I don’t get it: are SSH and TLS compromised by the NSA or not? Browsing through the NSA docs I only found references to the general workings of these protocols. But is there a proof? Or is there only F.U.D. again?