中国监视 Skype - 微软假设你同意被监视

拥有 2.5亿月用户使用量, Skype 是打网络电话和聊天最流行的平台. 如果你有国外的朋友,家人或业务往来可能都在使用Skype保持联系 说了这么多,你可能不知道中国审查机构可以监控你所有的电话和文字聊天如果你知道这种监控的话,很可能你不会同意这样的监控但是,微软假设同意被监视,见他们的隐私政策:

如果适当的司法、执法或政府权力机构依法提出要求,Skype、Skype当地合作伙伴或提供通讯服务的运营商或公司将应要求提供个人资料、通讯内容和/或流量资料。 Skype会提供必要协助和信息以满足该要求,而您特此同意Skype进行此等披露。

来自 SKYPE隐私政策

执行多年 - 但大部分Skype用户却不知情

Skype与TOM网合作多年,在中国市场,其在 "当地政策和法规" 下运作。这种运作方式已经被知道了很长时间了。比如, 人权观察组织在2006年从Skype得知以下回答, 当Skype被问及与Tom的合作时:

Skype尽力遵守我们做生意国家的当地所有适用的法律及法规,中国也不例外在中国,我们一个合资企业,TOM在线TOM公司的主要股东该合资企业提供了一个联合品牌的Skype软件TOM-Skype。为了符合政府的政策,TOM在线必须在TOM-Skype中使用文本过滤如果发现信息因为特定的文本不适合被传输,该消息不会在用户之间被传输这是一个自动过程文本聊天有效。语音通信不适用于这个过滤

来自 附录XI:人权观察组织对Skype提问和Skype的回应.

Skype的回应 "这是一个自动过程文本聊天有效" 不太可能是真的. TOM在线是一家中国公司必须根据当地法律,法规来经营如果当局提出请求,来获得一个给定用户通信数据他们必须遵守为了遵守他们必须要存储的数据我们可以假设,所有通过TOM服务器的通信数据 - 包括文本和语音 - 都被保存,并应要求对相关机构提供当然,这也适用于总部设在中国其他服务新浪微博和腾讯微信 Skype和微软是外国品牌当涉及到隐私时,通常被认为更值得信赖的在这种情况下,Skype和微软枉费了用户的信赖。

 

2008年,Information Warfare Monitor和ONI亚洲 发表了分析中国的TOM-Skype平台的监控和安全措施。他们的主要调查结果如下:
  • TOM-Skype用户,或者与TOM-Skype用户通讯的Skype用户全部文字聊天消息,会被定期扫描敏感的关键词如果找到关键词,所产生的数据上传并存储中国服务器
  • 这些文字聊天消息以及包含个人信息记录数以百万计。它们被存储在不安全,却可公开访问的Web服务器。对加密数据进行解密的密钥也储存在这种服务器上
  • 被捕获的消息包含特定关键字包含敏感的政治议题如台湾独立,法轮功,反对中国共产党
  • 我们的分析表明监控不完全是因关键字触发的许多捕捉消息包含了日常用语,不可能是敏感关键字。这表明可能有其他标准,比如特定用户名,确定信息是否被捕获

虽然这种状况已经公开了多年,大多数Skype用户可能不知道TOM-Skype和原版Skype之间的差异很多在自己的电脑上运行TOM-Skype的用户可能对两者的区别并不知情,错误的认为它是常规的Skype,并信任微软通话和聊天数据进行保密处理

原版 Skype 也可能被监控

更糟的是,即使您运行的是原版Skype,如果你的人聊天或通话人适用了TOM版本,您的通信仍然被监控可能提供给中国当局我们没有办法知道其他人使用是什么版本正如上述所讨论的,很多人都不知情使用TOM-Skype。这意味着不论你是否在中国,不论你使用的是原版Skype或TOM版本不论认为你的聊天是否中国政治上有争议你的通信数据都可能被存储中国的服务器与中国政府分享

服务器测试

我们已经测试了三种版本的Skype英文原版,英文版本的Tom Skype的和中文版的Tom Skype以下是客户端登陆和进行测试通话时对IP地址的连接所有版本的Skype都对不同服务器进行了连接,不同客户端的IP地址的连接也有重叠服务器是被随机选择的,重要的是,只有TOM-Skype位于中国的服务器进行通信原版Skype只位于中国境外服务器进行通讯

 

