昨天,谷歌副总裁、企业发展和首席法律官David Drummond在谷歌官方博客发布了一篇名为:A new approach to China 的文章。文中提到了:We recognize that this may well mean having to shut down Google.cn, and potentially our offices in China.这将意味着谷歌有可能关闭Google.cn域名和驻中国办事处。
谷歌原文:http://googleblog.blogspot.com/2010/01/new-approach-to-china.html [墙]
以下是冷博客根据谷歌翻译修改所得的中文版,翻译的不好,多见谅。David Drummond文章的字里行间都流露这一种淡淡的无奈甚至是悲伤,谷歌的座右铭是’不作恶’,也许他和中国政府的过滤搜索引擎协议违反了他的初衷吧。
在中国的新策略
2010年1月12号下午3点
像许多其他著名组织,我们面对不同程度的网络攻击。 12月中旬,由于谷歌侵犯了知识产权事件,我们发现从中国发起了针对基础设施的非常复杂和具有针对性的攻击,。然而,我们很快就搞清楚了,这一次是单纯的安全事件 , 尽管是重要的一项 , 是完全是另外一回事。
首先,这次袭击不只是谷歌。我们通过调查发现,至少有20家业务范围广泛的大公司 : 包括互联网,金融,技术,媒体和化工等领域的公司 , 也遭受了同样的攻击。我们目前还在通知这些公司,我们也与美国当局合作解决这件事。
第二,我们有证据表明,攻击者的主要目的是访问中国人权活动者的Gmail帐户。根据我们调查,迄今为止,我们相信他们的进攻并没有实现这一目标。只有两个Gmail帐户似乎已被访问,而这一活动仅限于帐户信息(如日期的帐户已创建)和主题行,还没有涉及电子邮件内容。
第三,调查显示,除了针对谷歌的攻击,我们发现,中国人权倡导者们在美国、中国和欧洲的的几十个Gmail帐户,被第三方例行访问。这些帐户还没有利用谷歌任何安全漏洞去访问,大多数可能是利用网路钓鱼诈骗或恶意软件在用户的电脑上安插木马。
我们已经从这次袭击得到信息,并对基础设施和建筑改进,提高安全性和我们谷歌的用户。在个人用户方面,我们会建议人们在电脑上安装知名反病毒和反间谍软件程序,为他们安装操作系统补丁,并更新其网络浏览器。在即时消息和电子邮件,或要求分享的个人信息如密码的网络版上点击链接时一直要小心。你可以在[这里]阅读更多关于我们的网络安全的建议。人们想要了解这些类型的攻击更可以阅读这个美国政府的报告(PDF格式),纳尔特维伦纽夫的博客,这对GhostNet介绍间谍事件。
针对这些攻击,我们已采取了非常规的方法与广大网友分享信息,不只是因为安全和人权,而且还因为这些信息转到了一个更大的关于全球自由辩论的核心话题。在过去二十年里,中国的经济改革计划和国有企业已经使亿万中华儿女脱离贫困了。事实上,这个伟大的国家,是今天在经济进步和世界发展的核心。
在2006年1月,我们自信的推出Google.cn,我们认为会为提高中国人民在一个的互联网信息时代的开放程度胜过了我们在同一互联网审查时候的为难(我们宁愿在审查的时候费尽周折,也要提高中国网民的互联网开放程度)。当时,我们明确指出,“我们将密切注视中国的条件,包括新的法律和对我们服务的其他限制。如果我们确定无法达到我们的宗旨,我们将毫不犹豫地重新考虑对中国的策略。”
这些攻击和监视已经没有什么可掩盖的了,并结合在过去一年企图进一步限制网上言论自由的事件。我们已经得出结论,我们应该检讨我们在中国业务的可行性。我们已经决定,我们不再愿意让在Google.cn的搜索结果被审查,我们将在今后的几周内与中国政府谈谈有关在法律政策内建立没有过滤的搜索引擎。我们认识到,这很可能意味着必须关闭Google.cn和我们在中国的办事处。
回顾我们的经营活动,在中国发展的决定是如此的坚定不移,并且我们知道它将有潜在的长远的后果。我们要明确,这一举措,主要是因为在美国我们的管理人员不知情或在中国的员工非常努力的参与,才取得了Google.cn今天的成就。我们正致力于负责任地解决出现的各种困难问题。
发布者:大卫德鲁蒙德,高级副总裁,企业发展和首席法律官
原文如下:
A new approach to China
1/12/2010 03:00:00 PM
Like many other well-known organizations, we face cyber attacks of varying degrees on a regular basis. In mid-December, we detected a highly sophisticated and targeted attack on our corporate infrastructure originating from China that resulted in the theft of intellectual property from Google. However, it soon became clear that what at first appeared to be solely a security incident–albeit a significant one–was something quite different.
