Stories documenting the NSA’s intentional attempt to weaken encryption standards have been floating around for months now, but Reuters put out a story Friday that documents just how far the out of control agency has gone to weaken security for hundreds of millions of computer users.
RSA has been a leader in cryptography ever since it revolutionized the field after its genesis in the 1970s from three MIT professors. The company actually provided a lot of successful pushback against the NSA and the Clinton Administration’s push to introduce the Clipper Chip in the 1990’s, but has completely sold out in recent years as it became more corporatized and many of the technology leaders left. If it is true that the only received $10 million from the NSA, they sold out the American public very cheaply. RSA is now owned by EMC
Documents leaked by former NSA contractor Edward Snowden show that the NSA created and promulgated a flawed formula for generating random numbers to create a “back door” in encryption products, the New York Times reported in September. Reuters later reported that RSA became the most important distributor of that formula by rolling it into a software tool called Bsafe that is used to enhance security in personal computers and many other products.
Undisclosed until now was that RSA received $10 million in a deal that set the NSA formula as the preferred, or default, method for number generation in the BSafe software, according to two sources familiar with the contract. Although that sum might seem paltry, it represented more than a third of the revenue that the relevant division at RSA had taken in during the entire previous year, securities filings show.
The earlier disclosures of RSA’s entanglement with the NSA already had shocked some in the close-knit world of computer security experts. The company had a long history of championing privacy and security, and it played a leading role in blocking a 1990s effort by the NSA to require a special chip to enable spying on a wide range of computer and communications products.
Started by MIT professors in the 1970s and led for years by ex-Marine Jim Bidzos, RSA and its core algorithm were both named for the last initials of the three founders, who revolutionized cryptography. Little known to the public, RSA’s encryption tools have been licensed by most large technology companies, which in turn use them to protect computers used by hundreds of millions of people.
Donate bitcoins: 1LefuVV2eCnW9VKjJGJzgZWa9vHg7Rc3r1
Follow me on Twitter.