all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Dangers of Trusting Encryption Supply Chains

Add to bookmarks
Aug. 16, 2023, 2:01 a.m. | Bob Gezelter

The RISKS Digest catless.ncl.ac.uk 

Recently, ArsTechnica published "The U.S. Navy, NATO, and NASA are using a
shady Chinese company's encryption chips". The article questioned
whether hardware components used for encryption/decryption actually protect
against unauthorized information disclosure.

Unauthorized disclosure represents a small fraction of the potential hazards
posed by unverified cryptographic implementations. Deliberate covert
functionality within a hardware encryption/decryption implementation poses
far more serious potential for large scale mischief, including weakened
encryption keys; distorted encryption keys; and mass denial of information
episodes. "Black box" testing …

amp article chinese chips components covert decryption disclosure encryption hardware information information disclosure nasa nato navy protect supply supply chains

Visit resource

More from catless.ncl.ac.uk / The RISKS Digest

iPhone Apps Secretly Harvest Data When They Send Notifications 2 months, 3 weeks ago | catless.ncl.ac.uk
acm app app development apple +20
Authorities investigating massive security breach at Global Affairs Canada 2 months, 3 weeks ago | catless.ncl.ac.uk
breach canada canadian cbc +19
Bugs in our pockets: the risks of client-side scanning 2 months, 3 weeks ago | catless.ncl.ac.uk
bugs businesses client client-side +20
Tesla Hacked at Pwn2Own Automotive 2024 2 months, 3 weeks ago | catless.ncl.ac.uk
automotive awards bleepingcomputer bug +21
The Great Freight-Train Heists of the 21st Century 2 months, 3 weeks ago | catless.ncl.ac.uk
access amazon breaking can +13
Offshore Wind Farms Vulnerable to Cyberattacks 2 months, 3 weeks ago | catless.ncl.ac.uk
acm blackouts canada concordia +21
EFI IPv6/PXE Security Flaw 3 months, 1 week ago | catless.ncl.ac.uk
code console critical enable +19
Imaging privacy threats from an ambient light sensor 3 months, 1 week ago | catless.ncl.ac.uk
Re: CLEAR wants to scan your face at airports. Privacy experts are worried. 3 months, 1 week ago | catless.ncl.ac.uk
airports case clear down +11

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Associate Compliance Advisor

@ SAP | Budapest, HU, 1031
View on infosec-jobs.com

DevSecOps Engineer

@ Qube Research & Technologies | London
View on infosec-jobs.com

Software Engineer, Security

@ Render | San Francisco, CA or Remote (USA & Canada)
View on infosec-jobs.com

Associate Consultant

@ Control Risks | Frankfurt, Hessen, Germany
View on infosec-jobs.com

Senior Security Engineer

@ Activision Blizzard | Work from Home - CA
View on infosec-jobs.com
View more jobs