Some time ago I got this document out of the net, can someone comment this?? Can this be true??
Comments from IBM'ers would be apreciated.
NSA's Backdoor Key from Lotus-Notes
Before the US crypto export regulations were finally disolved the export version of Lotus Notes used to include a key escrow / backdoor feature called differential cryptography. The idea was that they got permission to export 64 bit crypto if 24 of those bits were encrypted for the NSA's public key. The NSA would then only have the small matter of brute-forcing the remaining 40 bits to get the plaintext, and everyone else would get a not-that-great 64 bit key space (which probably already back then NSA would have had the compute power to brute force also, only at higher cost).
Anyway as clearly inside the application somewhere would be an NSA public key that the NSA had the private key for, I tried reverse engineering it to get the public key.
In doing this I discovered that the NSA public key had an organizational name of "MiniTruth", and a common name of "Big Brother". Specifically what I saw in my debugger late one night, which was spooky for a short moment was:
O=MiniTruth CN=Big Brother
Literary note: for those who have not read Orwell's prescient "1984" the Ministry of Truth was the agency who's job was propaganda and suppression of truths that did not suit the malignant fictional future government in the book, and "Big Brother" was the evil shadowy leader of this government. The whole book is online here.
The NSA's Public Key
I put this together some years after the reverse-engineering stint, so there could be errors, but this is from my notes, the raw public key modulus from the debugger:
I figured it was in little endian format by trial and error; other formats were easy to factor. So the big endian hex representation is:
e = 3
n = \
where the modulus is 760 bits, and the public key formatted as a PGP key is (of course I made this user id up -- you can edit it to whatever you choose it's of course not self-signed):
Type Bits/KeyID Date User ID
pub 760/13629D8D 1998/10/25 Director, NSA <email@example.com>
-----BEGIN PGP PUBLIC KEY BLOCK-----
-----END PGP PUBLIC KEY BLOCK-----
and here's what pgpacket has to say about the contents of that key:
Packet Type:Public Key Packet
Key Created:25 Oct 1998 01:12:02
Key ID: 0xA703EFD313629D8D
Packet Type:User ID Packet
User ID:"Director, NSA <firstname.lastname@example.org>"