Hacker News
- RSA chief believed cryptographers’ warnings on Dual EC DRBG lacked merit (2014) http://jeffreycarr.blogspot.com/2014/02/six-cryptographers-whose-work-on-dual.html 41 comments
- OpenSSL 1.1.0: “Add Support for Dual EC DRBG” https://github.com/openssl/openssl/blob/abd30777cc72029e8a44e4b67201cae8ed3d19c1/CHANGES#L877 4 comments
- Hopefully the last post I'll ever write on Dual EC DRBG http://blog.cryptographyengineering.com/2015/01/hopefully-last-post-ill-ever-write-on.html 26 comments
- NIST removes Dual_EC_DRBG http://www.nist.gov/itl/csd/sp800-90-042114.cfm 22 comments
- Dual_EC_DRBG backdoor: a proof of concept http://blog.0xbadc0de.be/archives/155 27 comments
- NSA compromised Dual EC DRBG never actually worked in OpenSSL http://marc.info/?l=openssl-announce&m=138747119822324&w=2&x=1 6 comments
- The Strange Story of Dual_EC_DRBG – suspected NSA backdoor (2007) http://www.schneier.com/blog/archives/2007/11/the_strange_sto.html 75 comments
- The Many Flaws of Dual_EC_DRBG -- A technical follow up about the NSA's war on crypto, specifically addressing the allegation that the NSA inserted a backdoor into the Dual-EC pseudorandom number generator http://blog.cryptographyengineering.com/2013/09/the-many-flaws-of-dualecdrbg.html 22 comments netsec
- Blackberry's patent for NSA backdoor to basic random number generation (Dual EC DRBG) https://patents.google.com/patent/us20070189527a1/en 19 comments programming
- New Discovery Around Juniper Backdoor Raises More Questions About the Company [why did Juniper add the known broken Dual_EC_DRBG in 2008 for no apparent reason other than as a back door?] http://www.wired.com/2016/01/new-discovery-around-juniper-backdoor-raises-more-questions-about-the-company/ 27 comments crypto
- NIST Removes Dual EC DRBG from SP800-90A http://threatpost.com/nist-removes-dual-ec-from-draft-guidance-on-rngs/105643 6 comments crypto
- Dual_EC_DRBG backdoor: a proof of concept http://blog.0xbadc0de.be/archives/155 4 comments crypto
- Dual_EC_DRBG backdoor: Proof of concept http://blog.0xbadc0de.be/archives/155 24 comments netsec
- RSA took $10m from NSA to make backdoored Dual_EC_DRBG the default http://www.reuters.com/article/2013/12/20/us-usa-security-rsa-idusbre9bj1c220131220 27 comments crypto
- RSA took $10m from NSA to make backdoored Dual_EC_DRBG the default http://www.reuters.com/article/2013/12/20/us-usa-security-rsa-idusbre9bj1c220131220 724 comments programming
- RSA took $10m from NSA to make backdoored Dual_EC_DRBG the default http://www.reuters.com/article/2013/12/20/us-usa-security-rsa-idusbre9bj1c220131220 36 comments politics
- RSA took $10m from NSA to make backdoored Dual_EC_DRBG the default http://www.reuters.com/article/2013/12/20/us-usa-security-rsa-idusbre9bj1c220131220 430 comments worldnews
- RSA took $10m from NSA to make backdoored Dual_EC_DRBG the default http://www.reuters.com/article/2013/12/20/us-usa-security-rsa-idusbre9bj1c220131220 14 comments netsec
- OpenSSL's FIPS implementation of Dual EC DRBG doesn't work at all, and this wasn't noticed in "several hundred" tests and validations http://marc.info/?l=openssl-announce&m=138747119822324&w=2 8 comments netsec
- A Few Thoughts on Cryptographic Engineering: The Many Flaws of Dual_EC_DRBG http://blog.cryptographyengineering.com/2013/09/the-many-flaws-of-dualecdrbg.html 24 comments crypto
- New York Times provides new details about NSA backdoor in crypto spec. The paper points a finger definitively at the long-suspected Dual_EC_DRBG algorithm. http://arstechnica.com/security/2013/09/new-york-times-provides-new-details-about-nsa-backdoor-in-crypto-spec/ 22 comments crypto
- How the NSA put a backdoor in basic random number generation: The Strange Story of Dual_EC_DRBG (2007) http://www.schneier.com/blog/archives/2007/11/the_strange_sto.html 259 comments programming
- NIST finally dumps NSA-tainted random number algorithm | Many years since a backdoor was discovered, probably planted by the NSA, public pressure finally forces NIST to formally remove Dual_EC_DRBG from their recommendations. http://www.zdnet.com/nist-finally-dumps-nsa-tainted-random-number-algorithm-7000028692/ 6 comments technology