zlacker

[return to "Inside the NSA's War on Internet Security"]
1. revela+95[view] [source] 2014-12-28 22:00:09
>>Fabian+(OP)
I mostly read this thinking "good news". No, seriously, the documents suggest that the NSA hasn't made fundamentally important advances in decryption or uncovered significant weaknesses that academia doesn't know about. Now, that's not too much of a reassurance, because what academia (and the NSA) know is that HTTPS is in pretty terrible state, end-point security remains a significant problem, IPSec is a terrible protocl and so on.

It does raise the question what all the mathematicians are doing at NSA, and why they don't seem to have come up with any meaningful results. Suggests they are a waste of money, but then that's all of the NSA.

I suggest all of you check the original material (powerpoints w/ screenshots). A lot of people here suffer from the action movie mentality where they think the NSA is not like any other government agency, i.e. inefficient, behind the times, filled with horrible middle managers, deadweight, .. you get the idea. Things like the enterprise Java web interface, the CSV mass data export and "genericIPSec_wrapper.pl" can quickly dispel that myth.

◧◩
2. spacef+19[view] [source] 2014-12-28 23:25:11
>>revela+95
Also, most docs are from 2012. Who knows what happened since then. There is a reason, they have an army of mathematicians at hand.

I look forward to the day when they walk away from their jobs.

[go to top]