{"id":14730,"date":"2020-12-24T06:00:53","date_gmt":"2020-12-24T14:00:53","guid":{"rendered":"https:\/\/www.privateinternetaccess.com\/blog\/?p=14730"},"modified":"2023-08-04T11:43:00","modified_gmt":"2023-08-04T18:43:00","slug":"the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever","status":"publish","type":"post","link":"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/","title":{"rendered":"The widening SolarWinds debacle shows why the reckless idea of backdooring encryption must be dropped forever"},"content":{"rendered":"<p>The SolarWinds hack is the most serious breach of governmental and corporate security in years, perhaps the most serious breach ever \u2013 at least among those that we know about. The first news of the attack appeared on the FireEye blog at the beginning of this month. From the start, it was clear that this was something beyond the usual hack in terms of its sophistication and impact:<\/p>\n<blockquote><p>The attackers tailored their world-class capabilities specifically to target and attack FireEye. They are highly trained in operational security and executed with discipline and focus. They operated clandestinely, using methods that counter security tools and forensic examination. They used a novel combination of techniques not witnessed by us or our partners in the past.<\/p><\/blockquote>\n<p>Key to the intrusion was the insertion of malicious code into the Orion network monitoring software from SolarWinds \u2013 <a href=\"https:\/\/www.trellix.com\/en-us\/about\/newsroom\/stories\/xdr.html\">a backdoor<\/a> in software that was very widely used and trusted. Although most analysis has focused on the identity of the attackers \u2013 the general consensus seems to be that it was a Russian group, probably with the connivance of the authorities there \u2013 it\u2019s worth looking at another aspect: the fact that a backdoor was created in widely used software, and deployed to such devastating effect.<\/p>\n<p>The issue of backdoors is an extremely important one for privacy, as <a href=\"https:\/\/www.privateinternetaccess.com\/blog\/?s=backdoors\">numerous posts on this blog<\/a> attest. Governments around the world continue to insist that law enforcement agencies must have \u201clawful access\u201d to encrypted communications, which are in danger of \u201cgoing dark\u201d, as they put it. But as every security expert points out, adding any kind of backdoor to software that is supposedly secure is a recipe for disaster. It\u2019s like building a physical backdoor in the otherwise massive defenses of a medieval castle. The backdoor becomes not just the weakest point of the entire building, but the obvious weak point. That\u2019s particularly relevant because of the changing nature of the security and hacking landscape. Microsoft\u2019s President, Brad Smith wrote a blog post about the SolarWinds attack, where he notes that there is an \u201c<a href=\"https:\/\/blogs.microsoft.com\/on-the-issues\/2020\/12\/17\/cyberattacks-cybersecurity-solarwinds-fireeye\/\">evolving threat<\/a>\u201c:<\/p>\n<blockquote><p>the growing privatization of cybersecurity attacks through a new generation of private companies, akin to 21st-century mercenaries. This phenomenon has reached the point where it has acquired its own acronym \u2013 PSOAs, for private sector offensive actors. Unfortunately, this is not an acronym that will make the world a better place.<\/p><\/blockquote>\n<p>The emergence of these hackers for hire compounds the risk of adding an intentional weakness \u2013 such as a backdoor \u2013 to critical software. It means that in addition to the usual state actors that will try to break into a system that contains a backdoor, there are a host of smaller but often highly competent commercial players who will try to do the same. That is especially the case if the software that has been backdoored is widely used, since finding a way in will be something that can be sold at a very high price, given its broad applicability. There are few pieces of code more widely used than encrypted communications, one of the main targets of calls for backdoors to be required by law. As a result, the value of an exploit that grants third parties access to such encrypted communications will be even greater. Writing about the SolarWinds attack, Brad Smith also commented:<\/p>\n<blockquote><p>This is not \u201cespionage as usual,\u201d even in the digital age. Instead, it represents an act of recklessness that created a serious technological vulnerability for the United States and the world. In effect, this is not just an attack on specific targets, but on the trust and reliability of the world\u2019s critical infrastructure in order to advance one nation\u2019s intelligence agency.<\/p><\/blockquote>\n<p>Wilfully introducing a potential vulnerability into encrypted messaging programs used by billions of people is also \u201can act of recklessness\u201d, given the high probability that national actors or PSOAs will find and exploit weaknesses. It is not just reckless, it is also unnecessary.