Heiss - A 'CARELESS' mistake by Microsoft programmers has revealed that special access codes prepared by the US National Security Agency have been secretly built into Windows. The NSA access system is built into every version of the Windows operating system now in use, except early releases of Windows 95 (and its predecessors). The discovery comes close on the heels of the revelations earlier this year that another US software giant, Lotus, had built an NSA "help information" trapdoor into its Notes system, and that security functions on other software systems had been deliberately crippled.

The first discovery of the new NSA access system was made two years ago by British researcher Dr Nicko van Someren. But it was only a few weeks ago when a second researcher rediscovered the access system. With it, he found the evidence linking it to NSA.

Computer security specialists have been aware for two years that unusual features are contained inside a standard Windows software "driver" used for security and encryption functions. The driver, called ADVAPI.DLL, enables and controls a range of security functions. If you use Windows, you will find it in the C:Windowssystem directory of your computer.

ADVAPI.DLL works closely with Microsoft Internet Explorer, but will only run cryptographic functions that the US governments allows Microsoft to export. That information is bad enough news, from a European point of view. Now, it turns out that ADVAPI will run special programmes inserted and controlled by NSA. As yet, no-one knows what these programmes are, or what they do.

Dr Nicko van Someren reported at last year's Crypto 98 conference that he had disassembled the ADVADPI driver. He found it contained two different keys. One was used by Microsoft to control the cryptographic functions enabled in Windows, in compliance with US export regulations. But the reason for building in a second key, or who owned it, remained a mystery.

A second key

Two weeks ago, a US security company came up with conclusive evidence that the second key belongs to NSA. Like Dr van Someren, Andrew Fernandez, chief scientist with Cryptonym of Morrisville, North Carolina, had been probing the presence and significance of the two keys. Then he checked the latest Service Pack release for Windows NT4, Service Pack 5. He found that Microsoft's developers had failed to remove or "strip" the debugging symbols used to test this software before they released it. Inside the code were the labels for the two keys. One was called "KEY". The other was called "NSAKEY".

Fernandes reported his re-discovery of the two CAPI keys, and their secret meaning, to "Advances in Cryptology, Crypto'99" conference held in Santa Barbara. According to those present at the conference, Windows developers attending the conference did not deny that the "NSA" key was built into their software. But they refused to talk about what the key did, or why it had been put there without users' knowledge.

A third key?!

But according to two witnesses attending the conference, even Microsoft's top crypto programmers were astonished to learn that the version of ADVAPI.DLL shipping with Windows 2000 contains not two, but three keys. Brian LaMachia, head of CAPI development at Microsoft was "stunned" to learn of these discoveries, by outsiders. The latest discovery by Dr van Someren is based on advanced search methods which test and report on the "entropy" of programming code.

Within the Microsoft organisation, access to Windows source code is said to be highly compartmentalized, making it easy for modifications to be inserted without the knowledge of even the respective product managers.

Researchers are divided about whether the NSA key could be intended to let US government users of Windows run classified cryptosystems on their machines or whether it is intended to open up anyone's and everyone's Windows computer to intelligence gathering techniques deployed by NSA's burgeoning corps of "information warriors".

According to Fernandez of Cryptonym, the result of having the secret key inside your Windows operating system "is that it is tremendously easier for the NSA to load unauthorized security services on all copies of Microsoft Windows, and once these security services are loaded, they can effectively compromise your entire operating system". The NSA key is contained inside all versions of Windows from Windows 95 OSR2 onwards.

"For non-American IT managers relying on Windows NT to operate highly secure data centres, this find is worrying", he added. "The US government is currently making it as difficult as possible for "strong" crypto to be used outside of the US. That they have also installed a cryptographic back-door in the world's most abundant operating system should send a strong message to foreign IT managers".

"How is an IT manager to feel when they learn that in every copy of Windows sold, Microsoft has a 'back door' for NSA - making it orders of magnitude easier for the US government to access your computer?" he asked.

Can the loophole be turned round against the snoopers?

Dr van Someren feels that the primary purpose of the NSA key inside Windows may be for legitimate US government use. But he says that there cannot be a legitimate explanation for the third key in Windows 2000 CAPI. "It looks more fishy", he said.

Fernandez believes that NSA's built-in loophole can be turned round against the snoopers. The NSA key inside CAPI can be replaced by your own key, and used to sign cryptographic security modules from overseas or unauthorised third parties, unapproved by Microsoft or the NSA. This is exactly what the US government has been trying to prevent. A demonstration "how to do it" program that replaces the NSA key can be found on Cryptonym's website.

According to one leading US cryptographer, the IT world should be thankful that the subversion of Windows by NSA has come to light before the arrival of CPUs that handles encrypted instruction sets. These would make the type of discoveries made this month impossible. "Had the next-generation CPU's with encrypted instruction sets already been deployed, we would have never found out about NSAKEY."

FROM THE National Expositor

Views: 172

Reply to This

Replies to This Discussion

Main reason why GCC engineering has already migrated to Ubuntu remix 9.04 and soon to 9.10. If you want to learn more about linux and how it will keep you safe just go to the website >>>> http://www.ubuntu.com/

This messege was typed with a netbook using Linux Ubuntu 9.04 remix
Furthermore, every piece of technology we use today is in the frequency ranges of 100 mhz to 10,000 mhz. Consider this: Mind Control Awareness - Project Freedom.PDF

Furthermore, the frequency ranges are more than that make that 1 Hz to 300 GHz, infarred, and lightwave communications. Do your reasearch carefully I am fully aware of the communications spectrum. 100 MHz is the middle of the FM broadcast band and 10 GHz is part of the satellite spectrum.
maaaan they're everywhere:(possible to delete these files?!:)
I'm not sure

cem akincibay said:
maaaan they're everywhere:(possible to delete these files?!:)
Good Call and a Good Post and it is real.
Vista sucks real bad. I use Bugscreens XP, but not that much. I use Ubuntu 9.04 and soon 9.10 remix edition. Bugscreens has so many errors. And we know now that Linux does not have any spyware, adware, or malware. Apple has less spyware, adware, and malware.

