Slashdot Mirror

← Back to Stories (view on slashdot.org)

New Vista Random Numbers to Include NSA Backdoor?

Posted by ScuttleMonkey on from the advice-is-to-never-enable-it.-Ever. dept.

Schneier is reporting that Microsoft has added the new Dual_EC-DRBG random-number generator to Vista SP1. This random-number generator is the same one discussed earlier that may have a secret NSA backdoor built into it.

7 of 269 comments (clear)

  1. Clever! by spun · · Score: 5, Insightful

    I see what you did there. You implied that anyone who criticizes the US or Vista is a paranoid loony. Now why would you do that? Do you just assume that people will criticize the US? Is the US that worthy of criticism that you have to defend it preemptively? I know that's a popular tactic these days, but is it entirely necessary? Nice how you posted AC, too. You sir are an all-around class act.

    --
    - None can love freedom heartily, but good men; the rest love not freedom, but license. -- John Milton
  2. Re:Much Ado About Nothing by Kadin2048 · · Score: 4, Insightful

    Agreed. The only interesting thing about this whole story is that the NSA apparently reviewed the PRNG function and rubber-stamped it, missing the critical vulnerability. Since the vulnerability really isn't that good of a backdoor, and doesn't seem to have been all that subtle, I think this is far more likely to be incompetence rather than malice on their part.

    As an American, that doesn't make me feel a whole lot better -- in some ways, I'd really like to have the secret agencies of so many spy movies rather than the massive bureaucratic pile that I know exists in reality -- but disappointment in government is something I've gotten used to. You don't last long in Washington without it.

    --
    "Ladies and gentlemen, my killbot features Lotus Notes and a machine gun. It is the finest available."
  3. OK, this is just stupid. by rrkap · · Score: 4, Insightful

    So, let's review:

    1. Government introduces a new cryptography standard (which it will presumably require for some applications) that requires that systems provide a choice of 4 random number generators, one of which MAY have a flaw.
    2. Manufacturers implement the new standard.
    3. Grand conspiracy!!!

    Come on, could it just possibly be that Microsoft wants to be able to claim to be NIST 800-90 compliant for customers who want that kind of thing and that the NSA likes the idea of there being a variety of random number generators available? The only way that making this function available is a risk is the NSA also has control of the application and can force it to call this random number generator without properly seeding it. If they have that level of control, they have enough control to do whatever else they want in a much more direct way.

    --
    I like my beverages with warning labels!
  4. Re:Conspiracy theorists come forth! Now it the tim by hey! · · Score: 4, Insightful

    I disagree.

    This has absolutely nothing to do with open or closed source. A completely open source random number generator would have precisely the same vulnerability, because the problem isn't potential skulduggery by the vendor, it's potential skulduggery by the people who designed the standard.

    What Microsoft has done is to implement a questionable standard. It makes no sense in this case to blame them for its shortcomings, especially since developers have alternative standards they can use.

    Now when it comes to application software using a random number generator, then there actually is a closed/open source argument to be made. Do you know which random number generator is used by the software you use? With closed source, almost certainly not. With open source, programmers can undo the choice of the dodgy elliptic curve RNG and replace it with a more solid, equally standards compliance alternative. And get a speed boost too. You also know that you might not want to trust the source for your software if they use the inferior algorithm.

    --
    Post may contain irony: discontinue use if experiencing mood swings, nausea or elevated blood pressure.
  5. Re:Given the known problems of Dual_EC_DRBG by morgan_greywolf · · Score: 5, Insightful

    Who even says that at an RNG has to be at the OS level? If NSA or its customers want to use Dual_EC_DRBG, there is nothing stopping them from doing so on Vista or any other OS.

    As another poster said, where in the OS is this used? Do you know? Does anyone but Microsoft?

    --
    My blog
  6. Re:Given the known problems of Dual_EC_DRBG by morgan_greywolf · · Score: 5, Insightful

    This random number generator is not used by default. Prove it. Oh, that's right, you can't because you don't have the source code. Unless maybe you're astroturfing. Even then you'd be under an NDA anyhow.

    Other governments are not going to be willing to buy a system with a NSA backdoor. And other governments have replaced Windows with custom Linux distros due to the potential of this very problem. This is a fact that cannot be denied.

    --
    My blog
  7. Re:Given the known problems of Dual_EC_DRBG by dvice_null · · Score: 4, Insightful

    > As for backdoors, anybody who is paranoid about this issue will ignore or disbelieve me when I say that there is no backdoor that I am aware of.

    I can believe that you don't know, but would they really tell you if there were such backdoors?

    > Governments both in the US and elsewhere do this, which suggests that no backdoor is available.

    If you had a backdoor which allows you to access remote computers anywhere would you
    a) Tell everyone that you can do it
    b) Use some dummy keyloggers and malware to suggests that you can't do it