"edgehill"

FreeBSD won't use Intel & Via's hardware random number generators, believes NSA has compromised them

The maintainers of the security-conscious FreeBSD operating system have declared that they will no longer rely on the random number generators in Intel and Via's chips, on the grounds that the NSA likely has weakened these opaque hardware systems in order to ease surveillance. The decision is tied to the revelations of the BULLRUN/EDGEHILL programs, wherein the NSA and GCHQ spend $250M/year sabotaging security in standards, operating systems, software, and networks. Read the rest

Six ways that NSA and GCHQ spying violated your rights, and six things you can do about it

Ruth from the Open Rights Group sez, "With the huge amount of evidence leaked by Edward Snowden on surveillance by the NSA and the GCHQ, the Open Rights Group has compiled a list of the top 6 points that everyone should know about how their rights have been violated. To combat this tide of privacy-invasions ORG also list the 6 key things that they want to do in response, and how you can help the biggest year of campaigning against mass surveillance. We believe that if enough people speak up we can change how surveillance is done."

ORG is great organisation (I helped to found it, but am not involved in its daily operations in any way, apart from marvelling at the staffers and volunteers there) and their game-plan for mapping and securing redress for spy agencies' lawlessness is exemplary. I hope you'll join the group and help out. Read the rest

David Cameron threatens injunction against the Guardian to stop further Snowden leak publications

UK prime minister David Cameron has threatened to get a court order against the Guardian if it continues to publish the Snowden leaks. He accused the Guardian of having a "lah-di-dah, airy-fairy view" about the dangers of leaks, and said the if the paper didn't voluntarily censor itself out of a sense of "social responsibility" he would seek court injunctions against it.

The majority of the Snowden leaks have revealed crimes -- illegal spying, lying to Congress and Parliament, violation of international law. That these crimes were committed with the knowledge and approval of the highest levels of the US and UK government doesn't make them any less criminal. And what wasn't criminal was absolutely depraved in its indifference to the public good: for example, the UK government's Edgehill programme, which, with the US government's Bullrun program, sabotaged the security of software, hardware and cryptographic standards to the tune of USD250M/year.

There is nothing more cowardly and corrupt than a lawbreaking political leader who threatens the free press when they call him to account. I never liked Cameron, but with this, he's taken the Tories beyond their reputation of being "the nasty party" and turned them into full-blown Stalinists. Read the rest

Huawei: unlike western companies, we've never been told to weaken our security

Huawei, the Chinese electronics giant that was accused of being "a security risk" in a paper by the House Intelligence Committee (its chair, Mike Rogers [R-MI], said "find another vendor if you care about your intellectual property, if you care about your consumers' privacy, and you care about the national security of the United States of America") has come out swinging in a new cybersecurity paper.

In the paper's foreword, the company's deputy chair Ken Hu writes:

[Huawei] never received any instructions or requests from any government or their agencies to change our positions, policies, procedures, hardware, software or employment practices or anything else, other than suggestions to improve our end-to-end cyber security capability.

“We can confirm that we have never been asked to provide access to our technology, or provide any data or information on any citizen or organization to any Government, or their agencies."

Unlike the companies that were on the target of the NSA and GCHQ's BULLRUN/EDGEHILL programs, which spent $250,000,000 a year to subvert security standards, and to convince western electronics companies to sabotage their own security. Read the rest

Previous Page

:)