Apple Inc. SSL/TLS Bug Links to Snowden
By Athena Yenko | February 24, 2014 6:43 PM EST
Apple Inc. SSL/TLS bug could be what U.S. intelligence agents were boasting about as documents leaked by Edward Snowden mentioned about agents saying they can hack any iPhone and that this is a fact that was not exposed in public.
According to researchers who examined versions of Apple's software, Apple Inc. SSL/TLS bug had been present for months and that people who had learned about the flaw chose not to report it, Reuters reported.
It did not help that Apple Inc. was elusive about when or how it discovered the security flaw which affected iOS and Mac OS.
The SSL/TLS bug was so anomalous that security experts were criticising Apple Inc for its failure to do thorough software testing. Experts were theorising that an Apple Inc. engineer might have intentionally created the bug to spy or hack on users.
Some intelligence people meaningfully said that the best of "back doors" were created by "mistake."
Johns Hopkins University cryptography professor Matthew Green told Reuters that Apple Inc. SSL/TLS bug was "as bad as you could imagine."
Mr Green refused to elaborate, "that's all I can say," he said.
The trouble with SSL/TLS Bug was the software's recognition of digital certificates which banking sites, Google's Gmail service, Facebook etc utilise in establishing encrypted connections.
The one single line in the programme and an absent bracket were proofs that certificates, supposedly recognised by the SSL/TLS, cannot be authenticated. As a result, hackers can masquerade as the Web site being surfed by those browsing the internet. Hackers can then acquire all the electronic traffic before a connection to the real site can happen.
Aside from intercepting data, hackers can also interleave malicious web links in real emails, taking full control of the device being hacked.
Hacker can easily gain access to targeted devices simply through connecting to an internet service provider or through unsecured WiFi connections.
Apple Inc refused to comment about the experts' theories.
On the other hand, Adam Langley, a Google engineer who had dealt with similar issues in the past, believed that Apple Inc. had no intentions of creating the flaw.
"I believe that it's just a mistake and I feel very bad for whomever might have slipped," he wrote in a personal blog.
To contact the editor, e-mail:
Most Popular Slideshows
- Top 5 Richest Tennis Athletes
- Angelina Jolie & Brad Pitt Heads to Malta For New Movie After A Whirlwind French Wedding [PHOTOS]
- 2014 US Open Update (Day 4 - Men's Singles): Murray, Djokovic, Raonic and Isner Advance to 3rd Round [PHOTOS]
- Kate Middleton’s Mom Accused Of Being A Social Climber, Prince George Not Seen By Relatives
Join the Conversation
- Malaysia Airlines to Axe 4,000 Employees, Including CEO; Suspends Trading of Shares
- Floyd Mayweather Gets Investment Advice from Warren Buffett What to Do With Millions
- Former U.S. VP Al Gore Backs Ovo Energy by Investing £8 Million Before IPO
- Study Shows Gap Between What Advisors Say and What Resonates with Investors
- Apple iWatch is iPhone 6 Accessory on Sept 19 Release Date: 6 Confirmed Specs & Features
- iPhone 6 Release Date Update: 4.7-Inch Model Scores 65.8% In Screen-To-Size Ratio; A Surprise Entry Scales Top Spot [List Attached]
- Canada Vs Russia War Erupts Via Twitter on Russia-Not Russia Maps
- Product Recall Alert: Hewlett-Packard Pulls Out 6M Power Cords from US, Canada Over Fire Hazard Concerns, Australia Also Affected
- ISIS Wants $6.6M and Release of Aafia Siddiqui in Exchange of Head of Female US Humanitarian Aid Worker, 1st American Fighting for Jihadis Dead
- Ukraine Ceasefire Looks Remote As Putin Talks Tough At Meeting With Poroshenko
- Windows 9 To Include Interactive Live Tiles and Notification Center in Metro 2.0