| ▲ | some_furry 3 days ago | |||||||
A NOBUS backdoor in an asymmetric primitive that looks like "X% of all keys is weak" would not explain "let's move the entire fucking federal governnent to this algorithm including implementations sourced by the private sector that don't do our secret sauxe". Dual_EC_DRBG is the shape of backdoor that would need to apply here: even if you knew the structure of it, you would need an additional private number to attack it. Recall the Juniper vulnerability where another threat actor simply replaced the EC public key used by Juniper's Dual_EC implementation. NOBUS without some mathematical assurance that, even should an adversary discover the same break through, they cannot decrypt the same traffic would be too risky when you consider the NSA's self interest and dual mission. | ||||||||
| ▲ | digitalPhonix 2 days ago | parent [-] | |||||||
> A NOBUS backdoor in an asymmetric primitive that looks like "X% of all keys is weak" That’s not a NOBUS backdoor. It’s a different type of backdoor and I’m pointing out that proving there is no NOBUS backdoor doesn’t mean there’s no other backdoor. It’s a counterexample that I came up with in 5 minutes, not a proof that it’s useful to a state actor. | ||||||||
| ||||||||