EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

12.10.13

FreeBSD Lost Trust in Hardware Makers, Alleging NSA Tampering

Posted in BSD, UNIX at 3:11 pm by Dr. Roy Schestowitz

FreeBSD

Summary: FreeBSD believes that the NSA tampered with hardware-level random number generators

LINUX may have been made vulnerable by the NSA et al. [1, 2, 3, 4]. There are a lot of speculations and even active discussions about random number generation in Linux, especially as implemented in hardware (e.g. by Intel). Without sufficiently high entropy in random number generators, not only would Linux as a kernel be vulnerable; SSL and SSH too would suffer.

Some of these issues we have covered here before, noting that Red Hat works a little too closely with the NSA. Right now we are quite fascinated by the news [1,2] that FreeBSD won’t use Intel’s and Via’s hardware random number generators. Why? NSA.

In other news about FreeBSD, version 10 is approaching [3,4] after 20 years of development and it should have better graphics support [5]. Marking yet more milestones, the operating system “Is Getting Into The Magazine Business” [6], it runs in the record-breaking [7] PS4 (in some sense [8]). and it should be released some time this month [9]. FreeBSD is not the only BSD game in town (DragonFlyBSD gets some attention [10,11]), but it it the leading among the BSDs, so its voice when it comes to privacy and security issues sure counts.

Related/contextual items from the news:

  1. FreeBSD won’t use Intel & Via’s hardware random number generators, believes NSA has compromised them
  2. “We cannot trust” Intel and Via’s chip-based crypto, FreeBSD developers say

    Developers of the FreeBSD operating system will no longer allow users to trust processors manufactured by Intel and Via Technologies as the sole source of random numbers needed to generate cryptographic keys that can’t easily be cracked by government spies and other adversaries.

    The change, which will be effective in the upcoming FreeBSD version 10.0, comes three months after secret documents leaked by former National Security Agency (NSA) subcontractor Edward Snowden said the US spy agency was able to decode vast swaths of the Internet’s encrypted traffic. Among other ways, The New York Times, Pro Publica, and The Guardian reported in September, the NSA and its British counterpart defeat encryption technologies by working with chipmakers to insert backdoors, or cryptographic weaknesses, in their products.

  3. FreeBSD 10.0 Beta 4 Has Surfaced

    The final beta build ahead of the long-awaited and delayed FreeBSD 10.0 has now been made available.

  4. It Doesn’t Look Like FreeBSD 10 Will Ship This Year
  5. A Roadmap For FreeBSD Graphics Support

    The latest FreeBSD code (for 10.0) supports not only Intel KMS but also the open-source AMD Radeon driver ported from the Linux kernel. This Intel/Radeon KMS support has since trickled into DragonFlyBSD and other BSD platforms. However, not all is up to par when it comes to graphics support on FreeBSD. Here’a a road-map and test matrix with some other items still on the BSD developers’ agenda.

  6. FreeBSD Is Getting Into The Magazine Business
  7. Record Breaking Launch For PS4

    Sony’s PS4 has well and truly landed, becoming the fastest selling video game console in UK history. It overturns the 8 year record held by the original PSP and eclipses the launch week sales of both PS3 and Xbox One.

  8. It’s Official, Playstation 4 Runs FreeBSD Kernel

    Sony has just launched its PlayStation 4 console, and it seems that the rumors about being based on FreeBSD are actually true.

  9. FreeBSD 10.0 Is Still Running Behind Schedule

    There were plans originally to ship FreeBSD 10.0 as stable in November, but that isn’t going to happen. It’s not even clear if FreeBSD 10.0-RELEASE will be ready to ship before the end of the calendar year, but at least progress is being made and when the release does happen there’s a great number of new features.

  10. HAMMER2 File-System Gets Stabilization Improvements

    HAMMER2 file-system improvements have landed hot on the heels of the exciting DragonFlyBSD 3.6 release.

  11. DragonFlyBSD 3.6 Does Intel/AMD KMS, DPorts, Better SMP
Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

What Else is New


  1. Microsoft Crowd Rocks the Media With Misleading Claims and Deliberate Lies About GNU/Linux, Vista 10, and Free/Open Source Software

    A roundup of rigged press coverage, intended purely to serve Microsoft's agenda



  2. Links 31/8/2015: Linux 4.2, LXLE 14.04.3

    Links for the day



  3. IRC Proceedings: August 9th, 2015 – August 29th, 2015

    Many IRC logs



  4. “Conservative” Site Responds (Yet Again) to Misguided “Conservative” Efforts to Derail Patent Reform in the US

    Patent trolls throw stones in glass houses, contributing to their own unpopularity, but some influential “Conservatives” continue to defend (conserve) them



  5. Increase in Lobbying for Software Patents in Europe and Its Trojan Horse, the Unitary Patent (UPC)

    The relentless campaigns to bring software patents into Europe have not stopped and so-called 'unification' -- much like so-called 'trade' deals -- serves to support them



