BruceSchneier

Only two things have improved airplane security since 9/11: reinforcing the cockpit doors, and teaching passengers that they have to fight back. Everything else has been security theater.

I think airport security should be rolled back to pre-9/11 levels, and all the money saved should be spent on things that work: intelligence, investigation, and emergency response.

It's just the shadowy nature of the program and its developers. Still, I think it's the best of all the options. I was pleased that the independent compilation matched the distribution binaries, and even more pleased that a bunch of us have raised money to do an independent audit of TrueCrypt. So I hope we'll be able to trust it more soon.

Yes, I do, although there is nothing in the documents I have seen specifically about AES. Honestly, the way the NSA breaks most cryptography is by getting around it. It exploits default or weak keys, bad implementations, and back doors. It deliberately inserts vulnerabilities, and "exfiltrates" -- the NSA's word for steal -- keys when it has to.

I don't have any of the Snowden documents with me, so I haven't made much use of the airgap computer. As to the Snowden documents, I'm hoping to get back to Rio in December. Things are on hold pending Greenwald's new press venture getting off the ground.