<\/p>\n<p>Back in 2017, the security expert Bruce Schneier co-wrote a paper about <a href=\"https:\/\/papers.ssrn.com\/sol3\/papers.cfm?abstract_id=2938033\">encryption workarounds<\/a> \u2013 ways to reveal unencrypted information without the need for any \u201clawful access\u201d backdoors. The paper divides workarounds into six broad categories: find the encryption key, guess the key, compel the key, exploit a flaw in the encryption software, access plaintext while the device is in use, and locate another plaintext copy. Importantly, these are not simply theoretical approaches. <a href=\"https:\/\/www.privateinternetaccess.com\/blog\/police-across-america-can-break-into-locked-phones-and-often-do-so-without-a-warrant\/\">Back in October<\/a>, Privacy News Online wrote about <a href=\"https:\/\/www.upturn.org\/reports\/2020\/mass-extraction\/\">a report from Upturn<\/a>, entitled \u201cMass Extraction: The Widespread Power of U.S. Law Enforcement to Search Mobile Phones.\u201d One section dealt with security circumvention, and how mobile device forensic tools ( MDFTs) are remarkably successfully in bypassing even the strongest encryption:<\/p>\n<blockquote><p>MDFTs can often circumvent the security features built into phones in order to extract user data. In response, phone manufacturers continuously patch known security vulnerabilities and develop even more advanced security features, seeking to thwart unwelcome access, including by MDFTs. This \u201ccat-and-mouse game\u201d has evolved over years and continues to this day. MDFTs use numerous tactics to gain access to users\u2019 data on phones, such as guessing a password, exploiting a vulnerability or developer tool, or even installing spyware. With rare exception, MDFTs can nearly always access and extract some, if not all, data from phones.<\/p><\/blockquote>\n<p>The real-life experience of US law enforcement agencies shows that encryption isn\u2019t an insuperable problem, despite claims to the contrary from grandstanding politicians. There is certainly no evidence whatsoever that it is serious enough to warrant mandating backdoors in programs used by billions of people. Let\u2019s hope that the continuing fallout from the backdoored SolarWinds software will at least help people understand why.<\/p>\n<p>Feature image by <a href=\"https:\/\/commons.wikimedia.org\/wiki\/File:NASA_mission_Wind_(Solar_Wind_Workhorse_Marks_20_Years_of_Science_Discoveries).jpg\">GPA Photo Archive<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>The SolarWinds hack is the most serious breach of governmental and corporate security in years, perhaps the most serious breach ever \u2013 at least among those that we know about. The first news of the attack appeared on the FireEye blog at the beginning of this month. From the start, it was clear that this &hellip; <a href=\"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/\" class=\"more-link\">Continue reading<span class=\"screen-reader-text\"> &#8220;The widening SolarWinds debacle shows why the reckless idea of backdooring encryption must be dropped forever&#8221;<\/span><\/a><\/p>\n","protected":false},"author":20,"featured_media":14738,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_stopmodifiedupdate":true,"_modified_date":"","footnotes":""},"categories":[12,1001,1,130,1940,1941],"tags":[507,2129,2130,2075,178,1556,2120],"class_list":["post-14730","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-security","category-encryption","category-news","category-governments","category-social-media","category-surveillance","tag-backdoors","tag-brad-smith","tag-bruce-schneier","tag-lawful-access","tag-microsoft","tag-mobile-phones","tag-solarwinds"],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v26.9 (Yoast SEO v26.9) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>The widening SolarWinds debacle shows why the reckless idea of backdooring encryption must be dropped forever<\/title>\n<meta name=\"description\" content=\"The SolarWinds hack is the most serious breach of governmental and corporate security in years, perhaps the most serious breach ever - at least among\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"The widening SolarWinds debacle shows why the reckless idea of backdooring encryption must be dropped forever\" \/>\n<meta property=\"og:description\" content=\"The SolarWinds hack is the most serious breach of governmental and corporate security in years, perhaps the most serious breach ever - at least among\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/\" \/>\n<meta property=\"og:site_name\" content=\"PIA\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/privateinternetaccess\/\" \/>\n<meta property=\"article:published_time\" content=\"2020-12-24T14:00:53+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-08-04T18:43:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2020\/12\/NASA_mission_Wind_Solar_Wind_Workhorse_Marks_20_Years_of_Science_Discoveries-scaled.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"2560\" \/>\n\t<meta property=\"og:image:height\" content=\"1280\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Glyn Moody\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@http:\/\/twitter.com\/glynmoody\" \/>\n<meta name=\"twitter:site\" content=\"@buyvpnservice\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Glyn Moody\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/\"},\"author\":{\"name\":\"Glyn Moody\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/99ba810662cdf92245f61106c0c29775\"},\"headline\":\"The widening SolarWinds debacle shows why the reckless idea of backdooring encryption must be dropped forever\",\"datePublished\":\"2020-12-24T14:00:53+00:00\",\"dateModified\":\"2023-08-04T18:43:00+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/\"},\"wordCount\":954,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2020\/12\/NASA_mission_Wind_Solar_Wind_Workhorse_Marks_20_Years_of_Science_Discoveries-scaled.jpg\",\"keywords\":[\"backdoors\",\"brad