Security Cryptography Whatever

'Jerry Solinas deserves a raise' with Steve Weis

Oct 12, 2023

Returning champion Steve Weis discusses the origins of NIST curve parameter seeds, controversy surrounding NSA's curve selection, Jerry Solinas code, debate on using P-256 curve, mysterious story of missing seeds, NSA's backdooring of cryptography, speculation about OPM breach, and a funny story about encoded seeds.

57:31

Episode guests

Steve Weis

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

The controversy surrounding the NIST curves and suspicions of a backdoor lead to ongoing debates and investigations into their generation and origins.

Curve25519 offers advantages over the NIST curves, such as complete addition formulas and absence of point validation, but NIST curves like P-256 remain widely used and standardized in cryptographic applications.

The search for the origins of the NIST curves involves inquiries into the involvement of NSA employee Jerry Salinas and highlights the importance of transparency and credible sources in cryptographic standards.

Deep dives

The Controversy Surrounding the NIST Curves

The podcast episode delves into the controversy surrounding the NIST curves, particularly the suspicions of a backdoor. The discussion centers on the generation of these curves and the possible implications of their origins. The episode explores the history of the curves and the standards committees involved in their development. It also highlights the role of NSA employee Jerry Salinas in providing the seeds for the curves and the debates surrounding the randomness of the curves' parameters. The podcast acknowledges the presence of conspiracy theories and reflects on the ongoing quest to uncover the truth behind the generation of these widely used elliptic curves.

Introduction

2min

Defining Curves in Cryptography

20min

Jerry Solinas Code and Curve 25519 Debate

16min

Debating the Use of P-256 Curve and P Curves in Cryptography

4min

The Story of Jerry Solinus and the Missing Seeds

2min

The NSA and Backdooring Cryptography

8min

Speculation and Theories about the OPM Breach and a Funny Story about Seeds

4min

We explore how the NIST curve parameter seeds were generated, as best we can, with returning champion Steve Weis!

“At the point where we find an intelligible English string that generates the
NIST P-curve seeds, nobody serious is going to take the seed provenance concerns seriously anymore.”

Transcript: https://securitycryptographywhatever.com/2023/10/12/the-nist-curves

Links:

- Steve’s post: https://saweis.net/posts/nist-curve-seed-origins.html
- ANSI X9.62 ECDSA: https://safecurves.cr.yp.to/grouper.ieee.org/groups/1363/private/x9-62-09-20-98.pdf / FIPS 186-2 https://csrc.nist.gov/files/pubs/fips/186-2/final/docs/fips186-2.pdf
- “A RIDDLE WRAPPED IN AN ENIGMA”: https://eprint.iacr.org/2015/1018.pdf
- https://arstechnica.com/information-technology/2015/01/nsa-official-support-of-backdoored-dual_ec_drbg-was-regrettable/
- https://www.muckrock.com/foi/united-states-of-america-10/origin-of-fips-186-4-elliptic-curves-over-prime-field-seed-parameters-national-institute-of-standards-and-technology-78756/
- https://www.muckrock.com/foi/united-states-of-america-10/origin-of-fips-186-4-elliptic-curves-over-prime-field-seed-parameters-national-security-agency-78755/
- Filippo’s bounty: https://words.filippo.io/dispatches/seeds-bounty/
- Recommendations for Discrete Logarithm-based Cryptography: Elliptic Curve Domain Parameters - NIST 800-186 with Curve25519 and friends
- RFC 8422: Elliptic Curve Cryptography (ECC) Cipher Suites for Transport Layer Security (TLS) Versions 1.2 and Earlier
- https://www.rfc-editor.org/rfc/rfc4492#section-6
- https://blog.cryptographyengineering.com/2017/12/19/the-strange-story-of-extended-random/
- https://en.wikipedia.org/wiki/Bullrun_(decryption_program)
- https://en.wikipedia.org/wiki/BSAFE
- https://sockpuppet.org/blog/2015/08/04/is-extended-random-malicious/

"Security Cryptography Whatever" is hosted by Deirdre Connolly (@durumcrustulum), Thomas Ptacek (@tqbf), and David Adrian (@davidcadrian)

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Security Cryptography Whatever

'Jerry Solinas deserves a raise' with Steve Weis

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

The Controversy Surrounding the NIST Curves

The Advantages of Curve25519

The Quest for the Origins of the NIST Curves

Extended Random and Controversy in TLS

The Various Perspectives and Debates

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights

Security Cryptography Whatever

'Jerry Solinas deserves a raise' with Steve Weis

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

The Controversy Surrounding the NIST Curves

The Advantages of Curve25519

The Quest for the Origins of the NIST Curves

Extended Random and Controversy in TLS

The Various Perspectives and Debates

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights