Hacker News new | ask | show | jobs
by hundchenkatze 1881 days ago
The device manufacturer has access to the device (at the hardware level even) the moment they start building it. They don't need to push a patch to gain access, they could access your logs at any point throughout the lifespan of the device.
1 comments
Aerroon 1880 days ago
I think we're talking about different things. If a manufacturer wants to eavesdrop on my device then they need to push a patch to my device. They can only get information about what happens after they push this patch. They can do it at the start of the life of the device, but they'd have to do it then.

However, if important data is retained in logs, then the manufacturer could grab the data from the logs. They can get information from a time before they decided to look into you.

It's like a wiretap vs access to a diary. A wiretap only gives you information after the tap has been installed, whereas getting your hands on someone's diary would give you access to previous information too.

link
hundchenkatze 1879 days ago
Ah, thanks for the clarification, that makes sense. I was jumping to the assumption that the manufacturer was malicious from day one.
link