Free Republic
Browse · Search 		Bloggers & Personal
Topics · Post Article

To: Fhios
Oh, dear. Translated as best I can: a VPN (Virtual Private Network) is a system wherein the user "tunnels" through using encryption that is based on a random number generator (in this case), which, if not random or otherwise compromised, allows realtime decryption by a third party who is capturing the packets.

Dang, that isn't much better. Sorry.

2 posted on 01/11/2016 7:45:07 PM PST by Billthedrill
[ Post Reply | Private Reply | To 1 | View Replies ]

To: Billthedrill
Simple summary -- somebody put a backdoor into the Juniper code so spies could access the supposedly secure data. From the article:

"It's very bizarre. I've never seen anything like that before where gone from something that was working and written in a standard manner to something as strange as this," he said. It's that bug that enabled another attacker to replace the Dual_EC constant - thought to belong to the NSA - with their own constant."The very presence of Dual_EC enabled a third party to simply change a constant and make it so they were able to decrypt VPN traffic," Checkoway said...

This is an example of why the kind of backdoor access our security agencies want is a bad idea. Other people find the back door and pretty soon everybody and his cousin are busy reading other people's private information.

3 posted on 01/11/2016 7:59:21 PM PST by freeandfreezing
[ Post Reply | Private Reply | To 2 | View Replies ]

Free Republic
Browse · Search 		Bloggers & Personal
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson