[Cryptography] NSA disclosure of vulnerabilities
Ben Laurie
ben at links.org
Wed Apr 16 06:09:31 EDT 2014
On 15 April 2014 19:27, John Young <jya at pipeline.com> wrote:
> Would this paper count as NSA vuls disclosure? Its IA Guidance unit also
> claims to
> disclose (mitigate).
>
> http://www.nsa.gov/ia/mitigation_guidance/index.shtml
>
> http://cryptome.org/jya/paperF1.htm
>
> The Inevitability of Failure:
> The Flawed Assumption of
> Security in Modern
> Computing Environments
>
> Peter A. Loscocco, Stephen D. Smalley,
> Patrick A. Muckelbauer, Ruth C. Taylor,
> S. Jeff Turner, John F. Farrell
> tos at epoch.ncsc.mil
>
> National Security Agency
So, these are the SELinux guys, right? Certainly they did something
useful-ish for the world.
I still remember the shock when an NSA guy leaned over to me during
lunch and said "perhaps you'd like to review our code?" (yes, it was
one of the SELinux guys, I forget which).
More information about the cryptography
mailing list