Monday, September 23, 2013

The Many Flaws of Dual_EC_DRBG

Matthew Green (via Jonathan Rentzsch):

In this post I’m going to try to explain the curious story of Dual-EC. While I’ll do my best to keep this discussion at a high and non-mathematical level, be forewarned that I’m probably going to fail at least at a couple of points.

Dan Goodin:

Officials from RSA Security are advising customers of the company’s BSAFE toolkit and Data Protection Manager to stop using a crucial cryptography component in the products that were recently revealed to contain a backdoor engineered by the National Security Agency (NSA).

Comments RSS · Twitter

Leave a Comment