@jens and this is how #NIST destroyed any #reputation left post-#DUAL_EC_DRBG!
@evawolfangel #Cisco sind bei mir wegen #Govware-#Backdoor|s alla #DUAL_EC_DRBG gesperrt.
@wchr solcher shice gehört als die verbotene #Stalkerware & #Spyware verboten die es ist.
Allein das Feilbieten jener Lösung sollte strafrechtlich verfolgt werden.
@shadowserver TBH, why anyone would use #Cisco or other Manufacturers that literally integrate #Govware #Backdoors like #DUAL_EC_DRBG is beyond me.
@frumble alle #GSMA-Standards sind #Govware-#backdoored seit #GSM...
Da gibt's nix zu fixen!
Meanwhile #Cisco, #Juniper & Co. integrierten #Govware wie #DUAL_EC_DRBG und hben sich bis heute dafür nicht entschuldigt!
For anyone interested into how #DUAL_EC_DRBG worked, #numberphile made a good video about it.
@izaya @cody you mean #DUAL_EC_DRBG and all their "#LawfulInterception Complaince" bs?
https://infosec.space/@kkarhan/112242578307217182
@cody The fact that #GAFAMs and other #Corporations that commited illegal #Espionage (#PRISM) and/or imtegrated #Govware #Backdoors (i.e. #DUAL_EC_DRBG) ain't #denylisted by @bsi for useage and/or procurement by the German Government and Public Institutions and banned from their premises and networks is undue leniency.
Or would @Bundesregierung literally expect anything but a blanket ban against entire German companies if they were to ship some #ITAR / #Wassenaar / #NPT "compliance check" in their systems when sold to the USA?
Not to mention the #NonCompliance of #Windows, #MicrosoftOffice, #Office365 / #Mcirosoft365, #GoogleDocs, etc. with #GDPR & #BDSG due to #CloudAct...
@PC_Fluesterer Und wenn nicht wird wie im #Cyberfaschismis dann halt der "#Export" per #ITAR verboten, weil #SSL und #PGP sind pöse sicher... ^
Merke: Wenn's in den #RICS (#Russland, #Indien, "V.R." #China, #SaudiArabien) legal ist und aus den #USA exportiert wurde, dann nur weil's #Malware ist oder anderweitig dienlich ist.
Grundsätzlich haben alle entsprechenden #Govware-Integraten bei mir 3x solange #Hausverbot wie es dauert bis diese sich entschuldingen bzw. 2x solange wie's dauert bis die das Problem systemisch fixen.
Egal of #PRISM, #DUAL_EC_DRBG, oder was auch immer...
@ravirockks I'd be #sus amidst #NSA recommendations, as they've pushed so much #bs and #Govware in the past that they can't be considered a "reliable authority" in that regard...
@mpoletiek @aral and also even if they commit any code that has "glowie aura" it would still face rigorious examination.
Cuz the people at #OpenSSL and #OpenSSH are very restrictive in adding stuff, which is why #DUAL_EC_DRBG, #Speck and other #Govware didn't make it into those...
@bsi @bmi @AuswaertigesAmt Oder wurden jemals für [westliche] #Govware #Konsequenzen gezogen?
Egal ob #DUAL_EC_DRBG [ https://de.wikipedia.org/wiki/Dual_EC_DRBG ] oder #NSAKEY [ https://de.wikipedia.org/wiki/NSAKEY ] oder der #CryptoAPI - #Backdoor in #Windows [ https://github.com/kkarhan/windows-ca-backdoor-fix ] ???
Also you're overexaggregating cuz if customers of ANY kind would take #ITsec seriously, then participation in programs like #PRISM and integrating #Govware like #DUAL_EC_DRBG would not only be considered #felonies [which they are: it's called #espionage] but be entirely banned from selling their products at all.
@peepstein not shure what standards you mean.
IMHO their stuff is pretty solid and once setup properly they have sane defaults on.
Proper & documented setup is key to it.
Considering #Govware like #DUAL_EC_DRBG, #Cisco et. al. are banned until they apologize for it x3 the duration it took them.