EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

08.22.13

NSA Back Doors Get Microsoft Windows Excluded From Procurement in Germany

Posted in Europe, Microsoft, Vista 8, Windows at 10:04 am by Dr. Roy Schestowitz

Blowback time

Angela Merkel
Angela Merkel, by Αντώνης Σαμαράς Πρωθυπουργός της Ελλάδας

Summary: The NSA is getting US corporations (subsidised by US taxpayers to an extent) banned for security reasons, showing in the process how proprietary paradigm helps conceal back doors and reduce trust

Angela Merkel has been working with the NSA, Microsoft’s close ally, for quite some time. But right now this relationship is exploding right in her face and jeopardises her election campaign in Germany (voting is imminent). She needs to rethink her policies in light of the NSA abuses which everyone now knows about.

The NSA has been involved in Vista 8 development (as usual, the same was done with previous versions of Windows) and it gets notified of back doors in the operating system (while they are universally unaddressed). Add UEFI to the equation and the NSA can now remotely brick some motherboards as long as they run Windows. The British military does not seem to mind this. It gave the US control of all PCs. National Security in the UK assumes that by “national” we mean the US. We already have some NSA bases in the UK.

Nations are finally grasping the threat of the NSA. First China and Russia took action, with China launching a large probe and Russia abandoning some computers. Well, now Germany joins the pack. As David Sugar said it to me,‏ “Windows 8 banned by German govt for integrating forced hardware surveillance & backdoors”

They also warned against UEFI (for secure boot) less than a year ago. Here is the a summary of a report written in German:

According to leaked internal documents from the German Federal Office for Information Security (BSI) that Die Zeit obtained, IT experts figured out that Windows 8, the touch-screen enabled, super-duper, but sales-challenged Microsoft operating system is outright dangerous for data security. It allows Microsoft to control the computer remotely through a built-in backdoor. Keys to that backdoor are likely accessible to the NSA – and in an unintended ironic twist, perhaps even to the Chinese.

The backdoor is called “Trusted Computing,” developed and promoted by the Trusted Computing Group, founded a decade ago by the all-American tech companies AMD, Cisco, Hewlett-Packard, IBM, Intel, Microsoft, and Wave Systems. Its core element is a chip, the Trusted Platform Module (TPM), and an operating system designed for it, such as Windows 8. Trusted Computing Group has developed the specifications of how the chip and operating systems work together.

The other day, unofficial Microsoft spokeswoman Mary Jo Foley (her criticisms of Microsoft are rare and weak) was pushing people to buy new software from Microsoft, citing security reasons. [via]

Microsoft’s latest tack in trying to wean users off Windows XP is to warn them of a possible ‘zero day forever’ scenario in the post-April 2014 support cut-off world.

This is nonsense because after the NSA leaks we know that this threat is perpetual. As Pogson put it:

Well, I don’t think those numbers are very accurate but it’s the trend that matters. There are still hundreds of millions of PCs out there using XP and after 234 days there will still be ~200 million clinging to what they know. According to M$, XP will be revealed as the garbage OS that it is after that because it will be a huge unprotected target for malware artists. They shipped it with ~50K bugs and added more over the years. Malware artists have been discovering hundreds of ways of penetrating the OS every day for more than a decade. XP inspired whole industies of “anti-malware” and malware, spending the resources of IT defending IT from the carelessness of M$ for security, integrity and performance. M$ has used hundreds of millions of users and owners of PCs as slaves all these years and many have accepted that slavery as a way of life.

Pogson’s point is valid. But he does not address the fact that flaws are being spread to partners (like Microsoft does with the NSA). An article from the British press says that “Microsoft warns it’ll hand out zero days for Windows XP” (like it has done for a dozen years with the NSA). To quote:

Microsoft has a Windows XP problem: people still like it and aren’t willing to upgrade just yet. So it’s warning users that if they don’t upgrade soon, each new Patch Tuesday will gift a new series of vulnerabilities to the hacking community.

Windows XP is already Swiss cheese. Microsoft is trying to exploit its rubbish security as a marketing tool right now. It wants to upsell.

Woody Leonhard, an author of IDG, wrote about 17 epic Microsoft Windows Auto Update meltdowns [via], preceding it with:

These legendary clunkers made Patch Tuesday a living hell for Windows users the world over

A lot of the press has been overlooking an important point. The Windows toggle button which tells Microsoft not to automatically update (modify) the system has no effect. We know this empirically, at least when it comes to XP; about 5 years ago it was shown to have no effect. Automatic update is a back door, so Microsoft would let the NSA take over PCs with this back door, too. Staying “up to date” with patches can thus have the opposite effect.

The bottom line is, any company that comes in contact with the Department of Espionage (the NSA) should be suspect and should be avoided where possible. Germany should do nationally what it already did in Munich and a few smaller places,

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

A Single Comment

  1. salparadise said,

    August 22, 2013 at 3:11 pm

    Gravatar

    It was reported, some years ago now, that there were “audible gasps” from a bunch of Euro MP’s, when it was revealed that the NSA had put backdoors into XP.

    Now they’re all running round pretending that “this is news to us”.
    It seems more likely that now that it has made the news, via Mr Snowden’s actions, that they must act like “they’re doing something about it”. Ms Merkel is, after all, facing an election in the not too distant future.

What Else is New


  1. The European Patent Office Comes up With a Plethora of New Buzzwords by Which to Refer to Software Patents

    The permissive attitude towards software patents in Europe is harmful to software developers in Europe; the officials, who never wrote a computer program in their entire life, pretend this is not the case by adopting marketing techniques and surrogate terms



  2. Patent Maximalists in Europe Keep Mentioning China Even Though It Barely Matters to European Patents

    EPO waves a "white flag" in the face of China even though Chinese patents do not matter much to Europe (except when the goal is to encourage low patent quality, attracting humongous patent trolls)



  3. Team UPC Has Been Reduced to Lies, Lies, and More Lies about the Unified Patent Court Agreement

    With the Unified Patent Court Agreement pretty much dead on arrival (an arrival that is never reached, either) the UPC hopefuls -- those looking to profit from lots of frivolous patent litigation in Europe -- resort to bald-faced lying



  4. Links 17/11/2018: Mesa 18.3 RC3, Total War: WARHAMMER II, GNOME 3.31.2

    Links for the day



  5. Links 16/11/2018: Red Hat Enterprise Linux 8 Beta, Mesa 18.2.5, VirtualBox 6.0 Beta 2

    Links for the day



  6. Berkheimer or No Berkheimer, Software Patents Remain Mostly Unenforceable in the United States and the Supreme Court is Fine With That

    35 U.S.C. § 101, which is based on cases like Alice and Mayo, offers the 'perfect storm' against software patents; it doesn't look like any of that will change any time soon (if ever)



  7. Ignoring and Bashing Courts: Is This the Future of Patent Offices in the West?

    Andrei Iancu, who is trying to water down 35 U.S.C. § 101 while Trump ‘waters down’ SCOTUS (which delivered Alice), isn’t alone; António Campinos, the new President of the EPO, is constantly promoting software patents (which European courts reject, citing the EPC) and even Australia’s litigation ‘industry’ is dissenting against Australian courts that stubbornly reject software patents



  8. Patent Maximalists Are Still Trying to Figure Out How to Stop PTAB or Prevent US Patent Quality From Ever Improving

    Improvements are being made to US patents because of the Patent Trial and Appeal Board (PTAB), which amends/culls/pro-actively rejects (at application phases) bad patents; but the likes of Andrei Iancu cannot stand that because they're patent maximalists, who personally gain from an over-saturation of patents



  9. Links 15/11/2018: Zentyal 6.0, Deepin 15.8, Thunderbird Project Hiring

    Links for the day



  10. A Question of Debt: António Campinos, Lexology, Law Gazette, and Sam Gyimah

    Ineptitude in the media which dominates if not monopolises UPC coverage means that laws detrimental to everyone but patent lawyers are nowadays being pushed even by ministers (not just those whose clandestine vote is used/bought to steal democracy overnight)



  11. Science Minister Sam Gyimah and the EPO Are Eager to Attack Science by Bringing Patent Trolls to Europe/European Union and the United Kingdom

    Team UPC has managed to indoctrinate or hijack key positions, causing those whose job is to promote science to actually promote patent trolls and litigation (suppressing science rather than advancing it)



  12. USF Revisits EPO Abuses, Highlighting an Urgent Need for Action

    “Staff Representation Disciplinary Cases” — a message circulated at the end of last week — reveals the persistence of union-busting agenda and injustice at the EPO



  13. Links 14/11/2018: KDevelop 5.3, Omarine 5.3, Canonical Not for Sale

    Links for the day



  14. Second Day of EPOPIC: Yet More Promotion of Software Patents in Europe in Defiance of Courts, EPC, Parliament and Common Sense

    Using bogus interpretations of the EPC — ones that courts have repeatedly rejected — the EPO continues to grant bogus/fake/bunk patents on abstract ideas, then justifies that practice (when the audience comes from the litigation ‘industry’)



  15. Allegations That António Campinos 'Bought' His Presidency and is Still Paying for it

    Rumours persist that after Battistelli had rigged the election in favour of his compatriot nefarious things related to that were still visible



  16. WIPO Corruption and Coverup Mirror EPO Tactics

    Suppression of staff representatives and whistleblowers carries on at WIPO and the EPO; people who speak out about abuses are themselves being treated like abusers



  17. Links 13/11/2018: HPC Domination (Top 500 All GNU/Linux) and OpenStack News

    Links for the day



  18. The USPTO and EPO Pretend to Care About Patent Quality by Mingling With the Terms “Patent” and “Quality”

    The whole "patent quality" propaganda from EPO and USPTO management continues unabated; they strive to maintain the fiction that quality rather than money is their prime motivator



  19. Yannis Skulikaris Promotes Software Patents at EPOPIC, Defending the Questionable Practice Under António Campinos

    The reckless advocacy for abstract patents on mere algorithms from a new and less familiar face; the EPO is definitely eager to grant software patents and it explains to stakeholders how to do it



  20. The U.S. Chamber of Commerce is Working for Patent Trolls and Patent Maximalists

    The patent trolls' propagandists are joining forces and pushing for a patent system that is hostile to science, technology, and innovation in general (so as to enable a bunch of aggressive law firms to tax everybody)



  21. Team UPC, Fronting for Patent Trolls From the US, is Calling Facts “Resistance”

    The tactics of Team UPC have gotten so tastelessly bad and its motivation so shallow (extortion in Europe) that one begins to wonder why these people are willing to tarnish everything that's left of their reputation



  22. The Federal Circuit Bar Association (FCBA) Will Spread the Berkheimer Lie While Legal Certainty Associated With Patents Remains Low and Few Lawsuits Filed

    New figures regarding patent litigation in the United States (number of lawsuits) show a decrease by about a tenth in just one year; there's still no sign of software patents making any kind of return/rebound in the United States, contrary to lies told by the litigation 'industry' (those who profit from frivolous lawsuits/threats)



  23. Links 12/11/2018: Linux 4.20 RC2, Denuvo DRM Defeated Again

    Links for the day



  24. Automation of Searches Will Not Solve the Legitimacy Problem Caused by Patents Lust

    The false belief that better searches and so-called 'AI' can miraculously assess patents will simply drive/motivate bad decisions and already steers bad management towards patent maximalism (presumption of examination/validation where none actually exists)



  25. The Federal Circuit and PTAB Are Not Slowing Down; Patent Maximalists Claim It's 'Harassment' to Question a Patent's Validity

    There’s no sign of stopping when it comes to harassment of judges and courts; those who make a living from patent threats and litigation do anything conceivable to stop the ‘bloodbath’ of US patents which were never supposed to have been granted in the first place



  26. Patent Maximalists Will Latch Onto Return Mail v US Postal Service in an Effort to Weaken or Limit Post-Grant Reviews of US Patents

    An upcoming case, dealing with what governments can and cannot do with/to patents (specifically the US government and US patents), interests the litigation 'industry' because it loathes reviews of low-quality and/or controversial patents (these reviews discourage litigation or stop lawsuits early on in the cycle)



  27. Guest Post: EPO Spins Censorship of Staff Representation

    Another concrete example of Campinos' cynical story-telling



  28. Andrei Iancu and Laura Peter Are Two Proponents of Patent Trolls at the Top of the USPTO

    Patent offices do not seem to care about the law, about the courts, about judges and so on; all they care about is money (and litigation costs) and that’s a very major problem



  29. The Patent 'Industry' Wants Incitations and Feuds, Not Innovation and Collaboration

    The litigation giants and their drones keep insisting that they're interested in helping scientists; but sooner or later the real (productive) industry learns to kick them to the curb and work together instead of suing



  30. EPO 'Outsourcing' Rumours

    The EPO advertises jobs in Prague and Lisbon; this leads to speculations less than a year after António Campinos sent EU-IPO jobs to India (for cost reduction)


CoPilotCo

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

CoPilotCo

Recent Posts