Vista SP1 Includes "Crypto" Backdoor

"It seems Microsoft has included a flawed random number generator in Vista SP1 for no apparant reason"

Search News

Vista SP1 Includes "Crypto" Backdoor
It has been discovered that Microsoft has decided to include a random number generator in Vista's Service Pack 1 that has a known flaw.
Known as Dual_EC_DRBG, this algorithm utilizes a set of constants based on elliptical mathematics in order to seed a second set of numbers.  This means that the second set of numbers is based off of the first set of constants.  Thus, anyone who possesses the set of constants could theoretically determine the next number the generator would spit out, creating a security risk.
What's even stranger is that Microsoft has also included the CTR_DBG algorithm, widely-considered more full-proof, set as the default generator.  Thus, developers would need to make a conscious effort to use the flawed algorithm.  This begs to question why Microsoft included the Dual_EC_DRBG algorithm in the first place.
Is Microsoft so far gone that they are including things for absolutely no reason at all?  Or does this algorithm have some hidden function?
Discuss in our Forums
«Prev 1 Next»

Most Recent Comments

17-12-2007, 10:22:24

Awesome little review there PV. I was suprised at the cost of that thing, looks sexy :p

I'm guessing a disadvantage would be the fact that watercooling would be almost impossible?

17-12-2007, 10:23:47

Yeah tis not too bad at all mate, it's really grown on me.

[QUOTE=jiffz]Awesome little review there PV. I was suprised at the cost of that thing, looks sexy

I'm guessing a disadvantage would be the fact that watercooling would be almost impossible?[/QUOTE]Thanks jiffz. Actually water-cooling it would be a cinch, and it is on my 'to do' list next year.

17-12-2007, 11:19:38

If I were MountainMods I would sue Sunbeamtech and get riiiich. :)


"* A pair of Michael Jackson's finest."

^^^^ PMSL when I saw that!!! :rollingla:rollingla:rollingla

17-12-2007, 11:26:50

I like this format. Kinda reminds me of Orac from Blake`s 7. Just need a key thing to slot in the top.

Talking of wc`ing, there`s a project log I can`t find that did something like this from scratch, looked amazing.

17-12-2007, 11:28:20

haha you saw that. I thought everyone had missed it :D Yeah I would imagine that Sunbeamtech would be ok with the UFO moniker as it is a pretty well used generic name. I may be wrong though

18-12-2007, 12:20:49

Im after a case like this - but it main use will be for lans so needs to be sturdy.

But i do like the idea of the mobo on top - makes more sense for airflow + the lack of it that you get in a small case like this.

24-12-2007, 19:09:55

I want, I want and I want. It fulfils my clear case/purple look perfectly (uv blue is purple to me). Only problem is I need a bigger desk first...

08-01-2008, 07:58:19

Cool! I'm glad you liked the review Danni and let me know what you think if you manage to source yourself one ;)

08-01-2008, 09:24:37

Heh- that's where I'm having problems- can't find one in the UK anywhere. I have my local shop to ask (he will get me anything available in the UK, and I get a trade discount as my friend is self employed) but if that doesn't work I'll have to import one.

08-01-2008, 09:29:20

You see what i really like about this is that the mobo is on top :D more SFF PC's should be like this!!!

Register for the OC3D Newsletter

Subscribing to the OC3D newsletter will keep you up-to-date on the latest technology reviews, competitions and goings-on at Overclock3D. We won't share your email address with ANYONE, and we will only email you with updates on site news, reviews, and competitions and you can unsubscribe easily at any time.

Simply enter your name and email address into the box below and be sure to click on the links in the confirmation emails that will arrive in your e-mail shortly after to complete the registration.

If you run into any problems, just drop us a message on the forums.