  6. Microsoft Technology Crashes Financial Markets, Again

    SunGard, which is a Microsoft shop, is clearly failing to provide what it calls mission-ciriticaal [sic] solutions



  7. Alice v. CLS Bank (Alice/§101) Comes to Squash Software Patents Even in Eastern District of Texas

    The crackdown on software patents is coming along nicely and the Alice case is now being utilised even in the capital of patent trolls



  8. Apple's Patent Cases Against Android Are Falling Apart, as Acknowledged Even by the Anti-Android Lobby





  9. Links 29/8/2015: NetworkManager 1.0.6, Systemd Merges “su” Command Replacement

    Links for the day



  10. Microsoft Loves Linux to Death and Still Tries to Kill GNU/Linux

    Microsoft's relentless attacks on GNU/Linux and Free software in general (even if it runs on Windows) are so evident that claims of 'love' remain laughable at best (if not infuriating)



  11. Censorship, Self-Censorship and Intimidation Now the Modus Operandi at EPO

    The European Patent Office has ceased even trying to pretend that it respects human rights, including the right to free speech



  12. Patent Practitioners: "The Unitary Patent Might be Able to Open the Floodgates for Software Patents in Europe"

    The EPO-backed Unitary Patent scheme threatens to bring software patents to Europe and along with them a lot of patent trolls from all around the world (especially the United States)



  13. Microsoft Lies About Vista 10 and Increases Microsoft Surveillance (Even Beyond Vista 10 and Into Android, Vista 7/8)

    Windows surveillance expands retroactively, making its way into platforms other than Windows and also expanding to predecessors of Vista 10



  14. Another Suicide at the EPO, Fifth by Our Count

    Yet another EPO member of staff has just committed suicide, leading to the inevitable question: how many people need to die before Battistelli and his minions are out of the Office for good?



  15. Links 27/8/2015: ownCloud Desktop Client 2.0, Red Hat Downgraded

    Links for the day



  16. Microsoft-connected Mesosphere Threatens to Eliminate Free Software in the Datacentre

    Hiding behind a misleading 'open' label while actually backed by Microsoft (and based on new rumours may join Microsoft), Mesosphere wishes to eradicate Free and back doors-free software in large datacentres hosting a lot of physical and virtual servers



  17. Microsoft Aggression Against GNU/Linux Amid Vista 10's Failure

    A look at the recent assault on GNU/Linux in Munich and the likely cause for this assault (in such a timely fashion, too)



  18. Message to LinuxCon Regarding Microsoft: “It is Necessary to Get Behind Someone in Order to Stab Them in the Back.” -Sir Humphrey Appleby

    Jim Zemlin, executive director of the Linux Foundation, helps Microsoft gain influence in the Foundation after payments are received



  19. Market Share Estimates Confirm That Vista 10 Failed in a Major Way

    Confirmatory evidence that Vista 10 is failing in the market about a month after its much-hyped (paid coverage) release



  20. When Microsoft, the Master of Patent Trolls, Complains About Trolls

    Possibly the world's biggest patent abuser and monopolist, which also creates many patent trolls (including by far the biggest one), takes on a far smaller abuser in Court



  21. Letter Signed by Two German Officials Becomes a Microsoft Weapon of Propaganda

    Microsoft and its minions refuse to leave Munich alone, even though the vast majority in Munich are perfectly happy with Free/libre software



  22. Links 25/8/2015: Linux Kernel 4.2 Final RC, KDE Ships Plasma 5.4.0

    Links for the day



  23. Sabine Pfeiler and Otto Seidl Should Take Note as Russia -- Like China -- is in the Process of Banning Microsoft Windows for Security Reasons

    A look at a strange suggestion, signed by Sabine Pfeiler and Otto Seidl, who suggest going back to Microsoft which is basically a spyware company now



  24. Microsoft Windows Leads to Espionage and Blackmail: Latest Examples

    Another news overview, detailing high-profile examples of high-cost Windows deployments (including the cost of litigation and settlement)



  25. Links 23/8/2015: BcacheFS Benchmarks, Blackphone 2

    Links for the day



  26. Links 22/8/2015: Chromebook Gains, GNOME 3.18 Clues

    Links for the day



  27. Alice v. CLS Bank (the Alice Case/§101) Continues to Crush Software Patents in the United States

    Patent scope in the United States continues to be narrowed down as more software patents get their wings clipped



  28. Company of Hype and 'Fanbois' Continues Its Patent Attacks on Android/Linux

    Apple's attacks on Android (using bogus patents) may be soon be escalated to the US Supreme Court (SCOTUS)



  29. EPO Corruption of Patent Boundaries: Business Methods and Algorithms Patented

    How the European Patent Office (EPO) not only turns a blind eye to European law while patenting or granting patents on software but also openly advocates this now



  30. Who's Obsessing Over Patent Trolls in Latest 'Reform' Efforts? Larger Patent Trolls Such as Xerox

    Response to claims that the patent problem is being tackled by focusing on patent trolls and their favourite courts in the Eastern District of Texas


CoPilotCo

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

CoPilotCo

Recent Posts