[liberationtech] Microsoft Teams?

Thu Apr 9 21:44:22 CEST 2020

The biggest issue with Zoom that I see is their big claim to be end to end
encrypted.  While TECHNICALLY they are end to end encrypted, they failed to
mention that their servers were issuing the encryption keys and therefore
making the end to end encryption worthless.

https://products.office.com/en-us/microsoft-teams/security

Microsoft doesn't claim end to end encryption, they say in transit and
while at rest.  So if they yank a bad hard drive and throw it out, the data
on the thrown out hard drive will be encrypted, but that is basically them
saying "Yes, we can view your data and if requested, we can give it over to
the authorities".

Now I would hope the teams product that NASA is using is a product special
to the US gov't, otherwise the Teams data is probably being replicated to
foreign data centers..

I know DOD has a special version of MS Teams running which is supposed to
be a stripped down version (and it's probably running on the Azure for
gov't infrastructure to prevent the data from replicating outside US
territory).  https://www.cloud.mil/CVR/

Off topic:
Have you seen the meme about Bill Gates working on a COVID-19 vaccine that
says something to the effect of look at how windows updates are handled, do
you really want him dealing w/ human updates?

On Thu, Apr 9, 2020 at 2:45 PM Andrés Leopoldo Pacheco Sanfuentes <
alps6085 at gmail.com> wrote:

> I’d love for NASA secret to be revealed due to a Microsoft security flaw!
> 😈
>
> Which may as well happen given that security and protection issues are in
> the hands of Microsoft, not on NASA’s, according to your brief account:
>
> It seems to work outside of our VPN.
> But we’re told not to put high-security stuff on it...
>
>
> Best Regards | Cordiales Saludos | Grato,
>
> Andrés L. Pacheco Sanfuentes
> <alps at acm.org>
> +1 (347) 766-5008
>
> On Apr 9, 2020, at 1:32 PM, Rand Strauss <Rand at PeopleCount.org> wrote:
>
> Thanks for the info about Zoom.
>
> Is Microsoft Teams secure?
> Microsoft seems to think so:
> https://www.brainstorminc.com/blog/microsoft-teams-how-secure-is-it-really-a-rundown/
>
> I work (for a contractor) at NASA, and they seem concerned about security
> and use all Microsoft products for chat, file sharing and meetings.
> It seems to work outside of our VPN.
> But we’re told not to put high-security stuff on it...
>
> Teams chat is not as good as Slack for a bunch of reasons, but we’re told
> not to use Slack…
> ymmv,
> -r
> --
> Liberationtech is public & archives are searchable from any major
> commercial search engine. Violations of list guidelines will get you
> moderated: https://lists.ghserv.net/mailman/listinfo/lt. Unsubscribe,
> change to digest mode, or change password by emailing
> lt-owner at lists.liberationtech.org.
>
>
> --
> Liberationtech is public & archives are searchable from any major
> commercial search engine. Violations of list guidelines will get you
> moderated: https://lists.ghserv.net/mailman/listinfo/lt. Unsubscribe,
> change to digest mode, or change password by emailing
> lt-owner at lists.liberationtech.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ghserv.net/pipermail/lt/attachments/20200409/4cde2ee8/attachment-0001.html>