Re: [cryptography] Fwd: [gsc] Fwd: OpenBSD IPSEC backdoor(s)

2010-12-16 Thread James A. Donald
"James A. Donald" writes: Crypto algorithms have standard reference implementations, which are to a greater or lesser extent copied wholesale. Any deviation from the usual is apt to be noticeable. On 2010-12-17 2:30 PM, Peter Gutmann wrote: That would require that you compare the code for alg

Re: [cryptography] Fwd: [gsc] Fwd: OpenBSD IPSEC backdoor(s)

2010-12-16 Thread Peter Gutmann
"James A. Donald" writes: >Crypto algorithms have standard reference implementations, which are to a >greater or lesser extent copied wholesale. Any deviation from the usual is apt >to be noticeable. That would require that you compare the code for algorithm X in project Y to the originaly co

Re: [cryptography] Fwd: [gsc] Fwd: OpenBSD IPSEC backdoor(s)

2010-12-16 Thread Paul Hoffman
At 7:06 PM -0600 12/16/10, Marsh Ray wrote: >On 12/16/2010 04:46 PM, Steven Bellovin wrote: >> >>I've known Angelos Keromytis since about 1997; he's now a colleague >>of mine on the faculty at Columbia. I've known John Ioannidis -- the >>other name attached to that code -- for considerably longer.

Re: [cryptography] Fwd: [gsc] Fwd: OpenBSD IPSEC backdoor(s)

2010-12-16 Thread Marsh Ray
On 12/16/2010 04:46 PM, Steven Bellovin wrote: I've known Angelos Keromytis since about 1997; he's now a colleague of mine on the faculty at Columbia. I've known John Ioannidis -- the other name attached to that code -- for considerably longer. I've written papers with both of them. To anyone

Re: [cryptography] Fwd: [gsc] Fwd: OpenBSD IPSEC backdoor(s)

2010-12-16 Thread Rose, Greg
On 2010 Dec 17, at 9:46 , Steven Bellovin wrote: > preposterous. Inconceivable. And I'm not quoting The Princess Bride. Greg. ___ cryptography mailing list cryptography@randombit.net http://lists.randombit.net/mailman/listinfo/cryptography

Re: [cryptography] Fwd: [gsc] Fwd: OpenBSD IPSEC backdoor(s)

2010-12-16 Thread James A. Donald
On 2010-12-17 8:09 AM, Marsh Ray wrote: On 12/15/2010 02:36 PM, Jon Callas wrote: Facts. I want facts. Failing facts, I want a *testable* accusation. Failing that, I want a specific accusation. How's this: OpenBSD shipped with a bug which prevented effective IPsec ESP authentication for a fe

Re: [cryptography] Fwd: [gsc] Fwd: OpenBSD IPSEC backdoor(s)

2010-12-16 Thread Steven Bellovin
On Dec 16, 2010, at 5:09 05PM, Marsh Ray wrote: > On 12/15/2010 02:36 PM, Jon Callas wrote: >> >> Facts. I want facts. Failing facts, I want a *testable* accusation. >> Failing that, I want a specific accusation. > > How's this: > > OpenBSD shipped with a bug which prevented effective IPsec ES

Re: [cryptography] Fwd: [gsc] Fwd: OpenBSD IPSEC backdoor(s)

2010-12-16 Thread Marsh Ray
On 12/15/2010 02:36 PM, Jon Callas wrote: Facts. I want facts. Failing facts, I want a *testable* accusation. Failing that, I want a specific accusation. How's this: OpenBSD shipped with a bug which prevented effective IPsec ESP authentication for a few releases overlapping the time period i