Slashdot Mirror

← Back to Stories (view on slashdot.org)

RIM Agrees To Hand Over Its Encryption Keys To India

Posted by samzenpus on from the lets-see-what-you-got-there dept.

An anonymous reader writes "BlackBerry maker Research in Motion's (RIM) four-year standoff with the Indian government over providing encryption keys for its secure corporate emails and popular messenger services is finally set to end. RIM recently demonstrated a solution that can intercept messages and emails exchanged between BlackBerry handsets, and make these encrypted communications available in a readable format to Indian security agencies. An amicable solution over the monitoring issue is important for the Canadian smartphone maker since India is one of the few bright spots for the company that has been battling falling sales in its primary markets of the US and Europe. In India, RIM has tripled its customer base close to 5 million over the last two years,"

37 of 164 comments (clear)

  1. Yes but this won't help by Sir_Sri · · Score: 5, Insightful

    Part of the appeal of RIM was that you knew governments weren't out there stealing secrets sent across your network. I understand that India has a legitimate security need to be able to wiretap communications and so on. But this isn't going to 'help' RIM. This takes away the only major competitive advantage they had, which was that using RIM meant you knew no one in the indian government was going to steal your work and sell it to someone else (which is a serious concern in india).

    If anything, this just levels the playing field. And that's bad for RIM, because they aren't competitive.

    1. Re:Yes but this won't help by Moblaster · · Score: 5, Insightful

      It's pretty clear what happened. They kept the keys secret and held out for a long time on "principle" because that was the best business decision at the time. Then, as the onslaught of iPhone and Android took its toll, the principle changed to survival, because that became the new best business decision.

      It's sad, but at this point, it hardly affects any country but India anyway!

    2. Re:Yes but this won't help by Sir_Sri · · Score: 2

      And in most other countries you aren't worried about the government stealing and reselling most of your secrets anyway. At least not your own government.

    3. Re:Yes but this won't help by narcc · · Score: 5, Informative

      As has been pointed out over and over again, This Does Not Affect BES Users.

      Everyone else is just as insecure as they always were. If you want security in India, RIM is still your only real choice.

      More details here

      --
      Required reading for internet skeptics
    4. Re:Yes but this won't help by thePowerOfGrayskull · · Score: 2

      As others have pointed out, this doesn't affect BES - they're as secure as ever in the enterprise.

      Thing is, they've always given this level of access to governments (or we reasonably assume this is the case, anyway) for their BIS service The difference is officials in India needed to save face and made a big deal out of this - even though they're getting only what they were told they could get from the start, and certainly no more than any other government.

    5. Re:Yes but this won't help by AK+Marc · · Score: 2

      If the people vote for authoritarian, does that make it non-democratic?

      --
      Learn to love Alaska
    6. Re:Yes but this won't help by Prune · · Score: 3, Informative

      The article is misleading. The corporate service using Blackberry Enterprise Server has not been compromised because the encryption keys are controlled by the company deploying BES end-to-end. The company's IT generates the encryption key pairs when adding new handsets to the server. What's discussed only affects specific messaging over the non-business Blackberry service BIS.

      --
      "Politicians and diapers must be changed often, and for the same reason."
    7. Re:Yes but this won't help by Prune · · Score: 4, Insightful

      They only have the keys to the non-business service. Corporate users deploying Blackberry Enterprise Server create their own key pairs when registering each handset with the company's BES server, and so control the encryption end-to-end. There are no third parties with access to these keys, making this far more secure than SSL, for example. The article is FUD.

      --
      "Politicians and diapers must be changed often, and for the same reason."
    8. Re:Yes but this won't help by Sir_Sri · · Score: 2

      Sorry to be pedantic

      You're not being pedantic, you're living in a fantasy land. This isn't a legal treatise on just what should be the requisite standard for a wiretap, because that depends in large part on the details of the existing legal system. Wiretap rules in france and the US can be completely different but both reasonable. India has both the authority and a legitimate need to be able to wiretap communications in their own country. Suggesting they can't is wearing a tinfoil hat because you think they have satellites spying on you. Which sometimes they do.

    9. Re:Yes but this won't help by narcc · · Score: 3, Informative

      RIM doesn't have the keys to hand over. Again, see the link I sent. If you're referring to a company running BES in India being forced to give the gov't access to their communications, that's completely different and has absolutely nothing to do with RIM.

      Still, the point stands. RIM is the only secure option -- the playing field has not be leveled.

      --
      Required reading for internet skeptics
  2. Nothing like giving in... by theNAM666 · · Score: 3, Funny

    ... to a democratically elected government...

    1. Re:Nothing like giving in... by Anonymous Coward · · Score: 2, Informative

      India's corruption puts any Western government to shame. Want to get anything done? You WILL pay a bribe, and a good one at that, down to the "untouchable" cleaning out poop out of the sewer.

      The caste system still stays there, same with the attitude of helping people is considered bad juju since it interferes with their divine punishment.

      Also remember: India isn't a friend to the West. During the Cold War, they were doing their best to cozy up to the Russians, and were willing to do almost anything for them.

      India demanding keys from RIM is no surprise. I'm sure that any US or European messages in that region will wind up in the hands of them, or their Chinese buds.

      Makes you want to trust the broken CA system in SSL/TLS. At least you can possibly dump all other CAs and use your own root certs with have your own trust, as opposed to RIM's "trust us, or buy a new device". Oh... run a BES backend... sure. Like anyone bothers with that.

    2. Re:Nothing like giving in... by AK+Marc · · Score: 3, Funny

      Sarchasm. The gap between you and the joke.

      Sargasm. When your joke makes you laugh a little too hard.

      --
      Learn to love Alaska
  3. Re:RIM's private keys by radiumsoup · · Score: 2

    give it a few days and someone will do it for them.

  4. Not quite the full story... by Shabbs · · Score: 4, Informative

    Please, the BES keys have not been handed over... because they can't be...

    http://crackberry.com/rim-encryption-keys

    BIS != BES.

    --
    Mark
    1. Re:Not quite the full story... by Shabbs · · Score: 3, Informative

      It needs a specific key. A BES connection is secured by a key-pair that is generated when the BlackBerry is added to the BES. This allows for the 3DES encryption to occur for all communications over the BES connection.

      The situation you're talking about applies to BIS where any handset can decrypt the encrypted messages.

      This mis-understanding of the differences between BIS and BES lead to a lot of FUD unfortunately.

      And you know Apple is keeping an eye on this... cuz India will be coming after them too for access to their iMessage comms, if they have not already done so.

      --
      Mark
  5. Moral of the story by characterZer0 · · Score: 4, Insightful

    Moral of the story: If you do not control end-to-end encryption yourself, it is not secure.

    --
    Go green: turn off your refrigerator.
    1. Re:Moral of the story by Opportunist · · Score: 4, Insightful

      In this case you don't even control ANY part of the encryption, not even on your end. Something that is the absolute bare minimum for any kind of security.

      --
      We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    2. Re:Moral of the story by Lehk228 · · Score: 2

      if you want to control end to end get a BES

      --
      Snowden and Manning are heroes.
  6. Did any of you yahoos bother to read the article? by Anonymous Coward · · Score: 2, Informative

    "RIM recently demonstrated a solution developed by a firm called Verint that can intercept messages and emails exchanged between BlackBerry handsets, and make these encrypted communications available in a readable format to Indian security agencies..."

  7. Re: Not BES, and only India by gnoshi · · Score: 3, Interesting

    And it is probably also worth pointing out that this means that RIM's BIS service provides better content protection than SMS/MMS, unencrypted email (which is virtually all e-mail, and indeed all Android phones using the inbuilt GMail app), and almost any IM out there. I've also missed other equally unprotected means of communication.

    Why? Because at least BIS is encrypted in transit to and from RIM. (To be fair, services like MSN Messenger in which all messages go through a central server could be considered more secure than BIS communications, as long as both clients are connecting to the server via SSL).
    Hell, even BB PIN-to-PIN messaging is more secure than many or most of the aforementioned modes of communication.Yes, the key used for encryption is present on each and every handset - but random MITM sniffer can't get the content without at least having to decrypt it.

