Hacker News new | past | comments | ask | show | jobs | submit login

The lesson is, don't trust commercial security products. Only trust open source peer reviewed products like TrueCrypt, GPG, etc.

If you want your data to be secure, use your own layer of encryption, preferably on your own physical disk or at the very least have the encryption executing in an environment you control. e.g. Not someone else's package of TrueCrypt running on their server, rather your verified package on your machine and then upload it.

Encryption is a major strategic issue and few governments will lay down and accept that their citizens or other countries have the ability securely store and transmit data. I was at an NSA show and tell recently and they had an original enigma machine on display which speaks volumes.




The article is about OS-level backdoors, not software-level backdoors. The aforementioned software wouldn't do anything against keyloggers on the phone.

I think the software you're hoping for is jailbreaking the phone. But some governments are making or made that illegal: https://en.wikipedia.org/wiki/Anti-circumvention




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: