nsa – Page 3 – SSL and internet security news

On the Subversion of NIST by the NSA

June 23, 2022 infossl

academic papers, algorithms, cryptography, nist, nsa, Security technology, Uncategorized

Nadiya Kostyuk and Susan Landau wrote an interesting paper: “Dueling Over DUAL_EC_DRBG: The Consequences of Corrupting a Cryptographic Standardization Process“: Abstract: In recent decades, the U.S. National Institute of Standards and Technology (NIST), which develops cryptographic standards for non-national security agencies of the U.S. government, has emerged as the de facto international source for cryptographic … Read More “On the Subversion of NIST by the NSA” »

The NSA Says that There are No Known Flaws in NIST’s Quantum-Resistant Algorithms

May 16, 2022 infossl

encryption, nist, nsa, quantum computing, Security technology, Uncategorized

Rob Joyce, the director of cybersecurity at the NSA, said so in an interview: The NSA already has classified quantum-resistant algorithms of its own that it developed over many years, said Joyce. But it didn’t enter any of its own in the contest. The agency’s mathematicians, however, worked with NIST to support the process, trying … Read More “The NSA Says that There are No Known Flaws in NIST’s Quantum-Resistant Algorithms” »

Details of an NSA Hacking Operation

March 3, 2022 infossl

cybersecurity, doxing, hacking, nsa, russia, Security technology, Uncategorized

Pangu Lab in China just published a report of a hacking operation by the Equation Group (aka the NSA). It noticed the hack in 2013, and was able to map it with Equation Group tools published by the Shadow Brokers (aka some Russian group). …the scope of victims exceeded 287 targets in 45 countries, including … Read More “Details of an NSA Hacking Operation” »

Interview with the Head of the NSA’s Research Directorate

February 3, 2022 infossl

data collection, interviews, nsa, Security technology, Uncategorized

MIT Technology Review published an interview with Gil Herrera, the new head of the NSA’s Research Directorate. There’s a lot of talk about quantum computing, monitoring 5G networks, and the problems of big data: The math department, often in conjunction with the computer science department, helps tackle one of NSA’s most interesting problems: big data. … Read More “Interview with the Head of the NSA’s Research Directorate” »

Hardening Your VPN

September 30, 2021 infossl

advanced persistent threats, nsa, Security technology, Uncategorized, vpn

The NSA and CISA have released a document on how to harden your VPN. Powered by WPeMatico

More Detail on the Juniper Hack and the NSA PRNG Backdoor

September 9, 2021 infossl

backdoors, china, firewall, hacking, Juniper, nsa, random numbers, Security technology, Uncategorized

We knew the basics of this story, but it’s good to have more detail. Here’s me in 2015 about this Juniper hack. Here’s me in 2007 on the NSA backdoor. Powered by WPeMatico

More Military Cryptanalytics, Part III

August 31, 2021 infossl

cryptanalysis, cryptography, foia, history of cryptography, military, nsa, Security technology, Uncategorized

Late last year, the NSA declassified and released a redacted version of Lambros D. Callimahos’s Military Cryptanalytics, Part III. We just got most of the index. It’s hard to believe that there are any real secrets left in this 44-year-old volume. Powered by WPeMatico

Newly Unclassified NSA Document on Cryptography in the 1970s

May 10, 2021 infossl

cryptography, foia, history of cryptography, nsa, Security technology, Uncategorized

This is a newly unclassified NSA history of its reaction to academic cryptography in the 1970s: “NSA Comes Out of the Closet: The Debate over Public Cryptography in the Inman Era,” Cryptographic Quarterly, Spring 1996, author still classified. Powered by WPeMatico

NSA Discloses Vulnerabilities in Microsoft Exchange

April 16, 2021 infossl

disclosure, microsoft, nsa, patching, Security technology, Uncategorized, vulnerabilities

Amongst the 100+ vulnerabilities patch in this month’s Patch Tuesday, there are four in Microsoft Exchange that were disclosed by the NSA. Powered by WPeMatico

More Biden Cybersecurity Nominations

April 13, 2021 infossl

cybersecurity, national security policy, nsa, Security technology, Uncategorized

News: President Biden announced key cybersecurity leadership nominations Monday, proposing Jen Easterly as the next head of the Cybersecurity and Infrastructure Security Agency and John “Chris” Inglis as the first ever national cyber director (NCD). I know them both, and think they’re both good choices. More news. Powered by WPeMatico