Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

RSA BSafe advisement and Cisco encryption

Hello everyone,

Just curious if anyone knows the implications with Cisco gear and the development that a potentially compromised pseudo-random number generator is being used as default in RSAs BSafe product.  From what I've discovered from searching so far is that Cisco uses BSafe for VPN kernels on the ASA, and I'm wondering where else it may be used or what our exposure is.

Basically I'm just wondering if Cisco needs to change their default random number generator, or maybe they never used the compromised one as a default.

What I'm not really asking for is conspiracy theories on what's going on, or the political ramifications thereof... more that if there is a compromised component in the security products offered by RSA that anyone may theoretically leverage, are Cisco products affected?

Thanks

http://arstechnica.com/security/2013/09/stop-using-nsa-influence-code-in-our-product-rsa-tells-customers/

727
Views
0
Helpful
0
Replies