So they don't know where it comes from, allegedly???

Does that help?

They depend on "trap door" equations, ones that have no analytical inverse solution. An example is the product of two large prime numbers. It is not possible to factor a very large number except for exhaustive search. Such facts are used to design these trap doors.

By increasing the length of keys one can make these algorithms arbitrarily secure, meaning that the ability to crack a shorter key doesn't mean one could crack a longer one in any reasonable length of time even with huge computer resources (like the NSA).

These are the principles that make strong encryption so secure. It is not reasonable to claim that they are not safe. And there are plenty of people whose jobs are to insure their continued security.

...(if I were to put my tinfoil hat on) is that the NSA (or other government agency) has somehow influenced code commonly used to generate encryption keys such that the solution space one needs to search is significantly smaller than you'd get have to deal with if key generation used purely random factors.

the encryption they paid money or otherwise influenced the companies to leave vulnerabilities for them to exploit.

cooperative hardware, not a brute force break.

Cooperative hardware.

To have actually cracked the encryption the "hard way" they would have had to outsmart the entire world's mathematical community, which is highly doubtful. But I can easily see them influencing commercial encryption implementations in order to make them easier to crack, for example in the way you describe.

They are far easier.

Many computers today have noise circuits in them for generating random numbers. OS like Linux can access these as part of their kernels. I am not sure how prevalent this is now. It's been a few years since I've been involved deeply. But the Linux kernel still has the random device.

When one generates a new key pair for public key crypto such a device is used along with another source, for instance typing on a keyboard, to generate the keys. There is no way with an open source software that the NSA can get in to influence such key generation since it can be done while disconnected from the Net and the source code can be checked (and IS checked).

As far as proprietary software, I don't think many companies would put their clients at risk by deliberately building insecure crypto software, even at the request of the NSA. If I were lead tech, I would tell NSA to get bent. The chance that it would get leaked out is too great and then clients using the software would be open to exploit. Imagine if the client was the US Federal Reserve Bank, for instance. Or, a large state bank somewhere.

I think strong crypto is secure.

Good post, though. Interesting to ponder these things.

The problem with commercial vendors is that the government could go to them and force them to put in a backdoor and also force them not to tell anyone about it. If I were lead tech, I would also want to tell the NSA to get bent, but then I would probably find myself out of a job, and also with a gag order that would send me to prison if I told the press.

I think the real issue, though, is not breaking the crypto, but how easy it is to get trojan horses. Even with open source. I've installed who knows how many packages. Yes in theory, they're open source, and malicious code would have been found by "thousands of eyes", but in reality who's to say the NSA hasn't put in a few obfuscated lines of code somewhere in there.

That's why a lot of eyes on the code are a good idea. The more, the better.

Also, install only from known secure sites so no Trojans can be snuck into the code.

I started Linux with Slackware 2.x (can't remember, it was an early 2.x) in the mid 90's. I've used SuSE, Debian, Gentoo, and Ubuntu. So, I've had a lot of experience with Linux. Now I stick with Ubuntu, but my big box is an older Gentoo AMD 64 twin core. Runs like a dream.

are an argument, we are doomed. Particularly with elliptical.

Constants are notoriously easy to penetrate, and random has never meant random in machine language due to the fact that it is possible to track the generation of a "random" constant.

And I don't know how the NSA can sneak into my machine to force a key. I mean, they aren't magic.

Please expand what you're saying as I am unsure of what that is.

has always been a problem.

How does one insure a large cycle size? Eventually all pseudo random number generators must repeat their cycles. I played with them per Knuth once and realized how bad the problem could be.

I would hope they've solved that problem by now.

Linux has /dev/random but I am no kernel expert. I presume it is meant to connect to hardware RNG, like a noise circuit, or a very fast clock. I haven't built a computer in a few years, so I don't know if it connects to anything on my current boxes.

But I have little need for strong encryption these days. When I was in the business, I used it all the time. I've not kept up on things for a couple of years, but I was pretty deep into things for some time.

Thanks for your response.

that's why it is a hotly debated topic and harshly enjoined decision.

You are obviously more involved and informed. That's why I ask.

I am eating the worst pizza in the history of pizza, but I'm starving.

EDIT: Aerows, ate the worst pizza ever made by mankind, ate it, survived, and lived to complain about it. Vomiting may occur.

I think it grabs some "truly random" bits (from somewhere) and expands them into more pseudorandom bits in a "good" way. So obviously I'm not an expert here but that was my impression.

On the MoBo they put what is just a noise circuit -- a diode of some kind or something like that which spits out random noise. All one does is read bits off the noise somehow. Voila! You have your random element. (Or something like that.) One could also get a random seed from the least significant bytes of a very fast clock.

There's provisions for such a thing in the kernel when one compiles it, or as a kernel library on precompiled kernels. That's what gives you /dev/random AFAIK.

One would have to look at ones MoBo spec to see if it has one of these and I haven't done that in years. I am kind of out of things these days. My info may be out of date.

Me, I don't give a shit. I always do my best to say what I mean.

I have bridges to sell you. Proprietary code is notorious for containing things that you would rather it didn't.

Have they cracked the actual protocols, or just forced commercial vendors to put in back doors? An important question IMO.

Everyone can examine the source and can compile their own. If you have the source, and you control the compile, you control the code.

Maybe I'm naive, but that is my thought, anyway.

But here's the thing. I'm a computer/math type, and I certainly don't read close to 1% of the source that install. In fact, I've read 0% of the Linux kernel. Who's to know if the NSA has snuck in some obfuscated backdoor? Certainly not me.

Why not? It's kind of important to know what you are deploying on a system.

It's kind of like a doctor proudly declaring that he's not read any of the Merck resource on drugs because he'd know if they caused a reaction.

Don't get me wrong, I'm not kicking you for being so certain of such things, but I guess I'm not the same. I will plow deep into the things that I compile to use them to the best of my ability. Best of my ability.

Believe, me, understanding the Linux kernel better is on my list, but it just never reaches the top.

Regarding being "certain", I hope I didn't give the wrong impression. I actually feel fairly uncertain. I kinda sorta hope that some other people (like you) are looking at the open-source software I install and making sure it works and is safe, but my point is that I haven't personally made sure of that, and I'm someone who actually could if I really wanted to. Most open-source users wouldn't have the technical knowledge to read the source even if they wanted. And even if I read a few percent of the source, which would take a very long time, I still would be very far from being able to spot some malicious code.

My point is that even with open source, we are (or at least I am) still relying on the "thousand eyes" to make sure things are right, as opposed to my own eyes.

They can't decrypt strong encryption. What they've achieved is success in twisting the arms (or perhaps gently nudging) corporations into including back doors in their proprietary encryption software. Open source stuff such as OpenPGP and Truecrypt are still uncompromised.

First, how many pages would the average program print out if you printed out the source code?
For instance: How many pages of text would the Linux kernel be?

Second, what if the 1,000 eyes were only a few handfuls of something or other?
Because 1,000 eyes implies 500 people scouring every page of code tirelessly every day... when actuality probably gets us maybe a few dozen looking at some choice areas?

amiright?

I don't want to be.

You were supposed to come back with a retort about 1000 nerds, locked in a mothers basement, reading every single line of code that ever gets compiled.

Thanks...

Now my weekend is ruined...

You suck...








LOL J/K just kidding.

kinda...

Sorry. You have it right about open source code. It gets looked at, but mostly by people not competent to write it. So malicious, but well hidden stuff would get missed.