Slashdot Mirror

← Back to Stories (view on slashdot.org)

Google and NSA Teaming Up

Posted by samzenpus on from the meet-my-big-brother dept.

i_frame writes "The Washington Post reports that 'Under an agreement that is still being finalized, the National Security Agency would help Google analyze a major corporate espionage attack that the firm said originated in China and targeted its computer networks, according to cybersecurity experts familiar with the matter. The objective is to better defend Google — and its users — from future attack.'"

40 of 125 comments (clear)

  1. Conversation between Google and NSA by elrous0 · · Score: 5, Funny

    NSA: We need complete access to your gmail system.

    Google: Alright! This is to help us with the recent China break-in, right?

    NSA: Um, sure...

    --
    SJW: Someone who has run out of real oppression, and has to fake it.
    1. Re:Conversation between Google and NSA by biryokumaru · · Score: 3, Insightful

      Nah, they prolly just left Google a post-it note.

      --
      When you're afraid to download music illegally in your own home, then the terrorists have won!
    2. Re:Conversation between Google and NSA by Anonymous Coward · · Score: 3, Funny

      Pfft, I have long held that Google is just a front company for the NSA. Now it seems they are comfortable taking that relationship to the next level, out of the closet so to speak. (Adjusts his tin foil hat and returns to his regular viewing)

    3. Re:Conversation between Google and NSA by JWSmythe · · Score: 5, Funny

          They running Windows on their desktops, the NSA already had access.

      --
      Serious? Seriousness is well above my pay grade.
    4. Re:Conversation between Google and NSA by Anonymous Coward · · Score: 2, Insightful

      I usually don't comment on mods - but holy shit how the hell is this insightful? There have been rumors (always denied) of "NSA backdoors" brought up by tinfoil hatters forever but most people take them for the silly rumors that they are. Insightful? For shame... Funny maybe.

    5. Re:Conversation between Google and NSA by vxice · · Score: 3, Informative

      "The sources said the deal does not mean the NSA will be viewing users' searches or e-mail accounts or that Google will be sharing proprietary data. " RTFA, some people do take privacy seriously.

      --
      every anarchist is a baffled dictator. Benito_Mussolini
    6. Re:Conversation between Google and NSA by elrous0 · · Score: 5, Insightful

      Are those the same sources that used to say the NSA doesn't tap domestic phone calls--before a whistleblower outed them for doing exactly that?

      --
      SJW: Someone who has run out of real oppression, and has to fake it.
    7. Re:Conversation between Google and NSA by bberens · · Score: 3, Interesting

      Conspiracy theory #1: Google wouldn't let the NSA in (as much as NSA wanted). NSA makes it look like someone in China hacked Google. NSA comes to the rescue in exchange for protection money.

      --
      Check out my lame java blog at www.javachopshop.com
    8. Re:Conversation between Google and NSA by AliasMarlowe · · Score: 4, Informative

      You could google on _NSAKEY or NSA_KEY or NSAKEY and find what some security researchers in Europe discovered and published. For instance http://www.heise.de/tp/r4/artikel/5/5263/1.html
      A Microsoft officer offered to explain the presence of NSA_KEY, and indeed gave a partial clarification. Microsoft then declined to answer the follow-up questions which were asked, and refused to explain why they were not answering. http://cryptome.org/nsakey-ms-dc.htm
      Read into this whatever you like - innocent, tinfoil hat, or otherwise. Here's the wikipedia story about it; feel free to vandalize^W improve it with your comprehensive knowledge. http://en.wikipedia.org/wiki/NSAKEY

      --
      Those who can make you believe absurdities can make you commit atrocities. - Voltaire
  2. joint-venture by muckracer · · Score: 5, Funny

    As part of the agreement a new slogan to be used jointly by both Google and the NSA has been implemented:

    "No Such Evil" ...

    1. Re:joint-venture by derGoldstein · · Score: 3, Funny

      I thought it'd be:
      "Google/NSA: Your privacy is in good hands, with us."
      or
      "Google/NSA: Organizing the world's information; and more*."
      or
      "Google/NSA: Collaboration has a new meaning."

      --
      Entomologically speaking, the spider is not a bug, it's a feature.
  3. Defend its users? by sakdoctor · · Score: 4, Informative

    I can defend myself perfectly well, by using the correct tool for the job:

    Self hosted mail server: Business, personal, anarchism.
    Gmail: Fwding Lolcats.

    1. Re:Defend its users? by Anonymous Coward · · Score: 2, Interesting

      Your "media streamer" system has 125 times the amount of memory, about 70 to 100 times the processing power, and probably several hundred times the storage space of the mail server I set up for a company with 40,000 users back in the late 1990s.

      Thanks to Sun hardware and Solaris, that system handled the load just fine, and even did some rudimentary spam filtering. I doubt you could even generate a similar load on your system. If it can't handle a small fraction of what we could easily handle over a decade ago, then something is really fucked up.

    2. Re:Defend its users? by Lord+Ender · · Score: 4, Interesting

      Cloud computing has interesting security implications.

