New Vista Random Numbers to Include NSA Backdoor?

Schneier is reporting that Microsoft has added the new Dual_EC-DRBG random-number generator to Vista SP1. This random-number generator is the same one discussed earlier that may have a secret NSA backdoor built into it.

Re:Given the known problems of Dual_EC_DRBG

[RightSaidFred99]

I know this is crazy talk, but maybe there's a simple explanation. Microsoft put it in the OS as an option so that people who want to use it (hmm...government contracts?) can if they so choose. So maybe Microsoft sees the NSA as a "customer" and decided they were important enough to include it for their use and for other government use.

Insane - I know, they must be "out to get us".

Re:Given the known problems of Dual_EC_DRBG

[CastrTroy]

because no one is forcing you to use that particular random number generator

That's hard to say. What does Vista use this RNG for internally. Does it use it for generating keys for use in SSL communications in Internet Explorer? Does it use this RNG to generate random keys for connecting to a VPN? Does it use this RNG to create a salt when storing your passwords? Does it use this RNG to generate the keys for BitLocker? There's many places where one may be using this RNG without even knowing it.

Re:Really...

[yo_tuco]

"Wait... couldn't you just add something to the random number? Or perhaps shift the digits over?"

You can do what TFA said:

"It's possible to implement Dual_EC_DRBG in such a way as to protect it against this backdoor, by generating new constants with another secure random-number generator and then publishing the seed. This method is even in the NIST document, in Appendix A."

Re:Really...

[The Ultimate Fartkno]

Datamining? I thought it was just another of those stupid online games that encourages you to spam everywhere.

This is not Trivial...

[deweycheetham]

Supporting Information from Original Author:

|Cryptanalytic Attacks on Pseudorandom Number Generators

J. Kelsey, B. Schneier, D. Wagner, and C. Hall

Fast Software Encryption, Fifth International Workshop Proceedings (March 1998), Springer-Verlag, 1998, pp. 168-188.

ABSTRACT: In this paper we discuss PRNGs: the mechanisms used by real-world secure systems to generate cryptographic keys, initialization vectors, "random" nonces, and other values assumed to be random. We argue that PRNGs are their own unique type of cryptographic primitive, and should be analyzed as such. We propose a model for PRNGs, discuss possible attacks against this model, and demonstrate the applicability of this model (and our attacks) to four real-world PRNGs. We close with a discussion of lessons learned about PRNG design and use, and a few open questions. | http://www.schneier.com/paper-prngs.html [schneier.com]

If you have been keeping up with computer security, everyone should be aware of the weakness of Random Number generators and it's vast effects over large sections of the computer world. This is not trivial...

Re:Fuck You AmeriKKKa!

[DrNASA]

"Children so stupid they think America invented the Internet, computer, motor car, light bulb, telephone etc ad infinitum...."

Hmmm.....America invented the:

Internet.....check
Computer.....check...holy crap...modern computing actually has it's roots in TEXAS of all places (see the integrated circuit)...so DOUBLE check
Motor Car....check again...lol - who would have thought, surely SOMETHING on this list was not invented by America
Light Bulb....check again, wow
Telephone.....and....wait for it.......check

Re:Fuck You AmeriKKKa!

[Anonymous Coward]

Germany invented the car.

An automobile powered by an Otto gasoline engine was built in Mannheim, Germany by Karl Benz in 1885 and granted a patent in January of the following year under the auspices of his major company, Benz & Cie. which was founded in 1883.

Although several other German engineers (including Gottlieb Daimler, Wilhelm Maybach, and Siegfried Marcus) were working on the problem at about the same time, Karl Benz is generally acknowledged as the inventor of the modern automobile.[5] In 1879 Benz was granted a patent for his first engine, designed in 1878. Many of his other inventions made the use of the internal combustion engine feasible for powering a vehicle and in 1896, Benz designed and patented the first internal combustion flat engine.

Approximately 25 Benz vehicles were built and sold before 1893, when his first four-wheeler was introduced. They were powered with four-stroke engines of his own design. Emile Roger of France, already producing Benz engines under license, now added the Benz automobile to his line of products. Because France was more open to the early automobiles, more were built and sold in France through Roger than Benz sold in Germany.

Daimler and Maybach founded Daimler Motoren Gesellschaft (Daimler Motor Company, DMG) in Cannstatt in 1890 and under the brand name, Daimler, sold their first automobile in 1892. By 1895 about 30 vehicles had been built by Daimler and Maybach, either at the Daimler works or in the Hotel Hermann, where they set up shop after falling out with their backers. Benz and Daimler seem to have been unaware of each other's early work and worked independently.

Daimler died in 1900 and later that year, Maybach designed a model named Daimler-Mercedes, special-ordered by Emil Jellinek. Two years later, a new model DMG automobile was produced and named Mercedes after the engine. Maybach quit DMG shortly thereafter and opened a business of his own. Rights to the Daimler brand name were sold to other manufacturers.

