- Prison Planet.com - http://www.prisonplanet.com -
American and British Spy Agencies Have INTENTIONALLY Weakened Security for Many Decades
Posted By admin On January 11, 2014 @ 9:44 am In Prison Planet | Comments Disabled
Washington’s Blog 
January 11, 2014
The British argued that the key length had to be reduced [the longer the key length, the stronger the encryption]. Among other things they wanted to make sure that a specified Asian country should not have the opportunity to escape surveillance.
We are still now having an encryption that is about 1000 times weaker than originally planned.
That means that it probably would have taken longer time for NSA and others to crack the encryption, and a certain amount of eavesdropping would have been avoided.
In other words, hackers can break into cellphone calls much more easily because the British spied intentionally made the encryption 1,000 times weaker than it otherwise would have been.
This isn’t the only example of Western spy agencies destroying security.
The NSA paid leading encryption company RSA $10 million  to weaken its encryption algorithm. Many other encryption companies have probably also  accepted a deal with the devil. As ProPublica reports :
The N.S.A. has been deliberately weakening the international encryption standards adopted by developers.
New Scientist reports :
The internet is full of holes. The spy agencies in the US and UK have forced technology suppliers to deliberately weaken security measures in the online computing systems that everyone uses. As a result they may have compromised everybody’s security – since the vulnerabilities can be exploited by anybody who discovers them.
One of the leaked documents reveals that the NSA and GCHQ aim to “insert vulnerabilities into commercial encryption systems, IT systems, networks, and endpoint communications devices used by targets”. An “endpoint communications system” simply means a computer, tablet or cellphone.
A top expert in the ‘microprocessors’ or ‘chips’ inside every computer – having helped start two semiconductor companies and a supercomputer firm – says :
He would be “surprised” if the US National Security Agency was not embedding “back doors” inside chips produced by Intel and AMD, two of the world’s largest semiconductor firms, giving them the possibility to access and control machines.
[The expert] said when he learned the NSA had secured “pre-encryption stage ” access to Microsoft’s email products via the PRISM leaks, he recognised that “pretty much all our computers have a way for the NSA to get inside their hardware” before a user can even think about applying encryption or other defensive measures.
Documents leaked by Edward Snowden show that the NSA targeted :
Firewalls from Juniper Networks, hard drives from Western Digital, Seagate, Maxtor and Samsung, networking gear from Cisco and Huawei, and servers from Dell [as well as other equipment.]
NSA also encourages large internet companies to delay patching vulnerabilities, to allow the NSA time to exploit them. See this  and this . In other words, the NSA encourages companies to allow vulnerabilities to remain unfixed.
And the NSA started building in backdoor access to all Windows software by 1999 .
Whenever the NSA or GCHQ creates a “backdoor”, it allows all sorts of bad guys in to exploit it .
Spying makes us vulnerable to hackers and other bad guys:
“By weakening encryption, the NSA allows others to more easily break it. By installing backdoors and other vulnerabilities in systems, the NSA exposes them to other malicious hackers—whether they are foreign governments or criminals. As security expert Bruce Schneier explained , ‘It’s sheer folly to believe that only the NSA can exploit the vulnerabilities they create.’”
“[NSA spying] breaks our technical systems, as the very protocols of the Internet become untrusted.
The more we choose to eavesdrop on the Internet and other communications technologies, the less we are secure from eavesdropping by others. Our choice isn’t between a digital world where the NSA can eavesdrop and one where the NSA is prevented from eavesdropping; it’s between a digital world that is vulnerable to all attackers, and one that is secure for all users.
We need to recognize that security is more important than surveillance, and work towards that goal.”
“A team of  UK academics specialising in cryptography has warned … that ‘by weakening all our security so that they can listen in to the communications of our enemies, [the agencies] also weaken our security against our potential enemies‘….
The biggest risk, they imply, is that civilian systems and infrastructure – perhaps including physical systems such as the power grid – could become vulnerable to attack by state-sponsored hackers who are capable of exploiting the same ‘backdoors’ in software that have been planted there by the western agencies.”
