Windows Vista won't have a backdoor that could be used by police forces to get into encrypted files, Microsoft has stressed.

In February, a BBC News story suggested that the British government was in discussions with Microsoft over backdoor access to the operating system. A backdoor is a method of bypassing normal authentication to gain access to a computer without to the PC user knowing. But Microsoft has now quelled the suggestion that law enforcement might get such access. "Microsoft has not and will not put 'backdoors' into Windows," a company representative said in a statement sent via e-mail.

View: More Information
News source: C|Net News.com





There are 64 additional comments
Advertisement
(1 reply) Quote this comment Reply to this comment #1 Posted by Acezo on 05 Mar 2006 - 22:03
And hopefully that's that.
Quote this comment #1.1 Posted by Sekerob on 06 Mar 2006 - 16:46
Being from the previous millenium, whatever happened to that NSA key found in previous Windows versions???????? Of course they will and with that new disk management/encription system, it will be made available to under the "in the interest of national security" ladidadada.......why wasit again that the German Defense switched over to a non-US controlled software product ;>]
(7 replies) Quote this comment Reply to this comment #2 Posted by Blackice on 05 Mar 2006 - 22:13
now, cue the furious sceptics...
Quote this comment #2.1 Posted by markjensen on 05 Mar 2006 - 22:16
Not that there is any proof one way or the other on this.

There will always be those theories floating around. Have been for years.
Quote this comment #2.2 Posted by threedaysdwn on 05 Mar 2006 - 22:22
How do you put in a backdoor to an open, industry standard encryption algorithm?

And do you know how elaborate a scheme you'd need in order to prevent non-government (ie. malicious invaders) from being able to take advantage of this to bypass your system's security?


This isn't "24" where a couple magic buzzwords will let you do anything you want to random government/business/evil terrorist computers.
Quote this comment #2.3 Posted by markjensen on 05 Mar 2006 - 22:55
Ok, threedays, show me.

What is so open about this? And how is it impossible?

From the blog source quoted in the link Neowin provides above, here is a Microsoft coder's exact comments:
"The official line from high up is that we do not create back doors. And in the unlikely situation that we are forced to by law we’ll either announce it publicly or withdraw the entire feature. Back doors are simply not acceptable. Besides, they wouldn’t find anybody on this team willing to implement and test the back door."

Sounds like the coders are not willing to do it currently, but he also makes it sound very possible to code.

But I am sure that I am missing something here. Show me your side of the story that shows that this is impossible, and stop the snotty "24" reference meant to belittle.


EDIT: Oh, it is you, Brandon. Perhaps you know the author, Niels Ferguson. Talk it over with him to see if it is something that is "possible" or not.

Last edited by markjensen on 05 Mar 2006 - 23:06
Quote this comment #2.4 Posted by threedaysdwn on 06 Mar 2006 - 00:55
Normally I should think that one random Microsoft coder's comments carry just as much or as little weight as my own But that's apparently written by Niels, who certainly is in a better position to comment than I.

I'm not an encryption expert. And I never said that a backdoor would be impossible to code. It's certainly possible. I just don't see how you could get away with it, or do it in a secure fashion. At some point, a non-government person is going to find your "backdoor" and you'd have to close it - probably after some significant damage had been done.

Regarding "24," I wasn't belittling anyone or anything. Hell, I'm hooked on that show. But I don't for one second believe half the things they do with computer systems are actually possible. Just like every other show or movie running MovieOS.

I completely agree with Niels. If I were asked to do something like that I'd fight it, and I would quit if left with no other alternative but to compromise my principles. Fortunately I don't ever see that being a problem (one of many reasons I love it here).
Quote this comment #2.5 Posted by markjensen on 06 Mar 2006 - 01:58
Elegant backpedalling.
Quote this comment #2.6 Posted by Dirtie on 06 Mar 2006 - 02:09
I thought they used some sort of Linux OS in 24
Quote this comment #2.7 Posted by threedaysdwn on 06 Mar 2006 - 05:08
Huh? How was I "backpedalling?"

