Feeds

No backdoor for Vista - MS

'Nonsense', scoffs developer

Protecting against web application threats using SSL

Microsoft developers have stepped forward to dismiss suggestions that the next versions of Windows might feature backdoor features to allow police access to encrypted files which might other be impossible to access.

A BBC report last month suggested the Home Office was in talks with Microsoft over ways to overcome any obstacles Windows Vista's wider use of encryption might pose to criminal investigations. Vista is due to feature hardware-based encryption, called BitLocker Drive Encryption, which acts as a repository to protect sensitive data in the event of a PC being either lost or stolen.

Speaking before a Commons home affairs select committee hearing, Professor Ross Anderson reportedly urged the government "to look at establishing 'back door' ways of getting around encryptions". Pro-active stuff but, as previously reported, a careful review of the rest of Anderson's comments reveal he has talking about the challenge posed to police forensic investigations by hard disk encryption. Not too much should be read into one particular phrase.

A Microsoft spokeswoman told The Register: "Windows Vista is engineered to be the most secure version of Windows yet. It is our goal to ensure enterprise users have full control over information on their PCs Microsoft has not and will not put 'backdoors' into Windows, its BitLocker feature, or any other Microsoft Products."

Just to make assurance twice sure, a Microsoft developer has waded into the debate. The idea that Microsoft is working with governments to create a back door into BitLocker-encrypted data would only happen "over my dead body", Niels Ferguson writes on the Microsoft System Integrity Team Blog titled Back-door nonsense.

"In the unlikely situation that we are forced to by {include a back door] law we'll either announce it publicly or withdraw the entire feature. Back doors are simply not acceptable. Besides, they wouldn't find anybody on this team willing to implement and test the back door," he added.

Microsoft is talking to various governments about Vista, but only in the context of becoming end users of the technology. It is also helping law enforcement organisations in preparing for the introduction of the technology. ®

Reducing the cost and complexity of web vulnerability management

More from The Register

next story
Spies would need SUPER POWERS to tap undersea cables
Why mess with armoured 10kV cables when land-based, and legal, snoop tools are easier?
Early result from Scots indyref vote? NAW, Jimmy - it's a SCAM
Anyone claiming to know before tomorrow is telling porkies
Apple Pay is a tidy payday for Apple with 0.15% cut, sources say
Cupertino slurps 15 cents from every $100 purchase
Israeli spies rebel over mass-snooping on innocent Palestinians
'Disciplinary treatment will be sharp and clear' vow spy-chiefs
YouTube, Amazon and Yahoo! caught in malvertising mess
Cisco says 'Kyle and Stan' attack is spreading through compromised ad networks
Hackers pop Brazil newspaper to root home routers
Step One: try default passwords. Step Two: Repeat Step One until success
China hacked US Army transport orgs TWENTY TIMES in ONE YEAR
FBI et al knew of nine hacks - but didn't tell TRANSCOM
Microsoft to patch ASP.NET mess even if you don't
We know what's good for you, because we made the mess says Redmond
prev story

Whitepapers

Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.
WIN a very cool portable ZX Spectrum
Win a one-off portable Spectrum built by legendary hardware hacker Ben Heck
Storage capacity and performance optimization at Mizuno USA
Mizuno USA turn to Tegile storage technology to solve both their SAN and backup issues.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Security and trust: The backbone of doing business over the internet
Explores the current state of website security and the contributions Symantec is making to help organizations protect critical data and build trust with customers.