Some encryption software has the NSA built into it, says RSA

The whole point of encryption software is to keep people out of it. Some of those people, as recent revelations have determined, are members of the NSA. Unfortunately, the very software meant to keep them out might give the NSA all of the information they need.

Security Firm RSA has warned users of encryption software to avoid a community developed part of it that has more than a whiff of US National Security Agency (NSA) meddling about it.

The firm said that customers that have adopted its BSAFE toolkit and Data Protection Manager security software should back away from Dual EC_DRBG, or Dual Elliptic Curve Deterministic Random Bit Generation component.

Read full article