Slashdot Mirror

← Back to Stories (view on slashdot.org)

F-Secure's Mikko Hypponen Cancels RSA Talk In Protest

Posted by Unknown on from the conferences-in-america-considered-dangerous dept.

An anonymous reader writes "In a letter to RSA executives, F-Secure's Mikko Hypponen says he is canceling his talk at the 2014 RSA Conference, due to the company's deal with the NSA, and how the agency has treated foreigners." From the letter: " I don’t really expect your multibillion dollar company or your multimillion dollar conference to suffer as a result of your deals with the NSA. In fact, I'm not expecting other conference speakers to cancel. Most of your speakers are american anyway — why would they care about surveillance that’s not targeted at them but at non-americans. Surveillance operations from the U.S. intelligence agencies are targeted at foreigners. However I’m a foreigner. And I’m withdrawing my support from your event."

23 of 248 comments (clear)

  1. I support Mr. Mikko Hyppone by Taco+Cowboy · · Score: 5, Insightful

    As an American, I am giving my moral support to Mr. Hyppone for his courage to speak up against the unspeakable and despicable things that NSA has done !

    --
    Muchas Gracias, Señor Edward Snowden !
    1. Re:I support Mr. Mikko Hyppone by fustakrakich · · Score: 5, Funny

      Sö whät?

      --
      “He’s not deformed, he’s just drunk!”
    2. Re:I support Mr. Mikko Hyppone by Anonymous Coward · · Score: 5, Funny

      Fuck, why does my browser have a menu item "utilities | open goatse"???

    3. Re:I support Mr. Mikko Hyppone by Smauler · · Score: 5, Insightful

      No... it's not normal. Governments spy on governments generally, not on citizens.

      If you consider it normal for the NSA to spy on EU citizens, then you must consider it normal for GCHQ, MI6, and all the other European agencies to spy on US citizens. Most of the western agencies share a lot of their intelligence, so most of the stuff MI6 knows about you goes straight back to the NSA and other agencies anyway, without them having to spy on you.

      Do you consider it normal and acceptable for European agencies to be spying on American citizens? Really?

    4. Re:I support Mr. Mikko Hyppone by donscarletti · · Score: 4, Funny

      Why is it that whenever I see one of you countryman's names (excluding Swedish ones), my immediate thought is "why would a F1 racing driver be speaking at a security conference anyway?"

      --
      When Argumentum ad Hominem falls short, try Argumentum ad Matrem
    5. Re:I support Mr. Mikko Hyppone by Alioth · · Score: 5, Interesting

      But beware, if you do that you might end up typing something stupid or embarrassing.

      Consider: "Feliz año nuevo" - it means "Happy new year". The ñ isn't merely an accented character, it's a letter in its own right, and choosing the letter "n" instead seems innocent enough, but "Feliz ano nuevo" means "happy new anus".

      --
      Oolite: Elite-like game. For Mac, Linux and Windows
  2. Americans not targeted? by rubycodez · · Score: 5, Insightful

    Hypponnen needs better news sources.

  3. As an american... by g4c · · Score: 5, Insightful

    Most of your speakers are american anyway â" why would they care about surveillance thatâ(TM)s not targeted at them but at non-americans.

    As an american, I don't believe for one second that it's not targeted at us, too. Mr. Hypponen has my support, as well.

  4. As an American by djbckr · · Score: 4, Insightful

    Let me just say that, by far, most of us Americans *do* care about the surveillance going on in our country. And we're horrified by it.

    1. Re:As an American by Anonymous Coward · · Score: 4, Insightful

      Exactly. I keep hearing Europeans going on and on about how we (Americans) are "totally fine with it." It's utter bullshit. There's a difference between liking something and being unable to stop it. The reasoning behind this is that since Americans aren't rioting, apparently we're in full support of it (or something like that; it is never made clear). Strangely enough, I don't see anything like that happening in any other country, either, yet your governments are all doing the same thing as ours.

      It is important to remember that we're all in this together. It is a world problem, not a US problem. It just so happens that the story broke in the US and a major player has been held to light.

      I promise you, we Americans support you withdrawing from dealing with the criminals and their friends.

    2. Re:As an American by dAzED1 · · Score: 4, Funny

      "Why are you not rioting then?" - several riots were attempted to be formed, but the NSA learned about them through their surveillance programs, and blew up the areas in question with drones, declaring them terrorist attacks. They then used their control over the internet to squash all news about it.

    3. Re:As an American by Anonymous Coward · · Score: 5, Insightful

      Why are you not rioting then? The image that you are just sitting on your asses and doing nothing is not completely unfounded.

      For the same reason you aren't. Did you even read what I wrote? Every country is up to the exact same thing. We've got Canada, UK, and others that are making absolutely no push to stop their country's wrong-doings. We've got France that is openly jealous of the NSA and says they want to increase their own amount of surveillance. Then we have the US, where we are slowly making legal process and trying to get this shit shut down in a non-violent matter. And yet, it is non-Americans complaining that we aren't doing anything?

      Seriously. Explain that.

    4. Re:As an American by bargainsale · · Score: 4, Insightful

      Man's right.

      The UK is a major offender with GCHQ, but our government has been shamingly successful in closing down debate on the issue compared with what's happening in the US. The main response from our wonderful government has been to threaten the Guardian. This in a country where (happily) you still don't risk life and limb by opposing the government. The sad fact is that people here don't care about their freedom as much as Americans do.

      As I often point out to the pretty numerous people I meet who object to some new lunacy in American politics - you may complain about this, but whatever you think about [whatever], be sure there are Americans who care just as much about [whatever] and are actually trying to do something about it.

