No Backdoor in Vista

mytrip wrote to mention a C|Net article stating that Vista will not have a security backdoor after all. From the article: "'The suggestion is that we are working with governments to create a back door so that they can always access BitLocker-encrypted data,' Niels Ferguson, a developer and cryptographer at Microsoft, wrote Thursday on a corporate blog. 'Over my dead body,' he wrote in his post titled Back-door nonsense."

is Niels Ferguson..

[Pavel+Stratil]

going to die soon? (nothing personal)

Re:is Niels Ferguson..

[bj8rn]

Let's see. Your comment was modded redundant. This could mean that there's no point in asking this question, as Ferguson is going to die soon. At the same time, however, it could also mean "He's not going to die! Stop asking these stupid questions!" So I really don't know whether he is going to die soon or not. The information you (and the mods) have provided me with is insufficient to determine the this. Sorry.

Re:is Niels Ferguson..

[SpaceLifeForm]

That depends upon what your definition of 'soon' is.

Re:is Niels Ferguson..

[tomhudson]

People didn't get it ... he said it would happen ...

"Over my dead body"

We're talking Bush administration here. Talk about painting a target on your back! They'd WANT to get rid of anyone who can point a finger. Disposing of the body is no big deal.

Heck, they don't even have to "terminate with extreme sanction" any more. Just drop a hint to Balmer that he's going to work for google, and let a random chair take him out.

Speaking of which, if google wanted to throw up a few roadblocks, they could "hint/spread rumours/FUD" that a few critical microsoft developers have accepted/will accept/are in secret talks to accept to jump switch, and watch the body count in Redmond rise like the kill score in Alien 2, from the "pre-emptive kills".

Re:is Niels Ferguson..

[LilGuy]

LOL... that would be so dirty though...

Re:is Niels Ferguson..

[gnarlin]

Steve Balmer, in the converence room, with the chair!

Re:is Niels Ferguson..

[drjzzz]

"terminate with extreme sanction"? Where the heck is that from? Two hits on Google. Your're probably thinking:

Terminate with extreme prejudice.

It's from the classic movie "Apocalypse Now". Besides, "sanction" itself means to stop (and also to approve, demonstrating the wonderful economy and clarity of the English language). Ok, carry on with your interesting dicscussion...

Re:is Niels Ferguson..

Sanction as in "The Eiger Sanction", probably.

Re:is Niels Ferguson..

His offer is acceptable

Re:is Niels Ferguson..

[nevernamed]

Fucking Microsoft. Back Door? most likely.. but not intentional. Insecure? Most likely. Holes, definately. IE7 pwn3s firefox? Doubt it. Look at IE6. Stolen. IE7 = gay.

Re:is Niels Ferguson..

[bishopi]

We're talking Bush administration here. Talk about painting a target on your back! They'd WANT to get rid of anyone who can point a finger. Disposing of the body is no big deal

"Hello Niels.... this is Dick Cheney.... you fancy a weekend in the country - a few drinks, and maybe some shooting?"

Sorry.... so very very sorry....

Ian

Re:is Niels Ferguson..

[LifesABeach]

Well, lets face it. "Before the Gods MAKE YOU FALL, they first give you the gift of Pride." Sucks to be Niels Ferguson.

So what this is really saying...

Is that there are backdoors in our currently installed non-vista versions of windows?

Re:So what this is really saying...

lol hahaha no.

Fagot.

Balmer Says...

[aragod]

I believe that can be arranged...

Re:Balmer Says...

[walter_f]

and if he were talking to a real professional about the job, he wouldn't even have to add "make sure it looks like an accident". ;-)

W.

Re:Balmer Says...

Balmer is about spectral lines and hydrogen, Ballmer is about fucking and killing. Get it right!

is it possible to have no backdoors?

[themysteryman73]

I don't really see how they could develop it with no backdoor at all, I mean that would imply that it's completely unh4x0rable, which is, or at least has been in every past instance, impossible. Unless they mean intentional backdoors, which they probably do...

Re:is it possible to have no backdoors?

[DarkIye]

Well, according to Webopedia (not a resource I normally use but it's the only one I could really get a nice succinct definition for, Wikipedia being too long), a backdoor is:

...written by the programmer who creates the code for the program.

Wikipedia agrees, apparently. http://en.wikipedia.org/wiki/Backdoor

Re:is it possible to have no backdoors?

As we learned from recent wisdom
  ! I done been rootkitted up'

It is not necesary an explict act
  It can be an oversignt and therefore be the case by opportunity or accidental discovery.
Look how long many current event issue of exploits have gone undiscovered !

Right.

[Fantastic+Lad]

Over my dead body,' he wrote in his post titled Back-door nonsense."

I suspect the NSA, (who I seem to recall left a few stray tags lying around in a previous version of Windows' code), would look at you dead-pan and agree.

-FL

Re:Right.

[rvw]

I think it's much easier for MS to sack him and then change the code.

Re:Right.

[hey!]

I'd be disappointed if NSA ever resorted to anything so crude. NSA is an agency of savants not a mob of freebooting bucaneers. Assasination is so CIA.

NSA surely is well aware of the way that trust can, unintentionally, propagate. Everybody trusts something; if somebody doesn't want to cooperate, you obtain his unwitting cooperating by coopting something he trusts. Does he personally supervise the building of every release and patch? Certainly not. He trusts the release process to carry out his intentions. Even if the individuals involved are not cooptable, they trust their compilers to generate object code that is perfectly isomorphic to their source code. Those who do not trust compilers trust their debuggers, disassemblers and operating system utilities.

Those who do not trust their operating system utilities, and live-boot from randomly chosen operating systems or remove their hard disks and examine them using a hand coded manchine language program on a custom built computer lacking a bios or operating system to be subverted, still trust the network to transfer their object code to the mastering facility, or their optical disk burning software to burn the image accurately. Or they trust the facility to read that data correctly, and to press it as they intended to the distribution media.

Those who trusted none of this and checked the hard disks by hand coded machine code on a hand wired computer without BIOS or operating system probably deserve assasination, but even so this is hardly necessary, since everyone gets patches over the Internet. A simple black bag job to retrieve the signing keys, and nobody can trust anything anymore.

Re:Right.

[Haeleth]

I suspect the NSA, (who I seem to recall left a few stray tags lying around in a previous version of Windows' code)

Yes and no.

True, there was a tag in one version of Windows NT 4 that had the name "_NSAKEY". However, it has never been linked to the NSA in any way whatsoever, except by conspiracy theorists.

You might as well claim that USER32.DLL is proof of a conspiracy to turn American back into a British colony (U.S. obviously stands for United States, and E.R. = Elizabeth Regina = the queen of England! OMG BILL GATES HATES AMERICA!)

Here is Bruce Schneier's take on the matter.

Re:Right.

[Zeinfeld]

I think it's much easier for MS to sack him and then change the code.

I know Niels, he certainly would not have any difficulty getting another job. He was pretty well known before he went to Microsoft. He was the cryptographer who worked on Two-Fish with Bruce Schneier. Microsoft has been hiring pretty much all the top security talent they can over the past five years.

Cryptography and data security is pretty much a guild craft. If Niels made such a categoric statement and it turned out to be untrue his personal reputation would be severely damaged. Microsoft can't force him to lie for them and since he works in the Netherlands trying to would be most inadvisable.

Re:Right.

[rohan972]

So that's how he got the honorary knighthood from the Queen.

Re:Right.

[Watson+Ladd]

I belive, but IANAL, that if Microsoft was to put in such a backdoor and claim Vista is secure that they would be liable for damages due to their false advertising. Also sacking an employee for refusing to do something unsafe or illegal is a crime in the Netherlands

Re:Right.

[saskboy]

You sir are the most paranoid mellonfarmer on the planet. Why aren't you in the next James Bond movie?

Re:Right.

[roman_mir]

So much of what you said is true, however you don't need to go to such lengths, as to code your own BIOS by hand, or worry about hard drives. You just need a separate computer for the stuff that really needs to be secure and not connect that machine to the net. If you need data on it, manage with disks.

Re:Right.

[stinky+wizzleteats]

Microsoft can't force him to lie for them and since he works in the Netherlands trying to would be most inadvisable.

Microsoft is large enough and the codebase complicated enough that such a back door could be added without Niels being aware of it.

Why do you think the Netherlands are going to affect Microsoft's behavior? They're convicted criminals in the most powerful nation on Earth. I very much doubt that the Netherlands are going to make them clean up their act. Most of the news I see about European software patents seems to support the idea that MS is operating "business as usual" in Europe.

Re:Right.

[hey!]

You just need a separate computer

What you left out is you need a separate computer that you trust. But how do you know you can trust it?

Until we evolve to be able to read magnetic domains directly off the platter, everything boils down to believing what your software tells you to be so.

Re:Right.

[Reziac]

Somehow this reminds me of the old joke,

"REAL programmers use COPY CON PROGRAM.ZIP"

Re:Right.

[Reziac]

Thanks for the info. I don't know Niels, but I do know Bruce, and will take their previous association as sufficient to assure me of Niels' honest intent.

Re:Right.

[uradu]

Well, I don't know either Niels or Bruce, but I trained Bruce's dog to fetch when it was still a puppy, and I will take this association as sufficient to assure me of Bruce's dog's owner's ex-associate's honest intent.

Re:Right.

[chiph]

When I've seen situations like this in the past, the corporation will simply go to another employee and tell them to do what they want.

If the original employee is valuable to the company (other than their obstanancy on this particular issue), they get to keep their job. Otherwise it's "Joe, you're not being a team player" time.

Chip H.

Re:Right.

[roman_mir]

My point is that this notion 'trust' cannot be relied upon, thus you must eliminate the need for trust.

Disconnecting a computer from the net, makes it possible to elliminate this need.

Re:Right.

[Planesdragon]

Why do you think the Netherlands are going to affect Microsoft's behavior? They're convicted criminals in the most powerful nation on Earth.

Ah, no.

Being a monopoly is not a crime. And having a monopoly and continuing to act as if you weren't is a violation of commerce rules, not a "crime" in the way that "criminal" implies.

Yes, MS is a greedy corporate behemoth -- but being a GCB is not a crime in the USA, and it probably will never, in and of itself, be a crime.

Re:Right.

I'd be disappointed if NSA ever resorted to anything so crude.

I hate to burst your bubble, but the NSA already *was* that crude, and IMHO they will be so crude again. And getting traffic data by asking carriers to hook the NSA up to billing records as they do now is crude... but not *that* crude.

You could ask yourself: "does anyone follow the same ingenuity standards when solving a math problem as when preventing people from blowing themselfs up in de subway?". (The same question works for groups that worked to prevent the Soviet union from nuking New York all together... along with the rest of the US.)

I dont think they would want to backdoor windows with a full covert channel though. They would get caught and China doesn`t trust US communication equipment anyway. (Though China must love equipment that comes with plenty of FBI and ETSI mandated "lawfull interception" functionality.) Ofcourse the US would be smart if more people cared even a tiny bit as much about who manufactures and operates their critical communications infrastructure as they do about who owns the companies that own the ports. (Not that I have anything against Israel, but lets say the 8200 branch isn`t as crude as the NSA once was.)

