[Cryptography] Opening Discussion: Speculation on "BULLRUN"
Perry E. Metzger
perry at piermont.com
Thu Sep 5 21:56:49 EDT 2013
On Fri, 06 Sep 2013 13:50:54 +1200 Peter Gutmann
<pgut001 at cs.auckland.ac.nz> wrote:
> "Perry E. Metzger" <perry at piermont.com> writes:
> Does that make them NSA plants? There's drafts for one or
> two more fairly basic fixes to significant problems from other
> people that get stalled forever, while the draft for adding sound
> effects to the TLS key exchange gets fast-tracked. It's just what
> standards committees do.
Maybe. Yesterday I would have consistently ascribed things to
bureaucracy instead of malice. Today, I'm less sure. At the very
least, the current revelations make such things less benevolent --
whether from malice or stupidity, we can no longer sit on security
fixes on the basis that "no one will exploit them" and "they're not
important to the user".
Perry E. Metzger perry at piermont.com
More information about the cryptography