{"id":76866,"date":"2025-04-20T04:26:58","date_gmt":"2025-04-20T02:26:58","guid":{"rendered":"https:\/\/www.infokuryr.cz\/n\/?p=76866"},"modified":"2025-04-20T04:27:49","modified_gmt":"2025-04-20T02:27:49","slug":"informator-odhalil-masivni-bezpecnostni-chyby-britskych-digitalnich-dokladu","status":"publish","type":"post","link":"https:\/\/www.infokuryr.cz\/n\/2025\/04\/20\/informator-odhalil-masivni-bezpecnostni-chyby-britskych-digitalnich-dokladu\/","title":{"rendered":"Inform\u00e1tor odhalil masivn\u00ed bezpe\u010dnostn\u00ed chyby britsk\u00fdch digit\u00e1ln\u00edch doklad\u016f"},"content":{"rendered":"
<\/div>\n

Britsk\u00fd inform\u00e1tor odhalil kritick\u00e9 bezpe\u010dnostn\u00ed chyby v syst\u00e9mu digit\u00e1ln\u00edch doklad\u016f s n\u00e1zvem \u201eGOV.UK One Login\u201c, \u010d\u00edm\u017e pouk\u00e1zal slab\u00e1 m\u00edsta, kter\u00e1 ohro\u017euj\u00ed bezpe\u010dnost a ochranu \u00fadaj\u016f ob\u010dan\u016f Velk\u00e9 Brit\u00e1nie.<\/p>\n

Tyto chyby, \u00fadajn\u011b zakomponovan\u00e9 v syst\u00e9mu od za\u010d\u00e1tku jeho spu\u0161t\u011bn\u00ed, p\u0159edstavuj\u00ed zna\u010dn\u00e1 rizika, v\u010detn\u011b potenci\u00e1ln\u00edho naru\u0161en\u00ed a odcizen\u00ed \u00fadaj\u016f.<\/p>\n

Bezpe\u010dnostn\u00ed expert z vl\u00e1dn\u00ed digit\u00e1ln\u00ed slu\u017eby (GDS), kter\u00e1 je sou\u010d\u00e1st\u00ed Odd\u011blen\u00ed pro v\u011bdu, inovace a technologie, poprv\u00e9\u00a0vyj\u00e1d\u0159il<\/a>\u00a0tyto obavy ji\u017e v roce 2022.<\/p>\n

Navzdory jejich nahl\u00e1\u0161en\u00ed prost\u0159ednictv\u00edm ofici\u00e1ln\u00edch intern\u00edch kan\u00e1l\u016f byla varov\u00e1n\u00ed oznamovatele ignorov\u00e1na, tak\u017ee v\u00e1\u017en\u00e9 slabiny syst\u00e9mu z\u016fstaly dosud nevy\u0159e\u0161eny a zv\u00fd\u0161ilo se i riziko jejich zneu\u017eit\u00ed.<\/p>\n

Str\u00e1nka\u00a0Infowars.com<\/a>\u00a0uv\u00e1d\u00ed, \u017ee jednou z v\u00edce ne\u017e p\u016fl milionu syst\u00e9mov\u00fdch zranitelnost\u00ed, kter\u00e9 byly podle nich identifikov\u00e1ny, je mo\u017en\u00e1 kr\u00e1de\u017e identity. V sou\u010dasnosti asi 3 miliony lid\u00ed ve Velk\u00e9 Brit\u00e1nii pou\u017e\u00edvaj\u00ed syst\u00e9m digit\u00e1ln\u00edch doklad\u016f pro p\u0159\u00edstup k 50 vl\u00e1dn\u00edm slu\u017eb\u00e1m.<\/p>\n

Bezpe\u010dnostn\u00ed expert, jeho\u017e identita nebyla odhalena ve zpr\u00e1v\u00e1ch o tomto prokoukaj\u00edc\u00edm skand\u00e1lu, tvrd\u00ed, \u017ee tis\u00edce identifikovan\u00fdch zranitelnost\u00ed syst\u00e9mu byly vyhodnoceny jako kritick\u00e9 nebo vysok\u00e9.<\/p>\n

Zpr\u00e1va nazna\u010duje, \u017ee \u00fa\u0159ady zvolily rychl\u00fd p\u0159\u00edstup k nastaven\u00ed infrastruktury digit\u00e1ln\u00edch doklad\u016f, a to nejen z technick\u00e9ho, ale iz politick\u00e9ho hlediska.<\/p>\n

Podle zdroje nebyly zavedeny \u201ez\u00e1kladn\u00ed\u201c principy \u0159\u00edzen\u00ed rizik, zat\u00edmco financov\u00e1n\u00ed syst\u00e9mu ve v\u00fd\u0161i 330 milion\u016f liber bylo p\u0159id\u011bleno na z\u00e1klad\u011b p\u0159\u00edpadov\u00e9 studie, kter\u00e1 obsahovala \u201ezav\u00e1d\u011bj\u00edc\u00ed tvrzen\u00ed\u201c t\u00fdkaj\u00edc\u00ed se kvality zabezpe\u010den\u00ed syst\u00e9mu.<\/p>\n

No a kdy\u017e padlo rozhodnut\u00ed o outsourcingu v\u00fdvoje syst\u00e9mu do Rumunska, stalo se tak bez souhlasu gener\u00e1ln\u00edho \u0159editele GDS a bez konzultace s N\u00e1rodn\u00edm centrem kybernetick\u00e9 bezpe\u010dnosti (NCSC).<\/p>\n