Maybe the NSA will have someone add an intentionally, but denyably, crappy random generator. (Kind of like the flawed stream crypto in the GSM specs.)

Read up on "the crypto wars" to see just how breathtakingly blunt the NSA is when it fights together with the FBI.

If you pick up body of secrets your disapointment might be mixed with exitement over how blunt tricks can be cool just the same. Cant crack soviets codes? sounds like a great reason to research TEMPEST and traffic analyses. Wanna know what soviet sigint people are up to? Parachute on a North Pole ice berg used as eavesdropping base after its abandoned by the Soviets... because the wheather is to dangerous.

On a good day, the NSA does what just works... on a bad day they spend billions trying to build something that just works ;-)

Re:Right.

[ArsonSmith]

As long as you trust that your computer has no remote wireless access of any knid within it.

Re:Right.

[roman_mir]

ha ha ha :) Ok, you can always use a large roll of tinfoil for that :) hahahahaha :)

You can also just take it apart and look for the wireless transmitter. You can also detect wireless transmission with this.

Re:Right.

[kennygraham]

They're convicted criminals in the most powerful nation on Earth.

What did Japan convict them for?

Re:Right.

This is absurd. No one person gets to decide what code goes into Vista. So, for him to even begin to claim (by implication) he can prevent the government's back-doors from making their way into the next Microsoft operating system is naive at best. As I do not believe he is naive, knowing who he is and his experience in the field, I have to strongly question his motives.

Re:Right.

They make nice inline devices that slip between your keyboard connector and the computer's port. They are so small, you would be very unlikely to even notice it. But if you did (or they thought you might) they'd just replace the entire keyboard connector with an exact replica also containing the surveillance device. You would never be the wiser. And getting into the location where you keep your computer undetected may be difficult, but it certainly would not be impossible, in order to retrieve the info from the device. Government organizations with billion dollar budgets (or even black ops budgets that are of an unknown astronomical amount) can easily do what they need to accomplish this, if they feel the need is great enough.

Just because it's incredibly unlikely, does not mean it isn't taking place or hasn't already.

This all assumes Microsoft isn't just cooperating (as would be expected) in their business interest with a government that has already given them a sweetheart "settlement" deal on their Anti-trust actions.

Re:Right.

[WilliamSChips]

You have to trust the tinfoil and/or the wireless transmission detector :P

Re:Right.

[Tough+Love]

Being a monopoly is not a crime. And having a monopoly and continuing to act as if you weren't is a violation of commerce rules, not a "crime" in the way that "criminal" implies.

You're full of it. Monopoly abuse is a felony.

Re:Right.

[Darth]

Thanks for the info. I don't know Niels, but I do know Bruce, and will take their previous association as sufficient to assure me of Niels' honest intent.

But do you know Zeinfeld? You're taking his word for the association between Niels and Bruce on which you are trusting Niels.

(no offense intended toward any involved party. I was just observing that trusting Niels because of that post alone is no more reliable than trusting him on his word)

Re:Right.

[lamp540]

wow, you're *SO* knowledgeable!

How could you be so naive as to think that Niels Fergusons' pride could keep the US government or MS from doing anything?

Re:Right.

[blitziod]

What the article did not say is that MS was planning on having such lame security , that a back door was not worth putting in the new OS.

Re:Right.

[RESPAWN]

I don't know if you've ever ready any philosophy, but your comments here really apply to what some of the older philosophers preached. One of the better known works about what you can and can't trust would be Plato's Allegory of the Cave, which basically states that even what you see and sense with your own faculties, may not be the real world. How is one to ever know what's real and what isn't? How do we know that what we see and read is the truth.

Simply put, we can't, but at some point in the process, we just have to accept that we won't know anymore than what our senes can tell us until we learn otherwise.

Re:Right.

[Reziac]

More of an expression of my own judgment call, having also RTFA and followed similar, ah, controversies in the past...

Most people here do far more fuzzy judgments all the time, with far less to go on -- just a say-so from someone they only know by repute, and that filtered thru several layers of other folks' opinion. This sucks, that's wonderful, so-and-so is a crook, wonderful-guy would never do that, whatever, without actually knowing ANY of the parties involved.

Re:Right.

Why would a backdoor need to be in the shipping version?
Simply put it in the first 'security update'.

Re:Right.

[ClamIAm]

They're convicted criminals in the most powerful nation on Earth.

Or, more accurately, they're convicted criminals in the two richest economic regions on Earth (the US and the EU).

Prove it.

We have no reason to believe this claim -- doubly
so given that Microsoft has lied repeatedly in the past.

So back it up. Prove it. PUBLISH THE SOURCE.

Failure to publish the source will be considered
an explicit admission by Microsoft that this claim
is exactly what it appears to be: just another lie.

Re:Prove it.

[Loconut1389]

ability to view the supposed source and ability to put said source to use are required. If you can't verify that the source you're looking at is the source used in the binaries you're using, there's zero point. Chances of MS releasing enough source to be able to rebuild aspects of windows- most likely a few steps shy of zero, at least for now.

Re:Prove it.

[ROOK*CA]

We have no reason to believe this claim -- doubly so given that Microsoft has lied repeatedly in the past.

I'd be willing to bet that even Microsoft would not be willing to go so far as to create intentional "backdoors" in their encryption to facilitate government (Law Enforcement) access. First off I don't think the government (at least those in the UK and the US) have the power to legally force them into doing it, and secondly if they did it voluntarily one would think the public outcry would be deafening and severly damaging to Microsoft (and it seems that "keeping it quiet" would be nearly impossible).

I generally don't trust the government as far as I can throw them, and I don't trust Microsoft much farther than that, but I think the suggestion that they are colluding in something as nefarious as this is a bit in the Tin Foil Hat realm.

Besides how would they "prove" they aren't doing it? release the source? as if ..... :)

Re:Prove it.

I generally don't trust the government as far as I can throw them, and I don't trust Microsoft much farther than that

You trust Microsoft more than you trust your elected government?

Re:Prove it.

http://blogs.msdn.com/si_team/archive/2006/03/02/5 42590.aspx

Re:Prove it.

I demand that you give me ONE MILLION DOLLARS.

Failure to give me one million dollars will be considered
an explicit admission by you that you rape babies.

Re:Prove it.

[oliverthered]

Your assuming he voted for the Government in power, or even voted at all. He may have purchased a copy of Windows and that's as good as a vote in my books.

So, who would you trust more.
Someone in an electoral system that you cannot even bring yourself to take part in.
A company whos product you purchased and used/use.

Re:Prove it.

[sqlrob]

First off I don't think the government (at least those in the UK and the US) have the power to legally force them into doing it

Nice government contract you have there. Shame if anything were to happen to it.

Re:Prove it.

Who says the published source would be what was used to build Windows?

Makes you use your brain for once eh?

Re:Prove it.

[Millenniumman]

The government has the power to use force to achieve its aims. Microsoft cannot force you to buy Windows, or be one of their customers in any way.

Re:Prove it.

[kimvette]

I hate Microsoft but I trust them with managing my fair use and my privacy rights in a more responsible manner than I trust, say, George Duhbya Bush, Senator John Kerry or Senator Edward "I did not drown her and I am not a drunk" Kennedy to protect my "inalienable" Constitutional rights.

Re:Prove it.

[barefootgenius]

Beside that, why bother. Computers aren't all that useful on their own, its the communication aspect that matters and that happens over the internet. The NSA would be far better off having a backdoor in the internet routers.

Re:Prove it.

[WilliamSChips]

Actually, I only own Windows because I have to have it to run certain other programs that I want to run. If I could, I certainly would get Windows off of my computer. Similarly, although I don't like President George W. Bush, I still live here. And if I were living in the Netherlands, I almost certainly would support the worst electable candidate in a place like that(since they seem to be a little smarter over there politically) over Bill Gates. There goes the next contestant.

Re:Prove it.

[Loconut1389]

Adding something like that to the algorithm would totally ruin the algorithm's security (aside from the well-hidden backdoor) and chances are a thorough known plaintext attack may eventually reveal the backdoor.

The only really 'good' way would be to securely upload typed keys to a server somewhere at some random interval (perhaps every week or two). Which would let law enforcement in without 'compromising' the actual algorithm.

Re:Prove it.

[pallmall1]

Failure to give me one million dollars will be considered an explicit admission by you that you rape babies.

Who do you think you are, a Congressman?

Re:Prove it.

[adamofgreyskull]

$El_Presidente: Nice government contract you have there. Shame if anything were to happen to it.

What are they going to switch to? Microsoft has them over a barrel because of inertia. To switch to an alternative, as nice as that would be from a "Wow the government is kicking MS in the nuts" perspective, would piss off so many taxpayers who would see it as completely unneccessary that it would never fly.

Far better to hire a bunch of tame blackhats to stay on top of IE exploits in order to spy on the terrorists/criminals. Oh wait, did I just describe the function of the three letter agencies..sorry MI5/6 I mean three *character* agencies. :o)

Re:Prove it.

[sqlrob]

They can also do things along the lines of MA. Mandate an open standard for all software, or other regulation that's going to cause MS pain.

What else would he say?

[mangus_angus]

"The suggestion is that we are working with governments to create a back door so that they can always access BitLocker-encrypted data,' Niels Ferguson, a developer and cryptographer at Microsoft, wrote Thursday on a corporate blog. 'Over my dead body,' he wrote in his post titled Back-door nonsense."


I think we would be reading about his dead body if he came out and admitted that there were backdoors being put into Vista.

Re:What else would he say?

[protomala]

I would be really funny:
"Yes, we are placing some backdoors, so all your private life will be avaible to your government to do what they want".

Next frame: a firous horde invading Redmond.
No one is insane enought to admit it, everbody knows about Echelon, but USA still lies it dosen't exists ;)

Re:What else would he say?

Microsoft is working on BitLocker to stop *you* from accessing your own data. That's what it's for -- DRM.

The idea that he's getting all worked up about government backdoors, and pretending to be somehow defending you against the possiblity of government spying is fucking hilarious.

Re:What else would he say?

[LO0G]

Why am I replying to an AC? I have no idea, but...

Do you even know what BitLocker is? It's full drive encryption - basically they encrypt all the data on the hard disk using a key in the TPM.

It's not about DRM, and can't be used for DRM.

DRM's about ensuring that you can't INTENTIONALLY give your data to someone else. BitLocker is about ensuring that you can't ACCIDENTALLY give your data to someone else.

On a BitLocker encrypted system, if you can boot the system, you can access your hard disk without any difficulties whatsoever.

BitLocker is all about making sure that if you accidentally leave your laptop in the back seat of a cab, the bad guys can't get at the data on the hard disk.

Which, in turn can save your company millions of dollars in fines if the data on your laptop happens to contain customer data.

Re:What else would he say?

It's not about DRM, and can't be used for DRM.

Yes, it can, and is is... THAT'S WHAT MICROSOFT IS USING IT FOR. Read their own documentation. The fact that the key is in the TPM is part of what makes it DRM -- you can't get at the key, even if it's your laptop.

Re:What else would he say?

[LO0G]

Ok, I looked up how to use BitLocker:

http://www.microsoft.com/technet/windowsvista/libr ary/c61f2a12-8ae6-4957-b031-97b4d762cf31.mspx

First off, it doesn't need a TPM, it can work off a flash drive.

