Thursday, December 26, 2013 - 22:51

The industry's gloves are off with RSA

F-Secure's CRO Mikko Hypponen is the first to cancel his speech at RSA's 2014 conference in February where he was ironically supposed to talk about Governments as Malware Authors.

Next year's conference will be a tough conference for RSA who's fighting quite credible allegations raised by Reuters this month. According to Reuters the NSA paid RSA some 10 million dollars to plant the deliberately flawed design in their development kit.

If the allegations turn out to be true this would be a disaster for the US security industry and for RSA in particular.

The product in question is RSA's BSAFE toolkit. The weak algorithm introduced by the NSA raised suspicion among cryptographers way back in 2006. It's not very likely that RSA's own experts lacked the skills to see the problem. And it's not that Dual EC DRBG has anything else to offer. Well. Aside from lousy performance.

Add new comment

This form is protected by Google Recaptcha. By clicking here you agree to include Google Recaptcha for this session. The page will reload and the form will become avaiable.