Google, Mozilla and Apple use this strange thing to block the monitoring of their own citizens by Kazakhstan / Boing Boing

[ad_1]

Google and Mozilla are making changes to their respective web browsers to try to thwart the corrupt government's efforts to launch a surveillance operation against its own citizens.

Google (Chrome), Mozilla (Firefox) and now Apple (Safari) all block a root certificate of the government of Kazakhstan in their browsers, which could be used to intercept encrypted traffic destined for Facebook, Gmail, Twitter or any other means. users of news or communication applications could use it.

Google and Mozilla were the first to act. Later in the day, an Apple spokesman started telling reporters that Safari was also blocking the root certificate.

"We have taken steps to ensure that the certificate is not approved by Safari and our users are protected from this problem," Apple's anonymous spokesman said.

Better late than never, but US-based technology companies are too late to protect all Kazakh users. The government of Kazakhstan launched the root certificate last month and since then it has been able to monitor the encrypted Internet activity of all the users who had it installed.

From Amrita Khalid of Engadget:

The nation has forced ISPs to cooperate by requiring all customers to install the certificate in order to access the Internet.

It turns out that the root certificate was a Trojan horse. According to a study published by Censored Planet of the University of Michigan, the Kazakh government was able to launch a "Man-in-the-middle" or MitM attack against HTTPS connections on a list of 37 domains, including Facebook. , Twitter, Google and more. . Normally, HTTPS Web sites are encrypted so that ISPs or governments can not access them. In the case of Kazakhstan, the MitM attack broke the encryption of these sites, allowing the government to freely spy on private Internet activities.

The Chrome and Firefox browsers in Kazakhstan will ban the illicit certificate even before users can download it. Mozilla will block Kazakhstan's root certificate with OneCRL, used by Firefox since 2015 to revoke certificates. Previously, users who accessed the Internet in Kazakhstan received a message on their smartphone or computer asking them to install the root certificate.

Now, when Firefox detects the certificate in Kazakhstan, it blocks the connection and displays an error message. "Research shows that many users click on errors without understanding what they mean, which leaves them no better off than if there were no warnings. users in Kazakhstan have no choice but to install the certificate and because this attack undermines the integrity of a critical network security mechanism, "said Marshall Erwin, Principal Director, Trust & Safety of Mozilla, in a email addressed to Engadget.

More: Google and Mozilla will block Web monitoring in Kazakhstan [image: shutterstock]

Apple, Google and Mozilla block the HTTPS interception certificate from Kazakhstan in their respective browsers

The measure comes a little too late, as the Kazakh government has stopped using it, but this ban will make sure that the root certificate will never be useful again. Https://t.co/wlqSdvjYuP pic.twitter.com/K3oiOWBpGC

– Catalin Cimpanu (@campuscodi) August 21, 2019

Kazakhstan has put in place a new monitoring system providing the government with access to all web traffic in the country, even encrypted data.

Now Google, Mozilla and Apple are adding technical protections to their browsers to allow them to defend themselves. https://t.co/948YTlx4My

– FILÉ (@ FILÉ) August 21, 2019

Updated with Apple's statement https://t.co/F6EaPcN5QI

– Joseph Cox (@josephfcox) August 21, 2019

Update: Apple spox said that Safari also blocked the root certificate. "We have taken steps to ensure that the certificate is not approved by Safari and our users are protected from this problem." Https://t.co/VDSpPhc3IY

– Amrita Khalid (@askhalid) August 21, 2019

<! –

In 1994, Jeff Schwartz and Dan Wong launched the San Francisco FogCam. For 25 years, he has been on the San Francisco State University campus all the time, making the FogCam the longest webcam in its history. (The first webcam, the Trojan Room coffee maker, went online in 1991 and closed in 2001.) […]

READ THE REST

The illegitimate and obviously unsuitable popular vote, US President Donald Trump, said Monday that at a recent dinner with Tim Cook, you did not think they were hanging out and sharing their meals? – The CEO of Apple has presented a "very convincing argument" that Apple could lose its competitive edge in favor of Samsung because of the position of Trump. […]

READ THE REST

In 1920, Czech writer Karel Čapek wrote a play entitled R.U.R., a cautionary tale about the potential of dehumanizing technology.

READ THE REST

The field of data analysis is growing as fast as the Internet itself. Autonomous cars, airline fares, and major marketing campaigns are all motivated by the information that data scientists can extract from vast amounts of information. Even with the help of powerful software like Python, this is a highly qualified job. But these skills […]

READ THE REST

If you are doing web marketing, your Google-fu needs to be strong – and up-to-date. Without a good understanding of what drives traffic, you will never be able to drive. That's why, even if you know where to put your keywords, a little extra effort goes a long way on all marketing […]

READ THE REST

Do you want to keep the dentist away? A little dental care in the morning and evening is not bad, but it will not keep stains of tobacco or fried foods for long. If you like to eat and want to avoid the consequences, upgrading this old analog toothbrush can make a huge difference. Among […]

READ THE REST

[ad_2]

Source link

xeni garden

READ THE REST

READ THE REST

READ THE REST

READ THE REST

READ THE REST

READ THE REST