The maintainers of the security-conscious FreeBSD operating system have declared that they will no longer rely on the random number generators in Intel and Via's chips, on the grounds that the NSA likely has weakened these opaque hardware systems in order to ease surveillance. The decision is tied to the revelations of the BULLRUN/EDGEHILL programs, wherein the NSA and GCHQ spend $250M/year sabotaging security in standards, operating systems, software, and networks.
"For 10, we are going to backtrack and remove RDRAND and Padlock backends and feed them into Yarrow instead of delivering their output directly to /dev/random," FreeBSD developers said. "It will still be possible to access hardware random number generators, that is, RDRAND, Padlock etc., directly by inline assembly or by using OpenSSL from userland, if required, but we cannot trust them any more."
In separate meeting minutes, developers specifically invoked Snowden's name when discussing the change.
"Edward Snowdon [sic] -- v. high probability of backdoors in some (HW) RNGs," the notes read, referring to hardware RNGs. Then, alluding to the Dual EC_DRBG RNG forged by the National Institute of Standards and Technology and said to contain an NSA-engineered backdoor, the notes read: "Including elliptic curve generator included in NIST. rdrand in ivbridge not implemented by Intel... Cannot trust HW RNGs to provide good entropy directly. (rdrand implemented in microcode. Intel will add opcode to go directly to HW.) This means partial revert of some work on rdrand and padlock."
“We cannot trust” Intel and Via’s chip-based crypto, FreeBSD developers say [Dan Goodin/Ars Technica]
report this ad
Tony Fullman is one of the only people that we know to have been targeted by Prism, the NSA’s signature mass-surveillance tool: he’s a Fijian-born expatriate with New Zealand citizenship, and had his passport seized and his name added to terrorism watchlists after the NSA helped their New Zealand counterparts spy on him, intercepting his […]
Today, Chelsea Manning spoke with her attorneys for the first time since her hospitalization last week. Attorneys Chase Strangio, Vincent Ward and Nancy Hollander released the following statement on the imprisoned whistleblower’s behalf.
Wonder what kind of NSA commander-in-chief Donald Trump would be? Well, he had a phone console near his bed that could connect to every phone in his Mar-a-Lago estate, reports Aram Roston at Buzzfeed. Several workers told Buzzfeed that Trump used the equipment to secretly listen in on phone calls in the mid-2000s.
Earlier this spring, Salesforce announced that Amazon Web Services (AWS) would be its preferred public cloud infrastructure provider. Salesforce developers and AWS developers are already in-demand and paid very well for their expertise, but this partnership opens up the opportunity to become an extremely valuable asset by mastering both. Below are two in-depth courses to help you start or progress […]
Whether you’re trying to start a quirky news blog, open a local Irish pub, or sell handmade furniture out of your garage, one thing’s for sure: your business is not going to succeed if you don’t build it a professional-looking website. That’s why we’re excited to share the WordPress Wizard Bundle.This is a bundle that includes 12 courses about […]
If you’ve ever tried to quickly share a file with someone, you know there’s nothing actually quick about it. Between permissions, log-in credentials, size limitations, and download issues, it’s a miracle if you’re ever able to share the document at all. That’s why we think Droplr Pro is so essential.Droplr Pro lets you quickly, easily, and […]
report this ad
