Hacker News new | ask | show | jobs
by jtr_47 2623 days ago
I believe any piece of hardware that is sold local or internationally has a backdoor of some kind for government access. There are no mistakes. No company will say this, due to "laws" or "NDA" from a government that prevents the company from discussing these "mistakes."
2 comments
ma2rten 2623 days ago
Do you have any evidence for this claim?
link
kekebo 2623 days ago
It's generally hard to come by, leaving lots of room for assumptions. There was evidence of NSA tampering with ordered hardware in transit in the Snowden files, next to indications / speculations around certain cisco routers and even more about Intels Management Engine. But despite the last two being probable candidates I can't recall hard evidence for them.
link
lawnchair_larry 2623 days ago
Targeted interdiction is a far cry from what the parent comment alleges. Targeting shipments to backdoor or bug an item quite obviously happens everywhere in the world and has since the dawn of time.

The Snowden files said nothing about Intel’s ME. That isn’t a backdoor either. It’s a great place to put one, but there are lots of great places to put backdoors, and that doesn’t mean that’s what the manufacturer is doing.

link
jtr_47 2623 days ago
Yes. The recent Huawei article above.
link
lawnchair_larry 2623 days ago
You are not correct. That is a logistical nightmare and would be impossible to keep secret.
link
jtr_47 2623 days ago
I disagree with your statement. it's easy to keep a secret, if your life or livelihood is at risk, through blackmail or similar. You just haven't experienced it.
link
lawnchair_larry 2623 days ago
That is irrelevant. You aren’t being realistic or practical. The US government didn’t, and couldn’t blackmail every past, present, and future employee who may come across source code or documentation or communication about a backdoor for every company that produces a hardware or software product. They also did not blackmail every independent researcher who might discover one. To even attempt this and expect it to remain a secret would be incomprehensibly stupid and we would definitely know about it by now.

There have been cases where specific things were targeted. This isn’t even close to every piece of hardware.

“There are no mistakes” is a ridiculous notion for anyone who has ever had a career tangentially related to software or hardware. I don’t know how someone who holds this viewpoint even managed to find this website. You really don’t think bugs ever happen by accident?

link
jtr_47 2623 days ago
It's fine to be upset at my point of view and implied experience within this area. I understand 100%. There are some coding mistakes that cannot be tested or caught during development and deployment. These can be exploited. There are however some that appear to be mistakes and are allowed or missed during the process.

This is a great website for freely expressing opinions, truth, lies and such!

Peace be with you.

link
lawnchair_larry 2622 days ago
”There are some coding mistakes that cannot be tested or caught during development and deployment. These can be exploited.”

Do you have any examples?

link