undefined | Better HN

0 pointsbillyhoffman3y ago0 comments

While RSA isn't a state-funded technology company, they did accept a $10M payment from the NSA to make their BSafe security product default to use the DUAL_EC_DRBG cryptographically secure pseudorandom number generator. Which the NSA had designed and backdoored...

https://www.theverge.com/2013/12/20/5231006/nsa-paid-10-mill...

0 comments

XorNot3y ago

Are the primary sources on this story from the Snowden leaks available somewhere? Even the article here points to another Reuters article which isn't available any more, and I've never been able to find out which documents people were referencing about this?

supriyo-biswas3y ago

https://hyperelliptic.org/tanja/vortraege/20140506.pdf contains excerpts from the original article. Also searching for “Project Bullrun” brings up various articles on the Dual EC DRBG attacks.

Red_Leaves_Flyy3y ago

Check the torrents?

j / k navigate · click thread line to collapse