<html>
<body>
Would this paper count as NSA vuls disclosure? Its IA Guidance unit also
claims to<br>
disclose (mitigate).<br><br>
<a href="http://www.nsa.gov/ia/mitigation_guidance/index.shtml" eudora="autourl">
http://www.nsa.gov/ia/mitigation_guidance/index.shtml<br><br>
</a><a href="http://cryptome.org/jya/paperF1.htm" eudora="autourl">
http://cryptome.org/jya/paperF1.htm<br><br>
</a><div align="center"><h1>The Inevitability of Failure:<br>
The Flawed Assumption of<br>
Security in Modern <br>
Computing Environments</h1><i>Peter A. Loscocco, Stephen D. Smalley,
<br>
Patrick A. Muckelbauer, Ruth C. Taylor, <br>
S. Jeff Turner, John F. Farrell<br>
<a href="mailto:tos@epoch.ncsc.mil">tos@epoch.ncsc.mil</a></i> <br><br>
<a href="http://www.nsa.gov:8080">National Security Agency </a><br><br>
<br><br>
</div>
At 12:56 PM 4/15/2014, you wrote:<br>
<blockquote type=cite class=cite cite="">I'm curious.  NSA claims
that it discloses vulnerabilities.  But I do<br>
not recall any such event.  Does anyone?<br><br>
<a href="http://www.wired.com/2014/04/obama-zero-day/" eudora="autourl">
http://www.wired.com/2014/04/obama-zero-day/</a><br><br>
Or have we reached Peak Deception?  We disclose, but we can't
disclose<br>
that we've disclosed?<br><br>
monkey's uncle<br>
_______________________________________________<br>
The cryptography mailing list<br>
cryptography@metzdowd.com<br>
<a href="http://www.metzdowd.com/mailman/listinfo/cryptography" eudora="autourl">
http://www.metzdowd.com/mailman/listinfo/cryptography</a></blockquote>
</body>
</html>