smith\",\"bruce schneier\",\"lawful access\",\"microsoft\",\"mobile phones\",\"SolarWinds\"],\"articleSection\":[\"Cybersecurity\",\"Encryption\",\"General Privacy News\",\"Governments\",\"Social Media\",\"Surveillance\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/\",\"name\":\"The widening SolarWinds debacle shows why the reckless idea of backdooring encryption must be dropped forever\",\"isPartOf\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2020\/12\/NASA_mission_Wind_Solar_Wind_Workhorse_Marks_20_Years_of_Science_Discoveries-scaled.jpg\",\"datePublished\":\"2020-12-24T14:00:53+00:00\",\"dateModified\":\"2023-08-04T18:43:00+00:00\",\"description\":\"The SolarWinds hack is the most serious breach of governmental and corporate security in years, perhaps the most serious breach ever - at least among\",\"breadcrumb\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/#primaryimage\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2020\/12\/NASA_mission_Wind_Solar_Wind_Workhorse_Marks_20_Years_of_Science_Discoveries-scaled.jpg\",\"contentUrl\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2020\/12\/NASA_mission_Wind_Solar_Wind_Workhorse_Marks_20_Years_of_Science_Discoveries-scaled.jpg\",\"width\":2560,\"height\":1280,\"caption\":\"Solar wind\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.privateinternetaccess.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"The widening SolarWinds debacle shows why the reckless idea of backdooring encryption must be dropped forever\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#website\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/\",\"name\":\"PIA\",\"description\":\"Online privacy news from around the world.\",\"publisher\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.privateinternetaccess.com\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#organization\",\"name\":\"Private Internet Access\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/pialogowhitekglogo.png\",\"contentUrl\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/pialogowhitekglogo.png\",\"width\":1200,\"height\":1200,\"caption\":\"Private Internet Access\"},\"image\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/privateinternetaccess\/\",\"https:\/\/x.com\/buyvpnservice\",\"https:\/\/www.instagram.com\/piavpn\/\",\"https:\/\/www.youtube.com\/channel\/UClyJZ47Rizb1xnwuKXDI0_w\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/99ba810662cdf92245f61106c0c29775\",\"name\":\"Glyn Moody\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/220b7317aa40ea679b23b79c368761eb6fd45039d978354b06dc7683a812d2fc?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/220b7317aa40ea679b23b79c368761eb6fd45039d978354b06dc7683a812d2fc?s=96&d=mm&r=g\",\"caption\":\"Glyn Moody\"},\"description\":\"Glyn Moody is a freelance journalist who writes and speaks about privacy, surveillance, digital rights, open source, copyright, patents and general policy issues involving digital technology. He started covering the business use of the Internet in 1994, and wrote the first mainstream feature about Linux, which appeared in Wired in August 1997. His book, \\\"Rebel Code,\\\" is the first and only detailed history of the rise of open source, while his subsequent work, \\\"The Digital Code of Life,\\\" explores bioinformatics - the intersection of computing with genomics.\",\"sameAs\":[\"http:\/\/opendotdotdot.blogspot.com\/\",\"https:\/\/www.linkedin.com\/in\/glynmoody\/\",\"https:\/\/x.com\/http:\/\/twitter.com\/glynmoody\"],\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/author\/glynmoody\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"The widening SolarWinds debacle shows why the reckless idea of backdooring encryption must be dropped forever","description":"The SolarWinds hack is the most serious breach of governmental and corporate security in years, perhaps the most serious breach ever - at least among","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/","og_locale":"en_US","og_type":"article","og_title":"The widening SolarWinds debacle shows why the reckless idea of backdooring encryption must be dropped forever","og_description":"The SolarWinds hack is the most serious breach of governmental and corporate security in years, perhaps the most serious breach ever - at least among","og_url":"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/","og_site_name":"PIA","article_publisher":"https:\/\/www.facebook.com\/privateinternetaccess\/","article_published_time":"2020-12-24T14:00:53+00:00","article_modified_time":"2023-08-04T18:43:00+00:00","og_image":[{"width":2560,"height":1280,"url":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2020\/12\/NASA_mission_Wind_Solar_Wind_Workhorse_Marks_20_Years_of_Science_Discoveries-scaled.jpg","type":"image\/jpeg"}],"author":"Glyn Moody","twitter_card":"summary_large_image","twitter_creator":"@http:\/\/twitter.com\/glynmoody","twitter_site":"@buyvpnservice","twitter_misc":{"Written by":"Glyn Moody","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/#article","isPartOf":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/"},"author":{"name":"Glyn Moody","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/99ba810662cdf92245f61106c0c29775"},"headline":"The widening SolarWinds debacle shows why