Slashdot Mirror

← Back to Stories (view on slashdot.org)

Canada's 'Super Secret Spy Agency' Is Releasing a Malware-Fighting Tool To the Public (www.cbc.ca)

Posted by msmash on from the for-the-greater-good dept.

Matthew Braga, reporting for CBC News: Canada's electronic spy agency says it is taking the "unprecedented step" of releasing one of its own cyber defence tools to the public, in a bid to help companies and organizations better defend their computers and networks against malicious threats. The Communications Security Establishment (CSE) rarely goes into detail about its activities -- both offensive and defensive -- and much of what is known about the agency's activities have come from leaked documents obtained by U.S. National Security Agency whistleblower Edward Snowden and published in recent years. But as of late, CSE has acknowledged it needs to do a better job of explaining to Canadians exactly what it does. Today, it is pulling back the curtain on an open-source malware analysis tool called Assemblyline that CSE says is used to protect the Canadian government's sprawling infrastructure each day. "It's a tool that helps our analysts know what to look at, because it's overwhelming for the number of people we have to be able to protect things," Scott Jones, who heads the agency's IT security efforts, said in an interview with CBC News. On the one hand, open sourcing Assemblyline's code is a savvy act of public relations, and Jones readily admits the agency is trying to shed its "super secret spy agency" reputation in the interest of greater transparency.

9 of 66 comments (clear)

  1. Terribly sorry. by PsychoSlashDot · · Score: 5, Funny

    As a Canadian, I'd just like to apologize for this.

    Wait. We didn't do anything wrong?

    I'd still like to apologize.

    --
    "Oh no... he found the .sig setting."
    1. Re:Terribly sorry. by h33t+l4x0r · · Score: 2

      We all know Canada only does nice things like this to make other countries look bad. Not cool, Canada.

    2. Re:Terribly sorry. by DontBeAMoran · · Score: 2

      We apologize for the fault in the apologies. Those responsible have been sacked.

      --
      #DeleteFacebook
    3. Re:Terribly sorry. by davester666 · · Score: 2

      Yeah, there were certainly no white tribes that would go around raping and pillaging neighboring villages, killing and/or making slaves of everyone. And we definitely always treated Native American's with respect and kept our word and our treaty responsibilities with them.

      --
      Sleep your way to a whiter smile...date a dentist!
  2. Re: A cool application of the Rust prog lang! by Anonymous Coward · · Score: 2, Funny

    Unfortunately the Rust Organization just disbanded after learning that one of the co-founders was a white male. The remaining members were airlifted to a safe space at their local hospital but they may never be able to work on programming languages again.

  3. Re:Reveaking your 'secret weapon' by Desler · · Score: 2

    Why would they need to reverse engineer it when they have the code? Secondly, yes it might but at the same time that will help improve the tool.

  4. So what does it DO? by nuckfuts · · Score: 3, Informative

    From the article:

    "Assemblyline is described by CSE as akin to a conveyor belt: files go in, and a handful of small helper applications automatically comb through each one in search of malicious clues. On the way out, every file is given a score, which lets analysts sort old, familiar threats from the new and novel attacks that typically require a closer, more manual approach to analysis".

    1. Re:So what does it DO? by jeffasselin · · Score: 4, Informative

      Easy to follow instructions to deploy it:

      https://bitbucket.org/cse-asse...

      Reference manual in PDF:

      https://bitbucket.org/cse-asse...

      --
      If he explores all forms and substances Straight homeward to their symbol-essences; He shall not die.
  5. Re:Reveaking your 'secret weapon' by o_ferguson · · Score: 2

    For the same reason you need to reverse-engineer a competitor's engine even if they give you a complete working one. Just because you don't need to crack it to expose the code, that doesn't mean you understand why it works for free.

    --
    - In Soviet Korea, only old people loose all their bases to Natalie Portman's petrified hot grits overlords.