06.15.09

‘Our Governments Just Aren’t Engineered for Security’

Posted in Finance, Microsoft, Security, Windows at 9:56 am by Dr. Roy Schestowitz

Money rain

Summary: Financially-driven and favours-motivated government unable to make reasonable decisions that are defensible

SOME MONTHS after Bill Gates had advised Obama (good cop) Steve Ballmer decided to blackmail him (bad cop). Microsoft’s influence on the new government is no secret and it shows in every way. Microsoft lobbyists fund this new government and so do William Gates (Bill Senior), Bill Gates, Melinda Gates, Steve Ballmer, and his wife Connie, who used to work for Waggener Edstrom, Microsoft's current PR Department. For people who think that Microsoft families are distant from Obama, think again and witness the evidence.

More recently we saw the BSA lobbying the government to put industry in charge of national security, so its no surprising that a Microsoft person was almost immediately put at the top of the Department of Homeland Security (DHS) [1, 2]. The government soon recruited Microsoft’s Mundie (who hates Free(dom) software) to assist with technology policy. According to new reports, President Barack Obama may make Microsoft’s security person a cybersecurity czar. This is not a joke. Yes, Microsoft and security.

Ex-government cyber official, exec mulled for czar job

[...]

Microsoft’s security chief and a veteran of Clinton’s and Bush’s national security teams are leading candidates for cybersecurity czar, a job that needs White House access and clout to protect networks that underpin the U.S. economy.

President Barack Obama promised last month that he would personally decide who would lead the fight against an epidemic of cybercrime and organize a response to any major cyber attack.

[...]

A leading candidate for the post is Scott Charney, head of Microsoft’s cybersecurity division, who has said he won’t take the job, according to a source who had direct knowledge of the matter but was not authorized to discuss it. The source said, however, that Charney would change his mind if pressed.

There is more information here:

Two leading candidates have emerged for this job. The first is Scott Charney, head of Microsoft’s cybersecurity division.

Coming from the company which says that “[O]ur products just aren’t engineered for security,” this is black comedy.

One of our readers says: “It’s a bad joke to even consider putting an alleged cyber racketeer in charge of national security. There’s conflict of interest and he’s not qualified.

“Notice that from a business perspective, MS executives have been in constant trouble with both foreign and domestic courts for both unethical and illegal practices. These range from predatory marketing, contract violations, false advertising and They maintained that long-established reputation through lots of hard work and many decisions that could have easily gone the right direction instead. These are crooks.

“On qualifications, just look at MS security track record. Microsoft’s own “childish” executives(1) point out that their software is not designed with security in mind(2) and that some (which may very well be *all*) Microsoft code is so in secure that it endangers national security. Ongoing incidents demonstrate(3) that even Microsoft HQ can’t secure its own software from Windows worms. That conclusion is made final in their bid to enter the aftermarket anti- Windows-virus software.

“Security is also making sure that material is available when it’s needed. Microsoft-style write-only backups don’t cut it. So be sure to also look at the unmitigated disaster regarding turnover of the Bush administration’s electronic records.

“Ok, that’s the tip of the ice berg for Windows security. Then there is also a conflict of interest.

“The government post must be able to fight organized crime and it is dubitable whether an individual who has been part of the problem can suddenly, simply because he is “pressured” to do a 180 and start fighting organized crime.

“Law enforcement, including police, are one of several mechanisms to mitigate social or economic damage. Dams, powergrids, hospitals, and so on are protected because of the great social or economic damage that would come from their destruction or disabling. Unfortunately, MS products have been implicated in air traffic outages, suspected in the East Coast power grid failure, and appear responsible now for great numbers of hospital deaths due to Windows worms.

“Law enforcement in many countries is usually pretty good about community outreach and crime prevention. There are even special units that deal with organized crime. An old method has been to turn a blind eye to “lesser” crimes or criminals in return for something else. Traditionally this include the use of finks to rat on their cohorts. This makes a wide, gray area around a Faustian gamble that the returns at the end will justify the means. In some cases, the give-and-take becomes a way of life rather than a means to an end. However, add the clause “…with a computer” to any known crime and law enforcement becomes paralyzed and, at best, reluctant to help.