IP国家skype 原版Tom Skype 英文版Tom Skype 中文版
212.8.166.36Belgium--
110.81.238.33China-
117.25.148.250China--
117.79.81.133China--
180.149.134.221China--
180.149.134.224China--
211.100.40.15China--
211.100.40.173China-
211.100.41.100China--
211.100.41.18China--
211.100.41.32China--
211.100.41.62China--
211.100.41.63China--
211.100.41.76China-
218.30.111.75China-
218.30.66.187China--
218.6.12.214China-
218.6.20.11China--
219.232.255.99China-
220.162.97.165China-
61.160.200.197China--
204.9.163.184Estonia-
204.9.163.200Estonia--
204.9.163.204Estonia-
204.9.163.247Estonia
212.187.172.78United Kingdom--
213.146.189.234Ireland--
213.146.189.237Ireland-
213.146.189.239Ireland--
213.199.179.150Ireland--
239.255.255.250Ireland
93.46.8.89Italy--
193.95.154.38Luxembourg--
78.141.179.11Luxembourg--
78.141.179.16Luxembourg--
91.190.216.24Luxembourg--
91.190.216.25Luxembourg--
91.190.216.53Luxembourg--
111.221.77.154Singapore--
149.13.32.15US--
149.13.32.246US--
149.13.32.251US--
157.55.56.150US--
157.56.52.29US--
184.25.105.161US--
184.26.82.161US--
184.87.201.195US--
207.46.70.164US--
207.46.70.208US-
207.46.70.225US--
23.10.143.139US-
64.4.21.39US--
64.4.34.81US--
64.4.45.58US--
64.4.61.152US--
64.4.61.205US--
64.4.9.158US-
65.54.165.64US--
65.55.239.146US--
69.171.234.37US--
69.31.119.171US--
74.125.128.95US-

如何区分原版和TOM版本

下载

下载Skype,可能在你的浏览输入www.skype.com来寻找下载链接但是如果你是在中国,当你访问www.skype.com会被自动重定向到http://skype.tom.com Skype不会询问你是否希望被重定向他们还没有告知原版Skype与TOM版本之间的差异网站也看起来非常相似。 Skype和微软正在积极误导用户,让用户以为他们正在使用原版Skype

原版 SkypeTom Skype (英文版)Tom Skype (中文版)

安装

英文版的Tom Skype在安装时与原版skype一模一样。中文版的是由旧版的Skype改编而来,所以看起来有一些差异 (点击下面的截图来看大图)

原版 SkypeTom Skype (英文版)Tom Skype (中文版)

登陆

登陆界面非常相似, 误导用户,让其以为正在只用原版.

原版 SkypeTom Skype (英文版)Tom Skype (中文版)

关于

如果您单击以Skype客户端关于”窗口你可以知道你运行的是不是TOM在线的Skype版本如果那么你的通信通过中国的服务器应要求提供给政府机构

原版 SkypeTom Skype (英文版)Tom Skype (中文版)

如何在中国下载Skype原版

普通版的Skype在中国没有被封锁因为Skype和微软下载原版客户端是困难每当你试图访问www.skype.com,你会被重定向到skype.tom.com一种解决方案是使用VPN或其他翻墙工具来下载的Skype这样,你可避免自动重定向到tom.skype.com

如果你没有VPN, 目前你可以访问 https://beta.skype.com 来下载。在这个网站上,他们也不会强迫用户重定向到Tom-Skype

另一种解决方案是从第三方网站下载比如Yahoo. 他们会重定向至 download.skype.com,在中国也可以正常访问: SkypeSetupFull.exe.

这假设你使用Windows. 如果你使用 Mac, 你可以从 Softonic 下载. 如果你使用 Linux, 这里是直接下载的地址.

附加另外一层安全措施, 你可以使用VPN来使用Skype. 如果你使用代理服务器,并想让Skype强制使用代理服务器, 最好的解决方案是使用本地防火墙来阻止Skype访问除代理服务器以外的地址。

记住,如果另一端的人使用的是Tom-Skype的那么你的通信仍然被Tom监控你可以问和你对话的人,让他们检查Skype客户端,打开关于窗口,以验证他们运行的是什么版本对比看上面的截图)。

欺骗

通过对中国用户没有任何通知的情况下重定向到Tom Skype,微软正在积极地误导用户,让其认为他们正在下载原版Skype客户端通过阻止中国用户下载原版Skype微软正在积极为中国用户绕过​​监控制造障碍通过提供两个看起来几乎相同的Skype客户端虽然其隐私影响很大的不同微软误导用户相信他们的产品因为不通知对方用户正在使用Tom-Skype微软正在向中国当局提供世界各地的Skype通话并假定用户同意这种做法

这是一个已经持续了好几年的隐私丑闻微软最起码应该明确的Skype客户之间的差异让中国用户下载原版客户端通知Skype用户如果对方使用的是TOM在线的Skype。 微软也应该向全体Skype用户道歉,因为其可能将所有用户的隐私聊天与中国政府分享。

如果你认识任何在微软员工让他们知道你是怎么想在互联网上分享此故事来提高对这个问题认识

Skype将取代Messenger

微软最近宣布Windows Live Messenger将退休,用户将被转移到Skype然而,“Windows Live Messenger将继续在中国运营而且微软没有宣布服务终止日期这可能是因为微软不乐意与TOM合作媒体在7月的报道,TOM可能会失去在中国运营Skype的权利无论微软是否继续的SkypeMessenger客户端一个或两个无论他们是否与当地企业合作我们希望他们停止监视用户,停止与中国当局共享的私人数据

Skype的代替方案

你可能会决定Skype不值得被使用, 无论你在不在使用Tom版本. 一种代替方案是使用Google Talk, 虽然此服务在中国不稳定 (除非你使用VPN). 还有其他的代替方案么? 欢迎评论.

评论

更多博客文章

订阅 email
显示 博客 | Google+ | Twitter | 全部 的消息. 使用 RSS 订阅我们的博客。

星期三, 3月 19, 2014

Bing Bests Baidu Censorship

Abstract

Independent research from Xia Chu has shown that, in addition to non-China content, Bing censors a vast amount of content that is hosted inside China and which is not censored by China-based internet companies like Baidu. After communicating our issues with Microsoft, Bing removed certain censorship rules (kudos to Bing), but much work remains to be done.

We recently called for Microsoft to release its transparency report for Bing (as have others - full disclosure, Rebecca sits on our advisory board).  Microsoft has yet to respond to this request. But Xia’s independent research of Bing’s China censorship policy could be regarded as a de facto transparency report for the search engine.

In this thorough study, the results of which we have verified, Xia examined Bing's SERP (search engine results page) for over 30,000 sensitive and nonsensitive query terms, and launched these queries from both inside and outside of China. Comparing and examining these results, plus querying with special search operators, reveals unprecedented detail on Bing's China filtering practices.

The main findings from Xia’s research include:

  • Bing has a list of “forbidden” terms where no results are shown. 139 such terms have been identified.

  • Bing has a blacklist of websites that it never shows to China users. 329 such websites are identified. (5 have been lifted after our communication with Microsoft.)

星期四, 2月 13, 2014

Setting Bing's Broken Record Straight

We can also now trace complicit Bing Chinese censorship back to 2009 as highlighted by Nicholas Kristof. It looks like Microsoft has indeed changed its censorship mechanism after our research made headlines this week. But Bing is still seriously flawed on two fronts: its algorithm favors pro-Chinese government websites by default on all search terms in simplified Chinese and their front end mistakenly delivers explicit censorship of search results on some search terms for users from all over the world.

星期三, 2月 12, 2014

No error here: Microsoft deploying Chinese censorship on global scale

Microsoft says: “The results themselves are and were unaltered outside of China”. This is simply not true.

星期二, 2月 11, 2014

Bing在全球实行中国式审查

星期四, 1月 23, 2014

中国在”精英的海外资产“报道后大量封锁外媒网站

国际调查记者同盟发布“机密文件披露中国精英的海外资产”后,中国大量封锁外媒网站。 以下网站都是因为转发此新闻被封锁。以往中国很少封锁外语网站。

网站

主语言

文章

http://www.icij.org

英文

中文

http://www.theguardian.com

英文

英文

使用 RSS 订阅我们的博客。

评论

文章很直接地说微软怎么怎么逼着中国用户使用tom版skype,但忘了一个事实:微软收购skype之前的几年,中国用户访问skype官网已经会被重定向到tom skype网站。
Skype替代方案,语音方面没有,文字聊天可用retroshare,安全性非常高,确定是非常难用。

vox.io

@bonny 确实,但我们希望微软收购Skype后能对此有所改进。

Google Hangouts are a good alternative to Skype video chats

simply use XMPP by installing Jitsu and entering your Gmail/GMX/Yandex/Lavabit/... account data! Make sure OTR and ZRTP encryption is enabled!

