Mikko Hypponen: Three types of online attack

100,267 views ・ 2012-01-18

TED


请双击下面的英文字幕来播放视频。

翻译人员: Emma Zhao 校对人员: Felix Chen
00:20
In the 1980s, in communist Eastern Germany,
0
20624
6701
20世纪80年代
在共产主义的东德,
如果你有一台打字机,
00:27
if you owned a typewriter,
1
27349
3174
00:30
you had to register it with the government.
2
30547
2801
你就得去跟政府登记。
你必须登记
00:33
You had to register a sample sheet of text out of the typewriter.
3
33372
5464
出自那台打字机的
一份文本的样本。
00:38
And this was done so the government could track
4
38860
3551
这样做后,
政府就能跟踪文本出自何方。
00:42
where the text was coming from.
5
42435
1745
如果他们发现一张纸上
00:44
If they found a paper which had the wrong kind of thought,
6
44204
5695
写着错误的观点,
00:49
they could track down who created that thought.
7
49923
3144
他们就能跟踪
是谁产生这样的观点。
而在西方
00:54
And we in the West
8
54369
1594
我们不能理解有人怎么能做这种事,
00:57
couldn't understand how anybody would do this,
9
57154
2682
00:59
how much this would restrict freedom of speech.
10
59860
3177
这将会多么限制言论自由啊。
我们永远不会在我们自己的国家
01:03
We would never do that in our own countries.
11
63061
3276
里这样做。
可是,2011年的今天,
01:08
But today, in 2011, if you go and buy a color laser printer
12
68319
6417
如果你从任何一家大型的激光打印机厂商
01:14
from any major laser printer manufacturer
13
74760
3839
买一台彩色激光打印机
打印出一页,
01:18
and print a page,
14
78623
1437
这页纸最后
01:20
that page will end up
15
80084
1752
01:21
having slight yellow dots printed on every single page,
16
81860
5220
会有一些小黄点
印在每一页上
图案让这页纸是独特
01:27
in a pattern which makes the page unique to you and to your printer.
17
87104
5443
对你和你的打印机都是。
这就是今天
01:34
This is happening to us today.
18
94381
3335
发生在我们身上的。
似乎没有人为此大惊小怪。
01:39
And nobody seems to be making a fuss about it.
19
99358
3082
这是个
01:43
And this is an example
20
103615
2664
展示
01:46
of the ways our own governments are using technology
21
106303
6852
我们的政府
使用科技
来对付我们这些公民们的例子。
01:53
against us, the citizens.
22
113179
2054
这是今天网络问题的
01:57
And this is one of the main three sources of online problems today.
23
117179
4334
三大来源之一。
02:01
If we look at what's really happening in the online world,
24
121537
2990
如果我们看一下在线世界到底发生了什么,
02:04
we can group the attacks based on the attackers.
25
124551
2905
我们根据攻击者来分组。
我们有三个主要的组。
02:08
We have three main groups.
26
128028
1808
02:09
We have online criminals.
27
129860
1439
我们有在线罪犯。
02:11
Like here, we have Mr. Dmitry Golubov,
28
131323
2203
这里,我们有位德米特里 戈卢博夫(Dimitry Golubov)先生
02:13
from the city of Kiev in Ukraine.
29
133550
1976
来自乌克兰的基辅市。
在线罪犯的动机
02:16
And the motives of online criminals are very easy to understand.
30
136419
4417
非常容易理解。
02:20
These guys make money.
31
140860
1594
这些家伙为了赚钱。
02:22
They use online attacks to make lots of money --
32
142478
4254
他们通过在线攻击
赚很多钱,
02:26
and lots and lots of it.
33
146756
1977
很多很多钱。
02:28
We actually have several cases of millionaires online, multimillionaires,
34
148757
5385
我们实际上有好几个案子
都是在线百万富翁,千万富翁,
都是通过在线攻击赚的。
02:34
who made money with their attacks.
35
154166
1760
02:35
Here's Vladimir Tsastsin, from Tartu in Estonia.