      The IT security team protecting Gmail are better at security than the team protecting your average datacenter, and they are FAR better at security than your average small business or home user "IT security team."

      But on the other hand, far more attackers are going to try far harder to get into gmail than to get into your small business mail server.

      So how do these factors balance out? On the whole, I think medium-to-large businesses with dedicated IT security staff will provide better security than you would get by cloudsourced IT; but the small businesses with no dedicated IT security staff really would be better off, from a security perspective, sending their IT systems to "the cloud."

      --
      A slashdotter who didn't build his own computer is like a Jedi who didn't build his own lightsaber.
  4. Really it means... by Cornwallis · · Score: 3, Insightful

    The objective is to better defend Google — and its users — from future attack.

    The objective is to better defend Google — and its users — from future attack by someone other than NSA and...

    1. Re:Really it means... by horza · · Score: 5, Funny

      It makes sense. I am having a professional burglar come around tomorrow to check my locks. I told him not to come around tonight as I won't be in.

      Phillip.

      --
      Property for sale in Nice, France
    2. Re:Really it means... by MadKeithV · · Score: 4, Funny

      I prefer parallel bowls myself.

  5. Shocked. Shocked, I Tell You. by RobotRunAmok · · Score: 4, Funny

    If anyone thinks this is the first collaboration between Google and the NSA, I've got a wall in China I want to sell you.

  6. post chinese leaders' emails by peter303 · · Score: 3, Interesting

    The Chinese people would love to hear about their bribes and mistresses. The NSA must have these if they exist.

  7. Re:IDK... by Zen+Hash · · Score: 4, Insightful

    The NSA has probably captured additional communications related to the attack, aside from what went through Google's network. I'd imagine they generally have far more extensive resources and experience than Google, when it comes to capturing/analyzing communications.

    --
    Here I sit, all broken hearted.
    Came to poop, but only farted.
  8. Re:IDK... by el_tedward · · Score: 4, Insightful

    Google probably knows more than NSA when it comes to things like search, but when it comes to breaking into a computer that doesn't belong to you, you're not going to find anyone much more knowledgeable than the NSA.

  9. Different Experts , but also deniability by gnieboer · · Score: 5, Interesting

    I've said it before, but if Google's investigation points to Chinese government IPs, they must tread on careful ground because they have employees in China that could go to gulag if Google gets too curious.

    Involving the NSA allows them a certain level of deniability/immunity, and let's face it, the NSA probably has been tracking Chinese Gov't IP's a lot longer than anyone, so I think it's not a question of 'better' experts, it more a question of experts experienced in doing what Google wants.

    I still believe that Google is still holding cards to their chest. I mean, how many other corporate hacks have occurred where the corporation has publicly requested the assistance of the NSA?? I'm not aware of any (though I'm sure someone will post a link showing how little I know!). So I think Google already has very good evidence that the Chinese Gov't was behind it, but is afraid to make that information public.

  10. Google can Read Your Mind... by netsharc · · Score: 4, Interesting

    Google has always been able to use the things people are looking up for evil: if someone using Apple's IP googles a particular microchip's specs, you might infer from that that they might be thinking of using that chip soon.

    How about a Chinese IP googling "openssl 0.9.6 exploit".. especially if that IP was just visiting www.$SOMESITE.gov, where the HTTP-headers mention it's using "openssl-0.9.6". Or a Saudi Arabian IP googling for flight info inside the US, and a few seconds later, a Yemeni IP opening up the same URL (hmm, although without that site's cooperation, the NSA won't be able to see that, or are they..?)

    Such powers would be interesting, for the wielder. Not so much for victims of its inevitable abuse.

    --
    What time is it/will be over there? Check with my iPhone app!
  11. No evil by McGiraf · · Score: 4, Funny

    Do no evil, with a little help from Satan.

    1. Re:No evil by mcgrew · · Score: 2, Insightful

      The motto isn't "don't do evil", it's "don't BE evil". Not a human alive has lived without doing evil, although some of us try very hard to not do evil.

      --
      Free Martian Whores!
  12. Re:simple by AHuxley · · Score: 2, Interesting

    "Neither care about you." then the NSA would be looking outward.
    They are building big time in the fly over states.
    Not Japan, Australia, the UK ect. .. near the bad people.
    They care about you a lot.

    --
    Domestic spying is now "Benign Information Gathering"
  13. Anonymous Coward Trolls by happy_place · · Score: 3, Insightful

    Funny how this topic breeds anonymous coward trolls, and isn't it strangely coincidental that they're all of the same meme. Google is evil. US Government is a bad guy. China is a victim.

    I'm sure it's only a coincidence.

    --
    http://www.beanleafpress.com
    1. Re:Anonymous Coward Trolls by dintlu · · Score: 2, Insightful

      The NSA and Google are in the same business: information.

      They may have different motivations and methods, but at their core they are both organizations that collect huge amounts of information and use that information as a means to an end.

      Google's "don't be evil" is a tacit acknowledgment of the power information wields, and seeing them team up with a disreputable organization like the NSA makes the parallels between the two very obvious, generating a flurry of AC comments to capitalize on the memetic opportunity.