“It would be a bad position if law enforcement had somehow become beholden to MS, now that Windows botnets are bought, sold, trade, and fought over by other organized crime groups. These Windows worms are responsible for tens of billions of dollars of damage per Worm. With Windows entering hospitals and health care, this ideology means a real body count, just like another ideologically motivated group the Taliban. Deaths and/or major damage usually are indicators that intervention is needed.

“Really, Charney, and his cohorts at MS, should be considered for a special place in the government: Camp X-Ray.”


(1) US DOJ


(2) “… Microsoft code was so flawed it could not be safely disclosed.”

eWeek


(3) ‘”Our products just aren’t engineered for security,” admitted Valentine,who since 1998 has headed Microsoft’s Windows division.’

“Microsoft: “Our products aren’t engineered for security,” ComputerWeekly. (2002)

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

5 Comments

  1. Roy Bixler said,

    June 15, 2009 at 12:36 pm

    Gravatar

    That good cop, bad cop act must go back a long way, because it brings to mind the old quote from Ray Noorda: “Pearly Gates and emBallmer — one promises you heaven and the other one prepares you for the grave.”

    Needs Sunlight Reply:

    Ray Noorda is on record as having said that often. He know what those clowns were up to. Novell signed the shop over to M$ weeks after Ray Noorda died.

    Roy Schestowitz Reply:

    Months.

    Needs Sunlight Reply:

    1 month = ~ 4 weeks, 2 months =~ 8 weeks, etc.

    Roy Schestowitz Reply:

    October 09, 2006.

    This interesting because Novell came to Microsoft for negotiations around May.

What Else is New


  1. The Time Coronavirus Helped EPO Management Prevent Staff From Protesting and Going on Strike (March 26th)

    "In view of the spreading of the New Corona Virus, the planned General Assemblies have to be cancelled," the Staff Union of the European Patent Office (SUEPO) wrote in the wake of the crisis across Europe back in March (weeks ahead of a planned strike)



  2. Guarding Your Privacy With E2EE: Primer

    "As with all security, there is assumed risk no matter how careful you are. There are no security guarantees but that doesn't mean you shouldn't try."



  3. Links 27/11/2020: Systemd 247 and Cockpit 233

    Links for the day



  4. A Free Speech Deficit Harms Software Freedom

    Free software and Software Freedom cannot possibly succeed if we keep accepting or even just tolerating systematic censorship of opinionated people in our community; failing to speak out on this matter (for fear of supposedly offending someone, risking expulsion) is part of the problem — complicity by passivity



  5. Perception of Difficulty

    New poem by figosdev



  6. IRC Proceedings: Thursday, November 26, 2020

    IRC logs for Thursday, November 26, 2020



  7. Cartoon: After Gambling With Workers' Savings the EPO Can Do Real Estate

    New EPO cartoon from EPO insiders (the one on the right certainly looks a lot like António Campinos and the one on the left can be his EUIPO ‘import’ or Benoît Battistelli‘s INPI ‘import’)



  8. Free as in Freedom Should Not be Associated With Cost

    It's important to remind people that so-called 'free' services (Clown Computing, centralised spaces that 'farm' their so-called 'users') aren't really free; we need to advocate freedom or free-as-in-freedom alternatives



  9. [Meme] UPC's Pyrrhic Victory

    Contrary to what Team UPC says, what happened earlier today is hardly a breakthrough



  10. Many Thanks to Free Software, the Demise of Software Patents (in Europe and the US), and So Much More

    On a positive note we're heading into the end of November, one month before Boxing Day; we take stock of patent affairs that impact software developers



  11. Links 26/11/2020: PHP 8.0, Proxmox VE 6.3, UNIGINE 2.13

    Links for the day



  12. 29,000 Blog Posts and Recent Site Improvements

    Over 29,000 blog posts have been posted here, but more importantly we've made the site a lot more robust and resilient, accessible in more formats and protocols (while improving transparency, too)



  13. [Meme] Trump is Out. Now It's Time to Pressure the Biden Administration/Transition Team on Software Freedom Issues.