Jitsi is the name

"If the authorities make a request for communication data for a given user they have to comply. To comply, they have to store the data."
I disagree when you say they TOM has to store the data: the authorities could instead request the future communications to be recorded, such as has been the case with phone tapping for years...

"We can assume that all communication data - including both text and voice - passing through Tom's servers is saved and made available to authorities upon request."
No, we can't! This is a serious accusation, you can't just assume it without proper proof.

1. MS bought Skype, Skype had a deal with tom.com, a deal is a deal
2. Redirection could be caused by GFW through DNS hijacking, you didn't investigate on that front.
3. What's the alternative? Break the local law and be forced out of China? Google did that, and that is no hero. Something is better than nothing.

Tencent QQ? It's a Chinese, it's solid (much better than any MSN or Skype) and because it's not made in the West it's probably more under the radar. Just my personal opinion, maybe I'm wrong.

LoicAG: They could indeed be storing data selectively. You can't know what they are storing. Based on what we know about how Internet companies are run in China, we guess that they store everything. If they don't, and they authorities request certain data, they wouldn't be able to supply it and it could hurt their business. It's important to note that in China none of this is regulated by law.

http://www.scribd.com/doc/13712715/Breaching-Trust-An-analysis-of-survei... shows that what Skype said officially (that no messages were logged) was not true. It also concludes that not only messages containing certain sensitive keywords are logged. Whether or not all conversations are logged is anyones guess.

Yes, it's a serious accusation and we stand by it. If Microsoft can prove otherwise we'll be happy to revise our position. So far, they've made no statement. Previous statements by Skype, before Microsoft bought it, have been demonstrated to be false.

if you don't need video conferencing, then use TeamSpeak

Anonymous:
1. Any deal can be revised. As we write at the end of the story, Microsoft may be considering breaking their deal with Tom altogether (nor out of privacy concerns, though).
2. Many domains are indeed DNS poisoned. None of them resolve to a website that works, as far as we know. Skype's partnership with Tom is official. This makes us believe that it's unlikely that www.skype.com is DNS poisoned.
3. What Microsoft could do: Make the differences between the official Skype and Tom Skype clear. Offer Chinese users the opportunity to choose what client they want to use. Warn regular Skype users if the user at the other end of the conversation is using Tom. Apologize to Skype users that this has not happened earlier and that their private data may have been shared with the Chinese authorities. There is no law in China that would prohibit Microsoft from doing any of this.

What about Jitsi? Supports ZFone.

I suggest users worried about privacy check out xmpp servers and the buddycloud protocol running obviously top of it.

@Anonymous It's a even worse idea to use Tencent QQ. All data could be retained on their server and could be accessed by Chinese gov.

QQ is heavily bloated, its a bloated spyware. The chinese version is bundled with many components, QQ doctor is a trojan scaner by Tencent. Do you really believe it merely scans for trojan ? What about make some file digest and submit them during update or in crash report ? The user have no idea what is it scanning for.

Ekiga is perfect for replacing Skype. It's FOSS (Free and Open Source Software), and in Iran, it is not filtered, so maybe in China too ;-)

beta.skype.com is also redirected to skype.tom.com.

Unfortunately, beta.skype.com is now also redirected to tom.

@peter @chen Indeed Skype strengthens the self-censorship to redirect the beta version
Please use the yahoo method instead.

Beginning with iOS and coming soon to Android, Yelp customers will now be capable of write
evaluations directly within the cellular app.
The brand new characteristic is an indication of how Yelp is trying to get
customers to spend more time in its mobile apps.
facebook app development

Et salut, Je voulais affirmer que cet article est vraiment génial!!

Je vous souhaite de prospérer comme ça, et de disposer de toujours plus
de petits visiteurs, car le blog est au top du
top!
Mes salutations et à bientôt!

Review my web site: Briquet USB

Now that Google Hangouts are out there is definately another alternative. I learned how to use Google Hangouts with this course call Google Hangouts Mastery. I was able to pick it up super quickly and now can use it to talk to my mom or set up a business meeting. Love it.

添加新评论

Filtered HTML

  • 自动将网址与电子邮件地址转变为链接。
  • 允许的HTML标签:<a> <em> <strong> <cite> <blockquote> <code> <ul> <ol> <li> <dl> <dt> <dd>
  • 自动断行和分段。

Plain text

  • 不允许HTML标记。
  • 自动将网址与电子邮件地址转变为链接。
  • 自动断行和分段。
By submitting this form, you accept the Mollom privacy policy.