There's nothing in the documentation that says it has anything to do with DRM.

It's possible that the TPM can be used for DRM, but BitLocker isn't about DRM, and can't be used for DRM.

Re:What else would he say?

BitLocker depends on TPM. Thus, if we can get a government-mandated backdoor to BitLocker, we have a government-mandated backdoor to TPM. Consequently, the same backdoor presents the possibility of compromising DRM. Better yet, every government on earth should be pressured to force Microsoft to give them a backdoor to the "Trusted" Platform, because otherwise they wouldn't be able to snoop whatever terrorists keep behind BitLocker.

What's at stake here is whether Microsoft is allowed to keep TPM security as perfect as technically possible.

Re:What else would he say?

1. It doesn't *need* a TPM because at the moment not every machine has one.

2. Of course nothing in the documentation says it, because Microsoft always dodges the issue. Just like computer manufacturers repeatedly claim that trusted computing is not DRM... and yet it quite obviously is, and they are blatant liars. Neverthless, IT IS DESIGNED TO STOP PEOPLE FROM ACCESSING DATA ON THE LAPTOP... and it is not, ulitmately, under the control of the user. It is DRM... it is designed to be so. Dodge around the issue if you like, but as long as the key is kept away from the owner of the machine, IT IS DRM. And what's more, Microsoft is already using the system against the owner of the machine, and in its own interest.

Re:What else would he say?

[Domo-Sun]

I would not put back doors in vista, not even for less than ten-million dollars.

Re:What else would he say?

[TechForensics]

Who needs a back door with the kind of puny encryption BitLocker will offer? The NSA computers probably won't even hiccup in cracking it.

Re:What else would he say?

[TechForensics]

Either this, or government agencies will have an easy means to extract the key from the TPM.

Re:What else would he say?

[lamp540]

ROFL

Re:What else would he say?

[LO0G]

Ok, I think I understand.

You're saying that because the data is encrypted, it's DRM, because the encryption prevents people from accessing the data. Never mind the fact that that YOU posess the ONLY key to decrypt the data (from the article, it looks like that's what's sitting on the USB keyfob), it doesn't matter, because it's encrypted, people are prevented from accessing the data.

Encryption == DRM.

By that logic, SSL is also DRM, because it's designed to stop people from accessing data on the network, and the key is kept away from the owner of the machine.

Now if Microsoft builds a back door into BitLocker which allows someone to decrypt the data WITHOUT the keyfob, it's different. But that's the entire point of the original article.

Also, to be totally clear: the TPM COULD be used for DRM, from what I've been able to figure out, the TPM has a strong key embedded in the hardware. Thus a DRM scheme could encrypt the data being downloaded with the public key in the TPM which would prevent anyone who doesn't physically have the TPM from decrypting the data. And a DRM scheme COULD be built that would use a USB keyfob to hold the public/private key pair.

But there's NOTHING to indicate that BitLocker is anything but exactly what it claims to be: support for encrypting all the data on hard disk, not just the contents of files.

I've posted links to my information sources, I'm going to turn this around and ask you: Where are you getting your information from?

Besides...

More accurately: "Governments have never needed our help accessing windows backdoors. Why would that change with Vista?"

"Trust me," he said

[replicant108]

'Over my dead body,' he wrote

The problem with closed software is that we have to take his word for it.

Re:"Trust me," he said

[ezzzD55J]

Also, how are we (not that I'd use this stuff) to know he would know if it were (going to be) the case?

Re:"Trust me," he said

Nonsense. Have the youth of today entirely forgotten how to use disassemblersand other reverse engineering tools? (The "patching skype" story suggests no, but hey).

Ballmer to his secretary:

- Get me Ferguson... tell him we're going hunting. Yes, hunting. With Cheney.

Re:Ballmer to his secretary:

[iphayd]

Ballmer's going hunting with Cheney? That's the best news of the year.

Alternatively....

[Ugly+American]

Be careful what you wish for; someone from an unspecified federal intelligence agency may oblige you.

Re:Alternatively....

[snilloc]

There is of course, No Such Agency that would do such a thing.

Re:Alternatively....

[Voltageaav]

Actually, the NSA isn't that bad, jsut more secretive. It's the CIA/FBI you have to worry about...

Re:Alternatively....

[DerWulf]

except that the NSA do the bulk of signal intelligence. Which includes monitoring internet communications -> re: I read your emails.

Re:Alternatively....

[Voltageaav]

Oh, I'm sorry, I forgot this is /. where having your email read is x10 worse than being shot/abducted....

Dead Body?

[OverflowingBitBucket]

'Over my dead body,' he wrote

"Your terms are acceptable" reply the NSA.

asdf

Thus far, every single comment is posted is the same boring obvious joke. Does nobody ever have anything to say in here?

Anyway, I found this whole story ludicrous in the first place. If they were to put in a backdoor, they would never speak about it publicly. Publicity over something like this is the last thing MS needs right now.

Besides, the cryptography group at MS are an accomplished lot. I doubt they would risk their careers and ideals doing the government's dirty work although there is nothing that compels them to. From Ferguson's blog:

[I]n the unlikely situation that we are forced to by law we'll either announce it publicly or withdraw the entire feature. Back doors are simply not acceptable. Besides, they wouldn't find anybody on this team willing to implement and test the back door.

Precisely.

Re:asdf

[JamesTRexx]

Does nobody ever have anything to say in here?

You're new here, aren't you?

Re:asdf

Slashdot used to be filled with interesting stories and interesting opinions. Maybe they've changed, maybe I've changed, maybe we've changed, but very few of the stories interest me any more. Same with the comments, there's a lot of people repeating obvious jokes and a lot of people repeating slashdot fodder, and a lot of people that don't know what the fuck they're talking about, but managed to get a +5 insightful anyhow.

Maybe it was the rise of blogs, or the realization that slashdot meant page views, maybe it was the YRO section, or the Games section, maybe it was when linux and FOSS went mainstream ... I don't know when it happened, but it did: slashdot jumped the shark.

AHA!

[der_joachim]

So it's a secret backdoor. :-)

Famous last words

[Life700MB]

'Over my dead body,' he wrote in his post

He's crazy if thinks big corporations would even think twice of doing something over the dead body of one of their workers.


--
Superb hosting 20GB Storage, 1_TB_ bandwidth, ssh, $7.95

Re:Famous last words

[PhxBlue]

He's crazy if thinks big corporations would even think twice of doing something over the dead body of one of their workers.

Corporations might think twice, but governments wouldn't.

and in other news...

[penguin-collective]

Bill Gates did invent the Internet after all, says Microsoft. No, really.

Re:and in other news...

It was Al Gore that invented the internet.

Since it isn't open source...

[drooling-dog]

we'll just have to take Mr. Furguson's word for it.

Why would they wait?

[AHuxley]

Why wait until you need to crack the files?
Just read the pw as it as entered.

If you are of interest a keylogger will be running.
That will be as easy to install as it was over the last 20 years with m$.

So Vista can make a safe file - just like any other OS - its the OS this is the problem.

The last 20 years of computer history should show any end user that.
M$ is the way in.

Re:Why would they wait?

[ChrisMaple]

It shouldn't be too difficult to detect or defeat a keylogger. While off-line, pipe huge amounts of random data through the software that handles the keyboard. Look for a file that grows. Even if the file is of fixed length, flooding it with random data makes monitoring too labor-intensive to be practical.

The success of a keylogger depends upon the user being clueless. Of course, if he's running Microsoft...

Re:Why would they wait?

[MSZ]

So, you never heard of the likes of KeyGhost...

How often do you check that keyboard cable of yours, by the way?

Re:Why would they wait?

Do you realize that you have no credibility when you say m$? Try refering to them as MS or Microsoft... wow, thats easy! You just blend in with the other 12323 koolaide drinking Linux fanboys that run Windows.

Now in case you really are a retard that only understands m$ typeof stuff...

OMG d00d m$ was so out in the 90s 4R331

fired or killed?

[jollyroger1210]

Which is easier, hiring hitmen and then lawyers (to fight the case), or just firing him?

The Unofficial Back Doors into Vista

[Prototerm]

We all know there will be buffer overruns, and the occasional hacker access through IE7. I'd even be willing to bet that the new RSS feed being built into the OS at a low level will provide lots of ways into the Bitlocker.

No worries, then! The cops won't be able to get into your files, but the criminals will!

As the Who might have said: "Meet the new Windows, same as the old Windows".

Re:The Unofficial Back Doors into Vista

[bheer]

I'd even be willing to bet that the new RSS feed being built into the OS at a low level will provide lots of ways into the Bitlocker.

*rolls on the floor, laughing and scaring the cat*

Jeez, thanks for a good laugh on a Saturday morning. This really ought to be nominated for a Slashdot stupidity hall of fame award.

Re:The Unofficial Back Doors into Vista

So how exactly is the IE going to access classified information if it is not run as a superuser? This is prevented by XP and standard OS security.

But most of the linux zealots insist on running their apps as a superuser, so I understand your problem.

Learn to configure windows. It's actually just as easy as linux.

Dear Niels I hate to break it to you but...

[badzilla]

... you won't be in the loop if/when it gets compromised.

A quick look at the "Crypto AG" fiasco makes it plain how very much governments want backdoors. "For decades, the US has routinely intercepted and deciphered top secret encrypted messages of 120 countries." Imagine the power some entity would have if it could peek into any Windows system at will - the temptation must be making their toes curl.

Whether or not there is a top-level agreement with top-level spooks it is still unlikely that local lawmen will be allowed to know about it. So what exactly IS Microsoft planning to do when they inevitably get a request to "help" with an encrypted drive?

Re:Dear Niels I hate to break it to you but...

What you dont realize is many countries and universities *have* source code access. Microsoft licenses the source for research purposes. Don't you think that some goverments would like to do the checks themselves before using Windows?

Credibility

[Elixon]

One man does not represent the whole company. I think that saying "over my dead body" is just a hyperbole. I dought that one Microsoft's employee can influence the whole company. I don't understand what makes that man to put his own words in the risk if he must know that he is not the only one that decides... He should not do that if he honours his words, it makes me be in doubt about his words and his credibility.

Right words should be: "I will resign if...", "I'll put all my influence behind...", ...

Re:Credibility

[Paradise+Pete]

I don't understand what makes that man to put his own words in the risk if he must know that he is not the only one that decides...

Here's what he actually wrote:

"Over my dead body.
Well, maybe not literally---I'm not ready to be a martyr quite yet---but certainly not in any product I work on."

Re:Credibility

[Crizp]

It's probably just an attempt to put the public at ease, making them not think about it. "Hey, someone from MS said there'll be no backdoors. And he bet his life on it!"

Of course, some hacker will discover th[is|ese] backdoor[s] sooner or later if they exist. Which they will do. I'm certain.

Re:Credibility

[Elixon]

Thanks for clarifying. This looks better to me. CNet took only the first part and I'm sure that it is in the best Microsoft's interest to have it published on other blogs and blogs about blogs and news about news without the other sentence."

It is clear message and I cannot imagine better marketing message for customers... But if I know that this is not question of life :-) then the impact is lesser on me ;-) But it is good to know that there are people employed by Microsoft who are not insane to (literally) risk the life for company driven by profit ;-) .

