Investigating Claims of OpenBSD Backdoors: Insights on Security Matters

Every developer knows the importance of issuing security patches. Unexpected bugs that lead to software vulnerabilities are virtually unavoidable; the key is to acknowledge them when they're discovered and issue fixes before they can be widely exploited. But what do you do when you believe vulnerabilities may have been introduced into your code base intentionally? That's the issue facing the maintainers of OpenBSD, in light of allegations made in December by a former government contractor named Gregory Perry, who claims knowledge of an FBI plan to insert backdoors into the open source operating system. If they exist, the backdoors would provide the FBI a means to monitor encrypted communications sent from OpenBSD systems.

The link for this article located at InfoWorld is no longer available.