FBI accused of planting backdoor in OpenBSD IPSEC stack

Reply Subscribe

Thread Tools

Search this Thread

12-15-2010, 08:27 PM

sixshooter

Moderator

Thread Starter

iTrader: (12)

Join Date: Nov 2008

Location: Tampa, Florida

Posts: 20,650

Total Cats: 3,010

FBI accused of planting backdoor in OpenBSD IPSEC stack

I have no idea what this actually means, but it seemed important to a geek buddy of mine so I thought I'd share.

What does this mean to Joe everyguy and what does this mean to Joe Perez?

http://arstechnica.com/open-source/n...psec-stack.ars

12-15-2010, 09:19 PM

Quality Control Bot

"Quality" is my first name.

iTrader: (3)

Join Date: Dec 2007

Posts: 2,598

Total Cats: 77

basically they canon rushed.

Attached Thumbnails

FBI accused of planting backdoor in OpenBSD IPSEC stack-canon.jpg

12-15-2010, 09:28 PM

ianferrell

Senior Member

Join Date: Aug 2010

Location: Maumelle, AR

Posts: 613

Total Cats: 3

Well... basically, openbsd code has been copied into almost everything out there, since its not under the GNU license. Theoretically this back doors could be in your cell phone or blue ray player. Nothing to see here, move along. (in reality, I doubt that anything remains after 10 years, especially given the audits that occur within openbsd)

12-15-2010, 09:31 PM

shuiend

mkturbo.com

iTrader: (24)

Join Date: May 2006

Location: Charleston SC

Posts: 15,176

Total Cats: 1,680

IPSec is more or less the protocol that encrypts your packets so that they are secure. Here is an article that says it does not have a backdoor.

Basically if it is true what I understand it does if is gets certain parts of the encryption key so that they can brute force the encryption key quicker.

12-16-2010, 01:28 AM

Newbsauce

Elite Member

iTrader: (2)

Join Date: Jul 2006

Location: NoVA

Posts: 2,299

Total Cats: 2

If this really happened 10 years ago I'm wondering if it would still be relevant. Key sizes and algorithms have changed fairly dramatically since then which even makes brute force pretty damn difficult. Just to give you some perspective - the DES standard (used until 2k2) had a 56 bit key, today we use the AES standard in which the smallest key size is 2.5x larger. Even if they escrow bits of of the encryption key they'd still have quite a bit to crack.

12-16-2010, 03:46 AM

r808

Junior Member

iTrader: (7)

Join Date: Nov 2006

Location: Makakilo

Posts: 436

Total Cats: 0

Quote:

Originally Posted by sixshooter

It sort of means Linux and random ----.

12-16-2010, 03:47 AM

r808

Junior Member

iTrader: (7)

Join Date: Nov 2006

Location: Makakilo

Posts: 436

Total Cats: 0

Quote:

Originally Posted by Newbsauce

DES? If I had a dime for every WEP neighbor. . . Mr. Ubuntu, my directional antenna, and my friend Mr. Kismet disagrees. Good times.

12-16-2010, 07:06 AM

gospeed81

Elite Member

iTrader: (51)

Join Date: Nov 2008

Location: Spring, TX

Posts: 7,257

Total Cats: 26

Quote:

Originally Posted by Newbsauce

If this really happened 10 years ago I'm wondering if it would still be relevant.

We're only being told now since it's no longer relevant. What we should pay attention to is what HAS happened if this is true over the past 10yrs...and what that may hint at what could be going on now.

12-16-2010, 11:32 AM

Newbsauce

Elite Member

iTrader: (2)

Join Date: Jul 2006

Location: NoVA

Posts: 2,299

Total Cats: 2

Quote:

Originally Posted by r808

DES? If I had a dime for every WEP neighbor. . . Mr. Ubuntu, my directional antenna, and my friend Mr. Kismet disagrees. Good times.

I guess I fail to see your cross reference between WEP and DES. Last time I checked the last attack on DES took 22 hours and something like 100k computers. Comparing WEP cracking to that is like comparing removal of the "butterflies" in the Operation game to actual brain surgery.

Last edited by Newbsauce; 12-16-2010 at 11:47 AM.