RSA Categorically Denies $10 Million Secret Contract with NSA
"Recent press coverage has asserted that RSA entered into a 'secret contract' with the NSA to incorporate a known flawed random number generator into its BSAFE encryption libraries. We categorically deny these allegations," RSA stated in a blog post.
If that's the case, then why did RSA make Dual EC DRBG its standard cryptographic algorithm for many of its products over the past few years even though its security has been called into question?
"We made the decision to use Dual EC DRBG as the default in BSAFE toolkits in 2004, in the context of an industry-wide effort to develop newer, stronger methods of encryption. At that time, the NSA had a trusted role in the community-wide effort to strengthen, not weaken, encryption," RSA explains.
RSA also points out that Dual EC DRBG is one of several choices available within BSAFE toolkits. As for why it remained an option after concerns surfaced in 2007, RSA says it relied upon NIST's judgement, pointing out that it gained acceptance as a NIST standard.