2006.08.16 Daily Security Reading
by Rodney Campbell on Aug.16, 2006, under Security
U.K. police – Let us seize encryption keys
Because British law enforcement officers don't have the authority to seize encryption keys, an increasing number of criminals are able to evade justice, a senior police officer said.
Backlash Against British Encryption Law
The BBC is reporting on some backlash against the British Regulation of Investigatory Powers Act (RIPA) that came into force in 2000, which makes it a criminal act to refuse to decrypt files on a computer.
Trojan Encrypts Stolen Data, Relays it Through ICMP Packets
An unnamed Trojan horse program designed to steal information from infected computers sends the data back to the attackers through Internet Control Messaging Protocol (ICMP) packets; most other malware that sends data back uses HTTP packets or email. The Trojan installs itself as an Internet Explorer (IE) helper object and waits for computer users to enter sensitive data. The Trojan encrypts the purloined information before it is placed in the data section of an ICMP packet; the packet appears legitimate to network administrators and egress filters.
All-in-one security devices face challenges
The multipurpose security appliances that consolidate firewall/VPN, content filtering, intrusion prevention and more into a single box are winning favor as easy-to-manage devices.
-
Hi! Welcome to Rodney Campbell's Blog!
Thanks for dropping by! Feel free to join the discussion by leaving comments, and stay updated by subscribing to the RSS feed. See ya around!
Follow Me!
