[163419] in North American Network Operators' Group
Re: PGP/SSL/TLS really as secure as one thinks?
daemon@ATHENA.MIT.EDU (David Walker)
Fri Jun 7 17:44:06 2013
In-Reply-To: <51B1F8CC.9070402@massar.ch>
Date: Sat, 8 Jun 2013 07:13:46 +0930
From: David Walker <davidianwalker@gmail.com>
To: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On 08/06/2013, Jeroen Massar <jeroen@massar.ch> wrote:
> On 2013-06-07 06:50, Dan White wrote:
> [..]
>
> A nice 'it is Friday' kind of thought....
Caring about secrecy (or obscurity) of algorithms is a fools errand.
http://en.wikipedia.org/wiki/Kerckhoffs%27s_principle
Taking Shannon's maxim "the enemy knows the system" to it's ultimate
conclusion, the NSA put a premium on any and all looking at their
algorithms. They'd prefer us to have a crack or they're not doing
their job.
As you say, they "have the top crypto people in the world" and this is
a cherished paradigm of doing business in crypto land.
Any useful system will survive that process.
