This is probably old enough that it doesn’t ring a lot of bells for people, so here: blog.cryptographyengineering…
The strange story of “Extended Random”
Yesterday, David Benjamin posted a pretty esoteric note on the IETF’s TLS mailing list. At a superficial level, the post describes some seizure-inducingly boring flaws in older Canon printers…blog.cryptographyengineering.com
I was trying to be really low-key on this one, so let me make it really blunt. There is every reason to believe the NSA tried to subvert commercial cryptography in the 2000s, and now one of the architects of that work runs applied crypto at Amazon.
1:42 AM · Feb 4, 2021
It’s funny how nonchalant we’ve gotten about all of this. A year after the Snowden leaks if you’d told me we’d be fine with having people involved with Dual EC running the crypto groups at major tech firms, my mouth would have dropped open. Now I’m worried I’m being too mean.