OSNews

Who says that bluetooth or USB3 is close source?

There are open source implementations of all these protocols.

Of course, ultimately, a real audit of any hardware would require being able to audit every piece of software that runs on a device, including its firmware, but it is interesting how happy Nokia, Apple and RIM are to give away the security of their phones for market share.

It is possible that the backdoor isn't in the software on the phone, but on the server side. For example, RIM/Apple etc. could give the Indian government access to specific emails sent from India etc. through their services. That would also make it easier to conceal.

This would not affect secure communications on the blackberry network. RIM does not have the encryption keys shared between the device and the BES server that it neither hosts nor controls. Might be possible there is a backdoor in BES but that would be in violation of its contractual obligations to the point it would bankrupt the company.

Now just as in the recent brouhaha regarding the Middle East nothing prevents a government from pressuring telco's in its jurisidction from coughing up its traffic. So consumer traffic coming from consumer blackberry devices routed through telco BIS servers would certainly be (and are) susceptible. Even (especially?) here in the US that's the situation. Not really an Apple, RIM, or Android issue. It's channel thing, imho.

These are companies in the business of manufacturing profit for shareholders. They are not altruistic engines for social change.

"Intersting" for me would have been seeing any of them risk access to the Indian market by publicly challenging the government request.

I believe the article suggested that an open source mobile OS would allow developers to review the code on behalf of themselves and all users. It didn't seem to suggest that FOSS development inherently resulted in a more secure product.

Well, since you asked "what about openmoko?" let me publicize a little its successor: GTA04 (I'm not associated with Golden Delicious or anyone selling it). For me it's he best option I know to avoid spyware and other nasty surprises in your mobile phone if you want and can pay for it.
There's also a little bit about environment, labour, solvency and tooling, but it's mostly about open hardware and free software.
I think it hasn't been commented here in OSNews ?

A company in Baviera has designed a new motherboard for the GTA01 or GTA02 models of openmoko phones. It has built some prototypes and sold them to early adopters who are busy writing drivers, porting software etc. It is making a slightly fixed next version which sells in smaller quantities and it's
collecting orders to see if it can sell them a little cheaper if orders reach 350 units this month.

Replacing the phone PCB with GTA04 improves on speed, memory,
sensors, mobile internet, USB version, etc. There's progress on linux-3.2, QtMoko, power saving and other developments. There's also efforts to identify/procure/design/build/sell the rest of the hardware needed for a complete phone (if you don't have a GTA02 or GTA01 to recycle), including the case.

Details at <a href="http://www.gta04.org">http://www.gta04.org .

Some ways to help:

- spread the word

- order one

- help testing/developing/upstreaming if you already have one

- if you have a freerunner or Neo1973 you don't want anymore, sell it on the net, donate it or contact the mailing list. This will increase the potential GTA04 buyers at this stage.

- help to design and manufacture new cases. The CAD files for the previous phone cases are available but not 3D printable yet.

- offer help in upgrading the motherboard to those near you if you feel competent

- resell the PCB or offer paid service .

- help source the remaining components for a complete phone.

- donate money

- develop free replacements for the propietary firmware (Libertas for wifi/bluetooth, maybe something
for the GSM/UMTS module) or free drivers (Power GSX GPU, modem, optional camera...)

- lend measuring equipment (for RF analysis, power dissipation measurements, etc.)

- convince the chip manufacturers to release more documentation

- write applications for the new possibilities with increased bandwith, computing performace and sensors

- etc.

Britain is still European, and the linked article mentions 3 European countries … however skewed the article is to encourage people to be OK with wiretapping because other countries do it.

UK's view on piracy is actually along the lines of "don't take the piss", The Police or anyone else won't mind you handing your mate a few burnt CDs, but if you are selling them outta your house they would be round there pretty quick.

Remember Skype?

A closed-source, obfuscated app using a proprietary, obscure, closed protocol from those shady individuals, pioneers of early p2p techs?

Well, most users still think it not only does free calls, but also confidentiality, cause it has "encryption"! How do they know? Because Skype says so, they promised.

Now s/Skype/Blackberry/ :-)

and it's already public knowledge that Skype for mainland China already has government access/backdoor and keyword censorship, you know... to protect the children from porn. Why do only the Chinese Communist Party think of the children???

http://www.jeffsplace.net/node/18

And anyone in mainland China, even if trying to access the international Skype website, gets redirected to tom.skype.com and the backdoor-ed version.

Edited 2012-01-11 19:45 UTC

and, hm, Zfone appears sort of... dead (at least some free ZRTP implementations seem to be getting decent)

The dog is the only one that can be trusted.

Animals can be bribed.

... and cheetah is the animal that you would never trust ...

I don't know, it (and my cat) can be probably always trusted to do its... feline things.

Edited 2012-01-12 03:25 UTC

http://www.imdb.com/title/tt0492492/

They sold national security for money (or market share, whatever). It fits quite well the definition of treason in most dictionaries out there, so i think that they truly committed treason, even technically speaking.

That's quite sad...

We're waiting for any real proof, not just some "stolen" "document" by "hackers".

Anyone can make such a document and put it online.

Why? In the very own "official" mythologies of the presently most popular deity, there are clear examples of its lies and deceit (and much worse, but that's going beyond trust issues) directed at humans...