We'd be happy to help you out with that spec....
September 5, 2013 1:12 PM Subscribe
posted by lattiboy (450 comments total)
117 users marked this as a favorite
The NSA has been spending $250 million a year on its "Sigint Enabling Project". The purpose of this project is to "actively engage[s] the U.S. and foreign IT industries to covertly influence and/or overtly leverage their commercial products’ designs' to make them 'exploitable."
Classified N.S.A. memos appear to confirm that the fatal weakness, discovered by two Microsoft cryptographers in 2007, was engineered by the agency. The N.S.A. wrote the standard and aggressively pushed it on the international group, privately calling the effort “a challenge in finesse.”
“Eventually, N.S.A. became the sole editor,” the memo says.
The NSA requested that these reports not be published.
The original story from The New York Times
, and The Gaurdian
This is a good summary
of all the news from the Atlantic.
"“For the past decade, N.S.A. has led an aggressive, multipronged effort to break widely used Internet encryption technologies,” said a 2010 memo describing a briefing about N.S.A. accomplishments for employees of its British counterpart, Government Communications Headquarters, or GCHQ. “Cryptanalytic capabilities are now coming online. Vast amounts of encrypted Internet data which have up till now been discarded are now exploitable.”"