Microsoft Denies Windows 7 Has NSA Backdoor

Earlier this week we learned that the National Security Agency (NSA) has been working with Microsoft to improve the security measures of Windows 7.

"Working in partnership with Microsoft and (the Department of Defense), NSA leveraged our unique expertise and operational knowledge of system threats and vulnerabilities to enhance Microsoft's operating system security guide without constraining the user's ability to perform their everyday tasks," said Richard Schaeffer, the NSA's Information Assurance Director. "All this was done in coordination with the product release, not months or years later in the product cycle."

This cooperation by the two bodies led some to theorize that the NSA and Microsoft may have somehow built a backdoor into Windows 7.

Marc Rotenberg, the executive director of the Electronics Privacy Information Center (EPIC), expressed his concern as the NSA has an interest in surveillance as as a part of its efforts in security.

"The key problem is that NSA has a dual mission, COMPUSEC, computer security, now called cyber security, and SIGINT, signals intelligence, in other words surveillance," Rotenberg said in an e-mail.

Microsoft quickly responded to such concerns.

"Microsoft has not and will not put 'backdoors' into Windows," a company spokeswoman said to Computerworld. "The work being discussed here is purely in conjunction with our Security Compliance Management Toolkit."

Of course, that's the expected response and conspiracy theorists won't likely be set easy with just that statement.

"The key point is that the NSA is not the right agency to promote computer security in the private sector," Rotenberg argued. "The risks to end users are real -- the original NSA key escrow proposal, 'Clipper,' was a terrible idea -- and there is too little transparency about these arrangements."

Create a new thread in the US News comments forum about this subject
This thread is closed for comments
Comment from the forums
    Your comment
    Top Comments
  • hixbot
    hakestermanIf your not doing anything majorly wrong you have nothing to worry about.

    This is exactly the attitude that will turn your free country into a controlled state.
    "Only those who break laws need to worry about surveillance". That is so wrong! What happens IF the gov't one day pushes an unjust law (there are arguably many of those right now). If the state has complete surveillance (which you want), and you break that unjust law, you'll go to jail or worse. Society can't allow their privacy and freedoms to be taken away for paranoia of an overblown threat (terrorism, crime, etc). You can't allow your freedoms to be taken so easily under the ruse of national security. Do you know for sure you nation is insecure? Could it be that the media/gov't and private security companies would use your fears to take your freedoms unchallenged?!

    It's true that only criminals have anything to fear from surveillance, but what happens when the definition of, criminal, changes? Do you agree with every law?
  • El_Capitan
    I want the government to have access to my e-mail, bank accounts, telephone conversations, and record on camera my every move. Wait, they do! I feel so safe.

    Hey, how come there's a video of me jacking off on youtube?
  • djackson_dba
    lashtonwhat the fuck does the NSA know about secuirtym hald the 13 year olds here know more

    I can tell you that the NSA has some of the best toys and minds in the business. They even have spellcheck!
  • Other Comments
  • lenell86
    Enemy of the State
  • hakesterman
    Alot of Huppla about nothing. If this helps the FBI catch future terrorists i'm all for it, if your not doing anything majorly wrong you have nothing to worry about. IF your steeling money with your PC or useing it for terrorism activitys than maybe it's not for you. If Microsoft is telling the truth which i think they are, than it's win win for all except the hackers.
  • jellico
    I wouldn't worry so much about Microsoft announcing a collaboration with the NSAs COMPUSEC group. I would be more concerned if there were reports from, "employees speaking on condition of anonymity" about collaboration with the NSA that the company officially denied.

    Besides which, if you're really worried, you can always install a 3rd party, whole disk encryption like TrueCrypt or PGP.