Friendly forums for passionate Dems!
More than 91 million posts since 2001
Home Latest Greatest Videos Forums Hide ads Join up!
Home Latest Greatest
Videos Forums Help
Hide ads Join up!
Latest Discussions»Region Forums»Canada»The strange connection be...
Welcome to DU! The truly grassroots left-of-center political community where regular people, not algorithms, drive the discussions and set the standards. Join the community: Create a free account Support DU (and get rid of ads!): Become a Star Member Latest Breaking News General Discussion The DU Lounge All Forums Issue Forums Culture Forums Alliance Forums Region Forums Support Forums Help & Search

Canada

Related: About this forum

CHIMO

(9,223 posts) Mon Jan 20, 2014, 11:09 AM Jan 2014

The strange connection between the NSA and an Ontario tech firm

Last edited Mon Jan 20, 2014, 12:01 PM - Edit history (1)

At the heart of digital security is the concept of encryption – making information indecipherable to anyone who doesn’t have the right passcode.

And since 1995, any software developer building encryption for technology they intended to sell to the American or Canadian government has had to consult something called the Cryptographic Module Validation Program. It’s a list of algorithms blessed by the CMVP that are, according to the government agencies that publish it, “accepted by the Federal Agencies of both countries for the protection of sensitive information.”

There’s only one problem. For more than six years, one of the central items listed in the CMVP – an algorithm for generating the random numbers that form the foundations of an encryption scheme – has had a glaring and well-known backdoor, a means of rendering the encryption totally ineffective.

“This has been known since 2006,” said Steve Marquess, co-founder of the OpenSSL Software Foundation. “Why the heck was this officially blessed? A lot of my colleagues and a lot of people in the cryptography community are asking that question.”

http://www.theglobeandmail.com/technology/business-technology/the-strange-connection-between-the-nsa-and-an-ontario-tech-firm/article16402341/

InfoView thread info, including edit history TrashPut this thread in your Trash Can (My DU » Trash Can) BookmarkAdd this thread to your Bookmarks (My DU » Bookmarks) 2 replies, 1358 views
ShareGet links to this post and/or share on social media AlertAlert this post for a rule violation PowersThere are no powers you can use on this post EditCannot edit other people's posts ReplyReply to this post EditCannot edit other people's posts Rec (3) ReplyReply to this post
2 replies = new reply since forum marked as read
Highlight: NoneDon't highlight anything 5 newestHighlight 5 most recent replies
The strange connection between the NSA and an Ontario tech firm (Original Post) CHIMO Jan 2014 OP
Canada figures into the NSA and the ACA. Both entities contain personal information on millions of Lint Head Jan 2014 #1
Maybe it just goes to show just how integrated we are and always have been arikara Jan 2014 #2

Lint Head

(15,064 posts)
1. Canada figures into the NSA and the ACA. Both entities contain personal information on millions of
Reply to CHIMO (Original post)
Mon Jan 20, 2014, 01:19 PM
Jan 2014

people. What is the connection to Canadian software companies having such power over American privacy? Is there some kind of subversion going on because Canadian law is different from American law when it comes to doing business across borders? Just asking. It could be innocuous.
Are there no American software companies capable of doing US business?

TopBack to the top of the page AlertAlert this post for a rule violation ShareGet links to this post PowersThere are no powers you can use on this post
  EditCannot edit other people's posts RecommendRecommend this post ReplyReply to this post

arikara

(5,562 posts)
2. Maybe it just goes to show just how integrated we are and always have been
Reply to Lint Head (Reply #1)
Mon Jan 20, 2014, 03:21 PM
Jan 2014

American companies are routinely contracted to handle sensitive Canadian government data which by law then makes all the information available to their homeland security.

They did this kind of things for decades with their echelon program too. One of my friends who used to work for the phone company told me decades ago to never say anything over the phone that I didn't want to have overheard.

TopBack to the top of the page AlertAlert this post for a rule violation ShareGet links to this post PowersThere are no powers you can use on this post
  EditCannot edit other people's posts RecommendRecommend this post ReplyReply to this post
Reply to this discussion
Latest Discussions»Region Forums»Canada»The strange connection be...
Home | Latest Discussions | Greatest Discussions | Latest Videos | All Forums

About | Copyright | Privacy | Terms of service | Contact

In Memoriam

© 2001 - 2024 Democratic Underground, LLC. Thank you for visiting.