Slashdot Mirror

← Back to Stories (view on slashdot.org)

Why Cybersecurity Experts Want Open Source Routers (vice.com)

Posted by timothy on from the doesn't-everyone? dept.

derekmead writes: A coalition of 260 cybersecurity experts is taking advantage of a Federal Communications Commission (FCC) public comment period to push for open source Wi-Fi router firmware.

The cybersecurity experts asked the FCC on Wednesday to require router makers to open-source their firmware, or the basic software that controls its core functionality, as a condition for it being licensed for use in the US. The request comes amid a wider debate on how the FCC should ensure that Wi-Fi routers' wireless signals don't "go outside stated regulatory rules" and cause harmful interference to other devices like cordless phones, radar, and satellite dishes.

4 of 177 comments (clear)

  1. TPP... by pao93 · · Score: 5, Informative

    good luck! check out this provision in the TPP: http://www.international.gc.ca... Prevents governments in TPP countries from demanding access to an enterprise’s software source code.

  2. Re:No such thing as a Wi-Fi Router by fuzzyfuzzyfungus · · Score: 3, Informative

    The two functions get shoved into one box for consumer purposes(often with a DSL or cable modem as well, maybe even a SIP ATA for some 'triple play' nonsense); but logically speaking there usually is a router, though an anemic one, present inside something you'd call a "Wifi router" with an AP connected internally to it. There isn't quite the same neat logical separation that you'd see with enterprise APs, the AP and the router usually share an OS, lousy HTTP configuration interface, etc. but both functions are included.

    Dedicated APs are pretty thin on the ground in cheap-consumer-shit land, even compared to discrete DSL and cable modems.

  3. I'm a HW engineer, I understand firmware fine. by Brannon · · Score: 3, Informative

    You, however, seem to be confused about what firmware is because you are comparing it to "complicated software". And this has been my experience with software engineers--it is impossible to convince them that there is knowledge in this world which is not directly mappable to some sort of software.

    There are parts of firmware that are just not understandable unless you have deep knowledge the specific hardware device sitting in front of you, in some cases down to the circuit level (or below, even). It is unreasonable to insist that hardware vendors document their devices down to that level and it is dangerous to allow random idiots to muck about with that firmware.

    1. Re:I'm a HW engineer, I understand firmware fine. by bradgoodman · · Score: 3, Informative

      (I am an embedded systems engineer - so I understand it quite well). What might not be evident is that the people that build these routers (often/usually) don't design all the chips in them. i.e. they're made by other companies. The datasheets are available to others. People do this like crazy all the time. There was just an article the other day on how people modified the firmware in a WiFi router radio component to create a WiFi jammer.