In India 800000 BlackBerry users struggle to figure out what the government wants and what its Canadian developer Research in Motion (RIM) has featured in these devices here are some answers :
(1) WHAT ARE BLACKBERRY SERVICES? WHAT AREN'T ?
Mobile push-email and messenger. RIM delivers these two services through mobile operators, such as Airtel ,Vodafone and Reliance communication.All other services you use on your BlackBerry handset,such as SMS.internet access or phone calls, are directly from the mobile operator, and are not BlackBerry services.Push email is so called because mail is pushed out to your handset as soon as it is received without your needing to download email periodically.
(2) WHAT DOES INDIA'S GOVERNMENT WANT ?
To intercept email and instant messages sent via BlackBerry,just as it can tap a phone.When it suspects someone of perpetrating a crime , it wants to be able to read,armed with a specific written order, any encrypted email sent on BlackBerry.The government can order interception of messages , under section 5 of the indian Telegraph Act,1885,only with a written order,granted only when required to prevent a major offense involving national security or terrorism.Economic offenses were once covered,but withdrawn in 1999 by Supreme Court order .
(3)WHY IS BLACKBERRY MAIL ENCRYPTED ?
Most email system,including Gmail,use encryption.Enterprises dont's trust public email system for business data, so they use their own secure,firewalled systems. Now,when they need to use a mobile push-email system ,they want to be certain that no third party can read the mail , not even the email provider.That is BlackBerry's USP. Mail so secure that RIM itself cannot read it .
(4) WHAT'S BLACKBERRY INTERNET SERVICE (BIS) AND DOES THE GOVERNMENT HAVE ACCESS TO IT ?
BIS is the lighter flavour of RIM'S two email servies .Meant for individuals ,it uses weaker encryption.BIS users buy convenience more than ironclad security.Airtel or Vodafone "pipes" the encrypted mail from your handset to RIM , which then decrypts it and sends it out, to the recipient. So RIM "can" let investigative agencies read such mail and india now has an agreement for BIS access.
(5) IS BLACKBERRY ENTERPRISE SERVICE (BES) THEN THE ONLY PROBLEM ? CAN RIM REALLY NOT "ACCESS " THAT ?
BES is RIM's flagship product designed to be so secure that not even RIM can read mail on it. It requires BES server software in the user company's network.Email is encrypted on the BlackBerry,using a generated key shared only between the handset and the BES server .Such mail goes out via .say,Airtel to RIM in Canada and back to the company BES staying encrypted all the way with a key that only that enterprise knows .Then its decryted,within the enterprise and moved to the email server.If the mail is to someone outside the company ,it is sent out -decrypted -by the company's mailserver.RIM itself doesnot have the key to "crack open"BES encrypted mail . That is the published design . Does RIM have a secret backdoor? One really does not know.
(6) THEN HOW CAN GOVERNMENT AGENCIES ACCESS SUCH MAIL, ON A TERROR THREAT?
By going to the enterprise where the suspected terrorist is working . That company , Which runs the BES does not even need to decrpt the mail ... for all mail is sitting within its own servers,or in its backups.
(7) IS THE BLACKBERRY A TERRORIST'S CHOICE OF COMMUNICATION TOOL?
No . The BES user is working in a company . Any mail he sends is not only traceable, but also stored and backed up .As for BIS ,that is in RIM control so access is easier for government agencies . The smarter terrorist would go to a cybercafe and use a Gmail or Yahoo mail account. He'd simply read and save mail in draft mode without sending mail.
(8) HOW ABOUT MESSENGER ?
BlackBerry popular instant messenger uses a weaker encryption than BES and RIM has access to the keys used which is why it can promise Saudi Arabia and India access . And while BlackBerry messenger can indeed be used for real time chat during a terror attack so can regular, cheap cellphone as they were during 26/11 . The answer to both is part of anti terror standard operating procedure. Cellphone Jammers.
(9) IS SUCH STRONG ENCRYPTION LEGALLY ALLOWED? DOESN'T INDIA HAVE ANY RESTRICTIONS ?
An old law says you can't use encryption greater than 40 bits in india without special permission ,which includes depositing the key with the authorities.
