Comment by higherpurpose

11 years ago

> Let's Encrypt will be overseen by the Internet Security Research Group (ISRG), a California public benefit corporation. ISRG will work with Mozilla, Cisco Systems Inc., Akamai, EFF, and others to build the much-needed infrastructure for the project and the 2015 launch

What's Cisco's role in this? I'm quite worried about that. It has been reported multiple times that Cisco's routers have NSA backdoors in them, from multiple angles (from TAO intercepting the routers to law enforcement having access to "legal intercept" in them).

So I hope they are not securing their certificates with Cisco's routers...

2 comments

higherpurpose

Reply
jauer  11 years ago

Lawful Intercept isn't a blanket government back door per se. It's a featureset that allows the operator to configure what is effectively a remote packet capture endpoint. That endpoint is disabled by default and requires operator configuration to be enabled.

It just happens that every ISP/telco in the US needs this capability to comply with CALEA so it's manufacturers responding to market forces. Juniper supports it, A Latvian router manufacturer supports it (http://wiki.mikrotik.com/wiki/CALEA), there's even open source code to do it (https://code.google.com/p/opencalea/) if you're building your own routers.

There's a place to focus your ire over wiretapping. The manufacturers aren't it.

drderidder  11 years ago

Yep. Read the product docs on some of their big network routers. You'd be surprised what's in there in terms of port mirroring and what they suggest carriers should use it for.