Saying "...but certainly not in any product I work on." was the part that I was missing before (If he leaves the Microsoft then it can be a sign that things changed - if I can believe his words).

What to add? Nonsense is Nonsense only in given time and under given circumstances. Under different circumstances and in other times the Nonsense can give a big Sense. ;-) And... do not be lazy to check the real source because what is written is not always the whole truth - thanks for the small lesson.

Re:Credibility

[Paradise+Pete]

And... do not be lazy to check the real source because what is written is not always the whole truth - thanks for the small lesson.

Well, to be honest the only reason I checked it was because of your post. It seemed to me that there ought to be more to it, and I wanted to see the context.

Who Cares

[omegashenron]

I think that anyone who is half serious about their security wouldnt be using encryption software developed by micro$soft

A better choice is pgp and gnupg. Gnupg is open source, so you can verify there are no backdoors. I'd like to see m$ top that!

Re:Who Cares

Just like the last time the British backdoor discussion was brought up on slashdot, the spin here is exactly in the wrong direction. The point of making governments force Microsoft to create a backdoor to Bitlocker is to create a backdoor in the "Trusted" Platform Module, which forms the backbone of the new "Trusted" Computing initiative. If we can hype up the "terrorists could use TPM to hide information" angle, then we could get a government-enforced weakness into the TPM specification. In particular, the big corporations that we love to hate would enjoy an opportunity to use TPM to enforce strict rules on what we can do with "their" files.

If there is no government-enforced backdoor, then breaking the TPM will require either opening a tamper-proof chip ready to self-destruct, or brute forcing industrial-strength encryption. Good luck doing either of those. It's not going to be a walk in a park like the low-grade encryption on DVDs, which they tried to enforce using software alone. So, better prepare for the day that Microsoft, RIAA and MPAA decide what software your computer is allowed to run.

Re:Who Cares

"Bill Gates of Borg, from my parents' basement, I stab at thee!"

I thought everyone had read that Penny Arcade strip by now, but apparently there are some Slashdot neophytes who still think it's cool to spell "MS" as "M$". Sad, that. Too bad you didn't have an opportunity to put "Amerikkka" in your post as well, eh?

Re:Who Cares

"Bill Gates of Borg, from my parents' basement, I stab at thee!"
That is funny... Minus the "Micro$loth Bill Gate$" crap, that sounds more like an accurate description of the PA web-"comic" demographic....

And remember:

[ettlz]

There Is also No Cabal.

(Minor detail: shouldn't the article title read "No Deliberate Backdoor in Vista"?)

Re:And remember:

[noamsml]

Backdoors are deliberate by definition. If it is not intended, it's a bug.

Brilliant bit of Microsoft PR though

Gets across the idea to the Linux lovers on Slashdot that Microsoft Vista will indeed be very secure.

From Zonk as usual

However

[mcbridematt]

there are heaps of people with access to the source code (ok, maybe not full), such as academic institutions, and infamous examples such as MainSoft, who could prove 'em wrong.

But then we'd have to take the word of some un1337 student haxer at some institution, who just locked down access to their precious copied jewels because some un1337 student haxer at some instituion proved some M$ guy wrong.

Anyway, aren't there multiple reports of backdoors in PGP from various stages of its life? Of course, since its not Stallman-Endorsed(TM) software everyone on Slashdot, fearing executing bash will get them locked up just points and laughs anyway, right?

Re:However

[cortana]

there are heaps of people with access to the source code (ok, maybe not full), such as academic institutions, and infamous examples such as MainSoft, who could prove 'em wrong.

How do they know that the code they are provided with matches the code that we all run?

But then we'd have to take the word of some un1337 student haxer at some institution, who just locked down access to their precious copied jewels because some un1337 student haxer at some instituion proved some M$ guy wrong.

I can't parse this. But if someone did discover a back door in the code that MS provided them with then surely others would be able to reproduce the flaw?

Anyway, aren't there multiple reports of backdoors in PGP from various stages of its life?

Cite please.

Re:However

[killjoe]

Anybody who has access to the MS code is not allowed to reveal anything about it. Even if Mainsoft or a university discovered something in windows they would not tell anybody about it because they could be destroyed financially.

eCryptfs Plug

-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160

replicant108 wrote:
> The problem with closed software is that we have to take his word
> for it.

That is one of the motivations for why I wrote eCryptfs for Linux:

http://ecryptfs.sourceforge.net

It is a 100% GPL kernel-native stacked cryptographic filesystem. I
intend for this to be a direct competitor with the likes of Windows
EFS and BitLocker. The design document is available from this web
site, and the full source code is open for analysis by anyone who has
an interest.

It currently does encryption via a mount-wide passphrase. By the end
of the year, I have in plan to implement HMAC integrity verification,
public key support, mount-wide cipher selection, and dynamic user
interaction components.

Beta testers and developers from the Open Source Software community
are always more than welcome to participate!

Mike Halcrow
eCryptfs Lead Developer

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)

iQEVAwUBRAmUCttAhTFtyodpAQMwDQgAiuQ k9A9SUPkLCcF0fRqJkeVXl5XIcnNz
HN5fgLkJ6i5/FGW5ABl f9Ii/WDyeq9TTQ6bfEobGrG0yLt8w2st1rpieGB6M8k8n
FEf TM+d0GWtdtCVDZnHwdPsfCmH/A0PdD3bjgMt7b6jEMzE9lExRO gvCE3cuqchO
mZaGFcnXIhOZo2hUMi3bxnkVFk+G95trbRxuN I7SlUGAljULo7inCdXDCakJw0jb
V4hpMNEFrBkcCp86jy3tt ABt9hkpuWDZvIOfaQBjRHNV89BZO7cd6zxr/0hHzJjm
ZoCKN S8PHx24KRS6SDpHzRVeUcN6Dr6uyjLijXeQJ5Vk+3/RPbS/pw= =
=boiK
-----END PGP SIGNATURE-----

Re:eCryptfs Plug

The problem with eCryptfs is that it's encryption only. When do you plan to implement decryption, version 0.4?

Damn straight!

[Linegod]

Let the government wait a week for someone to find a backdoor, just like the rest of us....

Re:Damn straight!

[edunbar93]

Only a week? We'll probably have it a week before the release date...

Re:Damn straight!

[belmolis]

I think find is the wrong word. What Microsoft probably means to say is that they aren't providing a backdoor gratis. They're continuing their standard program of selling different backdoors,to different buyers, the better hidden and more serious, the higher the price. Even Microsoft couldn't really be so incompetant, could it? And this explains why they're so slow to fix so many security flaws: every time they fix one, it breaches their contact with some government and costs them money.

No backdoor in Vista

[vandelais]

strangely silent on the topic of Internet Hearts.

Re: No Backdoor in Vista

This should have read:

Microsoft operating systems have never really needed a back door since the WINDOWS were left wide open.

It's way funnier that way.

Re: No Backdoor in Vista

Very funny and right to the point! I like it...

Well it least Vista isn't

[dgb2n]

Gay. Tell me I'm not the only one who thought that ....

The whole story should be posted as flamebait. (pun intended)

That's it.

[CCFreak2K]

I'm moving my software and "various videos and images" onto my Slackware server. reiserfs is virtually unbreakable by the fuzz.

You're right!

[DogDude]

You're absolutely right. At least with OSS... oh wait... I still have to take a developer's word for it. Hmmm

Re:You're right!

[Peaker]

One of many developers.
Without a conflict of interests.

Re:You're right!

[replicant108]

At least with OSS... oh wait... I still have to take a developer's word for it.

Are you trolling?

Obviously, if you had the necessary skills you could audit the code yourself.

Alternatively you could pay someone to audit it for you; or just wait for someone else to blow the whistle.

The point is that it is much harder to hide malicious code when the source is available.

Re:You're right!

[DogDude]

The point is that it is much harder to hide malicious code when the source is available.

My point is that it's beyond unrealistic to think that an average person has any way of auditing code, whether it's going through millions of lines themselves, or hiring an extremely expensive hacker to do the same thing. The end result is the same: it's impossible to know what's in either closed or open source code for 99.999% of the population. So, it comes down to a question of who do you trust: college kids who have nothing at stake, or companies that have everything at stake?

Re:You're right!

[nahdude812]

Well, you can take this one guy's word for it in the case of Windows.

Or in the case of OSS you can take the word of the hundreds of developers who want to audit the code themselves (and for something this important, there'll be hundreds of them), where it only takes one person to throw a red flag on bugtraq, and suddenly there's thousands if not tens of thousands of them looking over this code.

Also you could, if you had an especially vested interest, hire some developers to look over it. Say, perhaps, several independant parties including overseas operations. This is a lot better option than the closed source model where you're pretty much limited to decompiling the code (illegal here in these U.S, and still very hard for even a seasoned developer to figure out) or simply trusting the word of this one guy who maybe didn't notice the back door already present, or simply wasn't motivated to look very hard, or maybe has a family member being threatened in some way by the NSA, who knows.

Re:You're right!

[iminplaya]

But with OSS it's legal to check...for those who care.

So, it comes down to a question of who do you trust: college kids who have nothing at stake, or companies that have everything at stake?

I find those with nothing at stake to be a little less biased and easier to trust. The company with everything at stake will do what it takes to protect their interests.

Re:You're right!

True, but you are wrongfully assuming that _everybody_ has to audit their code so they can trust it. It only takes one backdoor to be found by one paranoid security expert to scare people away. So more to the point, you are weighing these two:

1)microsoft risking its 'good reputation in security' that accounts for a big percentage in why people buy microsoft (lol).
2)Open source risking its reputation but at the same time showing everybody through source code exactly how the system works. Even letting them alter the code if it does not work the way they want it to.

IMHO even if some asshat put a backdoor in OOS:

1)someone knowledgable enough would find it.
2)this same person could distribute a patch or a seperate version without the intended security risk so people can carry on without further drawbacks
3)a fork of the orginal project will take place and new 'trustworthy' developments would 'take over'/continue where the previous ones left off. And the previous developers would be stigmatized for life.

While OSS isn't a silver bullet (you can find the backdoor relatively quick, but the damage would still be done short term), I'm guessing OSS is more 'trustworthy' than closed source. You would have a point though if we where talking about a closed source company without the marketing power of microsoft though... But even then...

Re:You're right!

[DogDude]

See, the way I see it, a private company has their reputation to protect, and of course, they have to worry about lawsuits. If a college kid coding OSS decides to put a backdoor in for himself or friends or anybody else, there's really no down side for him to do so. He has no reputation to worry about, and as far as I can tell, odesn't have to worry about lawsuits.

Re:You're right!

Ok. Let's take this myth down:

-When you are a business, you don't run software made by college kids. You'll be running a major distribution of an OS. So, you'll have let's say RedHat to blame. Now, you'll not be running the OS only, but probably a database, and let's say a web server. Let's look at what a corporation would use to run its website: MySQL, Apache. Code put in to these monsters is well accounted for (CVS) and its developers are well known or can easily be tracked down. so if someone puts a backdoor in it, his reputation went down the drain. Now look at microsoft. Do you know who's fault it was for even one flaw in even one of microsoft's products? No. Microsoft protects its developers. If MS installs a backdoor and they get caught, if denying it doesn't work and they don't paint it as a flaw, they probably won't tell the world who did it. They'll just fix it and move on. what are you gonna do? In OSS personal reputation is at stake, while in a closed source company like microsoft, a portion of its money is at stake. Guess which one matters more for the people coding and weigh your motives to install a backdoor in the first place...

