Slashdot Mirror

← Back to Stories (view on slashdot.org)

Source Code To Google Authentication System Stolen

Posted by kdawson on from the crown-jewels dept.

Aardvark writes "More details are coming out about the extent of the break-in at Google a few months ago. The NY Times is reporting that one of the things stolen was the source code to Google's single sign-on authentication system, called Gaia. Though Google is making changes to the system, the theft raises the possibility that attackers could analyze the code to find new exploits to take advantage of in the future. No wonder that Eric Schmidt recently said they've become paranoid about security."

5 of 306 comments (clear)

  1. so? by timmarhy · · Score: 0, Troll

    isn't it /. that always promotes that closed source doesn't improve security? i'd love to see /. put their source out there, money where their mouth is so to speak.

    --
    If you mod me down, I will become more powerful than you can imagine....
  2. Re:Cloud security? by GNUALMAFUERTE · · Score: 1, Troll

    The theft began with an instant message sent to a Google employee in China who was using Microsoft’s Messenger program, according to the person with knowledge of the internal inquiry, who spoke on the condition that he not be identified.

    As usual, the problem wasn't in the servers, or in the code, but in the people accessing it.

    And, as usual also, Microsoft was involved.

    --
    WTF am I doing replying to an AC at 5 A.M on a Friday night?
  3. Re:More Eyes - if you publish by shird · · Score: 0, Troll

    Another example?

    The only reason these "hostile" eyes are looking in this case is because they were able to get the source code, similar to what publishing your source code achieves.

    If the only eyes looking other than your own are hostile eyes, that would be an argument *against* publishing your code.

    --
    I.O.U One Sig.
  4. Copied! Not stolen! Big difference! by Hurricane78 · · Score: 1, Troll

    You can not steal information. You can copy it. But then the original owner still owns it. Sometimes you can also overwrite the copy that is not stored in people’s minds. But it is a very big difference. Because the one is meatspace, and the other bitspace.
    Stealing in only applicable to real physical meatspace objects. Everything else is MAFIAA FUD.

    --
    Any sufficiently advanced intelligence is indistinguishable from stupidity.
  5. Oh... Ok then. by Colin+Smith · · Score: 1, Troll

    Nothing to worry about.

    I'm so relieved you pointed out the way things should and should not be for the rest of us. We can just go ahead and keep storing our corporate data in google apps keep all our personal info in google mail and not worry about identity theft, corporate espionage etc.

    And back on planet earth. You have to be taking the piss. If the real world worked the way your ideal one did then they would never have been hacked in the first place. Of course they are doing things that ,"they should not be doing".

    --
    Deleted