The NSA and GHCQ’s mucking about has made us all less safe …
Article printed from Prison Planet.com: http://www.prisonplanet.com
URL to article: http://www.prisonplanet.com/american-and-british-spy-agencies-have-intentionally-weakened-security-for-many-decades.html
URLs in this post:
 Washington’s Blog: http://www.washingtonsblog.com/2014/01/american-british-spy-agencies-intentionally-weakened-security-many-decades.html
 largest newspaper: http://en.wikipedia.org/wiki/Aftenposten
 reports: http://www.aftenposten.no/nyheter/uriks/Sources-We-were-pressured-to-weaken-the-mobile-security-in-the-80s-7413285.html#.UtBjcfs_BQV
 paid leading encryption company RSA $10 million: http://www.reuters.com/article/2013/12/20/us-usa-security-rsa-idUSBRE9BJ1C220131220
 probably also: http://www.computerworld.com/s/article/9245289/The_NSA_blame_game_Singling_out_RSA_diverts_attention_from_others
 reports: http://www.propublica.org/article/the-nsas-secret-campaign-to-crack-undermine-internet-encryption
 reports: http://www.newscientist.com/article/dn24165-how-nsa-weakens-encryption-to-access-internet-traffic.html
 says: http://www.afr.com/p/technology/intel_chips_could_be_nsa_key_to_ymrhS1HS1633gCWKt5tFtI
 pre-encryption stage: http://www.guardian.co.uk/world/2013/jul/11/microsoft-nsa-collaboration-user-data
 targeted: http://www.washingtonsblog.com/2014/01/gigaom.com/2013/12/29/nsas-backdoor-catalog-exposed-targets-include-juniper-cisco-samsung-and-huawei/
 this: http://www.bloomberg.com/news/2013-06-14/u-s-agencies-said-to-swap-data-with-thousands-of-firms.html
 this: http://news.softpedia.com/news/NSA-Intercepted-Microsoft-s-Bug-Report-to-Exploit-Windows-Vulnerabilities-412705.shtml
 backdoor access to all Windows software by 1999: http://www.washingtonsblog.com/2013/06/microsoft-programmed-in-nsa-backdoor-in-windows-by-1999.html
 all sorts of bad guys in to exploit it: http://www.techdirt.com/articles/20140108/23073325816/what-intelligence-community-doesnt-get-backdoor-good-guys-is-always-backdoor-bad-guys-as-well.shtml
 IT: http://www.voltage.com/company/news/press-room/pr130726-62-percent-of-employees-believe-the-government-snoops-on-their-cloud-data/
 security: http://www.forbes.com/sites/andygreenberg/2013/07/31/nsa-director-heckled-at-conference-as-he-asks-for-security-communitys-understanding/
 notes:: https://www.eff.org/deeplinks/2013/10/nsa-making-us-less-safe
 Bruce Schneier explained: http://www.technologyreview.com/news/519336/bruce-schneier-nsa-spying-is-making-us-less-safe/
 provides details: http://www.theatlantic.com/technology/archive/2014/01/how-the-nsa-threatens-national-security/282822/
 says: http://www.homelandsecuritynewswire.com/dr20131108-weakening-cybersecurity-to-facilitate-nsa-surveillance-is-dangerous-experts
 agrees: http://www.telegraph.co.uk/news/worldnews/northamerica/usa/10431825/Inventor-of-world-wide-web-criticises-NSA-over-privacy-breaches.html
 stakes are high: http://www.theguardian.com/technology/2013/sep/16/nsa-gchq-undermine-internet-security
 creates an easy mark for hackers: http://www.washingtonsblog.com/2013/07/another-problem-with-mass-spying-hackers-might-steal-centralized-data.html
 Pentagon itself sees: http://killerapps.foreignpolicy.com/posts/2013/08/12/irony_alert_pentagon_now_fears_a_big_data_national_security_threat
Copyright © 2013 PrisonPlanet.com. All rights reserved.