Bugscreens in another name for Windows!!
I Think we need to have a Group about this discussion. There is alot that we need to talk about to get the word out about the Linux operating system verses Windows. And since I am a researcher check this out! : http://bluraysucks.com/

If you are thinking about handling and upgrading to the new BluRay technology read this to seek the truth about "COPY PROT" schemes and bullcrap on how the studios that owned by NWO corporate scum and Sony will regulate Blu Ray. Please I am telling you get this out to new comers of Bluray. Just if you want use it to put a bunch of videos in DiVx format or mp4-HD or back up your files if you happen to have one. Just don't buy brainwashed hollywood crap. To get Blu Ray you must have vista VISTA! The NSA operating system we have been talking about.
I knew there was one and if you shut down port 445 you shut it off. Good to know about the other two so thank you very much.
They're just lookin for High Value Liabilities and Performing Collateral.
Translated from Spookese - Traitors from within and "extremists" with equitable means.

Otherwise, I'm gonna hate this thread.
Break this down if you can please

5Fires said:
They're just lookin for High Value Liabilities and Performing Collateral.
Translated from Spookese - Traitors from within and "extremists" with equitable means.

Otherwise, I'm gonna hate this thread.
Well... what I'm saying is, the NSA and others have taken these types of secret surveillance and over-stepped constitutional boundaries supposedly in and effort to protect our nation's security from spies and or others who vehemently oppose the NWO, without the consent of the Congress and a respect for the rights of privacy of individuals; and now thanks to reports such as this, such information is is burdensome upon my soul. Nevertheless, Solomon said, with much knowledge comes much sorrow. In other words, their are other things which are more fun to know about then others. This just happens to be not one of them.
Truly though, didn't many of the platforms for this type of surveillance manifest during many of the Y2K makeovers and upgrades? So hasn't this been going on for awhile without too much negative effect on our daily lives? Or, is this another "shoe" we are waiting too see drop?
Yep, at least one of'em.

death_to_the_NWO said:
Microsoft is the government.

RSS

"Destroying the New World Order"

TOP CONTENT THIS WEEK

THANK YOU FOR SUPPORTING THE SITE!

mobile page

12160.info/m

12160 Administrators

 

Latest Activity

Less Prone commented on Doc Vega's blog post Was Sabotage or Terrorism used in the Collapse of the Francis Scott Key Bridge?
"Perfect for destroying the supply chain. It could well have been intentional."
1 hour ago
Less Prone favorited Doc Vega's blog post Was Sabotage or Terrorism used in the Collapse of the Francis Scott Key Bridge?
2 hours ago
Doc Vega posted blog posts
3 hours ago
rlionhearted_3 posted photos
6 hours ago
rlionhearted_3 favorited Doc Vega's photo
6 hours ago
tjdavis posted a video

Alabama’s Biggest Secret - Operation Paperclip 🇺🇸

In the north of Alabama is the city of Huntsville. It's here where German scientists built NASA in secrecy after World War II. Operation Paperclip is still s...
10 hours ago
tjdavis posted a photo
11 hours ago
Doc Vega commented on Doc Vega's blog post Americans You’re Being Squeezed Out!
"Cheeki kea always nice to her you chime in and you're damn right! "
yesterday
Doc Vega commented on Doc Vega's blog post Americans You’re Being Squeezed Out!
"Les Prone thanks for your support Dude! "
yesterday
Doc Vega posted a photo

The inconvenient truth

Trump spells it out!
yesterday
Sandy posted a photo
yesterday
Less Prone favorited Doc Vega's blog post What Made the Founding Fathers of America so Brilliant?
Tuesday
Less Prone commented on Doc Vega's blog post Why didn't the Archeological World Announce Proof that Jesus Lived?
"Motives of Joe, to shit in the well by showing totally irrelevant proof?"
Tuesday
Doc Vega commented on Doc Vega's blog post Why didn't the Archeological World Announce Proof that Jesus Lived?
"Less, Motives of Wyatt or Joe? What archeologist wouldn't want proof of Jesus as part of his…"
Tuesday
Doc Vega commented on Doc Vega's blog post Why didn't the Archeological World Announce Proof that Jesus Lived?
"Less Prone, Considering Joe Rogan to be the gatekeeper of anything is just short of ridiculous the…"
Tuesday
Doc Vega posted a blog post
Tuesday
MAC posted a video

Don't Go To Hong Kong Now (Even on Connecting Flights)

Secure your privacy with Surfshark! Enter coupon code laowhy86 for an extra 3 months free at https://Surfshark.deals/laowhy86Article 23 in Hong Kong is real,...
Tuesday
cheeki kea commented on cheeki kea's video
Thumbnail

Terrorist Attack on Moscow - Ukraine Committing Suicide? | Larry C. Johnson

"...And I guess I'll just park this you tube here also for something to ponder from last year.…"
Tuesday
tjdavis posted photos
Tuesday
Less Prone posted a video

Climate: The Movie (The Cold Truth) NL

Deze nieuwe documentaire van de Britse filmmaker Martin Durkin toont aan dat klimaatalarm een verzonnen doembeeld is zonder enige wetenschappelijke basis. He...
Monday

© 2024   Created by truth.   Powered by

Badges  |  Report an Issue  |  Terms of Service

content and site copyright 12160.info 2007-2019 - all rights reserved. unless otherwise noted