WinInfo Daily News   |   Windows IT Pro
in

SuperSite Blog

Sorry, conspiracy buffs, there’s no Windows 'back door'

Before anyone emails me about today's tech reporter-induced stupidity, I'll let Ed Bott clear the air:

Techdirt’s Mike Masnick is usually pretty reliable, but he completely blew it today, hitting the publish button on one of the sloppiest, most inflammatory stories I’ve seen in a long time:

Microsoft Gives Vista Backdoor Keys To The Police
     It's long been assumed that Microsoft has built in various "backdoors" for law enforcement to get around its own security, but now reader Kevin Stapp writes in to let us know that the company has also been literally handing out the keys to law enforcement. Apparently, they’re giving out special USB keys that simply get around Microsoft’s security, allowing the holder of the key to very quickly get forensic information (including internet surfing history), passwords and supposedly encrypted data off of a laptop. While you can understand why police like this, the very fact that the backdoor is there and that a bunch of these USB keys are out there pretty much guarantees that those with nefarious intent also have such keys.

OK, now go read the linked story from the Seattle Times. There's not a word - not one word - about back doors or encryption. Sadly, the usual suspects in the Techmeme echo chamber are whipping the inaccuracy around the infield at major league speeds. CrunchGear says Microsoft has "developed a thumb drive that helps Johnny Law quickly extract information, encrypted or otherwise, from computers." And Valleywag talks about "a USB dongle that plugs into a computer, bypasses any Windows passwords or encryption, and quickly downloads sensitive data such as your Web browsing history."

I've heard of jumping to conclusions, but these are some truly giant leaps.

All three stories reference the same Seattle Times story, which never says or even implies that the tools on this USB drive could break any sort of encryption, including Microsoft's BitLocker Drive Encryption.

Update: Ben Romano of the Seattle Times, who wrote the original story, has published an updated post (Looking for answers on Microsoft’s COFEE device) that also tries to clear away some of the FUD. "Via email, a Microsoft spokeswoman said COFEE is a compilation of publicly available forensics tools, such as 'password security auditing technologies' used to access information 'on a live Windows system.' It 'does not circumvent Windows Vista BitLocker encryption or undermine any protections in Windows through secret "backdoors" or other undocumented means.'"

Folks, this stuff just gets tiring. What's next? Is someone going to suggest that Vista is a gigantic failure and we should all go back to a seven-year-old OS that debuted to the worst security vulnerabilities in the history of computing? Problems that were so bad that Microsoft actually halted new OS development for almost an entire year?

Oh, wait.

Published Apr 30 2008, 10:17 AM by pthurrott
Filed under: ,

Comments

 

joe-dokes said:

Have to agree with Paul on this one.  

I saw the headline and thought is MS giving the hidden keys to the built in encryption in Vista.  Turns out it is just a tool that allows for password resets.  

In a word, they are making tools available, that any decent high school student should know about and be able to use.

The reality of this issue is: If you don't encrypt it, it ain't safe.  And if you do encrypt it the 'puter better be powered down or the FBI can still sniff the key, regardless of the OS or security.

Regards

Joe Dokes

April 30, 2008 9:40 AM
 

microsoft » Blog Archive » Sorry, conspiracy buffs, there???s no Windows 'back door' said:

Pingback from  microsoft  » Blog Archive   » Sorry, conspiracy buffs, there???s no Windows 'back door'

April 30, 2008 10:20 AM
 

brandon.pope said:

I agree, that is absolutely right.

April 30, 2008 10:40 AM
 

lilserenity said:

I agree that Vista is actually not that bad. My experience is not like I had an epithany in realising my computing life would never be the same again.

Instead I realised that the elderly Pentium 4 2.4GHz machine of mine with a modest configuration and Thinkpad T40 using the original Pentium M Banias 1.5GHz is working more than fine in running XP. The bottom line is to see the biggest benefits of Vista Home Premium, would require better hardware for which I'd see no appreciable overall effect on my daily computing. So I'm not about to bin hardware that is working great with XP and providing me fun and enjoyment, to install Vista and slow the whole game down.

The world doesn't need my PCs in a landfill. That said one day I will get another laptop and a desktop PC. But that day isn't yet. XP was indeed a nightmare in 2001/02 and I stuck with 2000 until late 2002, but since then it has been more than good enough.

And I'm saying this as someone who has used Vista on decent hardware, and as someone who thought it was fine enough but not nearly compelling enough to make me re-invest hardware wise.

April 30, 2008 1:12 PM
 

nmg82 said:

I agree Paul.  I wonder if Vista bashing will ever go out of style???

April 30, 2008 3:01 PM
 

JamesRayG said:

No it won't.  The better windows gets the more desperate the bashers get which results in more and more hysterical nonsense from the usual suspects.

April 30, 2008 3:15 PM
 

BrightrevCarl said:

I saw a similar article today from PC World that's TITLED 'Microsoft Helps Law Enforcement Get Around Encryption.'

www.pcworld.com/.../microsoft_helps_law_enforcement_get_around_encryption.html

Here's the one and only line in the article that's worthwhile:

"While COFEE doesn't break BitLocker or open a back door..."

This is really, REALLY shoddy reporting.  

April 30, 2008 4:15 PM
 

AlanRR said:

@lilserenity I think Vista has a place on old laptops. I find it uses less power than XP (I get better battery life) and the sleep/hibernate system is much much better.  I now hardly ever shutdown/reboot my laptop, I just close the lid and let it sleep.  If the battery gets too low while asleep it puts itself into hibernation. My laptop isn't new enough to run aero but I don't mind the basic look and the power saving alone is well worth the switch from XP (not to mention all of the other little improvements such as the start menu search  and the win+x key)

May 1, 2008 3:16 AM

About pthurrott

Paul Thurrott is the guy behind the SuperSite for Windows. Way behind. :)
SPONSORED LINKS FEATURED LINKS

Integrated Virtualization Done RightDownload this white paper on server virtualization to begin improving resource utilization and lowering operating costs. Overcome bloated Windows file systemsCrossroads FMA delivers powerful yet inexpensive data migration Speed Deployment of Vista and Microsoft OfficeRead this white paper to learn how you can maximize your Vista and Office investments while lowering costs and increasing efficiency. Order Your Fundamentals CD Today! Gain an introduction to Exchange, learn server security requirements, and understand how unified communications can play a role in your messaging strategies with this free Exchange CD. Continuous Data Protection and Recovery for Exchange Read this white paper to learn about Continuous Data Protection (CDP), Exchange 2007's local continuous replication and cluster continuous replication features. Critical Challenges of ESI & Email RetentionAre you storing too much electronic information? Get expert legal advice and better understanding of what you are required to do as an IT professional. WinConnections Conference Fall 2008Don’t miss the premier event for Microsoft IT Professionals in Las Vegas, November 10-13. Register and book your room by August 25 and receive a FREE room night (based on a three night minimum stay). Become a fan of Windows IT Pro on Facebook!Join us on Facebook and be a fan of Windows IT Pro! Sustainable Compliance: Are You Having a Resource Crisis?Read this white paper to examine trends in compliance and security management and review approaches to reducing the cost and operational burden of compliance. Rev Up Your IT Know-How with Our Recharged Magazine!The improved Windows IT Pro provides trusted IT content with an enhanced new look and functionality! Get comprehensive coverage of industry topics, expert advice, and real-world solutions—PLUS access to over 10,000 articles online. Order today! Get It All with Windows IT Pro VIPStock your IT toolbox with every solution ever printed in Windows IT Pro and SQL Server Magazine plus bonus Web-exclusive content on hot topics. Subscribe to receive the VIP CD and a subscription to your choice of Windows IT Pro or SQL Server Magazine!
Windows IT Pro |  SQL |  Connected Home |  IT Library |  SuperSite |  FAQ |  WinInfo News |  Europe Edition |  Office & SharePoint Pro
Windows Dev Pro |  Windows Excavator

Subscribe / Register |  About Us |  Contact Us / Customer Service |  Affiliates / Licensing  |  Media Kit

Copyright © 2008 Penton Media, Inc., All rights reserved.  Terms and Use | Privacy Statement | Reprints and Licensing