SOURCE: IAN SERVICE
 |
| BlackBerry Storm |
Mobile push-email and messenger. RIM delivers these two services through mobile operators, such as Airtel ,Vodafone and Reliance communication.All other services you use on your BlackBerry handset,such as SMS.internet access or phone calls, are directly from the mobile operator, and are not BlackBerry services.Push email is so called because mail is pushed out to your handset as soon as it is received without your needing to download email periodically.
(2) WHAT DOES INDIA'S GOVERNMENT WANT ?
To intercept email and instant messages sent via BlackBerry,just as it can tap a phone.When it suspects someone of perpetrating a crime , it wants to be able to read,armed with a specific written order, any encrypted email sent on BlackBerry.The government can order interception of messages , under section 5 of the indian Telegraph Act,1885,only with a written order,granted only when required to prevent a major offense involving national security or terrorism.Economic offenses were once covered,but withdrawn in 1999 by Supreme Court order .
(3)WHY IS BLACKBERRY MAIL ENCRYPTED ?
Most email system,including Gmail,use encryption.Enterprises dont's trust public email system for business data, so they use their own secure,firewalled systems. Now,when they need to use a mobile push-email system ,they want to be certain that no third party can read the mail , not even the email provider.That is BlackBerry's USP. Mail so secure that RIM itself cannot read it .
(4) WHAT'S BLACKBERRY INTERNET SERVICE (BIS) AND DOES THE GOVERNMENT HAVE ACCESS TO IT ?
BIS is the lighter flavour of RIM'S two email servies .Meant for individuals ,it uses weaker encryption.BIS users buy convenience more than ironclad security.Airtel or Vodafone "pipes" the encrypted mail from your handset to RIM , which then decrypts it and sends it out, to the recipient. So RIM "can" let investigative agencies read such mail and india now has an agreement for BIS access.
(5) IS BLACKBERRY ENTERPRISE SERVICE (BES) THEN THE ONLY PROBLEM ? CAN RIM REALLY NOT "ACCESS " THAT ?
BES is RIM's flagship product designed to be so secure that not even RIM can read mail on it. It requires BES server software in the user company's network.Email is encrypted on the BlackBerry,using a generated key shared only between the handset and the BES server .Such mail goes out via .say,Airtel to RIM in Canada and back to the company BES staying encrypted all the way with a key that only that enterprise knows .Then its decryted,within the enterprise and moved to the email server.If the mail is to someone outside the company ,it is sent out -decrypted -by the company's mailserver.RIM itself doesnot have the key to "crack open"BES encrypted mail . That is the published design . Does RIM have a secret backdoor? One really does not know.
(6) THEN HOW CAN GOVERNMENT AGENCIES ACCESS SUCH MAIL, ON A TERROR THREAT?
By going to the enterprise where the suspected terrorist is working . That company , Which runs the BES does not even need to decrpt the mail ... for all mail is sitting within its own servers,or in its backups.
(7) IS THE BLACKBERRY A TERRORIST'S CHOICE OF COMMUNICATION TOOL?
No . The BES user is working in a company . Any mail he sends is not only traceable, but also stored and backed up .As for BIS ,that is in RIM control so access is easier for government agencies . The smarter terrorist would go to a cybercafe and use a Gmail or Yahoo mail account. He'd simply read and save mail in draft mode without sending mail.
(8) HOW ABOUT MESSENGER ?
BlackBerry popular instant messenger uses a weaker encryption than BES and RIM has access to the keys used which is why it can promise Saudi Arabia and India access . And while BlackBerry messenger can indeed be used for real time chat during a terror attack so can regular, cheap cellphone as they were during 26/11 . The answer to both is part of anti terror standard operating procedure. Cellphone Jammers.
(9) IS SUCH STRONG ENCRYPTION LEGALLY ALLOWED? DOESN'T INDIA HAVE ANY RESTRICTIONS ?
An old law says you can't use encryption greater than 40 bits in india without special permission ,which includes depositing the key with the authorities.
SOURCE: IAN SERVICE
No comments:
Post a Comment