Re:You're right!

[iminplaya]

A backdoor in OSS is easily, and sometimes quickly correctable(all you gotta do is check outgoing traffic. Which should work on the closed source stuff, also, but decoding it could violate the DMCA)...by anyone that's interested. Compare this to MS's response time to its flaws. And nobody is allowed to even try to fix it. Proprietary software has the convenience of "one stop shopping" in many instances. Not much else. Okay, usually the documentation is a lot better. All right, they have great documentation and a real slick looking GUI, also. For the big companies lawsuits are just a part of doing business, and the costs are figured into the price. Lawsuits are like mosquito bites to them. As far as reputation is concerned, well, that's why they have a public relations department to manipulate that. A good one can turn any negative(bug, exploit,backdoor) into a positive(feature). Their engineering(developement) departments have very little effect on their reputation as a result.

Re:You're right!

[timeOday]

So, it comes down to a question of who do you trust: college kids who have nothing at stake, or companies that have everything at stake?

1) the point isn't for every user to check the code, just for a few people or companies to do it and distribute the checksums. It's not that the open source world trusts anybody in particular, but it's impossible to keep a secret once several people with different interests know it.

2) You're wrong to state that open source is just about college students and not companies. There are many many companies with an interest in Linux being secure.

3) Why do you assume a company would be trustworthy? Having something to lose makes them vulnerable to government pressure. Look how fast all the search engines caved in to China.

Re:You're right!

[Trelane]

At least with OSS... oh wait... I still have to take a developer's word for it. Hmmm

"a developer", as opposed to "the developer." In the minute difference between these two phrases lies a vast gulf of difference.

Re:You're right!

See, the way I see it, a private company has their reputation to protect, and of course, they have to worry about lawsuits. If a college kid coding OSS decides to put a backdoor in for himself or friends or anybody else, there's really no down side for him to do so. He has no reputation to worry about, and as far as I can tell, odesn't have to worry about lawsuits.

As you say, a private company has to worry about lawsuits. How do you reduce your liability? Well, first you write a "quality policy" that explains how you are committed to software security and quality etc. It should also include some recommended processes along the lines of "every source file shall be subjected to a TPS audit unless a TPA waiver is authorized." The actual process is unimportant since it will never be followed (for liability reasons you only need have a process documented). The waiver is just extra insurance in case someone decides to hold you to your process. The next and most important step is BE IGNORANT! If you have a quality policy in place, you can scarcely be held accountable for an error you didn't know about can you? The "by design" argument works well too. For example, Ford and Chevrolet have both successfully avoided class action suits related to the remarkably high rate of rollover fatalities by arguing (I'm not making this up) that Explorers and Broncos were not designed for highway driving. Finally, you structure your licenses to ensure that you are only liable for the cost of the software" "an Access error cost you $25M? We're nice guys so here's your $200."

Companies don't care about reputation. They are not allowed to unless that reputation translates to dollars in the shareholder's pockets.

Joe OSS, on the other hand, is entirely motivated by reputation. There are a number of reasons to put out an OSS project: as a hobby, as a resume, as an in to making a living. I'm not saying that the latter might not motivate some to introduce backdoors, but perhaps caveat emptor. If you are one of the three users in the world to download your finance system from "creditcardz.ru" you might want to spend a few bucks on a thorough audit. One the other hand, if you are installing Samba from a known distro, you can probably get away with the routine security consultation that you would get for ANY mission critical software. If you do that both theoretical and empirical data suggest that you are much better off than the competitor that chose closed software.
Finally, who seriously has more to fear from a "fitness for purpose" lawsuit: Joe Student or Microsoft (hint: has MS ever lost one?)?

Re:You're right!

[woolio]

The point is that it is much harder to hide malicious code when the source is available.

Yes, but still somewhat easy. How many source-based distros are there? How many binary-based distros are there? How many people use the latter? Enough said... Compiler & library variations/settings make it somewhat difficult to verify that the published source code matches the vendor-supplied binary...

Even with the source available, someone could include a malicous patch... Remember the fiacso a few years back when someone tried to change a "==" to a "=" in the linux kernel? How many people would catch that in a patch? Especially if a reasonable comment was added to justify the change.. Many patches don't come from the original source of the package... Both Gentoo and RedHat distros supply patched-up kernels and apps... They seem to write their own patches...

I like OSS, but there is a danger that the "openness" will breed too much complacency among users. And the "open source" nature of it also lowers the playing field, making it easier for subversive elements to accomplish their goals... (I would guess that this is _currently_ balanced/surmounted by the groups that audit OSS code, read patches, etc... for *now*...)

And for commercial/closed-source software, people are way too easy to fool.... Couldn't a video hardware manufacturer put a back-door in their code, so that when a specific sequence of opengl calls was executed, the driver's kernel-level code would so something highly malicious/surreptious...? Yes it is a stretch, but crackers always seem to manage to stretch what believe to be possible.... I'm under the impression that there aren't much access-controls at the windows driver/kernel levels...

In the days when computers ran software off single (bootable) floppy disks, things were actually pretty secure. If the disk itself was uncompromised, not much else could happen to it or other stuff... Now that we have centralized storage (hard drives, etc), networking, and a virtually unlimited amount of space for program files, many more opportunities exist....

But there is no reason to give up using a computer at home.... As long as governments and cooperations increase their use, our personal stuff/data doesn't really matter... All of our legal records, financial records, and health information are at the mercy of those who write software... Especially since a great deal of info is never printed to physical form anymore...

True, one could fully audit all the code used on a system... But then each upgrade/patch would still need to be checked. Which would be quite a bit of work on a linux desktop running X applications..(consider the number of libraries/etc required for Gnome/KDE, although icewm is a could be an option)

Re:You're right!

[mingot]

Obviously, if you had the necessary skills you could audit the code yourself.

Same can be said of closed source software. Just takes a higher level of skill to audit the disassembly of the exe's and dll's.

Alternatively they could pay someone to do the audit for them or just wait for someone else to blow the whistle.

Re:You're right!

[larry+bagina]

even with OSS, most people won't compile it themselves or even look at the source code, they'll download a pkg, rpm, tgz, whatever, and install the binary executable. Yes, you can veriy the source code isn't trojaned, and you can compile it yourself (assuming your compiler isn't trojaned). But you can't be sure a binary installation wasn't trojaned by red hat or the developer himself.

Re:You're right!

[Peaker]

You are downloading the exact same binary as many others (and in the case of gentoo, the same source). If a backdoor is inserted to a source, its wide in the open - and so with opensource, even if YOU are not going to read the source, you are protected.

With binaries, you are partially right, but the thing is, Redhat, Debian and every other distribution compile their own binary, and so everyone must be in on it for a trojan to succeed.

Would they admit it?

[nxsty]

If there actually where a backdoor in vista, would MS admit it? Probably not.

Skunk team?

[Stephen+Samuel]

"Besides, they wouldn't find anybody on this team willing to implement and test the back door."

(emphasis mine)

Ha!

Do you honestly believe Microsoft gives a shit what you think, do you think they even read slashdot?
 
'Oh noes, some random twat on slashdot says our failure to publish the source means there must be a backdoor, our business is ruined!!111oneone'
 
If you don't like Microsoft software, don't use it. Besides, even if you do use it there are plenty of other encryption tools available, such as Truecrypt. Truecrypt is even open source.

There Are Ways of Making That Happen

'Over my dead body,'

Better watch out for flying chairs, Mr. Ferguson.

... that he knows of.

[dprovine]

Aside from the obvious "what about buffer overruns?" questions, aimed at the usually poor competence Microsoft shows in writing code, there's also "what about cryptographic strength?" question -- maybe the NSA already has a simple and fast way to break whatever encryption BitLocker will end up using.

And, of course, there may well be several people working at Microsoft who actually work for the NSA or MI-6 or the FSB. (I'd be astonished if there weren't at least a few such people on the Microsoft payroll.) Those people may well do things as described in Reflections on Trusting Trust, without letting their superiors know.

Re:... that he knows of.

[Schwarzchild]

And, of course, there may well be several people working at Microsoft who actually work for the NSA

That's a really interesting line of thought. What are the ethical ramifications of that? Is it ok to pretend that you're for Microsoft when in reality you may be a cryptographer for the NSA? What about modifying Microsoft's products for the good of some other entity? Could the person who does this be sued by Microsoft if they were discovered or would the NSA tell them that they can't because of national security?

Re:... that he knows of.

[dprovine]

There's no reason you couldn't be for Microsoft and also be for some other entity too. The deception would pretending to be for Microsoft alone. But if you work for the NSA, and you get a job at Microsoft, you may well write good code, and fix security holes, and otherwise help them succeed even while ensuring NSA access to things secured using Microsoft products. Very few things in life are completely either/or.

If Microsoft caught you and you got sued, the last thing that would happen is the NSA saying a word. I suspect the following, in decreasing order of probability:

• You make it look like a huge mistake.
• You tell them you wrote your password down and put it in your wallet, and your wallet was lost and later returned, and you didn't think to update the password.
• Some heretofore unknown rich uncle dies and leaves you enough money to cover the lawsuit.
• You die in an auto accident.

In any case, before placing an asset in such a position, the NSA would probably train such a person with the right lies to tell if something goes wrong. If I were going to do something like that, I'd make up a fake history for the person before Microsoft hired him, and if he got caught then the FBI could investigate and tell Microsoft he was actually a spy for the Mossad. It wasn't even his real name or anything! But for sure the NSA would keep their name out of it. There's a reason they're known as the "No Such Agency".

Re:... that he knows of.

Aside from the obvious "what about buffer overruns?" questions, aimed at the usually poor competence Microsoft shows in writing code, there's also "what about cryptographic strength?" question -- maybe the NSA already has a simple and fast way to break whatever encryption BitLocker will end up using.

The point needs to be made that a backdoor is pretty much by definition intentional. A code or design bug or an out-of-scope security hole is not a backdoor. It may be exploitable to install a 3rd party backdoor, but it's not a backdoor by itself.

Can't resist.

No worries. Microsoft will just utilize users' built-in backdoors, as usual.

FUSE?

Does it use Fuse? Otherwise I will have no part of it.I see Fuse as the way forward, as soon as stupid Gnome and stupid KDE stop reimplementing the same shit over and over again and join forces on something truly usable and transparent.

Re:FUSE?

[cortana]

They'll do that right after the unsolveable races/deadlocks in FUSE are solved.

No back door? How do we know?

Microsoft has been known to lie, cheat and steal.. so there is no way of us knowing whether or not there is actually a back door.. think about it.. this is a closed source OS. There could be hundreds of back doors and there is no way for the user to know. Only an idiot would trust Microsoft after the immoral things they have done.

I love the backdoor in MacOS X - it has its use

[dirkx]

MacOS X, with filefault*, creates a backdoor by means of a certificate. If you then safe the RSA key pair from your Keychain on a separate machine - you yourself or corperate IT can then be easily ensured access in case of some-one beeing hit by a bus; or in case of a total OS crash.
Dw.

