Coding barrier lets hackers browse

THE ABILITY of companies to protect themselves against hackers who prowl the Internet computer network is being hampered by government regulations that bar the introduction of new security-coding, or encrypting, software.

In the United States, companies such as AT&T, Citibank and Lehman Brothers and governmental organisations such as the National Aeronautics and Space Administration have been moving quickly to install a 'user authentification' package called Cygnus Network Security (CNS).

But Internet users in the UK have been denied this opportunity by both the British and US governments. John Leach, an IT expert at Zergo, the computer security firm, says that the US regards encrypting software as unexportable military equipment while the British government views such software as 'a worrying means of avoiding government surveillance'.

Alarm bells rang last month when it was revealed that thousands of passwords had been stolen from Internet, a web that links some three million home and business computers round the world. Rob Whitcher, an expert in computer security at IBM in the UK, said that the Computer Emergency Response Team (CERT), the US agency responsible for Internet security, was warning that companies whose internal networks were linked to Internet could be powerless to prevent access by an outsider with the password.

CNS was developed by Cygnus Support, a Californian computer company, to prevent such security breaches. It hides users' passwords in encrypted messages, making hacking virtually impossible.

CNS is based on another security package, Kerberos, developed by the Massachusetts Institute of Technology, but is more popular commercially because it is easier to install and use. CNS uses a third party, known as the 'authorisation server', to verify the identity of any user who tries to gain access to external computers. It does this by issuing temporary encrypted tickets that the user then sends over the Internet system to the client computer. The client computer in turn asks the key distribution centre to authenticate identity.

'The response has been amazing,' said Simon Elphick, a sales manager at Cygnus Support. 'We have been swamped with calls from businesses, universities and government institutions concerned that their internal security is at risk.'

However, the US departments of commerce and defence, citing prohibitions in the Munitions Act, will not allow the export of such encrypting devices. 'Just as one can't sell weapons abroad, so one can't export encryption machines,' Mr Leach explained.

'Everyone, bar the government, thinks the law is wrong,' observed David Henkel-Wallace, co-founder of Cygnus Support. 'Our encoder is clearly not a munition. It should be available internationally, through Internet.'

MIT tried to overcome the problem by developing an exportable version of Kerberos called 'Bones', which has no encrypter. But without encryption, thieves can still find the password. Adding encryption to Bones after export is complicated, as the programme does not have the necessary 'hooks' - special gaps in the programming where one is prompted to insert the encrypting commands.

Mr Elphick said that it was possible that both CNS and Kerberos were being exported illegally. CNS is hidden on the Internet in a private directory that changes its name every day. Users can gain access to the file name only if they fax a request to Cygnus from within the US. 'Of course, there is nothing to stop these companies passing on the directory name to sister companies abroad, but at least we won't be liable,' Mr Elphick said.

It is even easier to export Kerberos illegally. To find its hidden directory, one has first to read its Read Me file, which explicitly states that firms cannot use Kerberos outside the US. However, no proof of US residence is then needed to enter the file.

(Photograph omitted)

Start your day with The Independent, sign up for daily news emails
ebooks
ebooksAn introduction to the ground rules of British democracy
Latest stories from i100
Have you tried new the Independent Digital Edition apps?
SPONSORED FEATURES
Independent Dating
and  

By clicking 'Search' you
are agreeing to our
Terms of Use.

iJobs Job Widget
iJobs Money & Business

Recruitment Genius: Sales Executive / Foreign Exchange Dealer - OTE £40,000+

£16000 - £40000 per annum: Recruitment Genius: A Foreign Exchange Dealer is re...

SThree: Experienced Recruitment Consultant

£20000 - £40000 per annum + OTE + Incentives + Benefits: SThree: Established f...

SThree: Trainee Recruitment Consultant

£20000 - £25000 per annum + OTE 40/45k + INCENTIVES + BENEFITS: SThree: The su...

Recruitment Genius: Collections Agent

£14000 - £16000 per annum: Recruitment Genius: This company was established in...

Day In a Page

The long walk west: they fled war in Syria, only to get held up in Hungary – now hundreds of refugees have set off on foot for Austria

They fled war in Syria...

...only to get stuck and sidetracked in Hungary
From The Prisoner to Mad Men, elaborate title sequences are one of the keys to a great TV series

Title sequences: From The Prisoner to Mad Men

Elaborate title sequences are one of the keys to a great TV series. But why does the art form have such a chequered history?
Giorgio Armani Beauty's fabric-inspired foundations: Get back to basics this autumn

Giorgio Armani Beauty's foundations

Sumptuous fabrics meet luscious cosmetics for this elegant look
From stowaways to Operation Stack: Life in a transcontinental lorry cab

Life from the inside of a trucker's cab

From stowaways to Operation Stack, it's a challenging time to be a trucker heading to and from the Continent
Kelis interview: The songwriter and sauce-maker on cooking for Pharrell and crying over potatoes

Kelis interview

The singer and sauce-maker on cooking for Pharrell
Refugee crisis: David Cameron lowered the flag for the dead king of Saudi Arabia - will he do the same honour for little Aylan Kurdi?

Cameron lowered the flag for the dead king of Saudi Arabia...

But will he do the same honour for little Aylan Kurdi, asks Robert Fisk
Our leaders lack courage in this refugee crisis. We are shamed by our European neighbours

Our leaders lack courage in this refugee crisis. We are shamed by our European neighbours

Humanity must be at the heart of politics, says Jeremy Corbyn
Joe Biden's 'tease tour': Could the US Vice-President be testing the water for a presidential run?

Joe Biden's 'tease tour'

Could the US Vice-President be testing the water for a presidential run?
Britain's 24-hour culture: With the 'leisured society' a distant dream we're working longer and less regular hours than ever

Britain's 24-hour culture

With the 'leisured society' a distant dream we're working longer and less regular hours than ever
Diplomacy board game: Treachery is the way to win - which makes it just like the real thing

The addictive nature of Diplomacy

Bullying, betrayal, aggression – it may be just a board game, but the family that plays Diplomacy may never look at each other in the same way again
Lady Chatterley's Lover: Racy underwear for fans of DH Lawrence's equally racy tome

Fashion: Ooh, Lady Chatterley!

Take inspiration from DH Lawrence's racy tome with equally racy underwear
8 best children's clocks

Tick-tock: 8 best children's clocks

Whether you’re teaching them to tell the time or putting the finishing touches to a nursery, there’s a ticker for that
Charlie Austin: Queens Park Rangers striker says ‘If the move is not right, I’m not going’

Charlie Austin: ‘If the move is not right, I’m not going’

After hitting 18 goals in the Premier League last season, the QPR striker was the great non-deal of transfer deadline day. But he says he'd preferred another shot at promotion
Isis profits from destruction of antiquities by selling relics to dealers - and then blowing up the buildings they come from to conceal the evidence of looting

How Isis profits from destruction of antiquities

Robert Fisk on the terrorist group's manipulation of the market to increase the price of artefacts
Labour leadership: Andy Burnham urges Jeremy Corbyn voters to think again in last-minute plea

'If we lose touch we’ll end up with two decades of the Tories'

In an exclusive interview, Andy Burnham urges Jeremy Corbyn voters to think again in last-minute plea