the reckless idea of backdooring encryption must be dropped forever","datePublished":"2020-12-24T14:00:53+00:00","dateModified":"2023-08-04T18:43:00+00:00","mainEntityOfPage":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/"},"wordCount":954,"commentCount":0,"publisher":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/#organization"},"image":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/#primaryimage"},"thumbnailUrl":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2020\/12\/NASA_mission_Wind_Solar_Wind_Workhorse_Marks_20_Years_of_Science_Discoveries-scaled.jpg","keywords":["backdoors","brad smith","bruce schneier","lawful access","microsoft","mobile phones","SolarWinds"],"articleSection":["Cybersecurity","Encryption","General Privacy News","Governments","Social Media","Surveillance"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/","url":"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/","name":"The widening SolarWinds debacle shows why the reckless idea of backdooring encryption must be dropped forever","isPartOf":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/#primaryimage"},"image":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/#primaryimage"},"thumbnailUrl":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2020\/12\/NASA_mission_Wind_Solar_Wind_Workhorse_Marks_20_Years_of_Science_Discoveries-scaled.jpg","datePublished":"2020-12-24T14:00:53+00:00","dateModified":"2023-08-04T18:43:00+00:00","description":"The SolarWinds hack is the most serious breach of governmental and corporate security in years, perhaps the most serious breach ever - at least among","breadcrumb":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/#primaryimage","url":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2020\/12\/NASA_mission_Wind_Solar_Wind_Workhorse_Marks_20_Years_of_Science_Discoveries-scaled.jpg","contentUrl":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2020\/12\/NASA_mission_Wind_Solar_Wind_Workhorse_Marks_20_Years_of_Science_Discoveries-scaled.jpg","width":2560,"height":1280,"caption":"Solar wind"},{"@type":"BreadcrumbList","@id":"https:\/\/www.privateinternetaccess.com\/blog\/the-widening-solarwinds-debacle-shows-why-the-reckless-idea-of-backdooring-encryption-must-be-dropped-forever\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.privateinternetaccess.com\/blog\/"},{"@type":"ListItem","position":2,"name":"The widening SolarWinds debacle shows why the reckless idea of backdooring encryption must be dropped forever"}]},{"@type":"WebSite","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#website","url":"https:\/\/www.privateinternetaccess.com\/blog\/","name":"PIA","description":"Online privacy news from around the world.","publisher":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.privateinternetaccess.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#organization","name":"Private Internet Access","url":"https:\/\/www.privateinternetaccess.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/pialogowhitekglogo.png","contentUrl":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/pialogowhitekglogo.png","width":1200,"height":1200,"caption":"Private Internet Access"},"image":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/privateinternetaccess\/","https:\/\/x.com\/buyvpnservice","https:\/\/www.instagram.com\/piavpn\/","https:\/\/www.youtube.com\/channel\/UClyJZ47Rizb1xnwuKXDI0_w"]},{"@type":"Person","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/99ba810662cdf92245f61106c0c29775","name":"Glyn Moody","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/220b7317aa40ea679b23b79c368761eb6fd45039d978354b06dc7683a812d2fc?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/220b7317aa40ea679b23b79c368761eb6fd45039d978354b06dc7683a812d2fc?s=96&d=mm&r=g","caption":"Glyn Moody"},"description":"Glyn Moody is a freelance journalist who writes and speaks about privacy, surveillance, digital rights, open source, copyright, patents and general policy issues involving digital technology. He started covering the business use of the Internet in 1994, and wrote the first mainstream feature about Linux, which appeared in Wired in August 1997. His book, \"Rebel Code,\" is the first and only detailed history of the rise of open source, while his subsequent work, \"The Digital Code of Life,\" explores bioinformatics - the intersection of computing with genomics.","sameAs":["http:\/\/opendotdotdot.blogspot.com\/","https:\/\/www.linkedin.com\/in\/glynmoody\/","https:\/\/x.com\/http:\/\/twitter.com\/glynmoody"],"url":"https:\/\/www.privateinternetaccess.com\/blog\/author\/glynmoody\/"}]}},"_links":{"self":[{"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/posts\/14730","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/users\/20"}],"replies":[{"embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/comments?post=14730"}],"version-history":[{"count":9,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/posts\/14730\/revisions"}],"predecessor-version":[{"id":30822,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/posts\/14730\/revisions\/30822"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/media\/14738"}],"wp:attachment":[{"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/media?parent=14730"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/categories?post=14730"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/tags?post=14730"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}