zlacker

[parent] [thread] 2 comments
1. xnull2+(OP)[view] [source] 2014-12-29 05:33:46
Do you think that the NSA would bother breaking CA keys? We know that they have shadow certificates and have much success infiltrating CAs to steal their keys and that they have been able to forge them without having to break the keys (via the previously unknown MD5 collision - as they did for Stuxnet. Seems to me like there are more valuable certs to go after (diplomats' certs, smartcard certs, OS update certs, ...).
replies(1): >>spacef+k6
2. spacef+k6[view] [source] 2014-12-29 09:14:59
>>xnull2+(OP)
So many "diplomats' certs" are used in machines by Crypto AG from Switzerland. And guess what, they had one major incident years ago - and even people working there have simply no clue who owns and control the company.

I'd say most of commercial crypto systems are rigged. https://pbs.twimg.com/media/B5-aW_8CEAAUzji.jpg:large

replies(1): >>EthanH+Pg
◧◩
3. EthanH+Pg[view] [source] [discussion] 2014-12-29 13:43:18
>>spacef+k6
I've been interested in Crypto AG for many years and would like to know more. Do you have a source that Crypto AG is still used to store certs that diplomats use?

I guess there is this: http://www.crypto.ch/en/solutions/crypto-secure-diplomatic-m...

[go to top]