I said exactly the same thing in both posts... Sounds like you misread me.
(1 reply) Quote this comment Reply to this comment #3 Posted by amadeijohn on 05 Mar 2006 - 22:41
Only time will tell!
Quote this comment #3.1 Posted by threedaysdwn on 06 Mar 2006 - 05:06
Tell what?
(1 reply) Quote this comment Reply to this comment #4 Posted by VinnyJ5 on 05 Mar 2006 - 22:43
Wait if Vista won't get one.. does that mean XP already has one?
Quote this comment #4.1 Posted by adamj_consett on 05 Mar 2006 - 22:55
"Microsoft has not and will not put 'backdoors' into Windows,"
(1 reply) Quote this comment Reply to this comment #5 Posted by Croquant on 05 Mar 2006 - 23:04
If they were going to put in a backdoor, do you really think they'd tell everyone?
How stupid do you think the cops are? No, they'd deny it, and then secretly implement it, and then only use it under a veil of secrecy.
But forget I said anything. Becasue there's no backdoor. Becasue they said there isn't, and you trust the government.
Quote this comment #5.1 Posted by freeeekyyy on 06 Mar 2006 - 04:57
What's the reason for distrusting? [crazy hippie voice]"It's the government man. THE GOVERNMENT. They can do anything, man." [/crazy hippie voice]
(2 replies) Quote this comment Reply to this comment #6 Posted by Malbojia on 05 Mar 2006 - 23:14
Windows+NSA all I need to say
Quote this comment #6.1 Posted by PCyr on 06 Mar 2006 - 00:56
Malbojia+EFF all I need to say
Quote this comment #6.2 Posted by chicken-royal on 06 Mar 2006 - 16:59
stfu+lol all I need to say. :rofles:

but anyway, good news at the stage at no backdoor. just have to wait and see what happens with it though
(1 reply) Quote this comment Reply to this comment #7 Posted by Kushan on 06 Mar 2006 - 00:31
They wouldn't be able to announce it publicly anyway. A lot of people don't know that most printers these days leave a special watermark that can't be easily seen by the human eye. This lets authorities track copied things back to whoever bought it in the first place.

Quote this comment #7.1 Posted by Xantos on 06 Mar 2006 - 00:56
interesting.

Last edited by Xantos on 06 Mar 2006 - 01:01
(3 replies) Quote this comment Reply to this comment #8 Posted by Xantos on 06 Mar 2006 - 00:54
You couldnt even keep this a secret even if they did put one in secretly, really how long do you think it would take the thousands of hackers, coders, script kiddies out there to find it. maybe 2 or 3 months at tops?
Quote this comment #8.1 Posted by ichi on 06 Mar 2006 - 01:34
The wmf bug has been there since the 3.1 days and seems like no one noticed.
Quote this comment #8.2 Posted by Xantos on 06 Mar 2006 - 09:05
who the hell uses a .wmf file anymore?
Quote this comment #8.3 Posted by ichi on 06 Mar 2006 - 12:18
Anyone willing to use the exploit.
Quote this comment Reply to this comment #9 Posted by quick on 06 Mar 2006 - 01:11
Not really possible anyway, without it resulting in some big exploit.... hackers are always gonna be smart enough to find it and use it, unfortunately.
Quote this comment Reply to this comment #10 Posted by Buttus on 06 Mar 2006 - 01:44
I always thought backdoors were supposed to be secret, so of course there's not going to be one in Vista!
what kind of secret would it be if they told us?!?!
Quote this comment Reply to this comment #11 Posted by Neuroglider on 06 Mar 2006 - 02:51
"Vista Won't Get a Backdoor".......as if its secure enough already :p

Quote this comment Reply to this comment #12 Posted by g_denne on 06 Mar 2006 - 02:57
I don't believe for a second that there aren't ways for Government and Police to get hold of data if they want to get it. I'm sure there are ways in any OS available.
Quote this comment Reply to this comment #13 Posted by thepitt on 06 Mar 2006 - 03:14
sounds like a bad joke.
I hope this is for real.
Quote this comment Reply to this comment #14 Posted by thenay on 06 Mar 2006 - 03:30
There will always be vulnerabilities in the Microsoft OS, the day there isn't is when people hardly use it and the hackers will try the main used OS out there being used, but I can't see the Microsoft OS being replacing by anything.. atleast for a while.. lol
(2 replies) Quote this comment Reply to this comment #15 Posted by virtorio on 06 Mar 2006 - 03:31
Use a third party encryption tool and problem solved, not that I think there was a problem to begin with.
Quote this comment #15.1 Posted by Gary_Player on 06 Mar 2006 - 06:04
There was a ruling not too long ago that having your files encrypted was suspicious enough to convict someone... does anyone have a link to that case? I'd say its pretty pertinent here.

...and thank you microsoft
Quote this comment #15.2 Posted by Havin_it on 06 Mar 2006 - 08:54
Blimey. Does that mean MSFT are inducing consumers to criminal action then? Or the GnuPG, Cryptainer, OpenSSL etc. folks?

Maybe we better investigate some movie studios as well. Turns out all my DVDs are encrypted!

edit: spelliong corruction
Quote this comment Reply to this comment #16 Posted by Jugalator on 06 Mar 2006 - 07:30
lol

If there's a backdoor, it won't be acknowledged by Microsoft in media. That would be no backdoor.

The only way to find out would be Microsoft opening up the source for full inspection, but that won't happen.

Even their shared source initiative doesn't disclose the full source.

The problem with closed source is that we'll just have to take their word for it. :-p
Quote this comment Reply to this comment #17 Posted by Mprime on 06 Mar 2006 - 07:38
you people are not thinking, as smart as you are, if there were a back door in XP or any MS OS, by now someone would have found it. Most certainly crackers and wat not. Hell do you think the goverment would want to use Windows with a back door to it? Chinese crackers could find it by getting a non-chinese and chinese version, what security would there be? There is no back door. Only fools who do not use firewalls, software or hardware.
Quote this comment Reply to this comment #18 Posted by sanghoku on 06 Mar 2006 - 09:16
"Microsoft has not and will not put 'backdoors' into Windows,"

there's a thin line between putting one in and 'leaving' one in
(1 reply) Quote this comment Reply to this comment #19 Posted by cartri on 06 Mar 2006 - 09:36
Will not? We can believe if we want to...

But... Has not?
And about that Windows Media Player stuff discovered in 2004?
It was censured news there on US?
Quote this comment #19.1 Posted by eminem213486 on 06 Mar 2006 - 18:29
are you kidding? god forbit a company wants to make it easier for me to play my damn files...

microsoft can include anything it wants in its software it builds and you BUY..
Quote this comment Reply to this comment #20 Posted by windows95isg8 on 06 Mar 2006 - 09:40
Well done to MS for saying that, what I dont get is if MS are doing this (It would help the user) Why do hackers feel the need to get past it. Having backdoor access would make the system open to all sorts of ****. There are lots of sorts of hackers, but the ones that do it so they can learn how to mess up others Computers, are sad and need to get a life. It makes me mad, that some people out there, wana **** up your PC, for WHAT!!

I see the PC, as somthing to help get jobs done fast and well. Also to give you g8 home entertainment. Its not there for people to try and make it crash other peoples systems, and send out worms.

Hackers= ******s lol
Quote this comment Reply to this comment #21 Posted by ALUOp on 06 Mar 2006 - 10:49
I hope this is true.
Microsoft never correctly and securely implements anything about security, so if they have implemented or are going to implement a backdoor for the government, it means they have implemented or are going to implement a backdoor for everyone.
Quote this comment Reply to this comment #22 Posted by Ficman on 06 Mar 2006 - 10:50
Good call MS...
(1 reply) Quote this comment Reply to this comment #23 Posted by norseman on 06 Mar 2006 - 13:59
If someone wanted to connect through this so called backdoor wouldnt our firewalls notify us about this? Wouldn't netstat show such a service and port open? etc etc..
Quote this comment #23.1 Posted by Sekerob on 06 Mar 2006 - 16:52
Rootkit like constructs are already made by MS, see how windefender stalks away on your disk......since MS controls pretty much anything in the OS, don't you think there is a little comms channel that does not comply to the netstat traceable lot.......cynic without illusions
Quote this comment Reply to this comment #24 Posted by chorpeac on 06 Mar 2006 - 14:05
they say no access, so it doesn't hurt their rep and business, but I bet there is one...
(1 reply) Quote this comment Reply to this comment #25 Posted by obsolete_power on 06 Mar 2006 - 14:33
I am highly against invasion of privacy even if it is the law. Privacy is privacy and should not be compromised without the user's consent. If they want access to the computer they have to notify the user first. It is very cowardly to spy on someone without him knowing and then later file a suit against him/her.
Quote this comment #25.1 Posted by Dragular on 06 Mar 2006 - 23:03
Wouldn't this require some kind of warrant?
Quote this comment Reply to this comment #26 Posted by njlouch on 06 Mar 2006 - 18:18
Will there be a version with patio doors?
(2 replies) Quote this comment Reply to this comment #27 Posted by Sub on 06 Mar 2006 - 18:38
lol, like Microsoft needs to put backdoor in there OS. They already exisit.
Quote this comment #27.1 Posted by Gurm on 06 Mar 2006 - 20:35
Dammit you beat me to it!
Quote this comment #27.2 Posted by Subaru on 07 Mar 2006 - 22:43
Sheit!! I am even more delayed
(1 reply) Quote this comment Reply to this comment #28 Posted by Omn1 on 06 Mar 2006 - 23:30
Good thing to. That is exactly what we need, companies that won't crumble to requests by governments. To me the major point is that not whether the government would be able to get into your files, or even a common theif, but instead that such a large and persuasive company won't give to to rediculous requests. The moment that a company like Microsoft starts doing the government's work voluntarily is the first day of the end of the world. Now if Micrsoft did it for Vista N edition I wouldn't care, no one buys that crap anyways.
Quote this comment #28.1 Posted by GoldenSheep on 07 Mar 2006 - 03:33
That comment is only valid if MS was telling the truth Too many Vista editions make piraters have a field day with the Ultimate Edition
Quote this comment Reply to this comment #29 Posted by freedom77 on 07 Mar 2006 - 04:09
of course it will have a backdoor, thats why they say it won't.
Quote this comment Reply to this comment #30 Posted by conna on 07 Mar 2006 - 07:51
Why worry about the back door when the front door is usually wide open?
Quote this comment Reply to this comment #31 Posted by DeanNapper on 07 Mar 2006 - 09:23
Surly there is already a back door to the encryption. Microsoft have a master private/public key pair (the private key probably locked up in some secure vault somewhere) which would allow anyone who has this to decrypt any encryted file system data on Windows.

OK, Microsoft are never going to give this private key out, but what would happen if there was Government pressure to provide it?

Quote this comment Reply to this comment #32 Posted by P1R4T3 on 07 Mar 2006 - 13:15
Microsoft is protecting my pr0n movies. Thats great :p
Quote this comment Reply to this comment #33 Posted by leesmithg on 07 Mar 2006 - 13:25
Well this is the way of the British govenment, the labour party, the party for the people, ha@that.

I have no intention of using vista.

I will stay with XP Pro, as it's for my needs, however, we will find a way of making sure no reds come up our back door if you catch my drift.

One thing that does puzzle me, with possibly 2 million to start with, computers running vista in the UK, then maybe moves onto 4 and a bit million in a couple of years via o.e.m etc do they have enough manpower to monitor us all?

If they are trying to 'tap' a specific computer that is not running vista, do they phone the terrorist up and insist they use vista?

The person might be using another operating system.

It's all bollox, just like id cards yesterday being downgraded from compulsory to voluntary.

Microsft would become bankrupt if they were made to create an operating system that can be tapped by a government.

Not in their interests.
(1 reply) Quote this comment Reply to this comment #34 Posted by ruudjacobs on 07 Mar 2006 - 16:35
Like... there will be unintentional backdoors anyway
Quote this comment #34.1 Posted by Audhumla on 11 Mar 2006 - 22:44
Quote this comment Reply to this comment #35 Posted by ambiance on 07 Mar 2006 - 22:10
Thank God! That rumour had me jumping the gun, Vista Home Premium it is.
Quote this comment Reply to this comment #36 Posted by swordfish on 09 Mar 2006 - 05:20
backdoor... MMmmMMmmMM

Sounds like OMG A VIRUS!!?!??!!? OMG OMG OMG

WINDOWS = VIRUS~!?!?!?!?!?~ OMGS
Quote this comment Reply to this comment #37 Posted by PeteWhite on 09 Mar 2006 - 09:46
Sorry to burst everyone's bubble, but in the UK there is no need for a backdoor as the Regulation of Investigatory Powers Act (RIPA) grants a power which allows certain authorities e.g. the police to force the disclosure of information that is stored in an encrypted form and in certain circumstances it can force the disclosure of the encryption key itself.

Pete
[1]

Commenting has either been disabled on this article or you are not logged in. Click here to login or register, its free!

Note: Anonymous commenting is disabled in order to keep the quality of responses to a high standard.


Scroll to the Top
....
My Preferences
....
Communicating with server
Loading
Please Wait...
....
Loading
 X 
....