* Posts by RevK

4 publicly visible posts • joined 29 Mar 2010

UK gov says new Home Sec will have powers to ban end-to-end encryption

RevK
FAIL

It is not about catching criminals - it is about ruining business!

To be clear here - this only impacts legitimate UK based companies offering their users end to end encryption solutions. They may be (and can be assumed to be) subject to secret orders to maintain a capability to decrypt the communication and hence not be properly end to end. There is no way the bill bans open source, home made, non UK supplied (though bill tries, but has no jurisdiction), or even pen/paper/dice based solutions. Criminals and terrorists and anyone concerned over privacy can still communicated securely but UK businesses cannot sensibly make any crypto solution as all will assume they are subject to secret orders. This has impact on business, UK crypto business, and not on anyone else. It has no impact on criminals or terrorists, and does not look like it was every intended to. It is purely to hamper the UK industry and nothing more.

Slack bank practice creates opportunity for phone phishing scams

RevK
FAIL

Sky are as bad

Call recording

http://www.me.uk/20110503sky.mp3

Telco sets honey pot for nuisance marketers

RevK
Happy

To clarify

As a telco we have 4 million numbers due to go live to sell to customers (full UK geographic roll out). We plan to set the unallocated numbers when called from withheld numbers to go to the honey pot to see how many junk calls we trap. We do advise it is an unallocated number first but junt callers don't hear this and stay on the line. We may set up a web site so that people can make one sided conversations to try, and have a league table for who can keep them on the line the longest, etc. The numbers are not (yet) TPS registered, though our office ones are. Calling with a recorded message is illegal whether TPS registered or not unless they have prior consent.

BT hijacks business browsers

RevK
FAIL

RevK

This has to be illegal under Computer Misuse and interception of communications regulations under RIPA, surely. Even if the end user gives consent under the T&Cs with BT, the web site operator does not, and they are as much a party to the communication as the end user is.

I saw the system for this demonstrated at a ISPA meeting and the vendors were very proud of the system that had been used a lot in US and they were bringing to the UK. They were puzzled when I suggested it was illegal and had not considered for a moment the other party to the intercepted communications (the web site operator) and would go and look in to it!

SUBSCRIBE TO OUR WEEKLY TECH NEWSLETTER