Who has not heard of the story about RIM and UAE, Saudi Arabia and potentially other countries.
Now it seems, at least reported here http://www.bbc.co.uk/news/technology-10896653
I wonder what this actually means:
1. Has RIM given in and allowed access to the data? That is something they say IS NOT possible (encryption key is in the device only and there is not additional decryption key)
2. Have they secretly pushed put an application on RIM devices to spy on users?
But more importantly the questions should be raised why is Saudi Arabia not targeting other mobile platforms? I am concerned that they already know how to spy on the traffic. Remember, that other mobile services, namely iPhone, Android and Nokia phones to name few use POP3 and IMAP to receive emails. That means it is not data that is encryption, just a network connection. Splitting SSL connection on a border gateways is not new, so the question is. Is it being already done? Would device give any warnings of untrusted certificate? And even if they did, users might not have any other choice than accept it in order to receive and send emails.
This reinforces the security principle that secure should be applied oat various levels, more where it actually protects data. Seems like RIM approach to email security is paying off.
What are your thoughts?
- Posted using BlogPress from my iPad
The semantic web (or web 3.0 as some call it) is loosely defined as machine generated and consumed content. The If This Than That (IFTTT) is...
I have had my new Nexus 7 for 2 weeks now. It's now been updates to Android 4.2 after which I enabled the full disk encryption. Unlike i...
Introduction I am passionate about information risk security management. It is an area that is like shifting sands, constantly moving wi...
I have been using 1Password on my Mac since the version. Then with the arrival of iPhone and later iPad 1Password folks were quick to introd...
Yesterday I wrote about DigiNotar incident . And today another Certificate authority announced the incident as well. Apparently the same hac...
I have attended many interviews over last 10 months, all of them on the right side of the table though. I will never forget one particular c...
Today was certainly very busy in the security world. Security researches and analysis commented on #ShadyRAT report from McAfee. Just try...
Yet again, I have stumbled on a company that limits maximum password length. This time it is a giant software vendor, Adobe. I simply wa...
(c) Vladimir Jirasek. Powered by Blogger.
- ► 2012 (13)
- ► 2011 (23)
- ▼ August 2010 (5)