Wednesday, June 6, 2012

Interesting Flame News

It's my understanding, Flame made use of a cryptographic weakness in the certificate generation algorithm to create fraudulent certificates and then execute a MITM attack. This is discussed here.

A few thoughts:
  1. The NSA deserves their reputation.
  2. Further, they were willing to let the world know about this weakness. This denies them further use but also denies it to an adversary
  3. This weakness would have allowed them to plant software on just about any Windows system
  4. Makes you wonder what else they have up their sleeve (this is deterrence)

No comments: