Dan Shumow

This article has multiple issues. Please help improve it or discuss these issues on the talk page. (Learn how and when to remove these messages) This biography of a living person needs additional citations for verification. Please help by adding reliable sources. Contentious material about living persons that is unsourced or poorly sourced must be removed immediately from the article and its talk page, especially if potentially libelous. Find sources: "Dan Shumow" – news · newspapers · books · scholar · JSTOR (January 2017) (Learn how and when to remove this message) The topic of this article may not meet Wikipedia's notability guideline for biographies. Please help to demonstrate the notability of the topic by citing reliable secondary sources that are independent of the topic and provide significant coverage of it beyond a mere trivial mention. If notability cannot be shown, the article is likely to be merged, redirected, or deleted. Find sources: "Dan Shumow" – news · newspapers · books · scholar · JSTOR (June 2023) (Learn how and when to remove this message) (Learn how and when to remove this message)

Dan Shumow is a cryptographer working at Microsoft Research.

At the CRYPTO 2007 conference rump session, Dan Shumow and Niels Ferguson presented an informal paper describing a kleptographic backdoor in the NIST specified Dual_EC_DRBG cryptographically secure pseudorandom number generator.^[1] The backdoor was confirmed to be real in 2013 as part of the Edward Snowden leaks.

Dan Shumow co-authored an algorithm for detecting SHA-1 collisions with Marc Stevens, prior to the demonstration of a SHA-1 collision.^[2]

In 2024, Dan Shumow co-authored a paper^[3] described an attack against the RADIUS protocol, allowing a man-in-the-middle able between client and server to forge a valid protocol accept message in response to a failed authentication request.

• Dan Shumow - Microsoft Research

This article about a cryptographer is a stub. You can help Wikipedia by expanding it.

• v
• t
• e