Re: GOST key gen?
- From: "Joseph Ashwood" <ashwood@xxxxxxx>
- Date: Sat, 23 May 2009 04:51:39 -0700
"George Orwell" <nobody@xxxxxxxxxxxx> wrote in message news:089c5450f06212a06ac0e344687b4004@xxxxxxxxxxxxxxx
On Thu, 21 May 2009 21:59:01 -0700, "Joseph Ashwood" <ashwood@xxxxxxx>
wrote:
Actually open versus closed source has nothing to do with security, it is abackdoor?
common misconception that it is otherwise.
Joe
A backdoor can be integrated into open source just as easily, SSH's history speaks very well on this, one of the early implementations accidently used the all zero key 255/256 times an accidental, but still highly effective, backdoor, all the way to the most recent critical vulnerability, again an accidental, but critical, backdoor. I also remember an Obfuscated C Code style competition to implement such a backdoor in the most hidden manner.
Closed-source does make backdoors generally easier, but with modern decompilers everything is quickly becoming open source, one look at the dissections of Skype shows just how ineffective even extreme attempts at guarding the code is.
Joe
.
- References:
- Re: GOST key gen?
- From: Joseph Ashwood
- Re: GOST key gen?
- Prev by Date: Re: The minimum RSA message size
- Next by Date: Re: Cipher/hash sizes WAS Re: GOST key gen?
- Previous by thread: Re: GOST key gen?
- Next by thread: geld verdienen internet , geld verdienen zuhause , gewinnen spiele , geld und gewinnen , traumhaus gewinnen , leicht geld verdienen , gewinnspiele gewinnen , man geld gewinnen , geld gewinnen durch , schnell geld gewinnen ,
- Index(es):
Relevant Pages
|