    2. Re:Anonymous Coward Trolls by Knitebane · · Score: 2, Interesting

      Interesting how the same people that keep saying how evil the US Government is are the same people that keep saying that the US Government ought to be in charge of our healthcare, our children's education, our financial sector and our retirement.

      --
      "...history will look upon the act of depriving a whole nation of arms, as the blackest." --Ghandi
  14. So what by koan · · Score: 2, Informative

    ATT routes all (yes all) their traffic thru the NSA
    http://arstechnica.com/tech-policy/news/2007/11/ex-att-employee-nsa-snooping-internet-traffic-too.ars

    This move from Google is more political the security oriented.

    --
    "If any question why we died, Tell them because our fathers lied."
  15. Re:Here's an oldie... by blackest_k · · Score: 4, Informative

    may i recommend detiny url expander a small add on for firefox https://addons.mozilla.org/en-US/firefox/addon/13140

    which expands the above link to http://web.archive.org/web/20001202200100/http://---www.goatse.cx/ (If you really want to click it you will have to go to the parent post)

    --
    Blarney Quality Restaurant, Plants
  16. Security is NOT an issue with The Cloud. by Anonymous Coward · · Score: 5, Funny

    Wait a minute. I'm a manager, and I've been reading a lot of case studies and watching a lot of webcasts about The Cloud. Based on all of this glorious marketing literature, I, as a manager, have absolutely no reason to doubt the safety of any data put in The Cloud.

    The case studies all use words like "secure", "MD5", "RSS feeds" and "encryption" to describe the security of The Cloud. I don't know about you, but that sounds damn secure to me! Some Clouds even use SSL and HTTP. That's rock solid in my book.

    And don't forget that you have to use Web Services to access The Cloud. Nothing is more secure than SOA and Web Services, with the exception of perhaps SaaS. But I think that Cloud Services 2.0 will combine the tiers into an MVC-compliant stack that uses SaaS to increase the security and partitioning of the data.

    My main concern isn't with the security of The Cloud, but rather with getting my Indian team to learn all about it so we can deploy some first-generation The Cloud applications and Web Services to provide the ultimate platform upon which we can layer our business intelligence and reporting, because there are still a few verticals that we need to leverage before we can move to The Cloud 2.0.

    1. Re:Security is NOT an issue with The Cloud. by Lord+Ender · · Score: 4, Funny

      Oh come on! You can't just throw terminology around like that without metrics to back it up! What does Gartner have to say about it? What magic quadrant is it in?

      --
      A slashdotter who didn't build his own computer is like a Jedi who didn't build his own lightsaber.
  17. Re:Could be worse... by derGoldstein · · Score: 2, Funny

    Schmidt: "I think this is the beginning of a beautiful friendship..."

    --
    Entomologically speaking, the spider is not a bug, it's a feature.
  18. Re:Here's an oldie... by biryokumaru · · Score: 3, Informative

    I recommend ChromeMUSE for us Chrome folk.

    --
    When you're afraid to download music illegally in your own home, then the terrorists have won!
  19. Re:Here's an oldie... by Assembler · · Score: 2, Informative

    You can also turn on the tinyurl preview feature. http://tinyurl.com/preview.php

  20. Re:why NSA hate? by Beezlebub33 · · Score: 2, Insightful

    They wiretapped US citizens in the US without a warrant. That's illegal and immoral, and goes against their charter and policies.

    Some people may think that it is not a big deal, but really it is. First, it means (IMHO) that they think they can do anything they want. Based on the lack of political and legal fallout, apparently they are right. So, they have carte blanche to do whatever they want in terms of wiretapping, email reading, decrypting, etc. and there is nothing you can do about it. Second, even if they say they don't do X any more, you have no reason to believe that they do not do X any more.

    Yes, SELinux is great, thanks, we do appreciate it, but the betrayal of the laws of the US and the lack of control on this organization overwhelms it.

    --
    The more people I meet, the better I like my dog.
  21. Re:why NSA hate? by Webster9 · · Score: 2, Insightful

    These are the good guys

    Sure. As long as your definition of "Good Guys" includes domestic warrantless wiretapping.

  22. Re:why NSA hate? by Leebert · · Score: 2, Funny

    These are the good guys (unlike the FBI, who are media-whoring, civil-rights-abusing porno-police).

    Dick Gordon: National Security Agency.
    Martin Bishop: Ah. You're the guys I hear breathing on the other end of my phone.
    Dick Gordon: No, that's the FBI. We're not chartered for domestic surveillance.
    Martin Bishop: Oh, I see. You just overthrow governments. Set up friendly dictators.
    Dick Gordon: No, that's the CIA. We protect our government's communications, we try to break the other fella's codes. We're the good guys, Marty.
    Martin Bishop: Gee, I can't tell you what a relief that is... Dick.

    (shamelessly copied/pasted from IMDB...)

  23. Re:Here's an oldie... by mister_playboy · · Score: 2, Informative

    Why would you click on an a tinyurl link, especially from an AC?

    --
    Do what thou wilt shall be the whole of the Law ::: Love is the law, love under will