Contractor Reveals FBI "Planted Backdoors" Into OpenBSD

A former government contractor has accused the FBI of planting several backdoors into OpenBSD software.

The allegation come in the form of an e-mail, made public by OpenBSD founder Theo de Raadt. de Raadt received the message from Gregory Perry, the CTO of Network Security Technology, a now-defunct provider of security solutions to US government deparments.

In the e-mail, he claimed that the government paid the company to install several backdoors into the OpenBSD IPSEC stack. Perry broke his silence 10 years later after his confidentiality agreement with the FBI expired.

“My NDA with the FBI has recently expired, and I wanted to make you aware of the fact that the FBI implemented a number of backdoors and side channel key leaking mechanisms into the OCF, for the express purpose of monitoring the site to site VPN encryption system implemented by EOUSA, the parent organization to the FBI,” Perry said in the e-mail.