According to the Snowden documents, the NSA “makes cryptographic modifications to commercial or indigenous cryptographic information security devices or systems” so they can be subject to eavesdropping.
The documents don’t name any of the systems the agency has tried to weaken, but some cryptographers have long been suspicious of the NSA’s role in developing encryption standards approved and promoted by the National Institute of Standards and Technology — the federal agency that sets benchmarks for security measures.
As a result of the latest revelations, the standards and technology institute has “lost the trust of the computer science community,” said Christopher Soghoian, a privacy researcher and advocate with the American Civil Liberties Union. “They are compromised.”
The standards and technology institute said in a statement that it is “required by statute” to consult with the NSA and that it “would not deliberately weaken a cryptographic standard.”
Nonetheless, the agency has reopened for public comment a 2006 standard long criticized by many cryptographers.
Privacy advocates and cryptographers say the National Institute of Standards and Technology still will have to tell the truth about any collaboration with the NSA in order to rebuild trust.
“They are going to have to work real hard to get themselves out of this hole, if they ever can,” Mr. Soghoian said.
The NIST press office was closed because of the government shutdown, and no one could be reached for comment.
The ‘NOBUS’ principle
One former NSA chief said intelligence officials are ever careful to weigh the costs and benefits of exploiting any cybersecurity flaw they come across, including in encryption.
“There are vulnerabilities, and then there are vulnerabilities,” said Michael V. Hayden, a retired Air Force general who headed the agency from 1999 to 2005.
“When weighing the balance between exploiting or plugging a vulnerability once it has been discovered, the question cannot be handled in the abstract. Particulars matter,” said Gen. Hayden, who is now a principal with the Chertoff Group, a private security and intelligence firm.
One factor taken into account is what Mr. Hayden calls the “NOBUS” principle: “no one but us.”
If a vulnerability can be exploited only by U.S. agencies for technical reasons, Gen. Hayden said, “That is not a vulnerability that we are legally and morally obliged to patch. That is a vulnerability that we are legally and morally obliged to exploit in order to help keep the American people safe.”
“Time is also a factor,” he said. “It may be NOBUS now, but one has to be alert as this changes over time.”