Latest Expert Witness News

China's Green Dam software is not safe

The Chinese government's plan to install content-filtering software on all PCs sold in the country could throw open the gates to a massive security breach. Called Green Dam-Youth Escort, the locally developed software has to be installed on all new computers sold in the country since July 1. The same rules apply to PCs that are imported into China

The code uses a variety of safe programming practices such as the use of the "Strcpy" function, which is a potential vector for a buffer overflow attack. It is argued that any vulnerability in Green Dam-Youth Escort could well result in the creation of a botnet of unprecedented size in the country. Experts state that the software appears to be of low quality and to have not been developed with a secure methodology, and It is likely to suffer from a whole host of problems.

back