    Sure, an Android user could get TextSecure for encrypted SMS, but does anyone actually know anyone who USES this tool?

  8. It's OK... by tlambert · · Score: 4, Funny

    Half the country has been unable to recharge their Blackberries for two days in a row anyway.

  9. Saving Face by Anonymous Coward · · Score: 5, Informative

    from the fine article:

    "But he said there was no access to secure encrypted BlackBerry enterprise communications or corporate emails as these were accessible only to the owners of these services."

    The reality is BES uses keys assigned by the owner of the BES server, RIM HAS NOT and CAN NOT give those to anyone, because they dont know them. This has been RIM's position from the begining, and still is. What they HAVE done is give access to the messaging services they run (and therefor have keys to) to the Indian authorities. My understanding is that this was always the case. The article really does not make the distinction between the two clear.

    TLDNR: RIM gave what they always give anyone, some minister is useing it to try and save face. Poor reporting means it worked.

  10. Re: Not BES, and only India by Anonymous Coward · · Score: 3, Insightful

    Are you saying you trust your smart phone to have only real, valid intermediate ssl certificates? Or are you so ignorant to think that governments aren't trying to man-in-the-middle SSL like crazy, especially on mobile networks.

  11. Re:But this is India we are talking about by JoeMerchant · · Score: 3, Funny

    Encryption is crackable

    True, encryption _CAN_ be cracked, by hook or by crook

    Are you talking about this form of cracking? Because, with a sufficiently long secret key, it is proven impossible to break.

    I like using long period PRNGs to make an effective one-time pad. How you initialize the PRNG is your key.

  12. Re:Sell now by LordLimecat · · Score: 4, Informative

    I hope you arent in a position where you advise anyone on IT.

    Active Sync's security is in LARGE part dependent on the security of SSL. For a HUGE number of organizations, those SSL keys are self-signed, which provides about the same security of WEP. All that is needed to break in is to somehow get the device to reach out to your server, and then have your server present a similar self-signed cert. Even if you are using a "proper" cert, you can be "easily" bugged by a government, since a large number of governments are considered trusted root authorities (including China); this means they can generate their own certificate, claim to be your Exchange CAS, and your device will happily talk back and forth with it. Presumably at that point your device would authenticate to that rogue server; Im not clear in what form the credentials would be sent, but we're already into "danger" territory.

    On the flip side, with a proper BES (which is NOT what is being discussed in TFA), SSL simply isnt in the loop. All communications are relayed through RIM, but the encryption keys (up to AES-256) are held completely internally. I believe (though I could be wrong) that each device has its own key which is derived from the master key, so under the absolute worst conditions someone could sieze a blackberry and -- shockingly-- have access to that user's email. But of course, they'd have to get around the in-memory encryption and flash encryption that a security-sensitive organization would obviously have enforced on their blackberries.

    At the end of the day, if absolute security is a necessity, you probably dont want your employees running around with smartphones, but if you do, youre using Blackberry / BES because there STILL isnt a good competitor in that range. Plus, if we're completely honest, most androids are touchscreen, and touchscreen devices simply arent as good at fulfilling the role of business communication device. They have other perks, but from personal experience I can say that they are a massive letdown when it comes to email and phone.

  13. Re:Sell now by LordLimecat · · Score: 2

    PS, if you think IMAP is a serious competitor to what a BES does, you are even more in the dark than I originally thought.

  14. Re:RIM's private keys by LordLimecat · · Score: 4, Insightful

    Once again. For the last time....
    RIM does NOT have the encryption keys used by BES servers. Those keys are held internally by businesses only, and those are then used (along with "random" data) to generate the device keys. Even if RIM somehow had the organization's master key, they wouldnt have access to the "random" data that was used to derive the device key (which is pulled from that "wiggle your mouse around for a while" procedure).

    In other words, BES servers continue as unaffected as before. Call me when India figures out how to large-scale crack AES256 with unknown keys.

