The White House has weighed in on the Heartbleed bug and its reported exploitation by the NSA.
In a New York Times report on Saturday, senior administration officials said that President Obama has decided that when the NSA discovers major flaws in Internet security, it should reveal them to the general public to insure that they will be fixed, but not in the event of “a clear national security or law enforcement need” — a loophole that will likely allow the NSA to continue to exploit security flaws.
This news comes after anonymous sources told Bloomberg that the NSA knew about the Heartbleed bug that exposed a major vulnerability in security protocols used by many popular websites like Google and Facebook, and used it to gather intelligence for at least two years. The White House and the NSA have since denied that report.
The White House has never publicly announced what President Obama’s decision in a three-month review of recommendations by a presidential advisory committee to reform the NSA in January entailed. But the nature of the White House’s position on the matter has become more evident after the Heartbleed bug became a global issue and after the administration denied having any prior knowledge about the security bug on Friday.
SOURCE: Alex Magdaleno