Suppose you have a boss, who gives you a very specific set of instructions that must be followed to the letter. One of these instructions has enormous potential to be exploited by evildoers, but neither you nor your boss are aware of this. If a customer or client were to approach you and exploit this oversight right before your eyes, you might think, being an intelligent human being, that something really ought to be done about this flaw, as you serve the customer. Further suppose that your job is to find a customer's paperwork in their file, and hand it to them. Most customers will give you some files at the desk, whereupon you read the Boss's instructions:
- Process the files the customer just gave you and remember the amount of paperwork they said they submitted
- Go to the file cabinet
- Find the customer's file
- Get as much paperwork as the customer just said they gave you
- Give the new paperwork back to the customer
As you can plainly see, it's not that the entire bank is flawed to its core. The solution isn't to burn down the bank, nor to execute all current employees, but--as you probably gathered--to change Steps 1 and 4 so that you save the amount of paperwork they gave you, not the amount they said they gave you. If C programs could talk, they'd have alerted someone to this problem ages ago, as you would have in the bank scenario. See? This was far more straightforward to comprehend than looking at a graphic of the word "HACK" centered in a field of floaty green bits.
All of the code that enumerates these instructions is publicly available for anyone and everyone to view. While trusted institutions, like those to whom you give passwords, use OpenSSL and peruse its framework, criminal hacker rings and rogue government organizations scrutinize the code vigorously to try and find such vulnerabilities for their own use. Financial institutions may try to uphold a reasonable standard of trust, but so long as the standards they use are better understood by ill-intentioned persons, the entire financial system is compromised due to lack of trust.
In the short run, organizations will incur costs by having to flush databases and reencrypt the data therein, swap their private keys, and urge their customers to change their almost surely compromised credentials. I, like nearly everyone else, find myself overwhelmed by the prospect of changing so many passwords across the internet, so this is nothing short of an incredible nuisance. But financial institutions may see fit to prepare for such incidents in the future by forming coalitions to scrutinize certification algorithms as well as, or better than, criminals. It seems like a basic step to take, but organizing private groups and motivating them toward collective action for the greater good is never anything short of a challenge.
No comments:
Post a Comment