Forgot your password?
typodupeerror

+ - Academics should not remain silent on hacking->

Submitted by ananyo
ananyo (2519492) writes "The Guardian's technology editor, Charles Arthur, asks in an opinion piece in Nature why researchers have remained largely silent in the wake of the revelation that the US National Institute of Standards and Technology's standard for random numbers used for cryptography had been weakened by the NSA:
"The nature of the subversions sounds abstruse: the random-number generator, the 'Dual EC DRBG' standard, had been hacked by the NSA and the UK's GCHQ so that its output would not be as random as it should have been. That might not sound like much, but if you are trying to break an encrypted message, the knowledge that it is hundreds or thousands of times weaker than advertised is a great encouragement."
Arthur attributes the silence of UK academics, at least, to pressure from GCHQ. He goes on to say:
"For those who do care, White and Matthew Green, who teaches cryptography at Johns Hopkins University in Baltimore, Maryland, have embarked on an ambitious effort to clean up the mess — one that needs help.
They have created a non-profit organization called OpenAudit.org, which aims to recruit experts to provide technical assistance for security projects in the public interest, especially open-source security software.""

Link to Original Source
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Academics should not remain silent on hacking

Comments Filter:

Man is the best computer we can put aboard a spacecraft ... and the only one that can be mass produced with unskilled labor. -- Wernher von Braun

Working...