Ad *) Or manually

# on a safe machine
openssl req -new -x509 -out backup.cer -outform DER -nodes
cp privkey.pem backup.cer /safeplace
srm privkey.pem
# copy public cert to laptop or wherever..
hdiutil create -encryption -type SPARSE -fs HFS+ -volname secure -size 5G -certificate backup.cer sec

Re:I love the backdoor in MacOS X - it has its use

Windows has had this since version 5.0 (aka Windows 2000)

Re:I love the backdoor in MacOS X - it has its use

[Reziac]

That's a good point. In case of death or disaster, SOMEONE has to be able to get at encrypted data that wasn't the sole property of the party who just met up with a bus. Not having such a method is just begging to lose said data, because sooner or later, accidents and disasters happen.

The only question is, WHO has access to said backdoor. If it's only accessable to other people in your company, who are next in line to handle said data, great, that's as it should be. If it's 1337 Hacker or Secret Agent Man, not so good!!

Re:I love the backdoor in MacOS X - it has its use

[sootman]

Or, you could just use the Master Password.

http://www.apple.com/macosx/features/filevault/

Memorable Quotes fromWarGames

[Braxton_the_Covenant]

Joshua: Shall we play a game?
David Lightman: Oh!
Jennifer: I think it missed him.
David Lightman: Yeah. Weird isn't it? Love to. How about Global Thermonuclear War.
Joshua: Wouldn't you perfer a nice game of chess?
David Lightman: Later. Right now lets play Global Thermonuclear War.
Joshua: Fine.

In other news...

Niels Ferguson's body was found in a dumpster.

Rumors

BILL GATES HATES AMERICA!

Rumors have it that Michael Wilson is to do the documentary to prove it.

No Backdoor in Vista

microsoft operating systems begining with windows 95 have never really needed a backdoor, especially since the front door is left wide open.

Neils Ferguson - seems to know his stuff

[PoconoPCDoctor]

I sent Neils an invitation to respond to this thread. Don't know if he'll get it, but I found his website on Google (put down that chair Steve....take deep breaths)

Anyhow - he seems quite smart enough to do what the BBC article mentions, but after reading his site a bit, I think the guy would have a real problem if asked to code a backdoor. He seems to be ethical.

Tin hat conspiracy weavers would say that unbeknownst to Neils, who is a front, that there is yet another team coding the backdoor.

And yet, as long as you use a OS that will not release its' source code, suspicions will always lurk about something.

Re:Neils Ferguson - seems to know his stuff

[stinky+wizzleteats]

He seems to be ethical.

I have a problem with that statement. If you are an ethical person, does it not logically follow that you be constrained from associating yourself with unethical people? Microsoft is not only provably unethical; they are actually a criminal organization. How can anyone be truly considered to be ethical if they take a job at Microsoft?

Re:Neils Ferguson - seems to know his stuff

[PoconoPCDoctor]

Troll? Maybe, but I don't mind replying. Look, Neils doesn't need MS - they need him. If he codes his part up to his own standards, he is being ethical.

If he compromised his standards, he's guilty as charged. Your paintbrush is a bit too broad. So everyone who works for MS is unethical? Can't be.

Do you have jobs waiting for all of them if they resign tomorrow to protest their employer's behavior?

In a perfect world, we'd all have the freedom to work for only ethical companies. In this world, children need food, clothing, yadda yadda.

By the way, how much money have you contributed to fighting disease in Africa?

Re:Neils Ferguson - seems to know his stuff

[stinky+wizzleteats]

Look, Neils doesn't need MS - they need him.

I don't dispute that point. The only problem with it is that it is totally irrelevant to this discussion.

If he codes his part up to his own standards, he is being ethical.

As I thought was abundantly clear in my grandparent post, you cannot be an ethical person if you ignore collective responsibility for the groups with which you associate yourself. If you do IT work for a drug lord, but constrain your activities to removing viruses from his personal computer, you are still complicit for supporting the organization and are therefore responsible, on some level, for its activities. Even though your participation may have no direct impact upon the supply of illegal drugs, the organization may (and probably will) operate more efficiently as a result of your support and involvement.

If Neils' contribution is significant (as you pointed out), then how is it possible for that very same contribution to be ethically insignificant to the greater goals and aspirations of Microsoft as a whole?

In a perfect world, we'd all have the freedom to work for only ethical companies. In this world, children need food, clothing, yadda yadda.

I walked away from a 100k network security job and took a job as a customer relations IT liaison with a manufacturing company making quite a bit less. The reason I did this is because my company was lying to customers and using fear on the part of upper management as a battering ram to destroy the careers of IT people who didn't want our product. I couldn't live with myself working under those conditions, so I changed the conditions. That's what ethical people do. The inability of Neils, you, or anyone else to make that kind of choice does not change what is ethical behavior and what is not.

Re:Neils Ferguson - seems to know his stuff

[24-bit+Voxel]

If it were not for the ethical people working in the unethical environments, how would we ever find out about misuse and abuse in this day and age?

I am not refuting your post but it would seem that if all the ethical people left those environments, we would have superpower states and corporations with no scruples whatsoever, and no one would ever know.

Part of the quote is missing!

[TPS+Report]

The suggestion is that we are working with governments to create a back door so that they can always access BitLocker-encrypted data,' Niels Ferguson, a developer and cryptographer at Microsoft, wrote Thursday on a corporate blog. 'Over my dead body,' he wrote in his post titled Back-door nonsense.

But they left out the rest of his quote.

Niels then put his feet up on the desk and went on to say, "Off the record, you should note my careful use of the word 'always' in the above sentence", he said, with a slight grin on his face. "Context is everything. If I allow them occasional or intermittent access, I'm still being honest, right?" Niels then laughed and pointed to his "Honorary member of the DoD" plaque on his office wall.

Re:Part of the quote is missing!

[dinojemr]

Missing? They included too much of the quote. The important part was:

'We are working with governments to create a back door so that they can always access BitLocker-encrypted data,' Niels Ferguson, a developer and cryptographer at Microsoft, wrote Thursday on a corporate blog.

Been in his shoes

I have been in Mr. Ferguson shoes, left with the choice of putting in a back door demanded by the NSA or quit. To my knowledge, NSA always gets there way. If he won't do it, the next guy will.

Re:Been in his shoes

[slavemowgli]

Ah, the Nuremberg defense... always a great way of rationalising one's spinelessness and getting rid of those pesky moral qualms.

Re:Been in his shoes

[Spiked_Three]

WTF are you babbling about?

So...

Over my dead body.

So is he dead yet?

Entrance in rear

[planetfinder]

A rear entry product should have a rear entrance just for completeness and symmetry.

Details

[truthsearch]

Here are more details on the NSA keys in Windows:

For at least Windows 95 OSR2, 98, NT, and 2000 Microsoft has included a secret cryptographic key owned by the U.S. National Security Agency (NSA). It's most likely that the NSA's key exists within Windows so U.S. government users of Windows can run classified cryptosystems on their computers. But it has been kept secret and it does provide the potential for abuse. "According to Fernandez of Cryptonym, the result of having the secret key inside your Windows operating system 'is that it is tremendously easier for the NSA to load unauthorized security services on all copies of Microsoft Windows, and once these security services are loaded, they can effectively compromise your entire operating system.'" Users of Windows outside the U.S. should be especially concerned that the U.S. government can possibly gain security control over their computers. Users within the U.S. should also be concerned that Microsoft has provided the government with a secret back door that they can exploit. (Campbell, Duncan. "How NSA access was built into Windows." Heise Online 4 Sept 1999)

Re:Details

[neomunk]

That's the story how I remember it, but IIRC the version that accidently shipped with some source included was service pack #something for NT 3.5...

Thanks for posting that, your parent poster made my eyes roll so hard that if you hadn't posted this I was going to. You saved me a google. :-)

They've done it before

[truthsearch]

For many years the NSA had keys embedded in Microsoft Windows. Remember that the US government is the single biggest Microsoft customer. Also realize if they do it voluntarily they wouldn't expect any public outcry. With closed source code it's tough to find. Plus the government wouldn't do anything about it anyway since it's in their favor.

Get Your Deflector Benie Here

[the+eric+conspiracy]

So you are trusting these reporters to convey what Mr. Ferguson actually said? More likely he just flat out admitted that they are installing a set of keys for the NSA and are being more careful about choosing registry names for the keys this time.

Govs will have to find them like everyone else

[jbplou]

Thats right they won't build in the backdoors. Governments will have to find the security holes like everyone else. Its like Easter Eggs.

Front door

[rzr]

And we wish there is No Front door neither ?

--
http://www.frappr.com/eracket # OEM victims worldwide ?

No Backdoor in Vista

[RokcetScientist]

Hahahaha! Show me a programmer who does NOT build in at least a dozen backdoors in his work! And how many programmers were working on Vista, did you say...?

It will have a lot of security portals though

[smartin]

After all they don't call it windows for nothing.

How NSA access was built into Windows

[Fantastic+Lad]

This article makes for interesting reading. . .

NSA and secret keys added to windows.

Thanks for the link, truthsearch.

-FL

why work with the government?

[bitt3n]

M$ is perfectly capable of creating a back door without any help from the govt.

So trusting, so naive.

[ubikkibu]

So that's it then. He wouldn't lie, and Microsoft wouldn't make him. An MS security employee says "over my dead body" on a blog. There's still a backdoor in there. Bet on it. Or do you think we were greeted as liberators in Iraq as well?

Re:So trusting, so naive.

Moron.

Re:So trusting, so naive.

[0racle]

Your proof for this is what exactly? Or are you basing this on your personal beliefs that MS is evil and therefore must do evil things.

You'll forgive me that I take the word of a respected professional over that of some random Slashdotter.

Re:So trusting, so naive.

[Zeinfeld]

So that's it then. He wouldn't lie, and Microsoft wouldn't make him. An MS security employee says "over my dead body" on a blog. There's still a backdoor in there. Bet on it. Or do you think we were greeted as liberators in Iraq as well?

Ah George W. Bush is a liar and a fool therefore everyone must be a liar and a fool.

The fact that there are so many anti-Bush partisans about makes it even less likely that this type of conspiracy could be sustained. If Bush can't stop the NSA from leaking, he sure as heck can't stop Microsoft employees who are not even in the country.

It is possible that someone put in a backdoor without telling Niels, but that would be very very hard to do without the real build team knowing.

Re:So trusting, so naive.

[rtb61]

Of course windows won't have a back door in it, that's what Internet Explorer is for, what, you thought is was for exploring the internet, no its for the internet to explore you !!!

Re:So trusting, so naive.

[Almost-Retired]

You'll forgive me that I take the word of a respected professional over that of some random Slashdotter.

OTOH, respected or not is relatively immaterial. He is an employee, no doubt a valuable one to M$, BUT HE IS NOT M$ . Given the M$ rep for internal secrecy, its entirely possible those backdoors do exist, and frankly I'd be very surprised if they did not, however his ability to control their existance is probably minimal. He may, when they are disclosed like the previous ones were, flee the camp just to protect his reputation, but as for his imminent demise, that might be an unfortunate side effect of one of Steve Balmers apparently well documented chair throwing scenes.

