1994-06-28 - Re: Is the NSA really competent?

Header Data

From: “Perry E. Metzger” <perry@imsi.com>
To: cypherpunks@toad.com
Message Hash: 1ae33ea0c8bd721c28fa217e2c71ba4e9ab05d3d5411df2b27715ae352073381
Message ID: <9406281208.AA10223@snark.imsi.com>
Reply To: <199406271559.IAA12568@netcom2.netcom.com>
UTC Datetime: 1994-06-28 12:02:47 UTC
Raw Date: Tue, 28 Jun 94 05:02:47 PDT

Raw message

From: "Perry E. Metzger" <perry@imsi.com>
Date: Tue, 28 Jun 94 05:02:47 PDT
To: cypherpunks@toad.com
Subject: Re: Is the NSA really competent?
In-Reply-To: <199406271559.IAA12568@netcom2.netcom.com>
Message-ID: <9406281208.AA10223@snark.imsi.com>
MIME-Version: 1.0
Content-Type: text/plain



catalyst-remailer@netcom.com says:

> There is no evidence that the NSA knows about _any_ fundamental
> technique that has not been published in the literature.

Thats naive. They knew about differential cryptanalysis, and likely
linear and related key attacks, twenty years before the open
literature did. The notion that there is nothing else that they have
up their sleeves doesn't ring true.

The NSA has a large budget, and lots of extremely smart people.

  Nor is there any evidence (save the hearsay about S-boxes, which
> were actually developed at IBM) that they have made any major
> contribution to the science of cryptography, despite the massive
> resources they throw into it.

Ahem. It is painfully obvious from the few bits and pieces of
information we glean to this day from repeated study of DES that they
know far, far more than we do about how to attack conventional
ciphers. It is unlikely that they haven't applied any of their skill
to public key techniques. There is no evidence that NSA cryptographers
aren't at least as smart as the ones out in the field, and they have a
tremendous head start and lots of practical experience that none of us
have.


Perry





Thread