Matches in DBpedia 2015-10 for { <http://dbpedia.org/resource/Dual_EC_DRBG> ?p ?o }
- Dual_EC_DRBG abstract "Dual Elliptic Curve Deterministic Random Bit Generator (Dual_EC_DRBG) is an algorithm from the branch of cryptography known as elliptic curve cryptography that implements a cryptographically secure pseudorandom number generator (CSPRNG) capable of generating a random bit stream. The algorithm is based on the mathematics of the elliptic curve discrete logarithm problem (ECDLP). Despite public criticism, it was for some time one of the four (now three) CSPRNGs standardized in NIST SP 800-90A as originally published circa March 2007. Weaknesses in the cryptographic security of the algorithm were known and publicly criticised well before the algorithm became part of a formal standard endorsed by the ANSI, ISO, and formerly by the National Institute of Standards and Technology (NIST). One of the weaknesses publicly identified was the potential of the algorithm to harbour a backdoor advantageous to the algorithm's designers—the United States government's National Security Agency (NSA)—and no-one else. In 2013, the New York Times reported that documents in their possession but never released to the public "appear to confirm" that the backdoor was real, and had been deliberately inserted by the NSA as part of the NSA's Bullrun decryption program. In December 2013, a Reuters news article alleged that in 2004, before NIST standardized Dual_EC_DRBG, NSA paid RSA Security $10 million in a secret deal to use Dual_EC_DRBG as the default in the RSA BSAFE cryptography library, which resulted in RSA Security becoming the most important distributor of the insecure algorithm. RSA responded that they "categorically deny" that they had ever knowingly colluded with the NSA to adopt an algorithm that was known to be flawed, saying "we have never kept [our] relationship [with the NSA] a secret".Sometime before its first known publication in 2004, a possible backdoor was discovered with the Dual_EC_DRBG's design, with the design of Dual_EC_DRBG having the unusual property that it was theoretically impossible for anyone but Dual_EC_DRBG's designers (NSA) to confirm the backdoor's existence. Bruce Schneier concluded shortly after standardization that the "rather obvious" backdoor (along with other deficiencies) would mean that nobody would use Dual_EC_DRBG. The backdoor would allow NSA to decrypt for example SSL/TLS encryption which used Dual_EC_DRBG as a CSPRNG.Members of the ANSI standard group, to which Dual_EC_DRBG was first submitted, were aware of the exact mechanism of the potential backdoor and how to disable it, but did not take sufficient steps to unconditionally disable the backdoor or to widely publicize it. The general cryptographic community was initially not aware of the potential backdoor, until Dan Shumow and Niels Ferguson's 2007 rediscovery, or of Certicom's Daniel R. L. Brown and Scott Vanstone's 2005 patent application describing the backdoor mechanism.In September 2013, The New York Times reported that internal NSA memos leaked by Edward Snowden indicated that the NSA had worked during the standardization process to eventually become the sole editor of the Dual_EC_DRBG standard, and concluded that the Dual_EC_DRBG standard did indeed contain a backdoor for the NSA. As response, NIST stated that "NIST would not deliberately weaken a cryptographic standard."According to the New York Times story, the NSA spends $250 million per year to insert backdoors in software and hardware as part of the Bullrun program. A Presidential advisory committee subsequently set up to examine NSA's conduct recommended among other things that the US government "fully support and not undermine efforts to create encryption standards".In April 21, 2014, NIST withdrew Dual_EC_DRBG from its draft guidance on random number generators recommending "current users of Dual_EC_DRBG transition to one of the three remaining approved algorithms as quickly as possible."".
- Dual_EC_DRBG wikiPageExternalLink SP800-90A.pdf.
- Dual_EC_DRBG wikiPageExternalLink the-many-flaws-of-dualecdrbg.html.
- Dual_EC_DRBG wikiPageExternalLink a-few-more-notes-on-nsa-random-number.html.
- Dual_EC_DRBG wikiPageExternalLink download;jsessionid=D96134C539F238DD741A65F49189E076?doi=10.1.1.6.1272&rep=rep1&type=pdf.
