id	author	title	date	pages	extension	mime	words	sentences	flesch	summary	cache	txt
threatpost-com-5978		Juniper Removes Dual_EC, ANSI X9.31 Algorithms | Threatpost			.html	text/html	1563	132	62	Juniper Removes Dual_EC, ANSI X9.31 Algorithms | Threatpost And while that's heralded as a positive move considering Dual_EC's dubious origins, there remain important and unanswered questions about Juniper's decision to include what is considered to be a backdoored random number generator in its NetScreen VPNs, and why a number of strange coding and engineering decisions were made that could have facilitated the decryption of secure traffic. Stephen Checkoway, assistant professor of computer science at the University of Illinois at Chicago, told Threatpost that he and his colleagues on this investigation looked at dozens of versions of NetScreen and learned that ANSI X9.31 was used exclusively until ScreenOS 6.2 when Juniper added Dual_EC. While Juniper's decision to use Dual_EC enabled this second attack, Checkoway said there's no justifiable security or engineering reason to have done so in the first place. Infosec Insider content is written by a trusted community of Threatpost cybersecurity subject matter experts.	./cache/threatpost-com-5978.html	./txt/threatpost-com-5978.txt