The "Extended Random" Feature in the BSAFE Crypto Library

ID SCHNEIER:3C24CA447D3EA87BB77965646F71E64E
Type schneier
Reporter Bruce Schneier
Modified 2017-12-28T12:30:33


Matthew Green wrote a fascinating blog post about the NSA's efforts to increase the amount of random data exposed in the TLS protocol, and how it interacts with the NSA's backdoor into the DUAL_EC_PRNG random number generator to weaken TLS.