- Dual_EC_DRBG wikiPageExternalLink dualec.org.
- Dual_EC_DRBG wikiPageExternalLink 117.
- Dual_EC_DRBG wikiPageExternalLink 10.1007%2F978-3-540-74143-5_26.
- Dual_EC_DRBG wikiPageExternalLink 10.1007%2FBFb0052241.
- Dual_EC_DRBG wikiPageExternalLink dual-ec.
- Dual_EC_DRBG wikiPageExternalLink 15-shumow.pdf.
- Dual_EC_DRBG wikiPageExternalLink msg03651.html.
- Dual_EC_DRBG wikiPageExternalLink dual-ec-drbg-comments.pdf.
- Dual_EC_DRBG wikiPageExternalLink 8101758.
- Dual_EC_DRBG wikiPageID "14259066".
- Dual_EC_DRBG wikiPageLength "48242".
- Dual_EC_DRBG wikiPageOutDegree "83".
- Dual_EC_DRBG wikiPageRevisionID "671264908".
- Dual_EC_DRBG wikiPageWikiLink 11.
- Dual_EC_DRBG wikiPageWikiLink ANSI_X9.82.
- Dual_EC_DRBG wikiPageWikiLink ANSI_X9.82,_Part_3.
- Dual_EC_DRBG wikiPageWikiLink ANSI_X9.82_DRBG.
- Dual_EC_DRBG wikiPageWikiLink Adam_L._Young.
- Dual_EC_DRBG wikiPageWikiLink Advantage_(cryptography).
- Dual_EC_DRBG wikiPageWikiLink American_National_Standards_Institute.
- Dual_EC_DRBG wikiPageWikiLink Ars_Technica.
- Dual_EC_DRBG wikiPageWikiLink Backdoor_(computing).
- Dual_EC_DRBG wikiPageWikiLink BlackBerry.
- Dual_EC_DRBG wikiPageWikiLink BlackBerry_Limited.
- Dual_EC_DRBG wikiPageWikiLink Bruce_Schneier.
- Dual_EC_DRBG wikiPageWikiLink Bullrun_(decryption_program).
- Dual_EC_DRBG wikiPageWikiLink Category:Articles_with_underscores_in_the_title.
- Dual_EC_DRBG wikiPageWikiLink Category:Broken_cryptography_algorithms.
- Dual_EC_DRBG wikiPageWikiLink Category:Conspiracy_theories.
- Dual_EC_DRBG wikiPageWikiLink Category:Cryptographically_secure_pseudorandom_number_generators.
- Dual_EC_DRBG wikiPageWikiLink Category:Kleptography.
- Dual_EC_DRBG wikiPageWikiLink Category:National_Institute_of_Standards_and_Technology.
- Dual_EC_DRBG wikiPageWikiLink Category:National_Security_Agency.
- Dual_EC_DRBG wikiPageWikiLink Category:Pseudorandom_number_generators.
- Dual_EC_DRBG wikiPageWikiLink Certicom.
- Dual_EC_DRBG wikiPageWikiLink Computational_hardness_assumption.
- Dual_EC_DRBG wikiPageWikiLink Crypto_AG.
- Dual_EC_DRBG wikiPageWikiLink Cryptographic_nonce.
- Dual_EC_DRBG wikiPageWikiLink Cryptographically_secure_pseudorandom_number_generator.
- Dual_EC_DRBG wikiPageWikiLink Cryptovirology.
- Dual_EC_DRBG wikiPageWikiLink Cygnacom.
- Dual_EC_DRBG wikiPageWikiLink Dan_Shumow.
- Dual_EC_DRBG wikiPageWikiLink Daniel_J._Bernstein.
- Dual_EC_DRBG wikiPageWikiLink Decisional_Diffie–Hellman_assumption.
- Dual_EC_DRBG wikiPageWikiLink Discrete_logarithm.
- Dual_EC_DRBG wikiPageWikiLink Discrete_logarithm_problem.
- Dual_EC_DRBG wikiPageWikiLink Edward_Snowden.
