[148621] in cryptography@c2.net mail archive
Re: [Cryptography] Fwd: [IP] RSA Response to Media Claims Regarding
daemon@ATHENA.MIT.EDU (Phillip Hallam-Baker)
Mon Dec 23 10:32:50 2013
X-Original-To: cryptography@metzdowd.com
In-Reply-To: <CAOLP8p5F0cxLtbymp83MmwJwatVaDyMhWeFTP1UF2RSffZXAKw@mail.gmail.com>
Date: Mon, 23 Dec 2013 08:30:09 -0500
From: Phillip Hallam-Baker <hallam@gmail.com>
To: Bill Cox <waywardgeek@gmail.com>
Cc: Cryptography List <cryptography@metzdowd.com>
Errors-To: cryptography-bounces+crypto.discuss=bloom-picayune.mit.edu@metzdowd.com
--===============6396490140023636491==
Content-Type: multipart/alternative; boundary=089e01419b0670ccc604ee33a08e
--089e01419b0670ccc604ee33a08e
Content-Type: text/plain; charset=ISO-8859-1
On Mon, Dec 23, 2013 at 12:08 AM, Bill Cox <waywardgeek@gmail.com> wrote:
> Does this mean RSA denies accepting $10M for making the NSA RNG the
> default in BSAFE? You did not say so in your post. So now RSA "categorically
> denies" entering into a secret contract with the NSA. If it wasn't secret,
> why didn't I hear about it? I'm pretty sure it would have made the geek
> news, and I may not be a crypto expert, but I follow geek news (slashdot
> would have burned RSA alive).
>
> I think I get that RSA employees have been duped by the NSA. It's the
> NSA's job after all, and they have smart people, apparently smarter than
> many RSA employees. I don't get any sense that RSA might have made any
> mistakes from your post. Your post seems like something a corporate lawyer
> wrote. I hate that, and I have good personal reasons for it.
>
I remember RSA getting money from the NSA to put ECC into BSafe.
It may not have been very public, but it was known in the industry. I was
working for a competitor and the natural question was 'hey can we get some
of that'. But they did put out a press release that I cited earlier.
The significant part here is that it moves the start of the DUAL_EC program
back to 2004. Which was when Hayden, not Alexander was running the show.
--
Website: http://hallambaker.com/
--089e01419b0670ccc604ee33a08e
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
<div dir=3D"ltr"><br><div class=3D"gmail_extra"><br><br><div class=3D"gmail=
_quote">On Mon, Dec 23, 2013 at 12:08 AM, Bill Cox <span dir=3D"ltr"><<a=
href=3D"mailto:waywardgeek@gmail.com" target=3D"_blank">waywardgeek@gmail.=
com</a>></span> wrote:<br>
<blockquote class=3D"gmail_quote" style=3D"margin:0 0 0 .8ex;border-left:1p=
x #ccc solid;padding-left:1ex"><div dir=3D"ltr"><div class=3D"gmail_extra">=
<span style=3D"font-family:arial,sans-serif;font-size:19.200000762939453px"=
>Does this mean RSA denies accepting $10M for making the NSA RNG the defaul=
t in BSAFE? =A0You did not say so in your post. =A0So now RSA "</span>=
<span style=3D"font-family:arial,sans-serif;font-size:19.200000762939453px"=
>categorically denies" entering into a secret contract with the NSA. =
=A0If it wasn't secret, why didn't I hear about it? =A0I'm pret=
ty sure it would have made the geek news, and I may not be a crypto expert,=
but I follow geek news (slashdot would have burned RSA alive).</span><div =
style=3D"font-family:arial,sans-serif;font-size:19.200000762939453px">
<br></div><div style=3D"font-family:arial,sans-serif;font-size:19.200000762=
939453px">I think I get that RSA employees have been duped by the NSA. =A0I=
t's the NSA's job after all, and they have smart people, apparently=
smarter than many RSA employees. =A0I don't get any sense that RSA mig=
ht have made any mistakes from your post. =A0Your post seems like something=
a corporate lawyer wrote. =A0I hate that, and I have good personal reasons=
for it.</div>
</div></div>
</blockquote></div><div class=3D"gmail_extra"><br></div><div class=3D"gmail=
_extra">I remember RSA getting money from the NSA to put ECC into BSafe.=A0=
</div><div class=3D"gmail_extra"><br></div><div class=3D"gmail_extra">It ma=
y not have been very public, but it was known in the industry. I was workin=
g for a competitor and the natural question was 'hey can we get some of=
that'. But they did put out a press release that I cited earlier.</div=
>
<br clear=3D"all"><div><br></div><div>The significant part here is that it =
moves the start of the DUAL_EC program back to 2004. Which was when Hayden,=
not Alexander was running the show.=A0</div><div><br></div><div><br></div>
<div><br></div>-- <br>Website: <a href=3D"http://hallambaker.com/">http://h=
allambaker.com/</a><br>
</div></div>
--089e01419b0670ccc604ee33a08e--
--===============6396490140023636491==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
_______________________________________________
The cryptography mailing list
cryptography@metzdowd.com
http://www.metzdowd.com/mailman/listinfo/cryptography
--===============6396490140023636491==--
