Category: backdoors

Auto Added by WPeMatico

Evaluating the GCHQ Exceptional Access Proposal

Posted on By infossl
backdoors, computersecurity, crime, cryptowars, eavesdropping, essays, gchq, lawenforcement, Security technology, vulnerabilities

The so-called Crypto Wars have been going on for 25 years now. Basically, the FBI — and some of their peer agencies in the UK, Australia, and elsewhere — argue that the pervasive use of civilian encryption is hampering their ability to solve crimes and that they need the tech companies to make their systems … Read More “Evaluating the GCHQ Exceptional Access Proposal” »

El Chapo’s Encryption Defeated by Turning His IT Consultant

Posted on By infossl
backdoors, courts, drugtrade, encryption, fbi, insiders, keys, Security technology

Impressive police work: In a daring move that placed his life in danger, the I.T. consultant eventually gave the F.B.I. his system’s secret encryption keys in 2011 after he had moved the network’s servers from Canada to the Netherlands during what he told the cartel’s leaders was a routine upgrade. A Dutch article says that … Read More “El Chapo’s Encryption Defeated by Turning His IT Consultant” »

New Australian Backdoor Law

Posted on By infossl
australia, backdoors, cryptography, cryptowars, encryption, Security technology

Last week, Australia passed a law giving the government the ability to demand backdoors in computers and communications systems. Details are still to be defined, but it’s really bad. Note: Many people e-mailed me to ask why I haven’t blogged this yet. One, I was busy with other things. And two, there’s nothing I can … Read More “New Australian Backdoor Law” »

That Bloomberg Supply-Chain-Hack Story

Posted on By infossl
backdoors, china, dhs, hacking, hardware, Security technology, supplychain

Back in October, Bloomberg reported that China has managed to install backdoors into server equipment that ended up in networks belonging to — among others — Apple and Amazon. Pretty much everybody has denied it (including the US DHS and the UK NCSC). Bloomberg has stood by its story — and is still standing by … Read More “That Bloomberg Supply-Chain-Hack Story” »

More on the Five Eyes Statement on Encryption and Backdoors

Posted on By infossl
backdoors, cryptography, cryptowars, encryption, intelligence, lawenforcement, privacy, Security technology

Earlier this month, I wrote about a statement by the Five Eyes countries about encryption and back doors. (Short summary: they like them.) One of the weird things about the statement is that it was clearly written from a law-enforcement perspective, though we normally think of the Five Eyes as a consortium of intelligence agencies. … Read More “More on the Five Eyes Statement on Encryption and Backdoors” »

Security Risks of Government Hacking

Posted on By infossl
backdoors, hacking, lawenforcement, nationalsecuritypolicy, Security technology

Some of us — myself included — have proposed lawful government hacking as an alternative to backdoors. A new report from the Center of Internet and Society looks at the security risks of allowing government hacking. They include: Disincentive for vulnerability disclosure Cultivation of a market for surveillance tools Attackers co-opt hacking tools over which … Read More “Security Risks of Government Hacking” »

Five-Eyes Intelligence Services Choose Surveillance Over Security

Posted on By infossl
backdoors, eavesdropping, intelligence, nationalsecuritypolicy, privacy, Security technology, securitypolicies, surveillance

The Five Eyes — the intelligence consortium of the rich English-speaking countries (the US, Canada, the UK, Australia, and New Zealand) — have issued a “Statement of Principles on Access to Evidence and Encryption” where they claim their needs for surveillance outweigh everyone’s needs for security and privacy. …the increasing use and sophistication of certain … Read More “Five-Eyes Intelligence Services Choose Surveillance Over Security” »

New Report on Police Digital Forensics Techniques

Posted on By infossl
backdoors, fbi, forensics, lawenforcement, police, reports, Security technology

According to a new CSIS report, “going dark” is not the most pressing problem facing law enforcement in the age of digital data: Over the past year, we conducted a series of interviews with federal, state, and local law enforcement officials, attorneys, service providers, and civil society groups. We also commissioned a survey of law … Read More “New Report on Police Digital Forensics Techniques” »

IEEE Statement on Strong Encryption vs. Backdoors

Posted on By infossl
backdoors, encryption, keyescrow, nationalsecuritypolicy, Security technology, vulnerabilities

The IEEE came out in favor of strong encryption: IEEE supports the use of unfettered strong encryption to protect confidentiality and integrity of data and communications. We oppose efforts by governments to restrict the use of strong encryption and/or to mandate exceptional access mechanisms such as “backdoors” or “key escrow schemes” in order to facilitate … Read More “IEEE Statement on Strong Encryption vs. Backdoors” »