36
155950
3502
这里还有来自爱沙尼亚的塔尔图的弗拉基米尔·莎斯森。
这位是阿尔弗雷德·冈萨雷斯(Alfred Gonzalez)。
02:39
This is [Albert] Gonzalez.
37
159476
1795
这是斯蒂芬·瓦特 (Stephen Watt)
02:41
This is Stephen Watt.
38
161295
1775
这是比昂·松丁(Bjorn Sundin)
02:43
This is Bjorn Sundin.
39
163094
1798
02:44
This is Matthew Anderson, Tariq Al-Daour
40
164916
1941
这是马修·安德森( Matthew Anderson),塔利克·阿尔杜(Tariq Al-Daour)
02:46
and so on and so on.
41
166881
2312
等等等等。
这些人
02:50
These guys make their fortunes online,
42
170256
4219
在线挣了很多钱,
但他们挣的钱是非法的
02:54
but they make it through the illegal means
43
174499
2337
02:56
of using things like banking Trojans
44
176860
2695
通过使用类似银行木马
从我们账户偷钱
02:59
to steal money from our bank accounts while we do online banking,
45
179579
3453
当我们在网上进行银行业务,
或者使用键盘记录
03:03
or with keyloggers
46
183056
2250
来收集我们的信用卡信息
03:05
to collect our credit card information
47
185330
2258
03:07
while we are doing online shopping from an infected computer.
48
187612
3561
当我们通过被感染的电脑来在线购物的时候。
美国情报局,
03:11
The US Secret Service,
49
191197
2354
两个月前,
03:13
two months ago, froze the Swiss bank account
50
193575
3022
冻结了萨姆 杰恩先生
03:16
of Mr. Sam Jain right here,
51
196621
2581
在瑞士的银行账户,
那个账户冻结的时候
03:19
and that bank account had 14.9 million US dollars in it
52
199226
3712
帐上有一千四百九十万美金。
03:22
when it was frozen.
53
202962
1391
杰恩先生本人仍逍遥法外;
03:24
Mr. Jain himself is on the loose; nobody knows where he is.
54
204377
3237
没人知道他在哪。
03:28
And I claim it's already today
55
208637
2444
今天我断言
我们当中的任何一位都有可能
03:32
that it's more likely for any of us to become the victim of a crime online
56
212335
5722
成为在线犯罪的受害者
甚至超越现实世界。
03:38
than here in the real world.
57
218081
2370
而且很显然
03:41
And it's very obvious that this is only going to get worse.
58
221691
2945
这种情况越来越糟。
03:44
In the future, the majority of crime will be happening online.
59
224660
4376
将来,大多数的犯罪
会发生在线上。
第二类主要的攻击集团
03:51
The second major group of attackers that we are watching today
60
231488
3348
我们今天观察的
03:54
are not motivated by money.
61
234860
2259
不是出于金钱。
他们的动机源于别处 --
03:57
They're motivated by something else --
62
237143
2103
出于抗议,
03:59
motivated by protests,
63
239270
1977
出于发表意见,
04:01
motivated by an opinion,
64
241271
2212
出于被嘲笑过。
04:03
motivated by the laughs.
65
243507
2171
04:05
Groups like Anonymous have risen up over the last 12 months
66
245702
5525
这些匿名集团
在过去的12个月中很活跃
并且变成了在线攻击领域的
04:11
and have become a major player in the field of online attacks.
67
251251
3956
主要的参与者
这些就是三组主要的攻击者:
04:16
So those are the three main attackers:
68
256287
1832
为了钱的罪犯,
04:18
criminals who do it for the money,
69
258143
2055
匿名的攻击活跃者
04:20
hacktivists like Anonymous doing it for the protest,
70
260222
4499
为了抗议而作的,
04:24
but then the last group are nation states --
71
264745
3202
而最后一组是民族国家,
04:27
governments doing the attacks.
72
267971
2039
政府在攻击。
我们看一下例子
04:32
And then we look at cases like what happened in DigiNotar.
73
272551
3493
就像DigiNotar公司发生的。
这是政府攻击的
04:36
This is a prime example of what happens when governments attack
74
276068
3886
典型例子
04:39
against their own citizens.
