it is we can not accept a structured and controlled society. Humans can not unbiasdly rule over them selves, and power must remain dispursed and balanced.. as unlikely as that sounds.
Score
5
Anonymous
December 21, 2013 10:50:50 AM

"
Great another troll complaining about the loss of freedoms and who doesn't understand how the technology works (excepting instant searches)."

Have you not heard of the massive data mapping programs? It has been semi-exposed for years now. I can fully believe that any data available has been collected, including 'illegal' data, which is just traded between foreign partners to circumvent the law.

The whole point of the science is to paint an accurate picture of all connections and persons of interest in such a way that you can know exactly what they are doing, and know it indirectly, by monitoring thousands of relative data points that ARE NOT directly related to them. It's very good theory, and military policy, but I don't support a military/defense state. I don't want to live in a 'safe' world where we are owned and manipulated by other humans who happen to be in the seats of power.

Hopefully one day society will ascend to a higher moral or perhaps an AI will rise that we can trust (or will be forced to trust), whom can run the world.. but as it is we can not accept a structured and controlled society. Humans can not unbiasdly rule over them selves, and power must remain dispursed and balanced.. as unlikely as that sounds.
Score
1
December 21, 2013 10:51:11 AM

RSA should have renamed herself to NRSA or RNSA.
Score
4
December 21, 2013 12:55:19 PM

SPAMMERS...

Seriously Toms... they are getting out of hand now.

PLEASE do something or I am gone to Ars Technica despite being such a long term member here and recommending your site to so many people...

(is the Reporting function "broken/disabled" to avoid dealing with the Large Qty of reported spammers???)
Score
4
December 21, 2013 2:15:32 PM

Nobody trusts US companies anymore
Score
4
December 21, 2013 5:29:40 PM

We should all write a nasty email to RSA. Here, just visit their site at rsa.GOV.
Score
4
December 21, 2013 5:38:13 PM

This is truly shocking.

It just goes to show the depth of law breaking the government and corporations are willing to goto to spy on innocent citizens.
Score
1
December 21, 2013 6:18:28 PM

I have always been wary of backdoors, because it means instead of having to 'break the code' for each message you are looking for this shortcut which then gives you all access.
Score
1
December 21, 2013 7:12:59 PM

this doesnt make sense. the NSA bought a contract to use these. so they had a backdoor built in? for what purpose? and then chinese hackers got into the secured files. the NSA did that to themselves essentially by allowing the back door? this is weird!
Score
0
December 21, 2013 10:10:57 PM

We should all write a nasty email to RSA. Here, just visit their site at rsa.GOV.
Score
0
December 21, 2013 11:50:04 PM

Democracy !
Amazing, funny thing is your all considered as an enemy of the state.

I`m afraid it`s the paranoia of terrorism.
So every one is classed as a potential threat.
Score
0
December 21, 2013 11:50:37 PM

It's frustrating that not only do our tax dollars fund organizations that at the highest level have blatant disregard for the will of the majority or due process of law, but further the class action lawsuits that will continue to be filed for illegal and heinous actions of the same, which our tax dollars indefinitely go to.

America is suffering cancers of many different types. Lawbreaking within the goverment should be dealt with swiftness and finality. People within this organization should lose their jobs for this type of nonsense.

We should cut funding of the NSA and have organizations that are more closely monitored by the law abiding citizens of this country. And while Security organizations might be necessary, there is currently an imbalance of power, and a complete absence of checks and balances within these types of organizations.
Score
0
December 22, 2013 5:40:15 AM

Anybody remember the "Total Information Awareness" goal/program of the NSA from a few years back? I do. Not surprising that they pursued it with diligence.

(Shout-out to the government analyst(s) who are reading all my posts!)
Score
-1
December 22, 2013 7:01:54 AM

It used to be "you can find GOD everywhere" but now its "you can find NSA everywhere",I think even GOD would have given some privacy to humans but NSA will never even consider it.
Score
-2
Anonymous
December 23, 2013 8:34:02 AM

Oh, and what happens to innocent people after that? Nothing. They can watch my a#@ all day. I dont care about that, if there is just one plot stopped/one person not getting hurt.

No one would be on Snowdens side, if he had leaked our sub technology to china for example. Just because "you" like the information, doesn't change that he is a traitor.
Score
-3
December 23, 2013 9:17:24 AM

Snowden for President!
Score
1
December 25, 2013 7:36:09 PM

I smell a class-action lawsuit coming! The NSA might be able to escape the lawsuit, but RSA won't!
Score
1
February 14, 2014 1:21:47 PM

RSA was not "Duped" - they wilfully *REMOVED* their existing RNG code and **REPLACED** it with Dual_EC_DRBG. No security programmer would *EVER* do that, when the usual way of folding in new random sources is XOR (so you get the strengths of all, and the weaknesses of none).RSA knew *EXACTLY* what they were doing, and why, when they chose not to do that.Not to mention the bleeding obvious - the NSA told them to, supplied the code, paid $10M, and based it on asymmetric crypto. The *only* kind of "random" you get from elliptic curves is stuff that can be un-randomized later with the private key.How stupid do they think we are?
Score
0
Tom’s guide in the world
  • Germany
  • France
  • Italy
  • Ireland
  • UK
Follow Tom’s guide
Subscribe to our newsletter
  • add to twitter
  • add to facebook
  • ajouter un flux RSS