The NSA did not only promoted a flawed encryption software to be used on some products, it also paid millions of dollars to a top computer security company to promote that software. This is the latest report from Reuters, a report that adds to a previous story published on the New York Times in September that accuses the agency of creating a number generating algorithm that can be used as a "back door" on some encryption products.
These, and among many, are the latest scandals the NSA is facing following the release of secret documents obtained by the former NSA contractor, Edward Snowden, earlier this year. According to Reuters, the RSA is a key distributor of the flawed "Dual Elliptic Curve" algorithm which had been used on the software "Bsafe." The RSA reportedly received over $10 million to set the algorithm as the default method in the software.
This is shocking, considering that the RSA is reputed to be one of the most respected security companies in the U.S. It even campaigned against a proposal in the 1990s by the Clinton administration to use surveillance chips on phones and computers.
Although the NSA has declined to comment on the report, the RSA had this to say about the story: "RSA always acts in the best interest of its customers and under no circumstances does RSA design or enable any back doors in our products. Decisions about the features and functionality of RSA products are our own."
You can read the full report by hitting the source link below.