Stories documenting the NSA’s intentional attempt to weaken encryption standards have been floating around for months now, but Reuters put out a story Friday that documents just how far the out of control agency has gone to weaken security for hundreds of millions of computer users.
RSA has been a leader in cryptography ever since it revolutionized the field after its genesis in the 1970s from three MIT professors. The company actually provided a lot of successful pushback against the NSA and the Clinton Administration’s push to introduce the Clipper Chip in the 1990’s, but has completely sold out in recent years as it became more corporatized and many of the technology leaders left. If it is true that the only received $10 million from the NSA, they sold out the American public very cheaply. RSA is now owned by EMC
From Reuters:
Documents leaked by former NSA contractor Edward Snowden show that the NSA created and promulgated a flawed formula for generating random numbers to create a “back door” in encryption products, the New York Times reported in September. Reuters later reported that RSA became the most important distributor of that formula by rolling it into a software tool called Bsafe that is used to enhance security in personal computers and many other products.
Undisclosed until now was that RSA received $10 million in a deal that set the NSA formula as the preferred, or default, method for number generation in the BSafe software, according to two sources familiar with the contract. Although that sum might seem paltry, it represented more than a third of the revenue that the relevant division at RSA had taken in during the entire previous year, securities filings show.
The earlier disclosures of RSA’s entanglement with the NSA already had shocked some in the close-knit world of computer security experts. The company had a long history of championing privacy and security, and it played a leading role in blocking a 1990s effort by the NSA to require a special chip to enable spying on a wide range of computer and communications products.
Started by MIT professors in the 1970s and led for years by ex-Marine Jim Bidzos, RSA and its core algorithm were both named for the last initials of the three founders, who revolutionized cryptography. Little known to the public, RSA’s encryption tools have been licensed by most large technology companies, which in turn use them to protect computers used by hundreds of millions of people.
Read more
Follow me on Twitter.
One of the biggest debates happening at the intersection of technology and privacy at the moment revolves around the U.S. government’s fear that the American peasantry may gain access to strong encryption in order to protect their private communications. Naturally, this isn’t something Big Brother wants to see, and the “solution” proposed by the status quo revolves around forcing technology companies to provide a way for the state to have access to all secure communications when they deem it necessary.