Android's very real 'Master Key' vulnerabilty
July 15, 2013
Android Master Key cryptography ensures applications are not tampered with. Michael P. Kassner interviews researchers who say the crypto process is severely flawed.
Something that could affect 900 million people in a bad way is more than enough incentive for me to stop the presses on a nearly-completed article, and begin a new one two days before deadline.
What caused my radical turnabout? The Android vulnerability that tech-news outlets are all fired up about, even though it’s something only super-crypto geeks truly comprehend. Terms like Master Key, APK, and cryptographic signature are scattered throughout the technical reports I “attempted” to understand; but the only thing I got for my effort was a headache.
Cybercrime and How it Affects You
What is Cybercrime?
Cybercrime is a term that covers a broad scope of criminal activity using a computer. Some common examples of cybercrime include identity theft, financial fraud, web site defacements and cyber bullying. At an organizational level, cybercrime may involve the hacking of databases and theft of intellectual property or confidential information. Many users think they can protect themselves, their accounts, and their computers at home with just anti-spyware and anti-virus software. At work, many employees believe that the organization will provide all the protection needed, so they think they don’t need to be concerned about their cyber-activity. Cyber criminals are becoming more sophisticated and they are targeting consumers as well as public, private and state organizations. Therefore, additional layers of defense are needed.
Last updated: July 29, 2013