Always knew that 2 faced cocksucker had done an AG Crypto on all of his customers, http://www.reuters.com/article/2013/12/20/us-usa-security-rsa-idUSBRE9BJ1C22... thats why he had such a hard on to stop PGP bet Sternlight was receiving black funds also... hope both these fuckers get cancer and die slowly, painfully and horribly!! -- Governments are instituted among men, deriving their just powers from the consent of the governed, that whenever any form of government becomes destructive of these ends, it is the right of the people to alter or abolish it, and to institute new government, laying its foundation on such principles, and organizing its powers in such form, as to them shall seem most likely to effect their safety and happiness.’
And I am of course referring to code and events and truth that far predated the latest reuters article.. lots of white washing now however especially in that article... fucking bidzous! -- Governments are instituted among men, deriving their just powers from the consent of the governed, that whenever any form of government becomes destructive of these ends, it is the right of the people to alter or abolish it, and to institute new government, laying its foundation on such principles, and organizing its powers in such form, as to them shall seem most likely to effect their safety and happiness.’
Its hard to prove unfortunately, unless more leaks come out. Probably there exists no documentation to prove or disprove it within RSA, as to whether RSA knew about the backdoor at the time it signed the deal. Maybe there would be documents within NSA. However what you could say is no one at RSA, or in general, reacted much following Ferguson et al's pointing out the design issue of there being an undetectable backdoor in the RNG. Adam ps I think its Bidzos. On Sat, Dec 21, 2013 at 02:18:45AM -0800, gwen hastings wrote:
And I am of course referring to code and events and truth that far predated the latest reuters article.. lots of white washing now however especially in that article...
fucking bidzous!
-- Governments are instituted among men, deriving their just powers from the consent of the governed, that whenever any form of government becomes destructive of these ends, it is the right of the people to alter or abolish it, and to institute new government, laying its foundation on such principles, and organizing its powers in such form, as to them shall seem most likely to effect their safety and happiness.’
On Sat, Dec 21, 2013 at 3:13 AM, Adam Back <adam@cypherspace.org> wrote:
Its hard to prove unfortunately, unless more leaks come out... Maybe there would be documents within NSA.
the leaks have sharpened my appetite for names and numbers. collaborators in mass product perversion need to be named; the extent of filthy lucre lures employed delineated; today!
On 21 December 2013 06:13, Adam Back <adam@cypherspace.org> wrote:
ps I think its Bidzos.
I'm confused, but maybe missing something? The article says: ''' The stakes rose when more technology companies adopted RSA's methods and Internet use began to soar. The Clinton administration embraced the Clipper Chip, envisioned as a mandatory component in phones and computers to enable officials to overcome encryption with a warrant. RSA led a fierce public campaign against the effort, distributing posters with a foundering sailing ship and the words "Sink Clipper!" A key argument against the chip was that overseas buyers would shun U.S. technology products if they were ready-made for spying. Some companies say that is just what has happened in the wake of the Snowden disclosures. The White House abandoned the Clipper Chip and instead relied on export controls to prevent the best cryptography from crossing U.S. borders. RSA once again rallied the industry, and it set up an Australian division that could ship what it wanted. "We became the tip of the spear, so to speak, in this fight against government efforts," Bidzos recalled in an oral history. ''' ''' RSA, meanwhile, was changing. Bidzos stepped down as CEO in 1999 to concentrate on VeriSign, a security certificate company that had been spun out of RSA. The elite lab Bidzos had founded in Silicon Valley moved east to Massachusetts, and many top engineers left the company, several former employees said. ''' It seems like Bidzous was out of RSA long before DUAL EC PRNG was even proposed, and was in fact campaigning and strategizing against RSA while he was there. Where are references to other accusations or behavior? -tom
Ask Gwen he wrote the OP. My response was about the potential complicity not the personnel. The bit you quoted that I wrote was me putting a ps to point out that Gwen mispelt his name (and I saw you wrote Bidzous also below - again I believe its Bidzos). Adam On Sun, Dec 22, 2013 at 01:14:36PM -0500, Tom Ritter wrote:
On 21 December 2013 06:13, Adam Back <adam@cypherspace.org> wrote:
ps I think its Bidzos.
I'm confused, but maybe missing something? The article says:
''' The stakes rose when more technology companies adopted RSA's methods and Internet use began to soar. The Clinton administration embraced the Clipper Chip, envisioned as a mandatory component in phones and computers to enable officials to overcome encryption with a warrant.
RSA led a fierce public campaign against the effort, distributing posters with a foundering sailing ship and the words "Sink Clipper!"
A key argument against the chip was that overseas buyers would shun U.S. technology products if they were ready-made for spying. Some companies say that is just what has happened in the wake of the Snowden disclosures.
The White House abandoned the Clipper Chip and instead relied on export controls to prevent the best cryptography from crossing U.S. borders. RSA once again rallied the industry, and it set up an Australian division that could ship what it wanted.
"We became the tip of the spear, so to speak, in this fight against government efforts," Bidzos recalled in an oral history. '''
''' RSA, meanwhile, was changing. Bidzos stepped down as CEO in 1999 to concentrate on VeriSign, a security certificate company that had been spun out of RSA. The elite lab Bidzos had founded in Silicon Valley moved east to Massachusetts, and many top engineers left the company, several former employees said. '''
It seems like Bidzous was out of RSA long before DUAL EC PRNG was even proposed, and was in fact campaigning and strategizing against RSA while he was there. Where are references to other accusations or behavior?
-tom
Interesting ovelapping dates for Bidzos' participation in RSA and Verisign. Does the alleged tampering with RSA extend to Verisign? We use a Verisign token. Is that suspect? http://www.verisigninc.com/en_US/news-events/press-room/executive-bios/james... James Bidzos is president and chief executive officer of Verisign. He also serves as chairman of the board of directors and has been executive chairman since August 2009. As the founder of Verisign, Bidzos is an Internet and security industry pioneer whose accomplishments include building RSA Security into the early standard-bearer for authentication and encryption, and launching Verisign as a company in 1995 to develop the digital certificate infrastructure for Internet commerce. Before returning to the president and chief executive role in August 2011, Bidzos served as Verisign's first president and CEO and also served as Verisign's chairman of the board of directors from April 1995 until December 2001, as vice chairman from December 2001 to July 2007, and as interim CEO from July 2008 to August 2009. Bidzos served as president and CEO of RSA Security from 1986 to February 1999, and then served as RSA's vice chairman from 1999 to May 2002. Recently, Bidzos was inducted into The National Cyber Security Hall of Fame. He is also one of Time Magazine's "Digital 50" and is in CRN's Computer Industry Hall of Fame.
On Sun, Dec 22, 2013 at 11:11 AM, John Young <jya@pipeline.com> wrote:
Interesting ovelapping dates for Bidzos' participation in RSA and Verisign. Does the alleged tampering with RSA extend to Verisign? We use a Verisign token. Is that suspect?
another reason to love certificate transparency, convergence, pinning, etc... (yes John, httpS may be pwned, but it still flips pcap parser the bird! ;)
participants (5)
-
Adam Back -
coderman -
gwen hastings -
John Young -
Tom Ritter