How can one validate that there isn't a shared public key in the encryption scheme (one that the NSA owns)? We trust services like gpg and pgp however I would also be dubious (unless I looked through and compiled an application myself) that any encryption software doesn't slap on a hidden public key allowing the NSA to decrypt this on the fly.
How can we be sure?
Slashdot Mirror
How can one validate that there isn't a shared public key in the encryption scheme (one that the NSA owns)? We trust services like gpg and pgp however I would also be dubious (unless I looked through and compiled an application myself) that any encryption software doesn't slap on a hidden public key allowing the NSA to decrypt this on the fly. How can we be sure?