zlacker

[return to "Inside the NSA's War on Internet Security"]
1. revela+95[view] [source] 2014-12-28 22:00:09
>>Fabian+(OP)
I mostly read this thinking "good news". No, seriously, the documents suggest that the NSA hasn't made fundamentally important advances in decryption or uncovered significant weaknesses that academia doesn't know about. Now, that's not too much of a reassurance, because what academia (and the NSA) know is that HTTPS is in pretty terrible state, end-point security remains a significant problem, IPSec is a terrible protocl and so on.

It does raise the question what all the mathematicians are doing at NSA, and why they don't seem to have come up with any meaningful results. Suggests they are a waste of money, but then that's all of the NSA.

I suggest all of you check the original material (powerpoints w/ screenshots). A lot of people here suffer from the action movie mentality where they think the NSA is not like any other government agency, i.e. inefficient, behind the times, filled with horrible middle managers, deadweight, .. you get the idea. Things like the enterprise Java web interface, the CSV mass data export and "genericIPSec_wrapper.pl" can quickly dispel that myth.

◧◩
2. colord+D6[view] [source] 2014-12-28 22:32:56
>>revela+95
Here is yet another example of an unprovoked comment pushed to the top of a forum promoting the idea that three letter agencies like the NSA are incompetent and no better than the public sector at what they do, and that we don't need to worry about them. Go back to bed America, everything is OK.

Just like the rest of the government, the NSA is not a monolithic entity with no separation of concerns. There are people who clean the floor and people who are at the extreme cutting edge of research.

Don't let anyone convince you otherwise.

[go to top]