{"id":15789,"date":"2015-12-23T17:23:06","date_gmt":"2015-12-23T23:23:06","guid":{"rendered":"http:\/\/bucktownbell.com\/?p=15789"},"modified":"2015-12-23T17:23:06","modified_gmt":"2015-12-23T23:23:06","slug":"on-the-juniper-backdoor","status":"publish","type":"post","link":"http:\/\/bucktownbell.com\/?p=15789","title":{"rendered":"On the Juniper backdoor"},"content":{"rendered":"<blockquote><p>To sum up, some hacker or group of hackers noticed an existing backdoor in the Juniper software, which may have been intentional or unintentional &#8212; you be the judge! They then piggybacked on top of it to build a backdoor of their own, something they were able to do because all of the hard work had already been done for them. The end result was a period in which someone &#8212; maybe a foreign government &#8212; was able to decrypt Juniper traffic in the U.S. and around the world.<\/p><\/blockquote>\n<blockquote><p>And all because Juniper had already paved the road.<\/p><\/blockquote>\n<p>Source: <em><a href=\"http:\/\/blog.cryptographyengineering.com\/2015\/12\/on-juniper-backdoor.html\">A Few Thoughts on Cryptographic Engineering: On the Juniper backdoor<\/a><\/em><\/p>\n<blockquote><p>One of the most serious concerns we raise during these meetings is the possibility that encryption backdoors could be subverted. Specifically, that a backdoor intended for law enforcement could somehow become a backdoor for people who we don&#8217;t trust to read our messages. Normally when we talk about this, we&#8217;re concerned about failures in storage of things like escrow keys. What this Juniper vulnerability illustrates is that the danger is much broader and more serious than that.<\/p><\/blockquote>\n","protected":false},"excerpt":{"rendered":"<p>To sum up, some hacker or group of hackers noticed an existing backdoor in the Juniper software, which may have been intentional or unintentional &#8212; you be the judge! They then piggybacked on top of it to build a backdoor &hellip; <a href=\"http:\/\/bucktownbell.com\/?p=15789\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1121],"tags":[338,1125,870,698],"class_list":["post-15789","post","type-post","status-publish","format-standard","hentry","category-current-events","tag-encryption","tag-exploit-vector","tag-juniper","tag-security-research"],"_links":{"self":[{"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/posts\/15789","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=15789"}],"version-history":[{"count":1,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/posts\/15789\/revisions"}],"predecessor-version":[{"id":15790,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/posts\/15789\/revisions\/15790"}],"wp:attachment":[{"href":"http:\/\/bucktownbell.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=15789"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=15789"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=15789"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}