When dealing with the likes of m$ and their corporate history, methinks you give this mans word way too much weight.

--
Cheers, Gene

"Over my dead body"

[ScrewMaster]

"Your proposal is acceptable."

honesty, from a legal standpoint

[Justifiable_Delusion]

I don't know if I can trust that statement. We have been shown that our Federal government will now lie without breaking a sweat clearly to our face. And Microsoft, at this point, is such a jauggernaut of American corporation and so very much tied into National Security by their simple entrenchment on the desktop that it might be illegal for them to say anything.

And Microsoft has been batterred so much by the legal system that by now it is beginning to hurt a bit. It needs some government support. it is being attacked from all angles.

Down with the Evil Empire!

Re:honesty, from a legal standpoint

[ScrewMaster]

Battered, hell. They got a free pass on some of their worst behavior even after being convicted of illegal monopolism. And they've pretty much continued with business-as-usual since then. So far as being battered on all sides ... the only battering going seems to be from the open source crowd. The EU can huff-and-puff and posture all it wants, but neither the United States nor the European Union has had the balls to truly penalize Microsoft for its illegal activities. At this point, I'm not sure anyone can. We'll probably have to wait for Microsoft to implode of its own accord, but that will take decades and they will continue to do a lot of damage in the process.

There is one difference between pre-antitrust and post-antitrust Microsoft: they have one of the biggest lobbying presences in Washington now, whereas prior to that they had almost none. Microsoft doesn't need any more help from the U.S. Federal Government ... they're getting plenty already.

Just leave your key under the mat

Move along there is nothing to see here.

frontdoors?

a C|Net article stating that Vista will not have a security backdoor after all.

[troll]
Given Microsoft's history with operating system security, I'm sure there will be plenty of 'frontdoors' for attackers to get through.
[/troll] :)

Correction

[Opportunist]

There won't be a backdoor in Vista that they KNOW about. I bet they'll manage to build some in unintentionally.

I mean, why should it be different in Vista than it was 'til now?

i don't think they are ...

...that subtle. i am not in the US, but every time i see or read about us gov't problems with its own citizens, it's hardly the stuff of super agents or high tech. it's always a bunch of goons kick in a door and chuck you in guatonamo (sp?) and proceed to just kick the crap out you until you confess. look at all the big advances of homeland security, not exactly the sharpest knives in the dishwasher, last thing i read was two homeland security officers attempting to raid and shutdown computer use at a library and the librarian with the police kicked them out. i'm thinking if MS wanted them to have a back door and put it in, most of them would hardly know what to do with it.

He'll give him 'The Chair'...

[Shark]

... as it is common Microsoft lore that Balmer can be deadly with furniture.

Re:He'll give him 'The Chair'...

[rapidweather]

Common lore...
What a shame about Ballmer and his chair-throwing rap, and the rest of Microsoft's people have to endure those stories.

I imagine they cannot even visit a neighborhood kid's lemonade stand without getting asked an embarrassing question about that story.

So do we need an alternative OS at this point in Microsoft's history?

Before I go out on a limb, and say that livecd linux distros like Knoppix do not have a "back door", and therefore are a safe alternative to tainted windows installations that may have been rigged with all sorts of built-in spyware forced upon Microsoft by various governments, let me ask this:
Does anyone know if there are "back doors" in Knoppix, Kanotix, Slax or other popular live cd linux?
I have my own knoppix remaster, and I have not stumbled upon any such thing in the filesystem.
It is a shame that most of the PC's have Windows preinstalled on them, and that there is this pressure on Microsoft to rig them up to spy on people. I know a PC is not a PC unless you turn it on, and it boots up to a desktop.
But the Windows problems are all the more reason to "bring your own OS".
You know you are a geek when you want to take a Kanotix 64 cd to Office Depot and try it out on those new AMD 64-bit cpu based computers with a 2000 MHZ FSB!
Having insulted Microsoft, let me be fair and do the same to Office Depot:
Ever notice that they hire ex-wrestlers as "managers". Apparently more concerned with frightening would-be "shoplifters" than providing assistance to IT shoppers wanting to "take a roll in the hay with a Gateway".

Main problem still remains,the lack of transpareny

[chris_7d0h]

The problem is transparency.
Would you stake your business or for that matter, you life (as is the case in some regions of the world) on this assumption? Since there is no transparency in Microsoft products, you simply have to take their word for it.

I thought the golden rule of security was that any viable security mechanism should tolerate public scrutiny. Knowing how the software works should not work against the devised scheme itself.

Interesting

If they had just found some random key in the registry that said "NSAKEY" you say to yourself, well who knows its just some registry key? But based on where it is located and what function it is near it does appear quite suspicious.

Regardless of what Ferguson says, when it comes to closed source you simply never know. Combine that with the Fact that A) our government has ZERO respect for its citizens privacy B) we all know they have no qualms about torturing us and C) the problem that people will do absolutely anything for money, and you have plently of reasons to doubt Ferguson. It that all doesn't make perfect sense to you then your living under a rock.

Source code is no panacea here

[cpghost]

Gnupg is open source, so you can verify there are no backdoors

Yes, absolutely. If you're going to use encryption semi-seriously or even professionally, you have no choice but to use open source crypto libraries and apps!

But source code alone is no panacea here: you (or anyone skilled enough -- a.k.a. the community) could discover obvious backdoors, but what about backdoors in some crypto algorithms themselves? Having the source code for this won't help you much. Nothing could really prevent the NSA from working with a crypto implementer to slightly weaken an algorithm, so they could decrypt stuff with less effort than usual. Unless you were a very talented cryptographer, you won't notice the difference.

Big deal,

[wringles]

Windows has always had insecurity backdoors.

So easy to create a back door

I'm sorry, but its so easy for another team working on Windows to create a backdoor. Read the password as its typed and store it somewhere, perhaps the last 20 bytes on the HD, or anywhere, really, under some public-private key encryption scheme that only Microsoft has the private key to. That WOULD be reasonably secure, wouldn't it? After all, a simple substition schema before the public-private would make it difficult to decipher since it won't decode to words and its only 20 bytes. (I am no expert though). And then you have a backdoor the crypto guys don't even know about.

Psychology Explained

[segedunum]

When someone denies something that means that it is happening, just like Larry Ellison.

However, it's interesting and a huge risk for Microsoft. If something is discovered then people are going to know. If evidence is submitted in some sort of legal trial from a supposed backdoor then people are going to know. Governments will stand back, say "Nothing to do with us" and Microsoft will be in a hot vat of shit. The only way a backdoor could be used is in an extremely subversive manner, or when a full TPM set up is on everybody's desktop.

It's closed source so we will never know

[inverselimit]

There is no way for anyone but Bill and co. to know what backdoors exist. If you want to control who can see the contents and run programs on your computer, use linux.

Re:It's closed source so we will never know

What about reverse engineering, dipshit?

Source Code

[ad0gg]

But they do release the source code to universites and their partners.

does his statement even matter?

[v1]

Anyone paranoid about security would not believe a word the man says. If they were making a back door, would they tell you? Of course not, that would greatly lower the value of the back door. Anyone with sensitive information on their computer would be insane to trust bitlocker if he says there's a back door.

So we will have to rely on independent auditors - those people like DVD John that will ignore all the silly "no reverse engineering allowed" rules and tear it apart anyway. Then we will know for sure. When people really get serious, like international governments, do we see blind trust? No, we have "trust but verify". These people don't want to let anyone verify, so how can we just trust them?

Ignoring the possibility he's lying, you seriously have to ask yourself how many other back doors microsoft was created lately, without even trying. Worm of the Week, anyone? I don't think even if they tried to make it secure, that they could succeed on the first (or second) try. Their track record on security is very clear to see.

Even organizations with a great deal of money to lose can't make things bulletproof on the first try. The cryptographic weaknesses of CSS (DVD encrypting) are well documented, and that industry spent milllions of dollars developing it.

So either way you look at it, they're not worthy of our trust in this matter.

Apple tends to be the "white hat" in these situations, and they also have had home folder encryption for several years now, called FileVault. Even though I have more trust in Apple than I do in MicroSoft, I can't help but wonder about the possibilities of an intentional (or unintentional) back door in FileVault.

Read carefully!

[Guppy06]

Before we start celebrating Microsoft, read carefully exactly what was said:

The suggestion is that we are working with governments to create a back door so that they can always access BitLocker-encrypted data,

He didn't say he wasn't making a back door, he said he wasn't making a back door in cooperation with governments. That still leaves plenty of options like "on our own" or "working with advertisers."

Given Microsoft's history

[jskline]

Given Microsoft's history, both old and new, does anybody really believe this fodder coming out of them??? They have an advanced version of their license machine in Vista that is supposed to make up for the errors they experienced with the ones in Office and XP. There has to be something for them to get in unannounced for validation purposes.

I don't believe a word of it. Once a liar, always a liar. Steve Balmer is still with Microsoft right??? Pack of liars. I don't buy it.

Do you want to be able to predict your own death?

[nephridium]

"What? He says no backdoor in our upcoming Windows version?? - I'm going to f**ing kill that guy!"

The backdoor may be in the hardware

[Animats]

Intel, HP, Dell, and Toshiba are including the Intelligent Platform Management Interface (IPMI) in many of their machines. IPMI is a "remote administration" tool embedded in the LAN hardware. It looks at UDP packets (on ports 663 and 664) and performs various commands on the target machine, completely independently of the operating system. Here's the IPMI 2.0 rev 1 specification, a rather long PDF.

IPMI is very powerful. An IPMI session starts with a Presence ping Any machine with IPMI hardware should answer a "presence ping" on UDP port 663. This identifies an IPMI-capable machine, and returns some vendor info. Anyone can send this. This should work even if the machine is "turned off", as long as it has standby power and is on a LAN.

Then, there's a challenge-response authentication sequence. More on this later.

Once you're in, here are some of the things you can do:

• Power up the system. Power it down. Force a hard reset. Force a power cycle. Force a phony overtemperature condition (in hopes of getting a clean OS shutdown.).
• Disable front panel controls (power off, reset, and standby buttons.) Yes, that's really in the protocol. See section 28.6 of the specification. Remote control can also lock out the keyboard and blank the screen.
• Set system boot options Or, what OS do we want to run today? These include useful tools like "bypass user password".

There's more. Much more. Basically, you can remotely take over the machine, turn it on, inventory the hardware, load an operating system, boot it up, and talk to it.

IPMI's back channel can do more than this. With some help from the operating system (and yes, it's supported in Windows) you can do more remote administration functions. This is great for administering your data center remotely. But it has darker implications.

Supposedly, most machines are shipped with IPMI mostly turned off, unavailable until a program is run on the machine to load in the keys that enable it. Supposedly.

Thus, all it takes for IPMI to be a "backdoor" is for a set of secret challenge/response keys to be preloaded into the IPMI chip. There's no way to read those keys. Short of taking the chip apart, gate by gate, there's no way to tell if there's a backdoor in there. Or a set of keys might be loaded by the system integrator before shipping the system. You can't tell. So that's where to put a backdoor, where no one can find it.

There's an open source, OpenIPMI, for sending IPMI commands on Sourceforge. Send "Presence pings" to the machines you have and see if they answer.

