The New York Times has published further details of last week's leaked documents detailing the NSA's program of sabotage to crypto products and standards. The new report confirms that the standard that the NSA sabotaged was the widely-suspected NIST Dual EC DRBG standard. The Times reports that the NSA then pushed its backdoored standard through the International Organization for Standardization and the Canadian Communications Security Establishment.
NIST has re-opened the comments on its standard with the hope of rooting out the NSA sabotage to the random number generator and restoring trust in its work products.
The agency said that because of cryptographers’ concerns, it would reopen the public comment period for three publications — Special Publication 800-90A and drafts of Special Publications 800-90B and 800-90C — which all use the random number generator in question.
“If vulnerabilities are found in these or any other N.I.S.T. standard, we will work with the cryptographic community to address them as quickly as possible,” the agency’s statement said.
“I know from firsthand communications that a number of people at N.I.S.T. feel betrayed by their colleagues at the N.S.A.,” Mr. Green said in an interview Tuesday. “Reopening the standard is the first step in fixing that betrayal and restoring confidence in N.I.S.T.”
Government Announces Steps to Restore Confidence on Encryption Standards [Nicole Perlroth/NYT]
(via Interesting People)
They told the public everything would be okay with the virus outbreak. Then they privately dumped stocks. Over the past 24 hours, news has spread that various U.S. lawmakers received advance private briefings about the severity of an oncoming coronavirus/COVID-19 pandemic — then, they sold stocks before the public knew how bad it would get, […]
President Trump today announced that he is commuting the prison sentence of Rod Blagojevich, a former Illinois governer jailed for corruption, and pardoning Bernard Kerik, the former New York Police Commissioner jailed for tax fraud. Blagojevich attempted to sell Barack Obama’s senate seat; Kerik was found to have accepted a $250,000 bribe from a billionaire […]
“What does this guy worth $60 billion own, who wants to be president?”
Can’t sit still during the pandemic? You’re not alone. Many folks are using their social distancing time to decompress and zone out on Tiger King, some even pushing back against the idea of being productive. But plenty of others find themselves bored, restless, and in need of projects and goals, somewhere to direct their energy. […]
Even if you don’t miss much else about the office right now, there’s a good chance your home laptop is making you nostalgic for the added efficiency of that pair of monitors on your desk at work to spread out your workflow. There’s no telling how long the new normal may continue to be the […]
If you’re looking to become a software engineer or it’s an idea you’ve tossed around half-seriously, there may be no better time than now to take the leap. It’s one of the fastest-growing, most in-demand roles already. And in the midst of the pandemic, between the extra hours you likely have in your day, and […]