[Cryptography] What do we know? (Was 'We cannot trust' ...)
Phillip Hallam-Baker
hallam at gmail.com
Sat Dec 21 22:06:41 EST 2013
On Sat, Dec 21, 2013 at 5:21 PM, andrew cooke <andrew at acooke.org> wrote:
> On Sat, Dec 21, 2013 at 12:59:25PM -0500, Phillip Hallam-Baker wrote:
> > The deal was reported at the time, I heard it as 'NSA pays RSA $10
> million
> > to make ECC available in BSafe'. Which was not at all surprising given
> that
> > we know RSA2048 (maybe RSA4096) is the end of the line for practical RSA.
>
> do you have any reference for that? i am trying to find support using
> google's search with date constraints, but am not finding anything.
>
> the nsa paid $25m for certicom's patents according to
> http://www.securityfocus.com/columnists/324 - maybe that is what you
> remember?
>
> all the reports on the $10m deal emphasise that it is new information; if
> it
> was reportd at the time then that is quite significant.
>
I don't remember the source, sorry. It was quite likely verbal.
They put out this PR when the SuiteB came out.
http://www.thefreelibrary.com/U.S.+Department+of+Defense+Agency+Selects+RSA+Security+Encryption...-a0143764730
But I remembered the deal when the first round of the DUAL_EC thing came
out. And no, it was not the certicom deal which was completely different.
The NSA was pushing ECC at the time hard. They didn't have any reason to
hide the deal.
What would be new data is confirming that the DUAL_EC RNG was the
compromise hinted at in the previous report. We had a report that the NSA
had bongoed some standard and there was consensus that the DUAL_EC was
bongoed.
--
Website: http://hallambaker.com/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20131221/451fd6e4/attachment.html>
More information about the cryptography
mailing list