Slashdot Mirror


Emergency Alert System Insecure

glebe writes "The U.S. Emergency Alert System used to issue disaster warnings and other alerts over T.V. and radio is vulnerable to spoofing and denial-of-service attacks, SecurityFocus is reporting. Apparently, 'the EAS was built without basic authentication mechanisms, and is activated locally by unencrypted low-speed modem transmissions over public airwaves.' The FCC acknowledged the security issues yesterday in a public notice seeking comment on the future of the system."

1 of 210 comments (clear)

  1. Re:A good reason *not* to keep these things secret by afidel · · Score: 1, Flamebait

    Dude you are a moron. Seriously. Security through obscurity refers to obscuring or failing to reveal the method of security, not to obscuring the data path (which is what encryption does). A good security system is one which has been published and picked apart by all interested parties and agreed to be secure, if you obscure a weak security system then all it takes is a single individual revealing your security mechanism for it to be broken.

    --
    There are 4 boxes to use in the defense of liberty: soap, ballot, jury, ammo. Use in that order. Starting now.