<div dir="ltr"><div class="gmail_extra"><div class="gmail_quote">On Thu, Sep 5, 2013 at 4:57 PM, Perry E. Metzger <span dir="ltr"><<a href="mailto:perry@piermont.com" target="_blank">perry@piermont.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex"><div class="im">On Thu, 5 Sep 2013 16:53:15 -0400 "Perry E. Metzger"<br>
<<a href="mailto:perry@piermont.com">perry@piermont.com</a>> wrote:<br>> > Anyone recognize the standard?<br>
><br>
> Please say it aloud. (I personally don't recognize the standard<br>
> offhand, but my memory is poor that way.)<br>
<br>
</div>There is now some speculation in places like twitter that this refers<br>
to Dual_EC_DRBG though I was not aware that was widely enough deployed<br>
to make a huge difference here, and am not sure which international<br>
group is being mentioned. I would be interested in confirmation.</blockquote><div><br></div>I believe it is <span style="font-family:arial,sans-serif;font-size:13px">Dual_EC_DRBG. The <a href="http://www.propublica.org/article/the-nsas-secret-campaign-to-crack-undermine-internet-encryption">ProPublica story</a> says:</span></div>
</div><blockquote style="margin:0px 0px 0px 40px;border:none;padding:0px"><div class="gmail_extra"><div class="gmail_quote">Classified N.S.A. memos appear to confirm that the fatal weakness, discovered by two Microsoft cryptographers in 2007, was engineered by the agency. The N.S.A. wrote the standard and aggressively pushed it on the international group, privately calling the effort “a challenge in finesse.” </div>
</div></blockquote><div class="gmail_extra"><div class="gmail_quote">This appears to describe the NIST SP 800-90 situation pretty precisely. I found Schneier's contemporaneous article to be good at refreshing my memory: <a href="http://www.wired.com/politics/security/commentary/securitymatters/2007/11/securitymatters_1115">http://www.wired.com/politics/security/commentary/securitymatters/2007/11/securitymatters_1115</a></div>
<div class="gmail_quote"><br></div><div class="gmail_quote"> - Tim</div></div></div>