[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Allegations regarding OpenBSD IPSEC

To: Abuse007 <abuse007@xxxxxxxxx>
Subject: Re: [Full-disclosure] Allegations regarding OpenBSD IPSEC
From: mark seiden <mis@xxxxxxxxxx>
Date: Sat, 18 Dec 2010 10:32:44 -0800

i was joking about the history of the s boxes, originally designed by ibm but
with substantial classified input from nsa.

suspicious people believed the s box changes (and the reduced key length) that
was adopted was intended to weaken des, or make it more brute-forceable by the 
nsa.

the designers deny it.  

the parallels between that situation and this should be evident.

On Dec 16, 2010, at 4:26 AM, Abuse007 wrote:
> 
> Changing the s-boxes in DES (and therefore Triple DES as well) would break 
> comparability with other implementations as it would no longer decrypt the 
> same as a standard implementation.

for more you can see, among others

http://www.wordiq.com/definition/DES#NSA.27s_involvement_in_the_design
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] Allegations regarding OpenBSD IPSEC
  - From: bugs
- Re: [Full-disclosure] Allegations regarding OpenBSD IPSEC
  - From: Paul Schmehl
- Re: [Full-disclosure] Allegations regarding OpenBSD IPSEC
  - From: Larry Seltzer
- Re: [Full-disclosure] Allegations regarding OpenBSD IPSEC
  - From: Graham Gower
- Re: [Full-disclosure] Allegations regarding OpenBSD IPSEC
  - From: mark seiden
- Re: [Full-disclosure] Allegations regarding OpenBSD IPSEC
  - From: Abuse007

Prev by Date: [Full-disclosure] OpenBSD CARP Hash Vulnerability
Next by Date: [Full-disclosure] Default SSL Keys in Multiple Routers
Previous by thread: Re: [Full-disclosure] Allegations regarding OpenBSD IPSEC
Next by thread: Re: [Full-disclosure] Allegations regarding OpenBSD IPSEC
Index(es):
- Date
- Thread