abusesaffiliationarrow-downarrow-leftarrow-rightarrow-upattack-typeburgerchevron-downchevron-leftchevron-rightchevron-upClock iconclosedeletedevelopment-povertydiscriminationdollardownloademailenvironmentexternal-linkfacebookfiltergenderglobegroupshealthC4067174-3DD9-4B9E-AD64-284FDAAE6338@1xinformation-outlineinformationinstagraminvestment-trade-globalisationissueslabourlanguagesShapeCombined Shapeline, chart, up, arrow, graphLinkedInlocationmap-pinminusnewsorganisationotheroverviewpluspreviewArtboard 185profilerefreshIconnewssearchsecurityPathStock downStock steadyStock uptagticktooltiptwitteruniversalityweb

이 페이지는 한국어로 제공되지 않으며 English로 표시됩니다.

이 내용은 다음 언어로도 제공됩니다: English, 简体中文, 繁體中文

기사

2022년 1월 20일

저자:
孟建国, CADE METZ - New York Times (USA)

China: Report finds security flaws in mandatory Winter Olympics app for athletes

"Security Flaws Seen in China’s Mandatory Olympics App for Athletes" 19 January 2022

The mandatory smartphone app that athletes will use to report health and travel data when they are in China for the Olympics next month has serious encryption flaws, according to a new report, raising security questions about the systems that Beijing plans to use to track Covid-19 outbreaks.

Portions of the app that will transmit coronavirus test results, travel information and other personal data failed to verify the signature used in encrypted transfers, or didn’t encrypt the data at all, according to the report by Citizen Lab, a University of Toronto cybersecurity watchdog. The group also found that the app includes a series of political terms marked for censorship in its code, though it does not appear to actively use the list to filter communications.

China has entered the final planning stages for a Winter Olympics that will seek to control the spread of Covid-19 by keeping athletes and other participants separate from the greater Chinese population. The app, called MY2022, was designed to bolster those precautions, enabling electronic links between the government and participants to contact trace in the event of any outbreaks. It resembles a broader system of app-based health codes used to control population movements in the event of outbreaks.

The new concerns about the app underscore broader worries about censorship and surveillance during the Games in China, which has one of the world’s most sophisticated surveillance and censorship systems. Officials have already said athletes will be given cellular services that will allow them to circumvent widespread blocks on sites like Facebook, Google and Twitter.

In its report, Citizen Lab said it disclosed the security flaws to the Beijing Organizing Committee on Dec. 3 but had not received any response. A January update to the software did not fix the issues, which most likely put the app in violation of China’s newly enacted personal data protection laws, as well as the privacy policies required to list an app on Google’s and Apple’s stores.

Apple and Google did not immediately respond to requests for comment. [...]

타임라인

개인정보

이 웹사이트는 쿠키 및 기타 웹 저장 기술을 사용합니다. 아래에서 개인정보보호 옵션을 설정할 수 있습니다. 변경 사항은 즉시 적용됩니다.

웹 저장소 사용에 대한 자세한 내용은 다음을 참조하세요 데이터 사용 및 쿠키 정책

Strictly necessary storage

ON
OFF

Necessary storage enables core site functionality. This site cannot function without it, so it can only be disabled by changing settings in your browser.

분석 쿠키

ON
OFF

귀하가 우리 웹사이트를 방문하면 Google Analytics를 사용하여 귀하의 방문 정보를 수집합니다. 이 쿠키를 수락하면 저희가 귀하의 방문에 대한 자세한 내용을 이해하고, 정보 표시 방법을 개선할 수 있습니다. 모든 분석 정보는 익명이 보장되며 귀하를 식별하는데 사용하지 않습니다. Google은 모든 브라우저에 대해 Google Analytics 선택 해제 추가 기능을 제공합니다.

프로모션 쿠키

ON
OFF

우리는 소셜미디어와 검색 엔진을 포함한 제3자 플랫폼을 통해 기업과 인권에 대한 뉴스와 업데이트를 제공합니다. 이 쿠키는 이러한 프로모션의 성과를 이해하는데 도움이 됩니다.

이 사이트에 대한 개인정보 공개 범위 선택

이 사이트는 필요한 핵심 기능 이상으로 귀하의 경험을 향상시키기 위해 쿠키 및 기타 웹 저장 기술을 사용합니다.