Dengan berbagai teknik & cara, NSA bisa melakukan ini. Seperti langsung menyadap di server perusahaan (Project Prism), menyadap di ISP / pusat jaringan data (Project Fairview, Tempora, Blarney), dan, yang paling spektakuler, sukses menjebol enkripsi data di tahun 2010 (Project Bullrun, dana 10x lebih besar dari Prism)
Dan, hasilnya ternyata turut dibagi ke Israel 🙁
Fakta ini musti menjadi perhatian institusi pemerintah terkait, karena tersangkut langsung dengan keamanan negara.
Bagi perusahaan komersial pun ini patut menjadi perhatian, karena potensi corporate espionage :Â
http://www.motherjones.com/politics/1994/05/company-spies
Salah satu cara NSA menjebol enkripsi adalah dengan bekerja sama dengan berbagai perusahaan IT 🙁 dengan menanam trojan / malware di berbagai produk, backdoor, dan/atau memberikan "kunci" security produknya kepada NSA.
Dikutip :
The files show that the National Security Agency and its UK counterpart GCHQ have broadly compromised the guarantees that internet companies have given consumers to reassure them that their communications, online banking and medical records would be indecipherable to criminals
The NSA spends $250m a year on a program which, among other goals, works with technology companies to "covertly influence" their product designs.
NSA "to leverage sensitive, co-operative relationships with specific industry partners" to insert vulnerabilities into security products.
A more general NSA classification guide reveals more detail on the agency's deep partnerships with industry, and its ability to modify products.
It cautions (NSA) analysts that two facts must remain top secret: that NSA makes modifications to commercial encryption software and devices "to make them exploitable", and that NSA "obtains cryptographic details of commercial cryptographic information security systems.."
Dan salah satu perusahaan IT yang bekerjasama dengan NSA adalah Microsoft : http://www.reddit.com/r/technology/comments/1m773a/how_the_feds_asked_microsoft_to_backdoor/cc6iozq
Solusi : gunakan produk Open Source.Â
Kita bisa audit & pastikan bahwa produk tsb aman, bebas dari berbagai "titipan" / jebakan dari badan mata-mata asing.
Bacaan lebih lanjut :
http://www.theguardian.com/world/2013/sep/11/nsa-americans-personal-data-israel-documents
http://www.theguardian.com/world/2013/jun/08/nsa-prism-server-collection-facebook-google
http://www.theguardian.com/world/2013/sep/05/nsa-gchq-encryption-codes-security
NSA shares raw intelligence including Americans’ data with Israel
• Secret deal places no legal limits on use of data by Israelis • Only official US government communications protected • Agency insists it complies with rules governing privacy • Read the NSA and Israel’s ‘memorandum of understanding’
This post has been reshared 3 times on Google+
View this post on Google+
Post imported by Google+Blog for WordPress.