75
279978
1696
来反对自己的民众。
DigiNotar是荷兰的
04:42
DigiNotar is a certificate authority from the Netherlands --
76
282412
4987
一个权威证书
或者说它曾经是。
04:47
or actually, it was.
77
287423
1576
它去年秋天遭遇
04:49
It was running into bankruptcy last fall,
78
289023
5222
破产
因为他们遭到入侵。
04:54
because they were hacked into.
79
294269
1768
有人闯进去
04:56
Somebody broke in and they hacked it thoroughly.
80
296061
3364
彻底毁了它。
05:00
And I asked last week,
81
300591
2575
我上周
在与荷兰政府代表开会时问过,
05:03
in a meeting with Dutch government representatives,
82
303190
4123
我问一位领导
05:07
I asked one of the leaders of the team
83
307337
3694
是否他发现有可能
05:12
whether he found plausible that people died
84
312150
5330
有人会
05:17
because of the DigiNotar hack.
85
317504
1784
因为Diginotar攻击而死亡。
他的回答是肯定的。
05:21
And his answer was: yes.
86
321447
2440
那么,究竟如何人们的死亡
05:26
So how do people die
87
326073
2039
归咎于这样一个攻击呢?
05:28
as the result of a hack like this?
88
328136
1706
DigiNotar是一个权威证书。
05:31
Well, DigiNotar is a CA.
89
331049
1787
05:32
They sell certificates.
90
332860
1976
他们卖证书。
05:34
What do you do with certificates?
91
334860
1606
你用证书做什么?
05:36
Well, you need a certificate if you have a website
92
336490
2542
你需要证书的情况会是
你有一个有https的网站,
05:39
that has https, SSL encrypted services,
93
339056
3603
SSL加密服务,
05:43
services like Gmail.
94
343725
2749
类似Gmail的服务。
当今我们所有人或大部分人,
05:47
Now we all, or a big part of us, use Gmail or one of their competitors,
95
347363
3661
使用Gmail或它对手们中的任何一家,
这些服务在极权主义国家
05:51
but these services are especially popular in totalitarian states like Iran,
96
351048
5788
尤其流行
比如伊朗,
05:56
where dissidents use foreign services like Gmail
97
356860
4976
持异议者
使用诸如Gmail的国外服务
06:01
because they know they are more trustworthy than the local services
98
361860
3191
因为他们知道这些比当地的服务更可靠
他们通过SSL的连接加密,
06:05
and they are encrypted over SSL connections,
99
365075
2761
06:07
so the local government can't snoop on their discussions.
100
367860
3304
所以当地政府窥探不到
他们的讨论。
他们也能,如果他们攻击了一个国外权威证书,
06:12
Except they can,
101
372196
1344
06:13
if they hack into a foreign CA and issue rogue certificates.
102
373564
3851
出具伪劣证书。
这恰恰就是发生在
06:17
And this is exactly what happened with the case of DigiNotar.
103
377439
3861
DigiNotar的案子中。
阿拉伯跳是怎么回事?
06:25
What about Arab Spring
104
385109
1992
比如说在埃及发生的那些事?
06:27
and things that have been happening, for example, in Egypt?
105
387125
3311
在埃及,
06:30
Well, in Egypt,
106
390460
1343
06:31
the rioters looted the headquarters of the Egyptian secret police
107
391827
3707
暴徒们洗劫了
埃及秘密警察的总部
06:35
in April 2011,
108
395558
2590
那是2011年4月,
他们洗劫时找到很多文件。
06:38
and when they were looting the building, they found lots of papers.
109
398172
3144
在这些文件中,
06:41
Among those papers was this binder entitled, "FinFisher."
110
401340
3857
有一个名叫FINFISHER的夹子。
夹子中有些笔记
06:45
And within that binder were notes from a company based in Germany,
111
405221
4836
是来自一家德国公司
这家公司卖给埃及政府
06:50
which had sold to the Egyptian government
112
410081
3522
一套工具
06:53
a set of tools for intercepting, at a very large scale,
113
413627
4703
用来截取--
很大比例是
06:58
all the communication of the citizens of the country.
