[Cryptography] Back door competition for TrueCrypt fork?
Bear
bear at sonic.net
Sat Jun 7 23:34:59 EDT 2014
On Sat, 2014-06-07 at 17:54 +0200, tpb-crypto at laposte.net wrote:
> > Message du 06/06/14 22:16
> > De : "Bill Cox"
> >
> > I need your guys opinion on the following idea. I think it would enhance
> > security to have a back-door competition to keep our core developers
> > security auditing skills sharp. However, there is some strong opposition
> > to the idea. What do you guys think?
> >
> > This is my slightly spelling corrected email sent to the list yesterday:
> >
>
> Your idea is interesting for a second moment, right now we need to detect prior inserted backdoors and bugs, deal with them, then thing about practicing backdoor creation and detection.
I think the idea is that when people are looking for the new
backdoors and bugs, they'll find backdoors and bugs....
including some existing ones that they otherwise wouldn't.
It's all about moving from an assumption of trustworthiness
to an assumption of untrustworthiness - definitely worthwhile
for a security product.
Bear
More information about the cryptography
mailing list