Linux kernel is one of the most common kernels found underlying operating systems. Its latest released version is 4.18.5 and its most recent preview is of the 4.19-rc2 version. With those two versions shining under the spotlight, news has emerged that in the kernel’s version 4.20, the developers are going to remove the Speck security algorithm designed by NSA which was employed in the kernel previously. This comes after news of the International Organization for Standardization rejecting the algorithm at a meeting
The reason Speck is considered to be an untrustworthy security algorithm is because it failed to answer particular design and procedure related questions before the ISO. In addition to this, the NSA has a long-standing history of developing controllable or penetrable algorithms for security that NSA can exploit or use in its own interest to receive information at the back end. Speck is expected to be removed from the Linux kernel v4.20. It is expected to remain in previous versions including v4.17, v4.18, and v4.19.
Google has long worked with XChaCha algorithm, using it as the default encryption on its lower-end devices. Google also used ChaCha for its chrome browser in the case of the local device not supporting AES crypto accelerators. This security algorithm is considered to be quicker, more secure, and far better reputed than Speck. This makes one wonder why Google didn’t employ the XChaCha algorithms in all of its products to begin with. Google is now expected to use and adapt the XChaCha algorithm into its own development called HPolyC.
Submitted by: Arnfried Walbrecht