"Calling the existence of a 512-bit encryption key a "backdoor," Elcomsoft said the master key could be used by the federal government to access taxpayer records."
I would assume one would encrypt the files locally to prevent an intruder to the hard drive from accessing the records. However, considering taxes are filed with the government, I fail to see why exactly the government would need to access your encrypted Quicken file. You're sending this data too them, no?
Also, this article mentions it being infeasible for someone to crack the password. The obviously is not the case if this claim is true. My guess is they used a weak dictionary based pass(word|phrase) to generate the key and they guessed it.
I would assume one would encrypt the files locally to prevent an intruder to the hard drive from accessing the records. However, considering taxes are filed with the government, I fail to see why exactly the government would need to access your encrypted Quicken file. You're sending this data too them, no?
Also, this article mentions it being infeasible for someone to crack the password. The obviously is not the case if this claim is true. My guess is they used a weak dictionary based pass(word|phrase) to generate the key and they guessed it.
[ reply ]
Link to this comment: http://www.securityfocus.com/comments/newsbriefs/533/1999#1999