Yahoo bolsters encryption after NSA datacenter link tapping

Yahoo bolsters encryption after NSA datacenter link tapping

Summary: Yahoo is following Google's footsteps to encrypt traffic in-transit, following reports that the U.S. government is tapping the links between its global datacenters.

SHARE:
TOPICS: Security
3
google-cloud-exploitation1383148810-620x466
Meet the National Security Agency's MUSCULAR program, which is able to tap into the links between Google (shown) and Yahoo datacenters (Image via The Washington Post)

Following the spate leaks by former U.S. government contractor Edward Snowden, Yahoo will follow Google's move by encrypting its global traffic. 

On the company blog posted Monday, Yahoo chief executive Marissa Mayer noted the leaks over the past six months, and reiterated that Yahoo has "never given access to our datacenters to the NSA or to any other government agency."

Codenamed "Muscular," the NSA works in conjunction with its British counterparts at GCHQ to intercept the cables between the two Internet giants' datacenters around the world.

As part of efforts to counter U.S. government surveillance, Yahoo will introduce encryption to all of its products — currently only Yahoo Mail currently supports HTTPS with a 2048-bit key — by January 8, 2014, a little over two months from Monday's announcement.

Also, Mayer said the company would, by the end of the first quarter of 2014, encrypt all data between Yahoo datacenters.

Users will additionally be given an option to encrypt all data to and from Yahoo by the end of the first three months of 2014.

Yahoo said it will work with international partners to offer HTTPS-enabled co-branded email services.

Google recently added its own layer of encryption to internal datacenter traffic in order to subvert the U.S. government's clandestine efforts to snoop on customer data without a formal, presented warrant.

The reason why it was not encrypted in the first place was because, according to two Google engineers who recently posted their own visible anger at the NSA's spying operations, the data was considered outside the reach of the U.S. government.

Google and other companies spend vast amounts on leasing fiber optic cables from companies in order to keep their data off the "public" Internet.

Topic: Security

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

3 comments
Log in or register to join the discussion
  • And the FISA order

    to hand over the key will be coming in 5, 4, 3, 2, ........
    cHarley1200
    • Under the veil of secrecy

      There's one country where they are not even allowed to say they received one of those orders. If the company lets anyone know, the information police will come and arrest the company's CEO.

      What a funny world we live in. Nobody seems to care that much.
      Vbitrate
      • Lol. Just one

        I can rip off a few off the top of my head. China, Russia, Venezuela, Cuba. I make this statement with zero facts. But it's sad that we are lumping ourselves in with them.
        Johnpford