      --
      Aberrations have appeared in my destiny prognostication engine!
    5. Re:As an American by SlovakWakko · · Score: 4, Insightful

      "Why are you not rioting then?" - several riots were attempted to be formed, but the NSA learned about them through their surveillance programs, and blew up the areas in question with drones, declaring them terrorist attacks. They then used their control over the internet to squash all news about it.

      Who would mod this "funny"?? It should be "insightful".

  5. Unfortunately the NSA Gathers Data on EVERYONE by BBF_BBF · · Score: 4, Informative

    Good for Mikko for taking a stand. Unfortunately, the NSA was monitoring Americans as well as foreigners, they just had to obfuscate their spying on American Citizens because it's illegal for them to target Americans without secret court permission.

  6. RSA and American software by Anonymous Coward · · Score: 5, Insightful

    The bottom line is that the world is no longer confident about software written in the US, and will seek alternatives sourced from Europe, Russia, China and elsewhere to regain the security and privacy which they believe they have lost.

    The NSA will be directly responsible for a shift away from US standards, US software and US protocols ... because without confidence, those standards, software and protocols don't mean a damn thing. RSA, by simply going along with the NSA has damaged its brand name, possibly irreparably.

  7. Re:Guilty and impossible to prove innocent by Rick+Zeman · · Score: 4, Informative

    RSA has categorically denied that they cut a deal with the NSA. But Mr. Hypponen and the rest of the internet has declared them guilty based on unseen evidence. How is that fair?

    First, no one said that life was fair. Secondly, RSA didn't categorically deny anything. Go parse their statement carefully. They've denied a specific scenario with several criteria, that's it.

  8. Good (non) job by BringsApples · · Score: 5, Insightful

    I support anyone that's willing to hit the breaks these days. Without people, nothing can succeed, nothing at all. If the only card we have to play - in this world of bullshit, lies and damn lies - is non-participation, then we have to play it. To keep going on like "everything is just what it is and there's nothing that we can do to change it" is to play into the continuation of the problem. To see others acting upon this truth is heart-warming and gives hope to others that are doing it.

    --
    Politics; n. : A religion whereby man is god.
  9. Re:Guilty and impossible to prove innocent by pla · · Score: 5, Insightful

    RSA has categorically denied that they cut a deal with the NSA. But Mr. Hypponen and the rest of the internet has declared them guilty based on unseen evidence. How is that fair?

    You can expect that to become a trend. The NSA has well and truly fucked over the entire American IT security industry. Even ultra-low-end "security" products like home broadband routers have become suspect, thanks to their interference.

    Fair? No. Obvious consequence of the NSA's actions? Absolutely. People haven't trusted them for decades - Anyone remember Tempest? Or the improved S-Boxes that made DES more resistant to an attack that wouldn't exist for another 25 years? But in the back of our minds, we always told ourselves they might count as completely scary bastards, but at least they counted as our completely scary bastards. Now we know better - They have zero regard for US law and work for no one but themselves.

    On a positive note, I'd still rather see the TSA disbanded first. But at this point, they both need to go.

    Then again, this just follows a loooong history of ineffective, illegal, self-serving "intelligence" agencies in the US, from Hoover's FBI to Bush-the-elder's CIA to our current situation, you'd think we'd eventually learn and say "no more". Sadly, most people don't even have a clue we have a problem, or worse, outright support giving up our freedoms if it will protect us from the evil brown people across the sea.

    Pathetic, the whole lot of us.

  10. Two Different Companies by databeast · · Score: 4, Informative

    As symbolic as this is, It's worth pointing out that the RSA Conference and RSA Security are two separate corporate entities (and I worked with both, producing RSA Security's own booth content at RSA Conference 2011). They do however, all funnel back up to EMC (y'know.. the world's largest storage systems corporation).

  11. Re:Guilty and impossible to prove innocent by Trax3001BBS · · Score: 4, Informative

    RSA has categorically denied that they cut a deal with the NSA. But Mr. Hypponen and the rest of the internet has declared them guilty based on unseen evidence. How is that fair?

    Oh no you didn't...

    RSA was aware that the Elliptic Curve Deterministic Random Bit Generator (Dual EC DRBG) had been back doored since 2007,
    http://yro.slashdot.org/story/13/12/23/0357228/rsa-flatly-denies-that-it-weakened-crypto-for-nsa-money?utm_source=rss1.0mainlinkanon&utm_medium=feed

    They waited an ample 5 years before they warned that it shouldn't be used.
    http://it.slashdot.org/story/13/09/21/2143250/rsa-warns-developers-not-to-use-rsa-products
    I'm sure they just wanted to double check their findings first.

  12. TED by jones_supa · · Score: 4, Informative

    BTW here's Mikko's recent TED talk on the topic if you haven't seen it yet.

  13. Re:Guilty and impossible to prove innocent by vux984 · · Score: 4, Informative

    Not quite.

    They denied a "secret contract" to incorporate a known flawed RNG into BSAFE.

    They did NOT deny a secret contract to incorporate DRBG.

    If they did not know, at the time they made the deal that the RNG was flawed, then they could truthfully claim they did not knowingly take money to incorporate a known flawed RNG.

    The pedant in me would like them to categorically deny any link between the $10million and incorporating Dual EC DBRG.

    They didn't actually do that.

    Given just how much scrutiny they KNEW their statement would be put under; and the fact that their lawyers would have reviewed the thing before it going up, it is striking that so many news sources are identifying it as a dodge rather than a head o denial.

    Here's another article...

    http://www.theverge.com/2013/12/23/5237788/rsa-nsa-backdoor-non-denial

    Its hard to believe, again, given just how much scrutiny they KNEW their statement would be under, that the lack of certainty was anything but calculated.