FBI accused of planting backdoor in OpenBSD IPSEC stack

Reply Subscribe

Thread Tools

Search this Thread

Dec 15, 2010 | 08:27 PM

sixshooter

Thread Starter

Moderator

iTrader: (12)

Joined: Nov 2008

Posts: 22,157

Total Cats: 3,537

From: Tampa, Florida

FBI accused of planting backdoor in OpenBSD IPSEC stack

I have no idea what this actually means, but it seemed important to a geek buddy of mine so I thought I'd share.

What does this mean to Joe everyguy and what does this mean to Joe Perez?

http://arstechnica.com/open-source/n...psec-stack.ars

Dec 15, 2010 | 09:19 PM

Quality Control Bot

"Quality" is my first name.

iTrader: (3)

Joined: Dec 2007

Posts: 2,598

Total Cats: 77

basically they canon rushed.

Attached Thumbnails

FBI accused of planting backdoor in OpenBSD IPSEC stack-canon.jpg

Dec 15, 2010 | 09:28 PM

ianferrell

Senior Member

Joined: Aug 2010

Posts: 613

Total Cats: 3

From: Maumelle, AR

Well... basically, openbsd code has been copied into almost everything out there, since its not under the GNU license. Theoretically this back doors could be in your cell phone or blue ray player. Nothing to see here, move along. (in reality, I doubt that anything remains after 10 years, especially given the audits that occur within openbsd)

Dec 15, 2010 | 09:31 PM

shuiend

mkturbo.com

iTrader: (24)

Joined: May 2006

Posts: 15,235

Total Cats: 1,700

From: Charleston SC

IPSec is more or less the protocol that encrypts your packets so that they are secure. Here is an article that says it does not have a backdoor.

Basically if it is true what I understand it does if is gets certain parts of the encryption key so that they can brute force the encryption key quicker.

Dec 16, 2010 | 01:28 AM

Newbsauce

Elite Member

iTrader: (2)

Joined: Jul 2006

Posts: 2,299

Total Cats: 2

From: NoVA

If this really happened 10 years ago I'm wondering if it would still be relevant. Key sizes and algorithms have changed fairly dramatically since then which even makes brute force pretty damn difficult. Just to give you some perspective - the DES standard (used until 2k2) had a 56 bit key, today we use the AES standard in which the smallest key size is 2.5x larger. Even if they escrow bits of of the encryption key they'd still have quite a bit to crack.

Dec 16, 2010 | 03:46 AM

r808

Junior Member

iTrader: (7)

Joined: Nov 2006

Posts: 436

Total Cats: 0

From: Makakilo

Quote:

Originally Posted by sixshooter

It sort of means Linux and random ----.

Dec 16, 2010 | 03:47 AM

r808

Junior Member

iTrader: (7)

Joined: Nov 2006

Posts: 436

Total Cats: 0

From: Makakilo

Quote:

Originally Posted by Newbsauce

DES? If I had a dime for every WEP neighbor. . . Mr. Ubuntu, my directional antenna, and my friend Mr. Kismet disagrees. Good times.

Dec 16, 2010 | 07:06 AM

gospeed81

Elite Member

iTrader: (51)

Joined: Nov 2008

Posts: 7,257

Total Cats: 26

From: Spring, TX

Quote:

Originally Posted by Newbsauce

If this really happened 10 years ago I'm wondering if it would still be relevant.

We're only being told now since it's no longer relevant. What we should pay attention to is what HAS happened if this is true over the past 10yrs...and what that may hint at what could be going on now.

Dec 16, 2010 | 11:32 AM

Newbsauce

Elite Member

iTrader: (2)

Joined: Jul 2006

Posts: 2,299

Total Cats: 2

From: NoVA

Quote:

Originally Posted by r808

DES? If I had a dime for every WEP neighbor. . . Mr. Ubuntu, my directional antenna, and my friend Mr. Kismet disagrees. Good times.

I guess I fail to see your cross reference between WEP and DES. Last time I checked the last attack on DES took 22 hours and something like 100k computers. Comparing WEP cracking to that is like comparing removal of the "butterflies" in the Operation game to actual brain surgery.

Last edited by Newbsauce; Dec 16, 2010 at 11:47 AM.