Home Business IT Open Source FSF dismisses Microsoft security pledge as 'meaningless'
Get all your tech news delivered to your mail box five days a week
iTWire UPDATE - it's FREE!


The Free Software Foundation has dismissed Microsoft's announcement of a new offer to protect its customer data from government snooping, calling it "meaningless".

In a statement, FSF executive director John Sullivan said the company had made renewed security promises in the past as well.

He was referring to a Microsoft announcement last week that it would be expanding encryption for its products in the wake of the revelations that America's National Security Agency has been conducting blanket surveillance of many countries. Microsoft and several other big technology outfits have also been exposed as co-operating with the NSA.

Sullivan pointed out that proprietary software like Windows was fundamentally insecure, not because of Microsoft's privacy policies but because the code was hidden from users whose interests it was supposed to secure.

"A lock on your own house to which you do not have the master key is not a security system, it is a jail," he said.

Even on proprietary operating systems like Windows, Sullivan said it was advisable to use free software encryption programs such as GNU Privacy Guard.

"When no-one except Microsoft can see the operating system code underneath, or fix it when problems are discovered, it is impossible to have a true chain of trust," he said.

"If the NSA revelations have taught us anything, it is that journalists, governments, schools, advocacy organisations, companies, and individuals, must be using operating systems whose code can be reviewed and modified without Microsoft or any other third party's blessing. When we don't have that, back-doors and privacy violations are inevitable.

"While the Microsoft announcement does promise 'transparency' to reassure people that there are no back-doors in Windows, this is no solution. Transparency in the Windows world normally means self-reports commissioned by Microsoft, or access granted to outsiders covering very limited portions of source code under strict agreements that limit sharing that information."

Sullivan emphasised that freedom and security could not be guaranteed by just being allowed a peek at the code. "Microsoft has demonstrated time and time again that its definition of a 'back-door' will not be the same as yours. Noticing that the back-door is wide open will do you no good if you are forbidden from shutting it," he said.

"The solution after Microsoft's announcement is the same as it was before its announcement. Just like Microsoft's former chief privacy adviser, switch to a free software operating system like GNU/Linux, and don't look back," he said.

PROTECT YOURSELF AGAINST BANDWIDTH BANDITS!

Don't let traffic bottlenecks slow your network or business-critical apps to a grinding halt. With SolarWinds Bandwidth Analyzer Pack (BAP) you can gain unified network availability, performance, bandwidth, and traffic monitoring together in a single pane of glass.

With SolarWinds BAP, you'll be able to:

• Detect, diagnose, and resolve network performance issues

• Track response time, availability, and uptime of routers, switches, and other SNMP-enabled devices

• Monitor and analyze network bandwidth performance and traffic patterns.

• Identify bandwidth hogs and see which applications are using the most bandwidth

• Graphically display performance metrics in real time via dynamic interactive maps

Download FREE 30 Day Trial!

CLICK TO DOWNLOAD!

ITWIRE SERIES - IS YOUR BACKUP STRATEGY COSTING YOU CLIENTS?

Where are your clients backing up to right now?

Is your DR strategy as advanced as the rest of your service portfolio?

What areas of your business could be improved if you outsourced your backups to a trusted source?

Read the industry whitepaper and discover where to turn to for managed backup

FIND OUT MORE!

Sam Varghese

website statistics

A professional journalist with decades of experience, Sam for nine years used DOS and then Windows, which led him to start experimenting with GNU/Linux in 1998. Since then he has written widely about the use of both free and open source software, and the people behind the code. His personal blog is titled Irregular Expression.

Connect