114
418354
3051
国家公众的所有通信。
他们把这套工具
07:01
They had sold this tool for 280,000 euros to the Egyptian government.
115
421429
4876
以28万欧元卖给埃及政府。
公司的总部就在那里。
07:06
The company headquarters are right here.
116
426329
2920
所以,西方政府
07:09
So Western governments are providing totalitarian governments with tools
117
429273
4417
给极权政府提供工具
07:13
to do this against their own citizens.
118
433714
2248
来反对他们自己的民众。
但西方政府也同样对他们自己这样做。
07:17
But Western governments are doing it to themselves as well.
119
437293
2977
比如,在德国,
07:20
For example, in Germany,
120
440294
2171
就是几周前
07:22
just a couple of weeks ago, the so-called "State Trojan" was found,
121
442489
4563
发现一个叫Scuinst Trojan 的
木马病毒
07:27
which was a Trojan used by German government officials
122
447076
3752
被德国政府官方用来
07:30
to investigate their own citizens.
123
450852
2203
调查他们自己的民众。
如果你是一宗刑事案件的嫌疑,
07:33
If you are a suspect in a criminal case,
124
453079
3704
07:36
well, it's pretty obvious, your phone will be tapped.
125
456807
2525
很显然,你的电话会被监听。
可是今天,事情已经超越了。
07:39
But today, it goes beyond that.
126
459356
2242
他们会监视你的网络连接。
07:41
They will tap your Internet connection.
127
461622
1919
他们会用类似Scuinst Trojan的工具
07:43
They will even use tools like State Trojan
128
463565
2736
用一个木马来感染你的电脑,
07:46
to infect your computer with a Trojan,
129
466325
2512
07:48
which enables them to watch all your communication,
130
468861
4366
这样就让他们
监视你所有的通信,
监听你的在线讨论,
07:53
to listen to your online discussions,
131
473251
2817
收集你的密码。
07:56
to collect your passwords.
132
476092
2101
08:01
Now, when we think deeper about things like these,
133
481816
5220
当我们更深的想一下
这些事情,
人们的反应显然应是
08:07
the obvious response from people should be,
134
487060
5314
“对啊,听起来很糟糕,
08:12
"OK, well, that sounds bad, but that doesn't really affect me,
135
492398
4242
但因为我是合法公民,也不会真正影响我啦。
08:16
because I'm a legal citizen.
136
496664
2176
为什么我要担忧呢?
08:18
Why should I worry? Because I have nothing to hide."
137
498864
2723
我没有什么可隐藏的。”
这就是争论所在,
08:23
And this is an argument which doesn't make sense.
138
503373
2447
没什么道理。
隐私是不言而喻。
08:27
Privacy is implied.
139
507237
2809
隐私用不着讨论。
08:30
Privacy is not up for discussion.
140
510070
3665
08:34
This is not a question
141
514538
1872
这不是个
08:36
between privacy
142
516434
4549
隐私
反对安全的问题。
08:41
against security.
143
521007
1690
08:43
It's a question of freedom
144
523729
3555
而是一个
自由反对管制的问题。
08:47
against control.
145
527308
1441
我们2011年的当下
08:50
And while we might trust our governments right now, right here in 2011,
146
530046
6863
会信任我们的政府,
08:56
any rights we give away will be given away for good.
147
536933
3439
我们放弃的任何权力会永远失去。
我们会不会信任未来的政府,
09:00
And do we trust, do we blindly trust, any future government,
148
540396
4581
盲目地信任,
一个50年后的
09:05
a government we might have 50 years from now?
149
545001
3284
政府呢?
这些就是我们要为下一个50年
09:11
And these are the questions
150
551460
2786
而担忧的问题。
09:14
that we have to worry about for the next 50 years.
151
554270
3213
关于本网站

这个网站将向你介绍对学习英语有用的YouTube视频。你将看到来自世界各地的一流教师教授的英语课程。双击每个视频页面上显示的英文字幕,即可从那里播放视频。字幕会随着视频的播放而同步滚动。如果你有任何意见或要求,请使用此联系表与我们联系。

https://forms.gle/WvT1wiN1qDtmnspy7