- Dual_EC_DRBG wikiPageWikiLink Elliptic_curve.
- Dual_EC_DRBG wikiPageWikiLink Elliptic_curve_cryptography.
- Dual_EC_DRBG wikiPageWikiLink FIPS_140-2.
- Dual_EC_DRBG wikiPageWikiLink IEC_18031.
- Dual_EC_DRBG wikiPageWikiLink ISO_18031.
- Dual_EC_DRBG wikiPageWikiLink International_Organization_for_Standardization.
- Dual_EC_DRBG wikiPageWikiLink Jeffrey_Carr.
- Dual_EC_DRBG wikiPageWikiLink John_Kelsey_(cryptanalyst).
- Dual_EC_DRBG wikiPageWikiLink Kleptogram.
- Dual_EC_DRBG wikiPageWikiLink Kleptography.
- Dual_EC_DRBG wikiPageWikiLink Matt_Blaze.
- Dual_EC_DRBG wikiPageWikiLink Matthew_D._Green.
- Dual_EC_DRBG wikiPageWikiLink Matthew_Green_(cryptographer).
- Dual_EC_DRBG wikiPageWikiLink Microsoft.
- Dual_EC_DRBG wikiPageWikiLink Moti_Yung.
- Dual_EC_DRBG wikiPageWikiLink NIST_SP_800-90A.
- Dual_EC_DRBG wikiPageWikiLink National_Institute_of_Standards_and_Technology.
- Dual_EC_DRBG wikiPageWikiLink National_Security_Agency.
- Dual_EC_DRBG wikiPageWikiLink Niels_Ferguson.
- Dual_EC_DRBG wikiPageWikiLink Nothing_up_my_sleeve_number.
- Dual_EC_DRBG wikiPageWikiLink Passive-aggressive_behavior.
- Dual_EC_DRBG wikiPageWikiLink Passive_aggressive.
- Dual_EC_DRBG wikiPageWikiLink Provable_security.
- Dual_EC_DRBG wikiPageWikiLink RSA_BSAFE.
- Dual_EC_DRBG wikiPageWikiLink RSA_Conference.
- Dual_EC_DRBG wikiPageWikiLink RSA_Security.
- Dual_EC_DRBG wikiPageWikiLink Random_number_generator_attack.
- Dual_EC_DRBG wikiPageWikiLink Ruben_Niederhagen.
- Dual_EC_DRBG wikiPageWikiLink September_11_attacks.
- Dual_EC_DRBG wikiPageWikiLink Tanja_Lange.
- Dual_EC_DRBG wikiPageWikiLink The_New_York_Times.
- Dual_EC_DRBG wikiPageWikiLink Transport_Layer_Security.
- Dual_EC_DRBG wikiPageWikiLink William_Binney_(U.S._intelligence_official).
- Dual_EC_DRBG wikiPageWikiLink Windows_Registry.
- Dual_EC_DRBG wikiPageWikiLink Windows_Vista.
- Dual_EC_DRBG wikiPageWikiLink Wired_(magazine).
- Dual_EC_DRBG wikiPageWikiLinkText "Dual EC DRBG".
- Dual_EC_DRBG wikiPageWikiLinkText "Dual Elliptic Curve Deterministic Random Bit Generation".
- Dual_EC_DRBG wikiPageWikiLinkText "Dual_EC_DRBG".
- Dual_EC_DRBG hasPhotoCollection Dual_EC_DRBG.
- Dual_EC_DRBG wikiPageUsesTemplate Template:Cite_patent.
- Dual_EC_DRBG wikiPageUsesTemplate Template:Date.
- Dual_EC_DRBG wikiPageUsesTemplate Template:Quote.
- Dual_EC_DRBG wikiPageUsesTemplate Template:Reflist.
- Dual_EC_DRBG subject Category:Articles_with_underscores_in_the_title.
- Dual_EC_DRBG subject Category:Broken_cryptography_algorithms.
- Dual_EC_DRBG subject Category:Conspiracy_theories.
- Dual_EC_DRBG subject Category:Cryptographically_secure_pseudorandom_number_generators.