Your Ad Here

How the FBI Planted Backdoors In Secure Communication Protocols [Security]

How the FBI Planted Backdoors In Secure Communication Protocols [Security] Ten years ago, the FBI paid a corporation to plant ” a range of backdoors” in OpenBSD IPSEC stack, a secure communication protocol that’s used in sites all over the internet. That’s what the individual that did it says:

I wanted to make you conscious about the undeniable fact that the FBI implemented quite a number backdoors and side channel key leaking mechanisms into the OCF, for the explicit purpose of monitoring the location to site VPN (Virtual Private Network) encryption system implemented by EOUSA (Executive Office for America Attorneys), the parent organization to the FBI.

This is usually probably the explanation why you lost your DARPA funding, they most likely caught wind of the indisputable fact that those backdoors were present and didn’t wish to create any derivative products based upon an analogous.

Those are the words of NETSEC’s former Chief Technology Officer Gregory Perry in a mail sent to the OpenBSD project leader Theo de Raadt. Consistent with him, they were paid by the FBI to do that dirty job-or patriotic, reckoning on who you ask. After ten years, Perry says that his Non Disclosure Agreement with the FBI is over, and that’s why he wanted everyone to understand.

If the allegations are true, everyone using this communication protocol can have been exposed to the FBI’s electronic spies.

Theo de Raadt sent the mail to the OpenBSD community, which has already started the quest for the FBI backdoors allegedly placed by Perry’s NETSEC developers:

It is claimed that some ex-developers (and the company they worked for) accepted US government money to place backdoors into our network stack. Since we had the first IPSEC stack available free of charge, large parts of the code are now found in many other projects/products. Over 10 years, the IPSEC code has passed through many changes and fixes, so it’s unclear what the real impact of these allegations are.

The problem, however, is also lots bigger than that. If this has happened once, what number more of these backdoors exist in other allegedly secure protocols and internet tools? [ Ars Technica ]

Source

  • Twitter
  • Facebook
  • email
  • PDF
  • Digg
  • del.icio.us
  • Google Bookmarks
  • RSS

This post is tagged: , , , ,

Leave a Reply





  • Drexel University turns to 3D scanners, printers to construct robotic dinosaursDrexel University turns to 3D scanners, printers to construct robotic dinosaurs

    3D printers, 3D scanners and robotics are frequently good enough all alone to get us inquisitive about something, but a team of researchers at Drexel University have played a further big trump card with their latest project -- they've thrown dinosaurs into the mixture. As you can most likely surmise, that project involves using a 3D scanner to create models of dinosaur bones, that are… »

  • TiVo releases Q4 results, announces transcoder and IP set-top box at the wayTiVo releases Q4 results, announces transcoder and IP set-top box at the way

    Today TiVo announced its earnings for Q4 2011 and the whole year, but the best note was word of some new boxes at the way. From the sound of factors, the corporate will deliver a four stream transcoder akin to the only we saw demonstrated at CES (pictured above) in a position to dispensing video to multiple devices (phones, tablets, etc.) inside the home simultaneously. Also at the… »

Categories

Subscribe

Enter your email address: