While RSA isn't a state-funded technology company, they did accept a $10M payment from the NSA to make their BSafe security product default to use the DUAL_EC_DRBG cryptographically secure pseudorandom number generator. Which the NSA had designed and backdoored...
Are the primary sources on this story from the Snowden leaks available somewhere? Even the article here points to another Reuters article which isn't available any more, and I've never been able to find out which documents people were referencing about this?
I still remember an article on here of a person trying to get access to their Huawei router with a JTAG or something, and once inside after looking around they said en passant "weird, there is a user here with a preconfigured ssh authorized_keys file. LOL must be a backdoor, am I right?" and just moved on with no further mention of this, as did the HN comments. I still think about it.
I don't see much difference between Chinese routers having back-doors and what Cisco has peddled to its customers all these years either willfully or just incompetence.
Yeah... I would say a large part of why I'm skeptical of Chinese made computing devices is because I understand what the US has been doing with ours over the last 50 years.
That said... from a national security perspective - it is still the right call to be wary of devices that are likely compromised by another nation. You should just be assuming that if you didn't make them locally (as in under your own territorial control) they are compromised during production. For everyone. Everyone should be acting with that as the default.
The difference is huawei routers in the west are gathering intelligence on and setting up network to disable, western infrastructure.
But Cisco in China is gathering intelligence on and setting up network to disable, chinese infrastructure.
I live in the west and happen to like our infrastructure. So while I don't think Cisco should be doing what its doing, I would completely ban Chinese gear from the infrastructure be it backbone or consumer level.
Your own government has a much higher ability to affect your life than China does, so what you're saying is completely irrational. Not that it's OK for the Chinese to spy on us, mind you, or to claim that they don't have nefarious purposes.
Moral relativism between US and China is unfathomable. They are not remotely comparable on the whole.
China has a Dictator, a total absence of a Justice System, total surveillance and censorship, and large swaths of the population of some regions in concentration camps, a large number of individual dedicated to holding in place that apparatus.
Meanwhile you're free to walk down the street and tell the US President he's an idiot and you're not going anywhere without the entire US media knowing about it if they want to put public eyes on it for the sake of your own rights. There are laws, all sorts of controls, Judicial oversight, yada yada.
No such comparison was being made. The issue is whether or not the US or Chinese government affect our lives more, and since there's no danger of China trying to invade the US anytime soon, it's obviously the former. The Chinese don't care about watching the average person.
> The Chinese don't care about watching the average person.
Citation needed. How much value does intimate knowledge of individual preference and habit have for psyops? How much of an advantage does China gain when they convince a democratic electorate that their actions are no big deal?
The CCP monitors everyone (including you and I), and we live in an interconnected world, this idea of 'they're not about to invade' is not really the point.
If China had it's way, they would not 'invade' Taiwan either, we would wake up one day and realize the process happened over 20 years and that Taiwan is under CCP control.
And that Vietnam, Singapore, Philippines, Japan, Korea are also subject to arbitrary power of the CCP a little bit like Lukashenko in Belarus is a stooge of Putin.
I had no such intention, I had hoped I made that clear. China is a terrible dictatorship, and the US, for all its faults, is a democracy with a mostly working justice system.
However, in whatever state you live in, your local government is far and away the most likely to care about your habits, to want to convince you to vote against your interests, to accuse you based on flimsy evidence etc. A foreign country poses nowhere near the same risk, even if it's the worse regime in history and you live in the best.
I'd rather be spied on by a western democracy than China. Our intelligence agencies are out of control but there's still better mechanisms for reigning them in than China.
What mechanisms do you recommend for reining in, say, the NSA or GHCQ? Were either reined in at all after the Snowden leaks, or was it business as usual after things calmed down a bit?
I think we have to accept that these intelligence agencies are effectively untouchable and here to stay. With that in mind I think it boils down to: who can do the most harm by spying on you:
- a country thousands of miles away which you probably have no connection to and don't visit
- the country you live in
I said in another comment but it bears repeating - I don't want anyone spying on me, but I am losing no sleep over Chinese intelligence, I am an extremely uninteresting target for them. If a Chinese agent is watching me die repeatedly in Elden Ring, looking at webcam footage of me gawping at my monitor while I scroll HN, or checking the stupid FB messages I send to my friends they'll realise pretty quickly I'm not worth the bandwidth or the storage space. A local agency might be interested in those FB messages, especially if I was politically active, vocally against the government and I was trying to organize protests or strike action.
> What mechanisms do you recommend for reining in, say, the NSA or GHCQ?
Democracy. Vote. Free expression. Tell the people what is happening and why privacy is important.
> Were either reined in at all after the Snowden leaks,
Yes.
> or was it business as usual after things calmed down a bit?
No.
> I think we have to accept that these intelligence agencies are effectively untouchable and here to stay.
We do not. They are not. Apathy is toxic. The only thing necessary for the triumph of evil is for good to do nothing.
> With that in mind I think it boils down to: who can do the most harm by spying on you:
- a country thousands of miles away which you probably have no connection to and don't visit
- the country you live in
China is our single greatest geopolitical adversary. Psyops are real. The ability to influence the public opinion of a geopolitical adversary supports the Chinese salami slicer strategy. It’s reinforced by understanding their adversaries electorate.
> I said in another comment but it bears repeating - I don't want anyone spying on me,
Same.
> but I am losing no sleep over Chinese intelligence,
You probably should be.
> I am an extremely uninteresting target for them.
We are all interesting targets. They may not assassinate, extort, or disappear you in the middle of the night but they can change your opinions without you even noticing.
> If a Chinese agent is watching me die repeatedly in Elden Ring, looking at webcam footage of me gawping at my monitor while I scroll HN, or checking the stupid FB messages I send to my friends they'll realise pretty quickly I'm not worth the bandwidth or the storage space.
Why would an individual agent need to look at anything? People aren’t interesting. We’re all basically the same. But if they know you play Elden Ring and browse HN they can tailor an effective message to you and everyone like you.
> A local agency might be interested in those FB messages, especially if I was politically active, vocally against the government and I was trying to organize protests or strike action.
Yes and that’s an illegal abuse of power. One that can be remedied in a court of law.
They are 'touchable', there is oversight, and their powers are very limited.
Give me an example of Americans who have been materially harmed by those agencies? And what was the damage?
Have Americans been oppressed, slandered for political gain, wrongly imprisoned, illegally targeted by police because of NSA activity?
I think it's doubtful for anything other than a few incidents; the proportionality of these tradeoffs does matter as these agencies do actually go after bad people. Like people selling sanctioned gear to Russia, money laundering, sex trafficking, etc. you know - 'bad things'.
I don't see professors disappearing because they said something on campus Biden didn't like.
> I'd rather be spied on by a western democracy than China.
Why? What has china done that's worse? Did they nuke a country? Wipe out entire races of people? Did those nasty chinese invade dozens of countries? There is nothing inherent in a western democracy that makes it good.
> Our intelligence agencies are out of control but there's still better mechanisms for reigning them in than China.
There are no mechanisms for controlling any intelligence agencies. All intelligence agencies around the world are state actors. No law applies to them. Ask the people the intelligence agencies murdered, drugged, experimented on, etc.
Unless you are chinese, you are far better off being "spied on" by the chinese than a western democracy because the chinese don't have any jurisdiction over you. This is all common sense. China isn't going to arrest you and put you in jail. A western democracy will though.
Assuming you ever find out.
I don't doubt Western governments have the ability to spy on their citizens as needed, and it's likely at some point most of us have been spied on in some minor way, but unless we happened to be doing something particularly nefarious at the point it happened, very unlikely they'd bother acting on it*. Whereas I very much doubt China could see much advantage in trying to spy on an average citizen from another country at all.
* unless perhaps you were applying for military clearance
We will see. Interesting things happening in congress this week. I'm too jaded to let myself get very hopeful about outcomes. But it does look like a dent was made with McCarthy's concessions to get confirmed as speaker.
By the same logic, the chinese government can't do anything to you, but your own government can arrest you, persecute you, execute you, etc. You'd have to be insane to prefer to be spied on by your own government rather than china.
Why, though? Your own government has far more power over you and far more reason to be interested in you than China ever would (unless you're a prominent critic of China, politically connected, or involved in military intelligence or something like that).
I mean I don't want anyone spying on me, but I'm less worried about China targetting me than the Czech government (where I live) or the UK one (where I'm from).
Because in a democracy I have the ability to control my government. Far more so than if I lived under a dictatorship.
> far more reason to be interested in you than China ever would
I think this is naive. Psyops are real and are made more effective with knowledge of personal preference and habits. It is likely that Chinese intelligence has targeted literally everyone on the Internet in some way.
Nokia was sold to Microsoft, then they sold it to HMD Global Oy
/FoxConn and now they make most of their goods in China, almost to the point of being white labelled. Ericsson is a small company compared to what it once was. Sure, technically European (again) but a shell of their former selves.
Nokia the phones are completely distinct from Nokia the telecoms infrastructure provider. HMD licenses the Nokia name from the telecoms equipment manufacturer.
3 big deals happened at Nokia. They sold the devices business to MS. They acquired the Siemens half of Nokia Siemens Networks. They acquired Alcatel Lucent (French Alcatel and American descendant of Bell Lucent) and merged it with what was NSN. They sell every component of the modern networking stack from 5g antennas to undersea cables.
Outside China, though, Ericsson now claims to serve more operators than just about any other vendor. Ekholm today put Ericsson's share of the market for radio access network (RAN) products at 39%, excluding China, telling analysts it has grown from just 33% when he took over in 2017. Fifty percent of 5G traffic outside China runs over Ericsson, he said, while 16 of the world's top 20 operators are using its 5G core.
https://www.theverge.com/2013/12/20/5231006/nsa-paid-10-mill...