With the NSA's budget, I don't see why they would limit themselves to mail-only ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		puzzle on Jan 13, 2017 \| parent \| context \| favorite \| on: Google Infrastructure Security Design Overview With the NSA's budget, I don't see why they would limit themselves to mail-only attacks. They could compromise any level in the supply chain, especially for targets which are worth the effort. They, or, more likely, the Brits tapped Google's DC-to-DC fiber and reverse engineered all sorts of internal protocols, as seen in Snowden's leaks.

chinathrow on Jan 13, 2017 [–]

Yes - or they rigged _all_ commercially available HSMs in use for encrypting a DC-to-DC fiber.

puzzle on Jan 13, 2017 | [–]

I think it was Neils Provos who said on stage that Google does not trust link encryption, but rather prefers end-to-end, even though that's a much greater problem in terms of key management.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact