Kazakhstan Halts Introduction of Internet Surveillance System 36
Kazakhstan has halted the implementation of an internet surveillance system criticized by lawyers as illegal, with the government describing its initial rollout as a test. From a report: Mobile phone operators in the oil-rich Central Asian nation's capital, Nur-Sultan, had asked customers to install an encryption certificate on their devices or risk losing internet access. State security officials said its goal was to protect Kazakh users from "hacker attacks, online fraud and other kinds of cyber threats." The certificate allowed users' traffic to be intercepted by the government, circumventing encryption used by email and messaging applications. Several Kazakh lawyers said this week they had sued the country's three mobile operators, arguing that restricting internet access to those who refused to install the certificate would be illegal. But late on Tuesday, Kazakhstan's State Security Committee said in a statement that the certificate rollout was simply a test which has now been completed. Users can remove the certificate and use internet as usual, it said.
Re: (Score:3)
Mission Accomplished (Score:4, Insightful)
Step 1) Install government SSL cert on all mobile devices in a country.
Step 2) Under challenge back off and say that users can remove the certificates if they want.
Step 3) Enjoy unfettered access to internet traffic for 99% of the population who either can't figure out to uninstall a certificate or do not even care.
What you thought there would be a mystery step? No mystery as to what is happening here.
What part is wrong here? (Score:1)
Why do you try to comment on security stories you both don't understand and know nothing about generally?
By saying that, we all question how much you know...
Follow the link. Are they installing an SSL cert? Yes.
Pretty much any modern developer is going to be very familiar with what this allows, because we all install custom certs to enable things like HTTP proxies that can inspect web service calls over HTTPS...
But I guess you wouldn't know much about that it seems since you seem to think what I said is i
Re: (Score:1)
Re: (Score:1)
such a clumsy way to snoop (Score:2)
Can't they just get their hands on some Bluecoat proxies, like other repressive governments worldwide?
https://en.wikipedia.org/wiki/... [wikipedia.org]
Leads me to wonder... (Score:1)
...if this was carried out as a "proof-of-concept" for Kazakhstan's close ally- Russia.
Re: (Score:1)
We used to do this ... (Score:2)
... back in the 90s with Novell 3.1.
We'd make changes while in production, and stick our head out the computer room and if we heard, "Godammit!!! WTF! What's going on?!!" we'd revert.
When management called us in, we'd say, "Novell was running a test."
Or, when an application we were building performed like shit, we'd say, "Oh, that's just the prototype."
Surprised (Score:2)