160*600

NSA’s Encryption Algorithm in Linux Kernel is Creating Unease in the Community

Linux Kernel 4.17 saw the inclusion of NSA’s ‘controversial’ encryption algorithm Speck. Linux Kernel 4.18 will see Speck being available as a supported algorithm with fscrypt and not everyone is happy about it.
Before you panic or form wrong conclusions, you should know that Speck is not a backdoor. It’s just a not-so-strong encryption algorithm from American agency NSA and it’s available as a module in Linux Kernel.
USA’s National Security Agency (NSA) is infamous for being privacy-invasive. It’s past actions cast doubts on every step it takes.
NSA had even approached Linux creator Linus Torvalds to create a backdoor in Linux kernel. An offer, Linus Torvalds refused immediately.

The dark story behind NSA’s Speck Algorithm

NSA's controversial Speck encryption is now in Linux Kernel 4.17
The algorithm in question, Speck, is a ‘weak’ encryption (lightweight block cipher) designed for devices with low computing powers i.e., IoT devices.
NSA wanted Speck and its companion algorithm Simon to become a global standard for next generation of internet-of-things gizmos and sensors.NSA tried to aggressively push this algorithm to an extent that some cryptographer alleged bullying and harassment at the hands of NSA.
The problem with the algorithm is that the International Organization of Standards (ISO) rejected Speck and Simon.
International Organization of Standards (ISO) blocked NSA’s “Simon” and “Speck” algorithms amid concerns that they contained a backdoor that would allow US spies to break the encryption.
Though no researcher found any backdoor in Simon and Speck, the algorithms were rejected by ISO because NSA didn’t even provide the normal level of technical detail to researchers. This increased the speculation of a backdoor in the algorithm.

If Speck algorithm was rejected by ISO, then how come it landed in Linux Kernel 4.17?


Google engineer Eric Biggers requested the inclusion of Speck in Kernel 4.17 because Google is going to provide Speck as an option for dm-crypt and fscrypt on Android.
The focus is on providing encryption on Android Go, an Android version tailored to run on entry-level smartphones. As of today, these devices are not encrypted because AES is not fast enough for the low-end devices.

Comments

Post a Comment

Popular posts from this blog

Image
How to Hack CCTV Private Cameras Hi Friends. Now a days CCTV cameras are used many place like shops, malls, offices, warehouse etc and more. for security reason and for many more purposes. This articles show you how to hack CCTV cameras. If search on Google for CCTV camera hacking , you will be find tricks for public CCTV camera hacking tricks. But here you will be hack private CCTV cameras Image via  fbcdn.net . Step 1 Download Angry Ip Scanner Angry Ip scanner is powerful GUI Port scanner . Angry Ip scanner available for all major OS. Download and Install Angry ip scanner Step 2 Choose Ip Address Range Its important that how to choose proper ip address range for CCTV camera hacking. CCTV cameras are connected with broadband internet connection. If your accessing broadband router then find your public ip address. Just type 'My IP' in Google or Bing search bar. Google will show your public ip address Here 77.247.181.165 is my public ip . So ip range...
Read more

How to hack whatsapp And how to prevent from being hacked

Image
Top 5 Ways to Hack WhatsApp Accounts Using Ethical Hacking How to hack WhatsApp accounts using Ethical hacking is probably one of the most searched things on the Internet. In this blog, we are going to look at how the security of WhatsApp can be compromised and how your data Disclaimer : This blog is totally meant for learning purposes. The techniques discussed here are to make you more informed and aware of the various malicious ways a hacker can exploit to steal your private information! Is hacking WhatsApp possible? WhatsApp is a cross-platform messaging service owned by Facebook and is developed by most intelligent developers. It has end-to-end encryption that enables only the sender and the receiver to see what is sent. It frequently resolves the security issues faced by users as well. Certain things cannot be controlled by developers. For example, if you tell someone your email password and that person misuses it, then it is not exactly hacking. Nonetheless, even in this case, pe...
Read more
Image
WARNING — Malware Found in CamScanner Android App With 100+ Million Users     Beware! Attackers can remotely hijack your Android device and steal data stored on it, if you are using free version of  CamScanner , a highly-popular Phone PDF creator app with more than 100 million downloads on Google Play Store. So, to be safe, just uninstall the CamScanner app from your Android device now, as Google has already removed the app from its official Play Store. Unfortunately, CamScanner has recently gone rogue as researchers found a hidden Trojan Dropper module within the app that could allow remote attackers to secretly download and install malicious program on users' Android devices without their knowledge  However, the malicious module doesn't actually reside in the code of CamScanner Android app itself; instead, it is part of a 3rd-party advertising library that recently was introduced in the PDF creator app. Discovered by Kaspersky security resea...
Read more