Karl Benz proposed co-operation between DMG and Benz & Cie. when economic conditions began to deteriorate in Germany following the First World War, but the directors of DMG refused to consider it initially. Negotiations between the two companies resumed several years later and in 1924 they signed an Agreement of Mutual Interest valid until the year 2000. Both enterprises standardized design, production, purchasing, sales, and advertising--marketing their automobile models jointly--although keeping their respective brands. On June 28, 1926, Benz & Cie. and DMG finally merged as the Daimler-Benz company, baptizing all of its automobiles Mercedes Benz honoring the most important model of the DMG automobiles, the Maybach design later referred to as the 1902 Mercedes-35hp, along with the Benz name. Karl Benz remained a member of the board of directors of Daimler-Benz until his death in 1929.

Re:"may have"

[civilizedINTENSITY]

Well it *does* have a backdoor, the only question is does anyone have the constants? FTFA:

What Shumow and Ferguson showed is that these numbers have a relationship with a second, secret set of numbers that can act as a kind of skeleton key. If you know the secret numbers, you can predict the output of the random-number generator after collecting just 32 bytes of its output.

Also FTFA:

The researchers don't know what the secret numbers are. But because of the way the algorithm works, the person who produced the constants might know; he had the mathematical opportunity to produce the constants and the secret numbers in tandem.

Re:Secret Back door code is pretty easy!!

[aesiamun]

Contra on NES.

But i think other konami games used it as well.

Re:Fuck You AmeriKKKa!

[Jerry Rivers]

Telephone was the culmination of the work of several people, and so the nationality of the inventor is in dispute. Bell did most of his work on the telephone in Canada.

The first computer was a German invention (Konrad Zuse's Z3 in 1941).

The first automobile was a French invention (1881).

The light bulb had already been invented by several people, mostly European, before Edison perfected it.

Re:Fuck You AmeriKKKa!

[sherpajohn]

Computer.....check...holy crap...modern computing actually has it's roots in TEXAS of all places (see the integrated circuit)...so DOUBLE check

Bzzzt, wrong! Even though he is dead, his guy: http://en.wikipedia.org/wiki/Konrad_Zuse [wikipedia.org] would argue with that.

Motor Car....check again...lol - who would have thought, surely SOMETHING on this list was not invented by America

Wait another dead guy wants a chat - http://en.wikipedia.org/wiki/Karl_Benz [wikipedia.org] - says he invented the automobile.

Light Bulb....check again, wow

Um, better check your's again, I think its a bit dim if not burnt out. If you refer to Edison, he was not even close to the first to demonstrate what is now known as the incandescent light bulb. http://en.wikipedia.org/wiki/Lightbulb [wikipedia.org]

Well, 2 out of 5 ain't bad right? Well, the telephone is not a sure thing, so lets make it 1.5.

Re:Given the known problems of Dual_EC_DRBG

[VertigoAce]

No it's not open source, but any company with 1500+ SA seats of Windows gets access to the source [microsoft.com] at no additional cost for debugging and security/privacy audit purposes. State and local governments appear to have access provided that they are in certain geographical areas (it's not entirely clear, but it looks like the 1500+ seat requirement doesn't apply). National governments also get zero-cost read-only access to the source code for Windows and Office [microsoft.com].

Re:Secret Back door code is pretty easy!!

[krack]

It is the Konami Code, made famous by its use in Contra. It was used in many other games and has since passed into gamer lore.

(not a shill, just love thier stuff) http://www.pennyarcademerch.com/pat070051.html [pennyarcademerch.com]
and
http://en.wikipedia.org/wiki/Konami_Code [wikipedia.org]

Re:Fuck You AmeriKKKa!

[jdigriz]

Internet: Yeah, we did.
Computer: Arguable, depends on your definition of what constitutes a computer. Take a look at the work of Konrad Zuse. Yes, the US invented the integrated circuit.
Motor Car: No, Benz, Daimler and others invented the car. However, an American, Ford, was the first with an affordable mass-produced car.
Light Bulb: Edison may not have invented the light bulb but he did significantly improve it and mass produced the first long-lived incandescent.
Telephone: Given that telephone is the name of a specific invention by Alexander Graham Bell, yeah, we did. Other inventors claimed to have transmitted sound over wires contemporaneously or nearly so. The courts stood by Bell's patent. Bell was a naturalized citizen of the US so we get to claim him.

Re:From the article

[Anonymous Coward]

Except that windows update doesn't do that.
Seriously, it doesn't.

Re:Given the known problems of Dual_EC_DRBG

[SpaceLifeForm]

They have no way of knowing that the source the can review
actually matches any binaries provided via Windows Update.

Let me guess...

[cepler]

The constants were:

4, 8, 15, 16, 23, & 42

Hmmm...

Re:Fuck You AmeriKKKa!

[Anonymous Coward]

Well, the telephone is not a sure thing, so lets make it 1.5.

Well it is 1 out of 5 because Antonio Meucci, who originally developed his invention in Italy, was recognized as the inventor by Congress in 2002 under resolution 269:

http://en.wikipedia.org/wiki/Invention_of_the_telephone#Antonio_Meucci [wikipedia.org]

Re:"might know"

[aproposofwhat]

No - it's not baseless and idle speculation, it's just good security practise not to knowingly use a method that has a documented insecurity.

Whether the NSA have the second set of numbers or not is immaterial - the fact that they might have them is sufficient to make this implementation insecure.

Now with OSS, we can change the set of numbers used to one of our own choosing, and use the algorithm with a reasonable expectation of security.

With Vista? Sorry, mate, but there's no way to change the numbers.

Hope that explains why people are concerned about this.