Re:The backdoor may be in the hardware

Keys? Most IPMI-over-network machines I see just have ordinary passwords, maybe md5 hashed on-wire. IPMI is very handy when you're running a large linux cluster with a trusted network, it's not all bad. FWIW, the default userid and password for an IPMI box is often USERID and PASSW0RD. Hilarious. Change the fucking thing, for obvious reasons.

Re:The backdoor may be in the hardware

[RzUpAnmsCwrds]

Yeah, because it's not like anyone has put integrated lights-out management in their systems before.

Re:The backdoor may be in the hardware

[vogon+jeltz]

What a bummer! I've got a tale to tell. We've got a small network of aboout 15 PCs, booting via PXE into diskless workstations. Three of them are Dell Dimensions. For the best part of the last 9 months I've been experiencing strange outages of the ENTIRE network, taking the switches (two Telesyns, qualtiy stuff) to a grinding halt. So someday I moved my butt into the cellar when this happened and started to pull the cat5 cables out of the switch, one by one. I had a laptop attached to the switch and pinged the server. When I pulled the cable of one of the Dells, the network was reanimated! The Dell PC in question was turned OFF!
Stunned, I called Telesyn, they told me to flash the system (which I actually did, well knowing it wouldn't better the situation). I then proceeded to call Dell, which was, of course, a waste of time. They told me to upgrade the Bios from the actual version to the same version. Which I did (I feel like an idiot now). They then told me if I didn't use a Dell switch along with their PCs there'd be no support, guarantee, etc., yadda, yadda.
You may have opened my eyes, thanks ....

Re:The backdoor may be in the hardware

[Hiro+Antagonist]

This could be good or bad, but personally, I'll stick with LOM and OpenBoot. Dell would get an order for God Knows How Many servers if they just implemented something functionally equivalent to LOM/OBT over a serial port.

IPMI could be okay, provided that you can (a) turn it off; and, (b) could restrict it to a second network card -- that way, you could have a separate network segement for servers in a rack that does nothing but handle IPMI data. Of course, serial would be a hell of a lot cheaper...

No back door means yes back door

[kml1000k]

MS says no back door, *some* terrorist gets stupid and store their data using BitLocker. MS says yes back door, *all* terrorists finds an alternate solution. Very smart of MS/Gov't.

Vista will ALWAYS have a backdoor.

[Simonetta]

Vista will ALWAYS have a backdoor. This the showcase product of the richest man in the world. His and his companie's continued prosperity depends on the good graces of governments. And the governments will always demand a back door to spy on their people.

    This is the way that the world works. MS will always deny that there is a backdoor. But it will always be there. If you don't believe it, go to China or any other crypto-fascist dictatorship with advanced technology. Start sending e-mails to foreign websites about subjects like democracy and freedom in general. Request information about local massacres of protesters in freedom demonstrations. Be sure to use encoded with Microsoft's bundled encryption. See how long it takes for the local secret police to arrest you. A week, a month?

    Don't gamble your life and freedom on a sucker's bet. Microsoft will always cooperate with local authorities to ensure that Vista will not shield political dissidents. The only people who can be assured that their correspondence actually is private will be Microsoft employees. This is a trade-off that giant monopolistic global corporations always make with the totaltarian governments in the countries that they operate. Regardless of how much they deny it, Microsoft will act no differently.

  Count on it.

Re:Vista will ALWAYS have a backdoor.

[AlphaSys]

Mod down, reactionary sputum, long on accusations and completely empty of facts. I'm not saying it isn't possible; I'm saying there has never been presented any evidence to support the claim that MS has bundled a backdoor in any product or for sure that there is anything more breakable about MS-Crypto in regards to email, SSL, etc. than anything else. Substitute money for mouth and maybe I'll recant.

The reason why they don't need a backdoor is

[Calyth]

NSA looked at the code, and deemed there are enough bugs in Vista that a backdoor isn't necessary for the next 10 years.

it' a blog!

[recharged95]

"Niels Ferguson, a developer and cryptographer at Microsoft, wrote Thursday on a corporate blog

So...when does a corporate blog equate to a press release or credible fact/policy?

Re:it' a blog!

[belmolis]

Since when does a press release have any credibility?

Who needs a secret back door....

[Philodoxx]

When the front door is wide open?

I agree? Who's in bed with Verisign?

[woolio]

Most people assume using HTTPS or any SSL-encrypted communication is secure, especially when they see the other side presenting an authentic key...

But suppose someone wanted to intercept & modify SSL traffic?

If they were in bed with Verisign, they could just get a copy of the signed key and use a simple transparent proxy to filter/modify traffic. If this was done at the office building and/or ISP level, it would be very difficult to notice. (At most, there might be an extra hop in one of many internal ISP hops in a traceroute)

Which means SSL is probably insecure (against large organizations/governments).

I'm not sure what kind of checking Microsoft's Windows Update site does, but considering they're using SSL, I bet they either have something to hide or they are relying on SSL for most of their security. And considering that Internet Explorer's "trust" mechanisms are based on DNS domainname, things could go really really bad....

Of course, most Linux distributions are probably not any better. Even though many rely in MD5 or other hashes of downloaded files, these could be intercepted and modified... One mitigating factor is that the distributed nature of the mirrors and users would make this more difficult.

Only those who write network hardware drivers have any chance of detecting "hidden" activity...

Re:Wrong and Right

[Polygon105]

"The codebase [is] complicated enough that such a back door could be added without Niels being aware of it."

Well yes and no, a backdoor could be embedded into vista sure (hell theres bound to be quite a few 'back doors' they dont even know about) however this guy is making the encryption and is saying just the encryption part he is working on will not have a backdoor. This is because to code a backdoor into an encryption method is completely undermining the entire purpose of the encryption.

Thats how I read it anyway... If there is a delibrate backdoor I have no doubt it will be found at some point although it may be years down the line. Its going to take people a while to properly figure out how the system works and any anomolies in it.

Do you remember the big "Clean out your permanent search history" rush a while back, still around but not so much. That was when it was widely revealed IE was storing your browsing history in a hidden way as well as the usual way you could clear?

'Over my dead body,'

Yea they probably got that one lined up for any time soon ..

EXCELLENT!

[Kingrames]

Note that our friend here has mastered the first art of creating a secret backdoor! ...deny that it's there!

No matter, we can find the back door quite easily.

*A loud explosion blows a huge chunk out of the backside of vista*

And that concludes our lesson for today in how NOT to make your backdoor seen.

fox in the hen house

"I will protect these chickens from myself and my fox friends", said the fox in the hen house.

bollocks

[hachete]

He's off the code, someone else puts in the backdoor. Most of us here have worked for big software companies. This is 101 software right?

I really can't believe slashdot is discussing this except as some aid to a propaganda excercise by our favourite software company. Really, don't give them the free bits. Take a tip from, say, zdnet, and get *paid for the fluff pieces, owise you'll end up nailed to the door like the rest of the fucking monkeys.

angry and proud of it.

Cmon people.

Microsoft would NEVER put a backdoor into Windows. Backwindows are the only acceptable form of intrustion.

hamlet

[lamp540]

The lady doth protest too much, methinks.

yeah right

[wardk]

what they mean is the MS engineers know of no backdoors....

until some 15 year old in Sweden finds one of them

Ferguson does not understand US law

[lamp540]

"And in the unlikely situation that we are forced to by law we'll either announce it publicly or withdraw the entire feature." Feruguson does not understand the way that the law works in the United States. The US government has the LEGAL authority to tell them not to disclose something that they have done if was for national security purposes.

ButOfCourse(TM)!

[WheelDweller]

Remember there was "no back door" in Win31->Win2k3, either, until we found one (or more). Face it- there's at least one. Ever seen Easter Eggs?

When these guys talk, you need to *instinctively* know they're lying. (they have, for about two decades, now...even the release process hasn't really changed...)

Backdoor access

[james_marsh]

Governments will just have to get back door access to Vista machines the same way as everyone else: by buying it off a Russion script kiddie.

old computer...

[towsonu2003]

...running a linux firewall will throw bolmer's chair at us backdoors.

is MS really evil??

[buhatkj]

well sure their business practices often shut out the little guy, but building backdoors for the government is like blatant evilness. ultimatley yeh they are the big bad when it comes to business, but money aside, these are techies who don't WANT to be evil any more than the guys at google.
building a backdoor is too evil even for microsoft basically...

yes but...

what about the Greek version?

Re:yes but...

[chawly]

And the version for elderly South Koreans? It seems clear that in Soviet Russia they'll have a problem when they get Vista in their back "door" - that's tradition. But I still wonder about the old folks in South Korea.

Re:Right. 'the matrix' and Plato

The Wachowski Bros. screened GHOST IN THE SHELL then showed it to Joel Silver to get funding for MATRIX I and (un)knowingly brought Plato's Allegory Of The Cave to the silver screen....

They'll take it up the butt like with Chinese blog

[mfriedma]

We've already seen with the Chinese blog censorship controversy that they'll bend over and take it up the butt for any government that doesn't play nice.

If, for example, the Chinese demand a back door to Chinese Vista or they will ban it and move the country to Linux how long do you think it will take for Ballmer to give prima donnas like Niel Ferguson figruative 9mm brain hemorrages?

Why backdoor?

Well the front door is open

Re:Why backdoor?

[chawly]

Too many people coming through the front door - once you're in, you need a quick way out ! (But you'll tell me that there's always the Windows....)

Vista does not need backdoor...

[Maljin+Jolt]

Vista will not have a security backdoor

Because Vista will have a SecureBackGates.NET!

Whatever

[JustNiz]

Of course it will have a backdoor. Apart from anyone else, the NSA would want it. This is just smoke and mirrors to cover that up. The only way the OS won't have a backdoor is if Microsoft are providing a tool to selected parties that circumvents the whole OS anyway.

The don't trust verisign

[Nursie]

making your own trusted certification authority is trivial.

Does that mean no more Windows Update?

I suppose "no more back doors" means the end of Windows Update, right? Or doesn't that count?

I mean it's only a backdoor if you didn't ">agree to the backdoo, right? Then it would be authorized access and of course MS would never give out the keys to your server, right? And anyway MS only uses technology so secure that no unauthorized third parties could use it.

We Believe ANYTHING ANY Microsoft Employee Says

[Master+of+Transhuman]

Sure we do.

Fucking liars, the lot.

NSA Copy?

[phorm]

One wonders that, if a backdoor were included, would not the NSA or whatever other organization then also want a copy *without* the backdoor. After all, it's one thing to know that it will let you into anyone else's machine, but another to have it possible for others to get into yours.

I think I'll have to find some special place where I can get a copy of "Vista - Professional NSA Edition" Of course, in that copy there's probably a Syrian backdoor installed, but what the heck ;-)

We do not intend to add backdoors...

[treczoks]

No, of course they do not plan to add backdoors. They propably had them already builtin from the very beginning. And they are not going to tell you about this, anyway...

As long as such security relevant code is not available as open source, it will be treated as "tampered with" and "unsafe at any speed".

And trying to stand in front of an US agency saying "over my dead body" is a good way to win you a Darwin Award, boy...

"If the number of heads poses a problem, decapitation can be arranged." ;-)

Yours, Christian