Associate
Pass legislation to store today ; pass legislation to scan everyone tomorrow.
In the long term, this is going to infringe on privacy of everyone.
In the long term, this is going to infringe on privacy of everyone.
Well yeah, which is why Manning and Snowden have so much blood on their hands. Nothing to do with the UK government though.
Hacking into TalkTalk (with an SQL injection vector ffs) is one thing, hacking into GCHQ is a rather different prospect.
Actually many are. Its not just the UK though, many companies wipe devices before going through US immigration just in case their devices we confiscated and highly sensitive information is taken by the U.S. Government. Companies building/designing things for other countries or companies in other countries would be very worried about this. Industrial espionage is big business and you would be a fool to think it's only China that spies on British/US companies, it happens the other way round as well.
It's doubtful the data collection will be stored by GCHQ it's more likely to be the ISPs (they were whinging about the added costs) as such it could easily be another talk talk affair.
One imagines that the capability to decrypt these messages would be managed out of GCHQ though.
One imagines that the capability to decrypt these messages would be managed out of GCHQ though.
And they have a pretty well documented track record of screwing up when it comes to storing sensitive information safely.Well no-ones advocating putting in a "back-door" (a rather simplistic term for what in effect would be a sophisticated solution) and then letting everyone use it. Sure there's a risk that the government's "back-door" key gets compromised and that'll have to be managed, but you know, government's are used to handling sensitive information - a lot more sensitive than this tbh.
Why do you think this bill would affect terrorists? They aren't going to continue to use a compromised services, they'll use something else - something which is secure still. Even if they have to code it themselves.
They only people this will affect are law abiding people.
esterday's news of "unauthorized code" that could enable untraceable backdoor access to VPN traffic on certain Juniper Networks firewalls is now being investigated by the FBI. That news comes from CNN, which said that a US government official described the vulnerability as "stealing a master key to get into any government building." There's no word yet on which government agencies or private companies may have been using the specific ScreenOS-powered devices affected, but that's what the Department of Homeland Security is now trying to find out.
****e juniper is used by a fair few big corps.
Wonder who authorised it and how long it's been "unauthorised" for.
just made me laugh, sounds like a 5 yo telling his mum why something is not ok
On the Juniper code, a lot would depend on what kind of code reviews, testing and checks were in place at the time. There would be some kind of source code control system pointing to a developer id that checked the code in, but was it a stolen or borrowed login id. Given the FBI involvement, we'll likely never know unless someone gets prosecuted for it.
Agree that Juniper did the right thing by owning up. The extra free publicity would also help get the patches applied a lot more quickly.
Open source ftw!
Sounds like it's been unauthorised since 2012, presumably it's a rogue developer since it was Juniper's own internal code review that found it.
Edit: don't see what this has got to do with government back doors. In fact it just demonstrates how concerned we should be about cyber-crime in general.