Click here to Skip to main content
11,578,739 members (61,114 online)

The Insider News

   

The Insider News is for breaking IT and Software development news. Post your news, your alerts and your inside scoops. This is an IT news-only forum - all off-topic, non-news posts will be removed. If you wish to ask a programming question please post it here.

Get The Daily Insider direct to your mailbox every day. Subscribe now!

 
GeneralRe: As sales plunge, Barnes & Noble says it will stop making Nook tablets Pin
AspDotNetDev25-Jun-13 11:45
protectorAspDotNetDev25-Jun-13 11:45 
NewsMicrosoft brings BizSpark, Bing Fund, and its accelerators under one roof Pin
Terrence Dorsey25-Jun-13 8:06
staffTerrence Dorsey25-Jun-13 8:06 
NewsNSA has total access via Microsoft Windows Pin
Terrence Dorsey25-Jun-13 8:06
staffTerrence Dorsey25-Jun-13 8:06 
GeneralRe: NSA has total access via Microsoft Windows Pin
lewax0025-Jun-13 9:38
memberlewax0025-Jun-13 9:38 
GeneralRe: NSA has total access via Microsoft Windows Pin
Rene Pilon25-Jun-13 10:48
memberRene Pilon25-Jun-13 10:48 
GeneralRe: NSA has total access via Microsoft Windows Pin
lewax0025-Jun-13 11:08
memberlewax0025-Jun-13 11:08 
GeneralRe: NSA has total access via Microsoft Windows Pin
Rene Pilon25-Jun-13 11:47
memberRene Pilon25-Jun-13 11:47 
GeneralRe: NSA has total access via Microsoft Windows Pin
lewax0025-Jun-13 12:05
memberlewax0025-Jun-13 12:05 
Rene Pilon wrote:
Question is - is that reg key (and who knows where else it sits) used for a crypto seed - or is it a unique ID....
It's a public key[^], and it's the same on everyone's machine. In short, from my understanding, a public key allows you to do two things:
1. Decrypt data encrypted with the associated private key.
2. Confirm data came from the owner of the private key.

Neither of those is a danger to anyone's computer directly. There could be an issue of what you're decrypting (e.g. spyware of some sort), but then, why bother sending it encrypted if everyone has the key on their machine? The next is using it to confirm something was sent from a specific sender. So at worst, it would confirm some data came from the NSA. Unless there's more to it, e.g. it's open to any incoming internet traffic and will decode and execute arbitrary data, that alone isn't enough to be an obvious threat.

The real things to consider here:
a. Does it actually have anything to do with the NSA? (Seems like it would be a little stupid of them to label it "NSAKEY" if it was supposed to be some secret backdoor. It could easily stand for something like "Null Signing Authority", which would make sense for a test key.)
b. What is that module actually used for? How could it actually allow someone to compromise an entire computer?
c. Would MS actually go along with something like this? Seems a little dangerous to intentionally include any sort of back door, not to mention potential backlash.
GeneralRe: NSA has total access via Microsoft Windows Pin
Rene Pilon25-Jun-13 12:17
memberRene Pilon25-Jun-13 12:17 
NewsThe Future of Internet & Cars Pin
Terrence Dorsey25-Jun-13 8:05
staffTerrence Dorsey25-Jun-13 8:05 
NewsI felt a disturbance in the force... Pin
Pete O'Hanlon25-Jun-13 3:46
protectorPete O'Hanlon25-Jun-13 3:46 
GeneralRe: I felt a disturbance in the force... Pin
Dennis E White25-Jun-13 4:30
professionalDennis E White25-Jun-13 4:30 
GeneralRe: I felt a disturbance in the force... Pin
Pete O'Hanlon25-Jun-13 4:47
protectorPete O'Hanlon25-Jun-13 4:47 
NewsDon Knuth and the Art of Computer Programming: The Interview Pin
Terrence Dorsey24-Jun-13 11:40
staffTerrence Dorsey24-Jun-13 11:40 
NewsHeirs of Infocom: Where interactive fiction authors and games stand today Pin
Terrence Dorsey24-Jun-13 11:39
staffTerrence Dorsey24-Jun-13 11:39 
NewsAll the Apps Have Been Written Pin
Terrence Dorsey24-Jun-13 11:39
staffTerrence Dorsey24-Jun-13 11:39 
NewsThe development of Linux Kernel 3.9 Pin
Terrence Dorsey24-Jun-13 11:38
staffTerrence Dorsey24-Jun-13 11:38 
NewsDirty Game Development Tricks Pin
Terrence Dorsey24-Jun-13 11:37
staffTerrence Dorsey24-Jun-13 11:37 
NewsAOL launches Reader for RSS Pin
Terrence Dorsey24-Jun-13 10:39
staffTerrence Dorsey24-Jun-13 10:39 
NewsA very old problem turns 20 Pin
Terrence Dorsey24-Jun-13 10:38
staffTerrence Dorsey24-Jun-13 10:38 
GeneralRe: A very old problem turns 20 Pin
AspDotNetDev24-Jun-13 12:27
protectorAspDotNetDev24-Jun-13 12:27 
NewsMicrosoft Tightens Security for Virtual Machines in Windows Azure Pin
Terrence Dorsey24-Jun-13 10:38
staffTerrence Dorsey24-Jun-13 10:38 
NewsLSI puts out a 4TB PCIe3 SSD Pin
Terrence Dorsey24-Jun-13 10:38
staffTerrence Dorsey24-Jun-13 10:38 
GeneralRe: LSI puts out a 4TB PCIe3 SSD Pin
AspDotNetDev24-Jun-13 12:32
protectorAspDotNetDev24-Jun-13 12:32 
GeneralRe: LSI puts out a 4TB PCIe3 SSD Pin
Terrence Dorsey24-Jun-13 12:47
staffTerrence Dorsey24-Jun-13 12:47 

General General    News News    Suggestion Suggestion    Question Question    Bug Bug    Answer Answer    Joke Joke    Rant Rant    Admin Admin   

Use Ctrl+Left/Right to switch messages, Ctrl+Up/Down to switch threads, Ctrl+Shift+Left/Right to switch pages.


Advertise | Privacy | Mobile
Web03 | 2.8.150603.1 | Last Updated 5 Jul 2015
Copyright © CodeProject, 1999-2015
All Rights Reserved. Terms of Service
Layout: fixed | fluid