First, this attack was not just on Google. As part of our investigation we have discovered that at least twenty other large companies from a wide range of businesses–including the Internet, finance, technology, media and chemical sectors–have been similarly targeted. We are currently in the process of notifying those companies, and we are also working with the relevant U.S. authorities.
Second, we have evidence to suggest that a primary goal of the attackers was accessing the Gmail accounts of Chinese human rights activists. Based on our investigation to date we believe their attack did not achieve that objective. Only two Gmail accounts appear to have been accessed, and that activity was limited to account information (such as the date the account was created) and subject line, rather than the content of emails themselves.
Third, as part of this investigation but independent of the attack on Google, we have discovered that the accounts of dozens of U.S.-, China- and Europe-based Gmail users who are advocates of human rights in China appear to have been routinely accessed by third parties. These accounts have not been accessed through any security breach at Google, but most likely via phishing scams or malware placed on the users’ computers.
We have already used information gained from this attack to make infrastructure and architectural improvements that enhance security for Google and for our users. In terms of individual users, we would advise people to deploy reputable anti-virus and anti-spyware programs on their computers, to install patches for their operating systems and to update their web browsers. Always be cautious when clicking on links appearing in instant messages and emails, or when asked to share personal information like passwords online. You can read more here about our cyber-security recommendations. People wanting to learn more about these kinds of attacks can read this U.S. governmentreport(PDF), Nart Villeneuve’s blogand this presentation on the GhostNet spying incident.
We have taken the unusual step of sharing information about these attacks with a broad audience not just because of the security and human rights implications of what we have unearthed, but also because this information goes to the heart of a much bigger global debate about freedom of speech. In the last two decades, China’s economic reform programs and its citizens’ entrepreneurial flair have lifted hundreds of millions of Chinese people out of poverty. Indeed, this great nation is at the heart of much economic progress and development in the world today.
We launched Google.cn in January 2006 in the belief that the benefits of increased access to information for people in China and a more open Internet outweighed our discomfort in agreeing to censor some results. At the time we made clear that “we will carefully monitor conditions in China, including new laws and other restrictions on our services. If we determine that we are unable to achieve the objectives outlined we will not hesitate to reconsider our approach to China.”
These attacks and the surveillance they have uncovered–combined with the attempts over the past year to further limit free speech on the web–have led us to conclude that we should review the feasibility of our business operations in China. We have decided we are no longer willing to continue censoring our results on Google.cn, and so over the next few weeks we will be discussing with the Chinese government the basis on which we could operate an unfiltered search engine within the law, if at all. We recognize that this may well mean having to shut down Google.cn, and potentially our offices in China.
The decision to review our business operations in China has been incredibly hard, and we know that it will have potentially far-reaching consequences. We want to make clear that this move was driven by our executives in the United States, without the knowledge or involvement of our employees in China who have worked incredibly hard to make Google.cn the success it is today. We are committed to working responsibly to resolve the very difficult issues raised.
Posted by David Drummond, SVP, Corporate Development and Chief Legal Officer
评论