Sunday, 22 September 2013


Dare you get deeper into the troubles ...

"It’s no fun being a cynic, thinking that everything is bad and getting worse. It’s easy–especially in the security community–but it’s not fun. But, in light of the latest in the interminable string of revelations about the NSA’s efforts to eat away at the foundation of the security industry, the only alternative available is the equivalent of believing in unicorn-riding leprechauns.

The security community didn’t invent the concept of fear, uncertainty and doubt, but it has perfected it and raised it to the level of religion. It’s the way that security products are marketed and sold, but it’s also the way that the intelligence community justifies its extra-legal and, in some cases, unconstitutional, data-gathering practices. Just as vendors use the specter of catastrophic hacks, data loss and public embarrassment to push their wares, the NSA and its allies have used the dark shadow of 9/11 and global terrorism to justify their increasingly aggressive practices, some of which have now been shown to have deliberately weakened some of the fundamental building blocks of security.

Related Posts
In Wake of Latest Crypto Revelations, ‘Everything is Suspect’
September 20, 2013 , 1:18 pm
Experts Worry About Long-Term Implications of NSA Revelations
September 19, 2013 , 2:13 pm
FISC: No Phone Company Ever Challenged Metadata Collection Orders
September 18, 2013 , 11:03 am

The most damning bit of string in this ball is the news that the NSA likely inserted a back door into a key cryptographic algorithm known as DUAL EC DRBG. That’s bad. What’s worse is that RSA on Thursday sent a warning to its developer customers warning them to immediately stop using the company’s BSAFE library because it uses the compromised random number generator. That means that untold numbers of products that include the BSAFE crypto libraries are compromised."

Click To Subscribe in a Reader   

Free Content For Your Website Totally Free!

Welcome! :)



No comments :

Post a comment

Only members (obviously) can comment; no moderation; direct to page.

Note: only a member of this blog may post a comment.