General Discussion
Related: Editorials & Other Articles, Issue Forums, Alliance Forums, Region ForumsCisco Will Ship Its Equipment to Empty Houses to Dodge the NSA
Source: Gizmodo
The NSA is willing to go frighteningly far for your secrets, but at least one hardware manufacturer is willing to go further. A Cisco executive just said his company will ship its networking equipment to vacant addresses to avoid NSA interception. Clever idea.
The NSA was caught putting backdoors in Cisco electronics last year, and this week Cisco's security chief John Stewart revealed the dead drop plan to skirt the government snooping, admitting it's not foolproof. "We ship (boxes) to an address that's has nothing to do with the customer, and then you have no idea who ultimately it is going to," he explained. "There is always going to be inherent risk."
... Of course, Cisco is also trying to figure out exactly who has NSA beacons already installed in their equipment, though it's hard for them to tell since they have no idea what the NSA's top secret technology. The company's best bet is to ask customers to pick up the equipment directly from the factory or ship it to an empty house, as if it were some sort of drug deal. Because this is what surveillance in America has come to.
Read more: http://gizmodo.com/ciscos-going-to-ship-its-equipment-to-empty-houses-to-d-1692376538
jeff47
(26,549 posts)Just install the (sinister music) backdoor on every box that leaves Cisco.
dixiegrrrrl
(60,010 posts)Why would they need a correct address in order to intercept computers being mailed from Cisco, if they were grabbing them between Cisco and the customer?
A bigger question: HOW does NSA grab the mailed computers.?
Are the carriers of the merchandise complicit?
jeff47
(26,549 posts)that were being sent to specific targets. Such as "this box is going to the Iranian government".
Others have then assumed that this same pattern applies to a much larger swath of hardware, because that helps sell the story they want to tell.
Fact is, if a nation-scale "hacking" entity wants in your network, they're getting in your network. Be they the NSA or another country's equivalent. It really doesn't matter if the backdoor is installed by intercepting the shipment, or on a thumbdrive smuggled into the isolated network (Stuxnet).
They will get in, because their resources are so far beyond yours. Just like your company's security guards will not be able to stop the 101st Airborne.
dixiegrrrrl
(60,010 posts)jeff47
(26,549 posts)If you're comfortable that a tank isn't going to be driving through your front door, why do you fear an electronic equivalent?
dixiegrrrrl
(60,010 posts)but is not for me.
jeff47
(26,549 posts)The Army could come crashing through your door. It isn't. Because you aren't interesting to them.
The NSA could be "snooping" on your network. There's little reason to believe it actually is. Because you aren't interesting to them.
BillZBubb
(10,650 posts)The only secure way to guarantee no NSA tampering is to send a vetted security team with the equipment.