Comments on: Skype Cannot be Trusted, Period http://citmedia.org/blog/2008/10/02/skype-cannot-be-trusted-period/ Sun, 23 Aug 2009 21:40:20 +0000 http://wordpress.org/?v=2.9.2 hourly 1 By: Dan Gillmor http://citmedia.org/blog/2008/10/02/skype-cannot-be-trusted-period/comment-page-1/#comment-2700 Dan Gillmor Wed, 08 Oct 2008 23:51:33 +0000 http://citmedia.org/blog/?p=1468#comment-2700 Peter, Skype has repeatedly refused to open its encryption to qualified outsiders (other than a few the company has picked) so that they can verify that there are no backdoors. Moreover, as far as I can discover, Skype has refused to say specifically -- despite many opportunities -- that there are no backdoors, or that the company has not cooperated with law-enforcement people. Certainly the Chinese situation is different from Skype elsewhere. But the company's record -- and eBay's well-known willingness to do pretty much anything a law enforcement person asks -- gives me no reason whatever to trust Skype. If there's a backdoor, as I believe there must be given the company's non-denial denials, then we have two problems. First, while I trust that almost all law enforcement people are honorable and not prying unreasonably into people's affairs, I don't trust that all of them behave that way. The record of abuses where there's no oversight -- and today there's almost no oversight -- is completely clear. Second, if there's a backdoor for law enforcement, the really bad guys will find it and use it. That means criminals will have access to our communications, too. As I said, Skype is probably better than nothing, but I still don't know how much better. But anyone who trusts this software to be protecting conversations that need to be private is foolish. Peter, Skype has repeatedly refused to open its encryption to qualified outsiders (other than a few the company has picked) so that they can verify that there are no backdoors. Moreover, as far as I can discover, Skype has refused to say specifically — despite many opportunities — that there are no backdoors, or that the company has not cooperated with law-enforcement people.

Certainly the Chinese situation is different from Skype elsewhere. But the company’s record — and eBay’s well-known willingness to do pretty much anything a law enforcement person asks — gives me no reason whatever to trust Skype.

If there’s a backdoor, as I believe there must be given the company’s non-denial denials, then we have two problems. First, while I trust that almost all law enforcement people are honorable and not prying unreasonably into people’s affairs, I don’t trust that all of them behave that way. The record of abuses where there’s no oversight — and today there’s almost no oversight — is completely clear. Second, if there’s a backdoor for law enforcement, the really bad guys will find it and use it. That means criminals will have access to our communications, too.

As I said, Skype is probably better than nothing, but I still don’t know how much better. But anyone who trusts this software to be protecting conversations that need to be private is foolish.

]]> By: ¿Podemos confiar en Skype? « Inter.dot http://citmedia.org/blog/2008/10/02/skype-cannot-be-trusted-period/comment-page-1/#comment-2699 ¿Podemos confiar en Skype? « Inter.dot Sun, 05 Oct 2008 03:30:45 +0000 http://citmedia.org/blog/?p=1468#comment-2699 [...] Octubre 5, 2008 · No hay comentarios Para sumar a mi paranoia con lo online: Dan Gillmor sobre la encriptación de los mensajes en Skype y el tema China: Skype es mejor que no encriptación del todo. Pero no imagines por un minuto que podés confiar en e... [...] [...] Octubre 5, 2008 · No hay comentarios Para sumar a mi paranoia con lo online: Dan Gillmor sobre la encriptación de los mensajes en Skype y el tema China: Skype es mejor que no encriptación del todo. Pero no imagines por un minuto que podés confiar en e… [...]

]]> By: Peter Parkes (Skype Blogger) http://citmedia.org/blog/2008/10/02/skype-cannot-be-trusted-period/comment-page-1/#comment-2698 Peter Parkes (Skype Blogger) Fri, 03 Oct 2008 12:05:56 +0000 http://citmedia.org/blog/?p=1468#comment-2698 Just to clarify - the issues highlighted in the Information Warfare Monitor / ONI Asia report affect only the TOM-Skype software distributed in China, and not standard versions of Skype. Skype-to-Skype communications are, and always have been, completely secure and private. Josh Silverman, Skype's President, has <a href="http://share.skype.com/sites/en/2008/10/skype_president_addresses_chin.html" title="Skype President Addresses Chinese Privacy Breach - Skype Blogs" rel="nofollow">blogged about the situation</a>, explaining where we stand and what we're doing to sort things out. Just to clarify – the issues highlighted in the Information Warfare Monitor / ONI Asia report affect only the TOM-Skype software distributed in China, and not standard versions of Skype. Skype-to-Skype communications are, and always have been, completely secure and private.

Josh Silverman, Skype’s President, has blogged about the situation, explaining where we stand and what we’re doing to sort things out.

]]>