    The Biden transition is in motion and tentative appointments are underway, based on news reports (see our Daily Links); now is the time to put pressure, e.g. in the form of public backlash, to ensure it's not just another corporate presidency



  14. Boycott ZDNet Unless You Fancy Being Lied to

    ZDNet's Catalin Cimpanu continues to lead the way with misinformation and lies, basically doing whatever he was doing to land that job at ZDNet (after he had done the same elsewhere)



  15. The UPC and Unitary Patent Song

    On goes the UPC symphony, as the Unified Patent Court (UPC) is almost here, always coming "real soon!"



  16. Open Letter to the German Greens on UPC and Software Patents: Don’t Betray Your Voters and Your Promises, or You Will Regret it

    Dear Members of the German Greens in the Bundestag. By Benjamin HENRION.



  17. [Meme] One Step Away From Replacing Patent Examiners With 'Hey Hi' (AI)

    If it's not legal for 'Hey Hi' (AI) to get a patent, why should it be legal for patents to be granted by those who are invisible (and sometimes in de facto house arrest)?



  18. European Patent Office (EPO) Reduced to 'Justice Over the Telephone' and Decree by E-mail

    The EPO is trashing the EPC and everything that the Office was supposed to stand for, as it wrongly assumes demand for monopolies (typically from foreign corporations) comes before the rule of law and Europe's public interest



  19. Making Free Software Work for Users

    The latest reply to a non-developer concerned about software freedom; guest post by figosdev



  20. IRC Proceedings: Wednesday, November 25, 2020

    IRC logs for Wednesday, November 25, 2020



  21. Links 26/11/2020: AV Linux 2020.11.23 and Blender 2.91 Release

    Links for the day



  22. Links 25/11/2020: GamerOS and Biden Transition in Motion

    Links for the day



  23. An Orwellian December

    With December around the corner and states tightening the screws on the population (or employers on employees) at least we can look forward to spring



  24. The Non-Technical (or Lesser Technical) Software User That Wants Software Freedom

    Assuming that Free software should care about what users — not only developers — really want (and need) it’s important to understand how they view the current situation (with growing waves of corporate takeover and compromises, even expulsions)



  25. The European Patent Office Should be Run by Patent Examiners (Scientists), Not Politicians

    Europe would be better off (and patent quality much improved) had people with an actual grasp of science and reality were in charge of the EPO, not a money-chasing kakistocracy (which is what we have now)



  26. Member of the EPO's Boards of Appeal Explains Why VICOs (or ViCo/Video Conferences/Virtual 'Hearings') Are Not Suitable for Justice

    It's interesting to hear (or see/read) what people inside the EPO have to say about the "new normal" when they enjoy a certain level of anonymity (to avert retribution)



  27. Open Source Initiative (OSI) Co-founder Bruce Perens: Open Invention Network (OIN) is Protecting the Software Patent System From Reform and OSI Approves Faux 'Open' Licences (Openwashing)

    Richard Stallman was right about the OSI and the fake 'movement' that claims to have 'coined' the term "Open Source" (it wasn't a new term at all; it had been used in another context and the Free software community spoke of things like "Open Hardware" years earlier)



  28. IRC Proceedings: Tuesday, November 24, 2020

    IRC logs for Tuesday, November 24, 2020



  29. Making JavaScript Suck Less

    "Other than that, the first rule of JavaScript is: Do not use JavaScript. But this article is for people who break the first rule."



  30. Microsoft 'Moles' Inside WINE Project? WINE Should Bring Windows Users to GNU/Linux, Not the Other Way Around.

    The press release above (link omitted, it was pinned in several sites) is a cause for concern; after Microsoft infiltrated OSI and the Linux Foundation (both are now GitHub boosters, in effect diverting projects to Microsoft’s proprietary monopoly) it’ll be important to watch this space


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts