Bonum Certa Men Certa

Computing Security is Being Redefined as 'Controlled by NSA' (and Microsoft)

Video download link | md5sum cc6696c7257be46a08bd20b1ef1e58c4 Faking Security Again, Promoting Remote Control Creative Commons Attribution-No Derivative Works 4.0



Summary: The ascent of fake security or the concept that outsourcing trust to Pentagon-connected monopolies is the same as "security" [1, 2, 3] is a real problem because the mindset creeps into new legislation, in effect cementing monopolies and centralisation

THE Microsoft-connected shills, partly funded by Bill Gates himself, are having a go at Free software again, slandering or spreading FUD, as noted here. The talking points are based on old myths and stereotypes, so people from Red Hat (IBM) along with SJVN are rushing to respond.



"They're planning to mandate "secure" boot like browsers do with centralised/monopolised CAs."But to make matters much worse, it's part of a broader trend; they refer to Free software as "supply chain" and demonise it even when it's controlled by Microsoft and the NSA (shipping actual malware to GNU/Linux machines) and seems like fake security is being "mainstreamed" or "normalised". They want us to think that "self-signed" is inherently bad or dodgy, whereas Microsoft-controlled means safe. As Psydroid put it, in reference to this new article about "secure" boot in electric car chargers, "Microsoft controlling your car's security looks like a suicide mission to me. I don't mind them pushing this agenda; what is worse is that the alternatives are getting shoved aside; I mean, you can do whatever you want in your sandbox, but don't force it on everyone..."

They're planning to mandate "secure" boot like browsers do with centralised/monopolised CAs. While the article speaks specifically about the UK, "if these policies are broadly imposed even internationally," Psydroid notes, "we are in for some big problems."

It's part of an ongoing trend and it's also connected to the "smart" car series we recently did.

Here's what The Register says:

Electric car chargers will have to include secure boot and automatic network disconnection if unsigned software runs on the smart devices – but only from 2023, the British government has said.

New security requirements for smart chargers won't be enforced until the last day of this year, according to government papers reviewed by The Register.

While those changes are positive, and help protect against a deliberate cyber attack or a drive-by malware infection, the Electric Vehicles (Smart Charge Points) Regulations 2021, passed in December, gives industry a whole year before it has to meet the standards.

Schedule 1 of the regulations sets out the cybersecurity requirements new car chargers will have to meet and there's little to complain about there: secure boot; only running signed firmware; automatic checks for software updates; and a ban on "hard-coded security credentials."


Notice terms like "Smart Charge Points"; What's so smart about them? Who does this serve anyway? As noted in the video above, CIA tampering inside vehicles is a real thing, not just hearsay, based on leaks [1, 2] which motivated/urged the CIA to torture and then assassinate Julian Assange. These people don't care about security; it's all about domination over people.

Recent Techrights' Posts

Morale at Microsoft Sinking, More Layoffs Expected, Stock Buybacks Blasted
controversial because they should really be illegal
The Kubecost Acquisition Does Not Show IBM is Rich, It Shows It Wants to Distract From Mass Layoffs Happening This Week (Thousands Laid Off in the Dark)
So-called "news deserts" have become a national and international phenomenon (not local/regional)
 
IBM Likely Breaking Several Laws With Latest 'Secret' Mass Layoffs
Never sign an NDA
Gemini Links 19/09/2024: Emacs Wiki and China, IRC Chatting
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, September 18, 2024
IRC logs for Wednesday, September 18, 2024
Links 18/09/2024: Web Server Survey Shows Microsoft Down Again, Omkhar Arasaratnam Leaves Microsoft-connected OpenSSF
Links for the day
Links 18/09/2024: Gaming Layoffs and New Openwashing by Linux Foundation
Links for the day
Gemini Links 18/09/2024: Home, Ashram, and Markdoc
Links for the day
[Meme] Think. Positive. Saturate the Media.
IBM: Layoffs? What layoffs?
IBM Has Been Lobbying for Software Patents, It's Not the Free Software Community's Ally
The ancient company has been lobbying for these patents for decades already
Over Half a Day Later the Media Still Doesn't Cover Thousands of Layoffs at IBM
Not even a single news site bothered to investigate and report this? Not even one?
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, September 17, 2024
IRC logs for Tuesday, September 17, 2024
IBM Befriends and Exploits the Biggest Enemy of Software Freedom (Software Patents)
Software Patents and IBM in Today's News
Many Workers Quietly Leave Microsoft, the Company is Running Out of Money (Too Much Debt and Now Massive Buybacks to Keep the Shares From Collapsing While Hiding Humongous Losses)
I've heard of people who just decided to quit Microsoft. They could not handle the anxiety.
Links 17/09/2024: Volkswagen Layoffs May Exceed 15,000, Sean ‘Diddy’ Combs Arrested
Links for the day
Gemini Links 17/09/2024: Re-framing of Priorities and Journalists
Links for the day
The Linux Foundation is Associating Linux With Scams and With Scam Sites Right Now (Like the Wife of Jim Zemlin Did)
they profit from the sellouts
Mass Layoffs at IBM Today, Just Like Prominent Rumours Said Upfront
past couple of hours
Google's YouTube Already Blocking People Who Block Ads
YouTube feels like it's dying
Links 17/09/2024: More on Microsoft Cuts and XBox Backward Compatibility Issues
Links for the day
IBM is Acting No Better Than Patent Trolls, Preying on Smaller Companies by Suing Them With Software Patents
No Red Hat employee should tolerate this aggression by the employer
Something Has Gone Very Wrong at iTWire
"iTWire has descended into marketing spam"
The Hallmark of a Dying Company Running Low on Money (But Still Trying to Hide That)
Microsoft should look into selling red markers
UEFI 'Secure' Boot Has Put Security at Risk, Suggests New Report
We're vindicated once again
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, September 16, 2024
IRC logs for Monday, September 16, 2024
Links 17/09/2024: China Sanctions and Breadth of Latest Microsoft Layoffs Elaborated Upon
Links for the day
Gemini Links 17/09/2024: Small Improvements in Carbon Capture and Pseudo-Productivity In Java
Links for the day