nanog mailing list archives

Re: NSA able to compromise Cisco, Juniper, Huawei switches

From: "Dobbins, Roland" <rdobbins () arbor net>
Date: Tue, 31 Dec 2013 04:33:52 +0000


On Dec 31, 2013, at 11:06 AM, [AP] NANOG <nanog () armoredpackets com> wrote:

Then looking at things from the evil side though, if they owned the system which provides the signing then they could 
sign
virtually anything they wish.


Or if they owned *people* with the right level of access to do so, or if there were implementation bugs which could be 
utilized to bypass or obviate the signing . . .

None of the alleged capabilities described in the purported documents is really standalone; they all rely upon other 
methods/mechanisms in order to provide the required foundation to accomplish their stated goals.

I think we need to watch and listen/read over the coming weeks and months before we go assuming we have it figured 
out.


This is the most pertinent and insightful comment made in this thread.

-----------------------------------------------------------------------
Roland Dobbins <rdobbins () arbor net> // <http://www.arbornetworks.com>

          Luck is the residue of opportunity and design.

                       -- John Milton

Current thread:

Re: NSA able to compromise Cisco, Juniper, Huawei switches, (continued)
- - - Re: NSA able to compromise Cisco, Juniper, Huawei switches Sabri Berisha (Dec 30)
    - Re: NSA able to compromise Cisco, Juniper, Huawei switches Dobbins, Roland (Dec 30)
    - Re: NSA able to compromise Cisco, Juniper, Huawei switches Randy Bush (Dec 30)
    - Re: NSA able to compromise Cisco, Juniper, Huawei switches Dobbins, Roland (Dec 30)
    - Re: NSA able to compromise Cisco, Juniper, Huawei switches Blake Dunlap (Dec 30)
    - Re: NSA able to compromise Cisco, Juniper, Huawei switches Dobbins, Roland (Dec 30)
    - Re: NSA able to compromise Cisco, Juniper, Huawei switches Randy Bush (Dec 30)
    - Re: NSA able to compromise Cisco, Juniper, Huawei switches Dobbins, Roland (Dec 30)
    - Re: NSA able to compromise Cisco, Juniper, Huawei switches Sabri Berisha (Dec 30)
    - Re: NSA able to compromise Cisco, Juniper, Huawei switches [AP] NANOG (Dec 30)
    - Re: NSA able to compromise Cisco, Juniper, Huawei switches Dobbins, Roland (Dec 30)
    - Re: NSA able to compromise Cisco, Juniper, Huawei switches [AP] NANOG (Dec 30)
    - Re: NSA able to compromise Cisco, Juniper, Huawei switches Blair Trosper (Dec 30)
    - Re: NSA able to compromise Cisco, Juniper, Huawei switches Jimmy Hess (Dec 30)
    - Re: NSA able to compromise Cisco, Juniper, Huawei switches Blair Trosper (Dec 30)
    - Re: NSA able to compromise Cisco, Juniper, Huawei switches Ray Soucy (Dec 31)
    - Re: NSA able to compromise Cisco, Juniper, Huawei switches shawn wilson (Dec 31)
    - Re: NSA able to compromise Cisco, Juniper, Huawei switches sthaug (Dec 31)
    - Re: NSA able to compromise Cisco, Juniper, Huawei switches Saku Ytti (Dec 31)
    - Re: NSA able to compromise Cisco, Juniper, Huawei switches Leo Bicknell (Dec 31)
    - Re: NSA able to compromise Cisco, Juniper, Huawei switches nanog () mitteilung com (Dec 31)

(Thread continues...)