[RESOLVED] Crypto "trapdoors" - FUD or tangible threat?

Talk about internet security, computer security, personal security, your social security number...
Post Reply
barbaz
Senior Member
Posts: 9145
Joined: Sat Aug 03, 2013 5:45 pm

[RESOLVED] Crypto "trapdoors" - FUD or tangible threat?

Post by barbaz » Sun Oct 16, 2016 1:49 am

http://arstechnica.com/security/2016/10/how-the-nsa-could-put-undetectable-trapdoors-in-millions-of-crypto-keys/

Ok, so all that is possible in theory. But it still requires quite massive computing power to be practical, and I notice that nowhere is there any mention of haxxor actually using such a trapdoor in the real world.

So, does this lead any current, real-world concerns to a user of Gecko 49?
If so -
1) Are these concerns of the 'AAAAAA!!!! HAXXOR CAN MITM MY HTTPS!!!!!!!!' variety? Or like 'Oh noes haxxor has my passwords from some months ago' type concerns?
2) Is it worth to disable in about:config over this, if so what to disable?
*Always* check the changelogs BEFORE updating that important software!
-

barbaz
Senior Member
Posts: 9145
Joined: Sat Aug 03, 2013 5:45 pm

Re: Crypto "trapdoors" - FUD or tangible threat?

Post by barbaz » Wed Oct 19, 2016 2:51 am

Even Thrawn and yes_noscript, who are both much knowledgeable on all this crypto stuff, have no idea?

Guess this isn't a concern then.

https://www.youtube.com/watch?v=-H10VqfkYOk
*Always* check the changelogs BEFORE updating that important software!
-

yes_noscript

Re: Crypto "trapdoors" - FUD or tangible threat?

Post by yes_noscript » Thu Oct 20, 2016 4:12 pm

[offtopic]Under the week (monday-thursday) i'm at work and can't write here[/offtopic]

the NSA *can* crack weak 1024bit Diffie-Hellman keys if the config is crap but thats not a real problem for us.
So just disable that cipher and use 2k or better 4k bit keys.

This is my cipher suite in Pale Moon (Pale Moon Commander addon):
Image
Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:3.0) Goanna/20161008 PaleMoon/27.0.0b2

barbaz
Senior Member
Posts: 9145
Joined: Sat Aug 03, 2013 5:45 pm

Re: Crypto "trapdoors" - FUD or tangible threat?

Post by barbaz » Thu Oct 20, 2016 5:12 pm

yes_noscript wrote:[offtopic]Under the week (monday-thursday) i'm at work and can't write here[/offtopic]

No problem, glad you find any time to write here. :)

yes_noscript wrote:So just disable that cipher and use 2k or better 4k bit keys.

This is my cipher suite in Pale Moon (Pale Moon Commander addon):

Thanks much for the information! Looks like the only one I need to switch off is

Code: Select all

security.ssl3.ecdhe_ecdsa_aes_128_sha

8-)

For those using otherwise default cypher configuration, check this thread as well: viewtopic.php?f=19&t=22108#p84179


off-topic: Pale Moon Commander version 1.7.3 seems to work well enough in SeaMonkey 2.46, but must be converted first.
*Always* check the changelogs BEFORE updating that important software!
-

User avatar
Thrawn
Senior Member
Posts: 3106
Joined: Mon Jan 16, 2012 3:46 am
Location: Australia
Contact:

Re: [RESOLVED] Crypto "trapdoors" - FUD or tangible threat?

Post by Thrawn » Thu Oct 20, 2016 11:21 pm

Sorry, hadn't been here in a few days.

Sounds like it's basically saying, "What the NSA tried to do with Dual_EC_DRBG, it might also have done with pretty much any 1024-bit DH schemes (and we wouldn't know about it)".

I'm not sure of the computational cost of exploiting it for 1024-bit keys, but even 2048-bit wasn't really considered safe, so I'm guessing that a backdoored 1024-bit key is pretty cheap to crack.
======
Thrawn
------------
Religion is not the opium of the masses. Daily life is the opium of the masses.

True religion, which dares to acknowledge death and challenge the way we live, is an attempt to wake up.
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:49.0) Gecko/20100101 Firefox/49.0

barbaz
Senior Member
Posts: 9145
Joined: Sat Aug 03, 2013 5:45 pm

Re: [RESOLVED] Crypto "trapdoors" - FUD or tangible threat?

Post by barbaz » Thu Oct 20, 2016 11:58 pm

Thrawn wrote: I'm guessing that a backdoored 1024-bit key is pretty cheap to crack.

For only NSA-type organizations, or for haxxor too?
*Always* check the changelogs BEFORE updating that important software!
-

User avatar
Thrawn
Senior Member
Posts: 3106
Joined: Mon Jan 16, 2012 3:46 am
Location: Australia
Contact:

Re: [RESOLVED] Crypto "trapdoors" - FUD or tangible threat?

Post by Thrawn » Fri Oct 21, 2016 4:13 am

Well, the premise is that the backdoor is built into the standard. There are only a few prime numbers commonly used for these things, and if they were chosen by eg the NSA, then they may have deliberately chosen numbers that they know how to break.

So theoretically, only those who developed the standards, or those who have obtained the universal secret keys from them.
======
Thrawn
------------
Religion is not the opium of the masses. Daily life is the opium of the masses.

True religion, which dares to acknowledge death and challenge the way we live, is an attempt to wake up.
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:49.0) Gecko/20100101 Firefox/49.0

barbaz
Senior Member
Posts: 9145
Joined: Sat Aug 03, 2013 5:45 pm

Re: [RESOLVED] Crypto "trapdoors" - FUD or tangible threat?

Post by barbaz » Fri Oct 21, 2016 4:53 am

Thanks.
*Always* check the changelogs BEFORE updating that important software!
-

yes_noscript

Re: Crypto "trapdoors" - FUD or tangible threat?

Post by yes_noscript » Fri Oct 21, 2016 4:57 pm

barbaz wrote:Pale Moon Commander version 1.7.3 seems to work well enough in SeaMonkey 2.46

Nice!

[offtopic]I also wonder if such a converter can convert Jetpack SDK addons to non-Jetpack SDK addons[/offtopic]
Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:3.0) Goanna/20161008 PaleMoon/27.0.0b2

barbaz
Senior Member
Posts: 9145
Joined: Sat Aug 03, 2013 5:45 pm

Re: Crypto "trapdoors" - FUD or tangible threat?

Post by barbaz » Fri Oct 21, 2016 5:05 pm

yes_noscript wrote:[offtopic]I also wonder if such a converter can convert Jetpack SDK addons to non-Jetpack SDK addons[/offtopic]

Not likely. I've done this manually for one addon, and it required almost a complete rewrite from scratch.
*Always* check the changelogs BEFORE updating that important software!
-

Post Reply