Hacker News new | ask | show | jobs
by JamesNay 1754 days ago
Bloomberg at the frontline of "having no idea how anything works at all".

When the NSA designed DEC, they primed it with constants, that you'd need to know to break the encryption with low effort.

Somebody discovered that and made it known publicly.

So now before the rumors evolve into actual security engineers looking into it, the NSA creates a scapegoat APT, that "altered" some "code" at Juniper.

Of course nobody finds out, who those APT are, because attribution is 1% more accurate than astrology.
2 comments
tomerv 1754 days ago
I lost you at the second paragraph. Crypto researches generally agree today that the NSA actually chose strong contents for DES (I assume that's what you meant by DEC?). They invented differential cryptanalysis a decade before anyone else, and used that to strengthen the cypher. Everyone suspected their motives at the time, but eventually academy caught up with the knowledge the NSA had, and could show that the constants are in fact good.

Too bad they're doing the opposite of that nowadays...

link
ragona 1754 days ago
The GP is talking about Dual EC (the infamous algorithm in question) and abbreviating it DEC.
link
hjamesd 1754 days ago
Indeed, like this one

https://www.bloomberg.com/news/features/2018-10-04/the-big-h...

link