Google, Mozilla, and Apple are using this one weird trick to block Kazakhstan's surveillance of its own citizens
Google and Mozilla are making changes to their respective web browsers to try and thwart the notoriously corrupt government of Kazakhstan's efforts to launch a surveillance operation against its own citizens.
Google (Chrome), Mozilla (Firefox), and now Apple (Safari) are all blocking a root certificate from the Kazakhstan government in their browsers which could be used to intercept encrypted traffic that goes to and Facebook, Gmail, Twitter, or any other news or communication app people might be using there.
Google and Mozilla were first to take action. Later today, an Apple spokesperson began telling reporters that Safari is now also blocking the root certificate as well.
We have taken action to ensure the certificate is not trusted by Safari and our users are protected from this issue, said the unnamed Apple spokesperson.
Better late than never, but these moves by US-based tech companies are too late to protect all Kazakh users from harm. The Kazakhstan government launched the root certificate last month, and since then, the government has been able to monitor the encrypted internet activity of any users who installed it.
From Engadget's Amrita Khalid:
Read the restThe nation forced ISPs to cooperate by making it mandatory for all customers to install the certificate in order to gain access to the internet.
Turns out that the root certificate was a Trojan Horse. It allowed the Kazakhstan government to perform a "man-in-the-middle" or MitM attack against HTTPS connections to a list of 37 domains, including Facebook, Twitter, Google and more, according to a study published by University of Michigan's Censored Planet.
Original Link: http://feeds.boingboing.net/~r/boingboing/iBag/~3/ZsX-PL6ovzU/google-mozilla-and-apple-are.html