all InfoSec news
On the Subversion of NIST by the NSA
June 23, 2022, 11:05 a.m. | Bruce Schneier
Schneier on Security www.schneier.com
Nadiya Kostyuk and Susan Landau wrote an interesting paper: “Dueling Over DUAL_EC_DRBG: The Consequences of Corrupting a Cryptographic Standardization Process“:
Abstract: In recent decades, the U.S. National Institute of Standards and Technology (NIST), which develops cryptographic standards for non-national security agencies of the U.S. government, has emerged as the de facto international source for cryptographic standards. But in 2013, Edward Snowden disclosed that the National Security Agency had subverted the integrity of a NIST cryptographic standardthe Dual_EC_DRBGenabling easy …
More from www.schneier.com / Schneier on Security
X.com Automatically Changing Link Text but Not URLs
1 day, 9 hours ago |
www.schneier.com
New Lattice Cryptanalytic Technique
2 days, 9 hours ago |
www.schneier.com
Upcoming Speaking Engagements
3 days, 4 hours ago |
www.schneier.com
Friday Squid Blogging: The Awfulness of Squid Fishing Boats
4 days, 23 hours ago |
www.schneier.com
Smuggling Gold by Disguising it as Machine Parts
5 days, 9 hours ago |
www.schneier.com
Backdoor in XZ Utils That Almost Happened
6 days, 9 hours ago |
www.schneier.com
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Information Security Engineers
@ D. E. Shaw Research | New York City
Engineer - Data Services, Cyber Defence
@ ANZ Banking Group Limited | Quezon City, PH
IT Security Analyst (m/f/d) - Focus SIEM
@ flatexDEGIRO | Neuss, NW, DE, 41460
Compliance Manager - Product Security Compliance & Risk Team
@ Red Hat | Remote, Ireland
Senior Information Security Engineer
@ Eurofins | Barcelona, Spain