Slashdot Mirror


TrueCrypt Audit: No NSA Backdoors

Mark Wilson writes: A security audit of TrueCrypt has determined that the disk encryption software does not contain any backdoors that could be used by the NSA or other surveillance agencies. A report prepared by the NCC Group (PDF) for the Open Crypto Audit Project found that the encryption tool is not vulnerable to being compromised. However, the software was found to contain a few other security vulnerabilities, including one relating to the use of the Windows API to generate random numbers for master encryption key material. Despite this, TrueCrypt was given a relatively clean bill of health with none of the detected vulnerabilities considered severe enough to lead "to a complete bypass of confidentiality in common usage scenarios."

7 of 142 comments (clear)

  1. That's what they WANT you to believe! by CajunArson · · Score: 1, Funny

    Where's the fun in there not being any nefarious evil backdoors??!?!?

    How am I supposed to feed my narcissistic persecution complex that the NSA is focusing billions and billions of dollars of resources just to spy on me and me alone when they can't even put a backdoor in TrueCrypt??!?!?

    --
    AntiFA: An abbreviation for Anti First Amendment.
    1. Re:That's what they WANT you to believe! by Anonymous Coward · · Score: 5, Funny

      It enlarges your penis, citizen.

      You should compile with that flag every time for best results. Tell your friends.

  2. Quis custodiet ipsos custodes? by Anonymous Coward · · Score: 2, Funny

    Now we just need an audit of the auditors to make sure they weren't compromised and we can safely use TrueCrypt again.

    1. Re:Quis custodiet ipsos custodes? by OzPeter · · Score: 5, Funny

      We need to audit the auditors of the auditors as well.

      So it's auditors all the way down?

      --
      I am Slashdot. Are you Slashdot as well?
    2. Re:Quis custodiet ipsos custodes? by Opportunist · · Score: 4, Funny

      Yet look how different they turned out to be. One became and upstanding, honest person who has never ever done anything but serving his country, and the other one went into politics.

      --
      We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    3. Re:Quis custodiet ipsos custodes? by Bob+the+Super+Hamste · · Score: 4, Funny
      --
      Time to offend someone
  3. Quote at bottom of my browser window by OzPeter · · Score: 3, Funny

    Is this a deliberate choice of quote,or just randomly apropos?

    You can fool all the people all of the time if the advertising is right and the budget is big enough. -- Joseph E. Levine

    --
    I am Slashdot. Are you Slashdot as well?