  15. Re:Who does it effect? by epiphani · · Score: 3, Informative

    My god these posts are annoying.

    Does an Indian businessman who bought a Blackberry...

    Does an American businessman with a Blackberry...

    Do they have a BES? If they have a BES, nothing to worry about. Next question?

    --
    .
  16. Misleading title by gagol · · Score: 5, Informative

    Should read "India claims RIM gave encryption keys, RIM strongly denies". http://www.theregister.co.uk/2012/08/02/rim_keys_india/

    --
    Tomorrow is another day...
  17. Already Debunked by RIM by _DangerousDwarf · · Score: 4, Informative
    From the Globe and Mail

    "Although not all of a BlackBerry's messaging functions are encrypted, RIM has long maintained that it is unable to grant anyone access to its corporate e-mail service, which is encrypted from end-to-end. RIM responded in a statement late on Wednesday, saying it was necessary "to correct some false and misleading" information" that had appeared in the Indian media."

    "RIM is providing an appropriate lawful access solution that enables India's telecom operators to be legally compliant with respect to their BlackBerry consumer traffic, to the same degree as other smartphone providers in India, but this does not extend to secure BlackBerry enterprise communications," the company added."

  18. Re:Sell now by bill_mcgonigle · · Score: 4, Insightful

    It seems to me VPN or IMAP over SSL has all the advantages of BB without the risk they'll sell you out. And has for some time.

    yeah, I was pointing this out to clients as early as 2004. I had a working IMAPS client on a Treo 650 at the time. They wanted Outlook integration over security (despite always talking about their multi-billion-dollar IP that had to be protected at all costs). Lesson learned: most people don't care about security, they just say they do.
     

    --
    My God, it's Full of Source!
    OUTSIDE_IP=$(dig +short my.ip @outsideip.net)
  19. Re:But this is India we are talking about by JoeMerchant · · Score: 2

    Yes, and brute forcing the stream cipher key can take a very long time.

    2^19937 is a big number.

  20. Re: Not BES, and only India by gnoshi · · Score: 2

    Are you saying that email sent via the Android GMail app isn't encrypted between the device and Google's servers?

    No, I'm not saying that GMail for Android (or via a browser, or iPhone) doesn't use SSL. However, GMail is an e-mail service using a client (on Android) which doesn't have support for encryption apart from SSL to the server. Sure, if I'm sending GMail to GMail that's fine - it falls into the same boat as MSN Messenger. If I'm sending to a non-GMail recipient, then that goes out the window.

    There are other apps which can use GMail, and do provide encryption functionality, but as with TextSecure - how common is their use (with encryption)?

  21. Landgrab by Kirth · · Score: 3, Interesting

    I understand that India has a legitimate security need to be able to wiretap communications and so on..

    Nope. This is a landgrab. Law enforcement is constantly talking about "going dark", where in fact, the light they have is much brighter than they've ever had before -- technology only made it possible to snoop on everything, and now they want the laws for actually doing so, and to lever out any countermeasures the user may take.

    In the 80ies, wiretapping actually meant either a) placing a wiretap in the users phone or b) going physically to the phone switch where the user was connected to, and placing the tap there. Both only done with a judical warrant, and for very specific cases. Wiretapping was _complicated_.

    Now, wholesale wiretapping is easy; so easy that a lot of people and companies take countermeasures. And now law enforcement wants "to have back" capabilities it never had?

    --
    "The more prohibitions there are, The poorer the people will be" -- Lao Tse
  22. Re:But this is India we are talking about by hlavac · · Score: 2

    You are naive. It only takes a few bytes of known plaintext to get your key.

  23. Re:But this is India we are talking about by void+warranty() · · Score: 2

    Well, he admitted to using mersenne twister for generating the keys. Mersenne twister is not designed for cryptography so it's quite possible it's relatively easy to crack. From wikipedia: "Observing a sufficient number of iterates (624 in the case of MT19937, since this figure is the size of the state vector from which future iterates are produced) allows one to predict all future iterates."