G+_Will Chase Posted September 6, 2013 Share Posted September 6, 2013 Wasn't there some NSA code that was offered up to Android a few months back? It seemed harmless at the time, but not in light of recent leaks: Bruce Schneier reporting for the Guardian, "As was revealed today, the NSA also works with security product vendors to ensure that commercial encryption products are broken in secret ways that only it knows about. We know this has happened historically: CryptoAG and Lotus Notes are the most public examples, and there is evidence of a back door in Windows. A few people have told me some recent stories about their experiences, and I plan to write about them soon. Basically, the NSA asks companies to subtly change their products in undetectable ways: making the random number generator less random, leaking the key somehow, adding a common exponent to a public-key exchange protocol, and so on. If the back door is discovered, it's explained away as a mistake. And as we now know, the NSA has enjoyed enormous success from this program." http://www.theguardian.com/world/2013/sep/05/nsa-how-to-remain-secure-surveillance Link to comment Share on other sites More sharing options...
G+_Tom Wisniewski Posted September 6, 2013 Share Posted September 6, 2013 Think you're referring to selinux. It is harmless. It's not a backdoor. Link to comment Share on other sites More sharing options...
G+_Sumit kumar Hooda Posted September 6, 2013 Share Posted September 6, 2013 What if this is a method of NSA publicized for opposite :) Link to comment Share on other sites More sharing options...
G+_Will Chase Posted September 6, 2013 Author Share Posted September 6, 2013 Can you elaborate Sumit kumar Hooda ? Link to comment Share on other sites More sharing options...
G+_Sumit kumar Hooda Posted September 6, 2013 Share Posted September 6, 2013 What if this whole idea is projected by NSA so that people believe it and follow it so that NSA can make us do what they want us to do, i know its weird. but just a thought :) Link to comment Share on other sites More sharing options...
G+_Will Chase Posted September 6, 2013 Author Share Posted September 6, 2013 Interesting thought. What do you think they want us to do? Link to comment Share on other sites More sharing options...
G+_Sumit kumar Hooda Posted September 6, 2013 Share Posted September 6, 2013 If we know what they want to do than actually that's not the thing they actually wants :) Link to comment Share on other sites More sharing options...
G+_Chris Shaddick Posted September 7, 2013 Share Posted September 7, 2013 The NSA code was open source, there have been lots of people look at the code and would have noticed anything like a backdoor Link to comment Share on other sites More sharing options...
G+_Will Chase Posted September 7, 2013 Author Share Posted September 7, 2013 Right. That's what was talked about on AAA at the time. Open source is the way to be but someone still has to actually go and find the potential backdoor. What if it is extremely well disguised? The last two of the three phrases I bolded really pricked my ears up. ? Link to comment Share on other sites More sharing options...
Recommended Posts