{"id":134255,"date":"2016-06-10T12:30:20","date_gmt":"2016-06-10T12:30:20","guid":{"rendered":"https:\/\/bm.dev.synology.me\/?p=134255"},"modified":"2016-06-10T12:30:20","modified_gmt":"2016-06-10T12:30:20","slug":"datele-transmise-in-cloud-pot-fi-interceptate-fara-a-lasa-urme","status":"publish","type":"post","link":"https:\/\/bm.dev.synology.me\/?p=134255","title":{"rendered":"Datele transmise \u00een cloud pot fi interceptate f\u0103r\u0103 a l\u0103sa urme"},"content":{"rendered":"<div>\nTransmiterea datelor \u00een cloud, indiferent dac\u0103 este criptat\u0103 sau nu, poate fi interceptat\u0103 \u015fi decriptat\u0103 \u00een timp real de c\u0103tre furnizorii de infrastructuri virtuale, potrivit unei investiga\u0163ii realizate de speciali\u015ftii \u00een securitate cibernetic\u0103 ai companiei de securitate informatic\u0103 Bitdefender. O investiga\u0163ie Bitdefender relev\u0103 c\u0103 traficul criptat transmis spre \u015fi dinspre furnizorii de servicii de virtualizare \u00een cloud poate fi decriptat \u015fi interceptat \u00een timpul transmiterii datelor de c\u0103tre furnizorii de infrastucturi.<\/div>\n<div>\n&nbsp;<\/div>\n<div>\nCercetarea a fost prezentat\u0103 de Radu Caragea, specialist \u00een securitate cibernetic\u0103 al Bitdefender, \u00een cadrul conferin\u0163ei de securitate Hack In The Box, organizat\u0103 la Amsterdam, la sf\u00e2r\u015fitul lunii mai. Concret, o companie care utilizeaz\u0103 servicii de virtualizare \u00een cloud oferite de un furnizor extern nu are nicio garan\u0163ie c\u0103 traficul generat de clien\u0163ii companiei prin utilizarea serviciilor (date de card, adrese de email, tranzac\u0163ii bancare, conversa\u0163ii \u015fi alte date personale) nu poate fi interceptat \u015fi analizat de c\u0103tre furnizorul de servicii de cloud.<\/div>\n<div>\nP\u00e2n\u0103 acum, comunica\u0163iile cu serverele virtuale g\u0103zduite de ter\u0163i erau considerate sigure at\u00e2t timp c\u00e2t erau criptate. Cercetarea denumit\u0103 intern TeLeScope arat\u0103 \u00eens\u0103 c\u0103 operatorii care furnizeaz\u0103 servicii de virtualizare, precum Amazon Web Services, Microsoft Azure, Digital Ocean, pot accesa ne\u00eengr\u0103dit toate comunica\u0163iile clien\u0163ilor, decript\u00e2nd traficul.<\/div>\n<div>\n&nbsp;<\/div>\n<div>\nMetoda descoperit\u0103 de speciali\u015ftii Bitdefender este mai rapid\u0103 fa\u0163\u0103 de cele \u00eencercate anterior \u015fi func\u0163ioneaz\u0103 indiferent de sistemul de operare \u015fi, totodat\u0103, f\u0103r\u0103 s\u0103 afecteze func\u0163ionarea ma\u015finii virtuale, reu\u015find s\u0103 mascheze interceptarea traficului \u00een oscila\u0163ii ale vitezei de re\u0163ea. Av\u00e2nd timpi de oprire de p\u00e2n\u0103 la 0,1 milisecunde, victimele nu vor putea sesiza s\u0103 sunt interceptate \u015fi nu vor putea limita consecin\u0163ele acces\u0103rii traficului de c\u0103tre companiile furnizoare de servicii de virtualizare \u00een cloud.<\/div>\n<div>\n&nbsp;<\/div>\n<div>\nFostul contractor al Agen\u0163iei Na\u0163ionale de Securitate din Statele Unite ale Americii (NSA) Edward Snowden a atras aten\u0163ia \u00een repetate r\u00e2nduri asupra obliga\u0163iei furnizorilor de servicii de cloud de a se asigura c\u0103 fluxurile prin care circul\u0103 informa\u0163ii c\u0103tre servere sunt securizate \u015fi nu pot fi interceptate de c\u0103tre operatori sau de c\u0103tre ter\u0163i. Snowden f\u0103cea trimitere nu doar la furnizorii de infrastructuri cloud, ci \u015fi la capacit\u0103\u0163ile de interceptare ale NSA \u015fi altor servicii secrete, care au poten\u0163ialul s\u0103 afecteze confiden\u0163ialitatea datelor transmise \u00een cloud, inclusiv a celor criptate, f\u0103r\u0103 ca proprietarii datelor s\u0103 \u015ftie. Vulnerabilitatea semnalat\u0103 de cercet\u0103torii Bitdefender confirm\u0103 nevoia de a spori siguran\u0163a transmiterii datelor \u00een cloud.<\/div>\n<div>\n&nbsp;<\/div>\n<div>\n\u00cen momentul de fa\u0163\u0103, singura modalitate de a evita accesarea traficului criptat de c\u0103tre furnizorii de astfel de servicii este utilizarea propriilor servere, \u00een infrastructura companiei care le de\u0163ine.<\/div>\n<div>\n&nbsp;<\/div>\n<div>\n&nbsp;<\/div>\n<div>\n&nbsp;<\/div>\n<div>\n&nbsp;<\/div>\n<div>\n&nbsp;<\/div>\n","protected":false},"excerpt":{"rendered":"<p>Transmiterea datelor \u00een cloud, indiferent dac\u0103 este criptat\u0103 sau nu, poate fi interceptat\u0103 \u015fi decriptat\u0103 \u00een timp real de c\u0103tre furnizorii de infrastructuri virtuale, potrivit unei investiga\u0163ii realizate de speciali\u015ftii \u00een securitate cibernetic\u0103 ai companiei de securitate informatic\u0103 Bitdefender. O investiga\u0163ie Bitdefender relev\u0103 c\u0103 traficul criptat transmis spre \u015fi dinspre furnizorii de servicii de virtualizare [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[510,4139],"tags":[16767,15256,8039,8866,4126,272,7978,362,30001,16687,80,219,15,7745,19707,7663,9638],"class_list":["post-134255","post","type-post","status-publish","format-standard","hentry","category-actualitate","category-it","tag-accesare","tag-amsterdam","tag-bitdefender","tag-cercetare","tag-clienti","tag-companie","tag-furnizori","tag-infrastructura","tag-interceptare","tag-interceptari","tag-refuz","tag-securitate","tag-servicii","tag-specialisti","tag-timp","tag-trafic","tag-virtual"],"_links":{"self":[{"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=\/wp\/v2\/posts\/134255","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=134255"}],"version-history":[{"count":0,"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=\/wp\/v2\/posts\/134255\/revisions"}],"wp:attachment":[{"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=134255"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=134255"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=134255"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}