[7173] in cryptography@c2.net mail archive
Re: NSA back doors in encryption products
daemon@ATHENA.MIT.EDU (Enzo Michelangeli)
Wed May 24 19:33:44 2000
Message-ID: <004d01bfc5d7$388760e0$31cf54ca@emnb>
Reply-To: "Enzo Michelangeli" <enzom@bigfoot.com>
From: "Enzo Michelangeli" <em@who.net>
To: <cryptography@c2.net>
Date: Thu, 25 May 2000 07:24:24 +0800
MIME-Version: 1.0
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
----- Original Message -----
From: Steven M. Bellovin <smb@research.att.com>
To: <cryptography@c2.net>
Sent: Thursday, May 25, 2000 1:32 AM
Subject: Re: NSA back doors in encryption products
[...]
> > http://www.znz.freesurf.fr/files/certifix.zip (300 Kb)
> >
> >The package contains the 5 following files
> > certifix.exe
> > certifix.hlp
> > readme.txt
> > todo.txt
> > changes.txt
> >
>
> Let me see if I understand -- we're worried that NSA has buried secret
> composite numbers in our code. So we're going to solve that problem by
> running a random binary -- source isn't in the zip file -- from someone
> else?
Well, I guess that the next step is to ask the author to opensource his
program, that at least already exists and is free (Ben's question). Or, in
alternative, roll our own...
Enzo