Odtud se v\u011bci d\u00e1le vyv\u00edjely od \u0161patn\u00e9ho k hor\u0161\u00edmu. Hlavn\u00ed \u00fa\u0159edn\u00edk pro informa\u010dn\u00ed bezpe\u010dnost pozd\u011bji pro GDS provedl vy\u0161et\u0159ov\u00e1n\u00ed, kter\u00e9 \u00fadajn\u011b potvrdilo probl\u00e9my. Agentura se v\u0161ak rozhodla zji\u0161t\u011bn\u00ed nep\u0159iznat, kdy\u017e odpov\u011bd\u011bla na dopis poslance zaslan\u00fd \u00fa\u0159adu vl\u00e1dy, ve kter\u00e9m se poslanec ptal na bezpe\u010dnostn\u00ed probl\u00e9my syst\u00e9mu One Login.<\/p>\n

Zd\u00e1 se, \u017ee t\u00edmto poslancem byl \u010dlov\u011bk, jeho\u017e inform\u00e1tor p\u0159edt\u00edm kontaktoval se sv\u00fdmi informacemi po 18 m\u011bs\u00edc\u00edch nikam nevedouc\u00edho \u010dek\u00e1n\u00ed, kdy GDS nebyla schopna probl\u00e9my vy\u0159e\u0161it.<\/p>\n

Jedin\u00e9 kroky, kter\u00e9 vl\u00e1dn\u00ed \u00fa\u0159ad GDS podnikl, byly proti samotn\u00e9mu oznamovateli. I kdy\u017e byl poslanec informov\u00e1n v souladu se z\u00e1konem o ve\u0159ejn\u00e9m z\u00e1jmu, kter\u00fd m\u011bl bezpe\u010dnostn\u00edho experta chr\u00e1nit, p\u0159esto inform\u00e1tor \u010delil disciplin\u00e1rn\u00edmu st\u00edh\u00e1n\u00ed.<\/p>\n

V sou\u010dasnosti britsk\u00e9 Ministerstvo pro v\u011bdu, inovace a technologii nad\u00e1le tvrd\u00ed, \u017ee jeho syst\u00e9m digit\u00e1ln\u00edch doklad\u016f je \u201ebezpe\u010dn\u00fd\u201c.<\/p>\n

Jak je na tom zem\u011b EU Slovensko?<\/h2>\n

Slovensk\u00e9 ministerstvo vnitra p\u0159ed p\u00e1r t\u00fddny ohl\u00e1silo spu\u0161t\u011bn\u00ed syst\u00e9mu digit\u00e1ln\u00edch doklad\u016f – ob\u010dansk\u00e9ho a \u0159idi\u010dsk\u00e9ho pr\u016fkazu. Zat\u00edm jen pro kontakt s polici\u00ed, ale syst\u00e9m se m\u00e1 pozd\u011bji roz\u0161\u00ed\u0159it na dal\u0161\u00ed st\u00e1tn\u00ed org\u00e1ny i na soukromou sf\u00e9ru.<\/p>\n

Ministr E\u0161tok se dokonce u\u017e stihl pochlubit, \u017ee dosud si aplikaci st\u00e1hlo p\u0159es 25 tis\u00edc lid\u00ed. N\u00e1m se v\u0161ak nat\u00edsk\u00e1 ot\u00e1zka:<\/p>\n

Pokud bezpe\u010dnost digit\u00e1ln\u00edch doklad\u016f ani po 3 letech nedok\u00e1zali zajistit ve Velk\u00e9 Brit\u00e1nii a znaj\u00edc neschopnost slovensk\u00fdch st\u00e1tn\u00edch IT slo\u017eek (viz Slovensko Digital \u010di skand\u00e1l s katastrem), jak bezpe\u010dn\u00fd je syst\u00e9m digit\u00e1ln\u00edch doklad\u016f?<\/p>\n

Odpov\u011b\u010f na to z\u0159ejm\u011b v\u0161ichni zn\u00e1me.<\/p>\n

Digit\u00e1ln\u00ed doklady proto doporu\u010dujeme ignorovat a neinstalovat si je \u2013 a to nejen kv\u016fli bezpe\u010dnosti, ale tak\u00e9 proto, \u017ee v budoucnu mohou b\u00fdt zneu\u017eity k \u00fatlaku ob\u010dan\u016f podobn\u011b, jako byly zneu\u017e\u00edv\u00e1ny\u00a0\u00a0covid pasy<\/a> b\u011bhem pandemie.<\/p>\n

Autor: Sean Adl-Tabatabai, Zdroj:\u00a0thepeoplesvoice.tv<\/a><\/p>\n

 <\/p>\n","protected":false},"excerpt":{"rendered":"

Britsk\u00fd inform\u00e1tor odhalil kritick\u00e9 bezpe\u010dnostn\u00ed chyby v syst\u00e9mu digit\u00e1ln\u00edch doklad\u016f s n\u00e1zvem \u201eGOV.UK One Login\u201c,…<\/p>\n","protected":false},"author":2,"featured_media":76867,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":[],"categories":[7],"tags":[5488,3722,303],"_links":{"self":[{"href":"https:\/\/www.infokuryr.cz\/n\/wp-json\/wp\/v2\/posts\/76866"}],"collection":[{"href":"https:\/\/www.infokuryr.cz\/n\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.infokuryr.cz\/n\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.infokuryr.cz\/n\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.infokuryr.cz\/n\/wp-json\/wp\/v2\/comments?post=76866"}],"version-history":[{"count":0,"href":"https:\/\/www.infokuryr.cz\/n\/wp-json\/wp\/v2\/posts\/76866\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.infokuryr.cz\/n\/wp-json\/wp\/v2\/media\/76867"}],"wp:attachment":[{"href":"https:\/\/www.infokuryr.cz\/n\/wp-json\/wp\/v2\/media?parent=76866"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.infokuryr.cz\/n\/wp-json\/wp\/v2\/categories?post=76866"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.infokuryr.cz\/n\/wp-json\/wp\/v2\/tags?post=76866"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}