[nycbug-talk] Elliptic Curve Backdoor? [was] RSA/DSA for encryption: has it's time come?

Isaac (.ike) Levy ike at blackskyresearch.net
Thu Sep 12 07:40:12 EDT 2013


Morning All,

It appears more likely that ECC standards were backdoored by the NSA, 
with NIST involvement (or lack thereof?).

I hate to re-post slashdot, but the summary is concise:
http://it.slashdot.org/story/13/09/11/1224252/are-the-nist-standard-elliptic-curves-back-doored

The trick, it seems, is in some random seed numbers which aren't random 
at all:
"The random numbers in these curve parameters were supposed to be 
selected via a "verifiably random" process...
Unfortunately it turns out the actual inputs used were opaque 256 bit 
numbers, chosen ad-hoc with no justifications provided."

Good times.

--
If anyone sees relevant updates to this ongoing issue, please feel free 
to post to this thread!

Best,
.ike





More information about the talk mailing list