Encryption Debate at Mitnick Trial

A number of people have written about the latest twist in the Mitnick case. Kevin wants to get his data back, but the government is refusing to do so until he gives them the key. Apparently, the government is unable to crack the encryption that he's got on it - you'd think after having the data for five years, they'd be able to brute-force the darn thing. It's a NYT article - free login required.

Recipe

[Signal+11]

Yeah, they want the recipe for Kevin's dynamite meatloaf. That's what the encrypted contents contain! Buwhahahaha!

Seriously now, Kevin has the right not to incriminate himself. This includes not turning over a key. This is all 5th Amendment.. the government is just trying to set a precident here so they can steam-roller it. g'luck, I have a small amount of faith that the supreme court will shoot it down.

Re:Recipe

[Northern+Hunter]

I agree with the court's decision. I don't have a way out of this situation, but I do agree that encrypted data shouldn't be returned (until it's been decrypted), and yet he shouldn't be punished an extra amount for not revealing the key, unless that is that they have other evidence proving that something important is in there, akin to a bank robber refusing to identify where he hid the loot, or on the other hand a bank robber identifying where the loot is and so getting a smaller sentence. (Sorry, the bank robber *might* not be the best analogy.)

I think I have a better analogy... If there was a safe in your home when they raided you, and it was *impossible* for them to open it, what would be the current procedures? They certainly wouldn't be under any obligation to return it to you.

Re:Recipe

[puppet10]

Ah, but if you write your diary in a code language only you understand are you required to translate the document for the government, so they can use the document against you.

Note this does not forbid the government from trying to translate it themselves, which in this case they apparently couldn't or didn't think it was worth the trouble.

Now the question is does the government have to give back the untranslated diary to you as it is your siezed property and 1) was not used as evidence against you and 2) they could not read it or never made the attempt.

I have a question though does the government routinely not give back documents (such as financial or customer records) to illegal enterprises such as illegal gambling and prostitution who might keep their records in code (encrypted on a computer or a hand written code) if so it seems this might be a similar case if the reason they withhold these documents is to prevent them from being used in promoting that illeagal enterprise.

I'm surprised this hasn't come up in the courts in this context (maybe their codes are just easy to break)

Re:Recipe

Just because the government can't read something shouldn't allow them to prevent the owner from using the data.

Re:Recipe

bzzzzt...WRONG. I was doing just that for a while. I was moderating myself up and it wasn't too hard to do. Hell, I did it with just 2 accounts, I didn't think about getting 4 or 5. That would work even better. It would take up quite a bit of time though.

Do us a favor signall11...go back to the aol chat rooms. thanks.

Re:Recipe

It's feasible with just 3 accounts. The key is to use all accounts for reading Slashdot, as only reasonably frequent readers get moderation points. Usually, I use one of my accounts at work, and another one at home. Occasionnally, I shuffle them around to use the third. As soon as I have a couple of moderation points (once every couple of weeks), I can have fun... (posted anonymously for obvious reasons...)

Re:Recipe

While Mitnick might have a right to compensation if the gov't doesn't turn the material over, he would have to prove the data's worth, which would require disclosing the data (or at least disclosing the nature of the data).

Re:Recipe

[seichert]

This is a difficult point. However it is probably more related to Civil Asset Forfeiture law, rather than the 5th amendment. Cato has some great articles on asset forfeiture and how US citizens have basically given up their property rights. I would argue that Kevin's files are his own intellectual property , in whatever form, and that he has a right to have them returned to him. Keeping the files, because they might have something "BAD" in them, is the assumption of guilt. With the exception of the IRS all federal agencies must assume you are innoncent until proven guilty. By the government's logic they can seize all of my property and hold it indefinitely until I tell them everything they want to know. I thought that was called "extortion".
Stuart Eichert

Re:Recipe

[Signal+11]

Aight, I'm bored at work again and since atleast one other person seems to believe you I guess I'll respond to this....

Signall 11 is moderating his own posts.
It isn't possible. Rob has indicated this himself. If you believe I'm using several accounts to moderate myself up, I'd like to point out two fundamental problems with your arguement: a) Assuming your reader profile is the mean (whic is one of the requirements for getting mod points), there's still less than a 1% chance that you'll get points that day. There just aren't many moderator points in the system right now. You wouldn't (statistically) increase your odds much with 5, or even 10 accounts. You'd need atleast 130 to consistently moderate yourself up. Or more. There's over 130,000 accounts in the system right now. You do the math. There's also point b) why would I want to?

Karma Whoring has and will be with us forever, thanks to the stupidity of Rob Malda.
... so rather than taking that up with Rob, you're choosing to attack the messenger. Yeah, a boatload of good that'll do!

Re:Recipe

[Slak]

By what right does the government claim the property (i.e. the encrypted data)?

IANAL: I can understand the gov't not returning a handgun to a person convicted of a violent gun crime if the state has a law which states that such people are not permitted to own a gun. While I may argue that the law is unconstitutional, I would have to take it to court. But does any law exist for data? Or is the government trying to claim that the data might be "stolen property", to which Kevin has no claim?

Suppose I commit a violent crime and in the process steal a gun. During my arrest, the government finds a safe that they cannot open (for either legal or technical reasons). In fact, they cannot even determine if anything is in the safe. It could contain the gun I stole (that they never recovered) or it could be my (perfectly legal) tax filings.

I understand the judge's quandry. By returning the safe to my possesion, is the judge handing over property that I stole?

Back to the point, I suppose this lends more weight to the case for using stenography (I think that's what it's called). Encrypt all your Overthrow-the-NWO-HOWTO files in png's of the UN flag. Gee, judge, could I get my images back? :)

Cheers,
Slak

Re:Recipe

I don't know what to do with that many deer carcasses.

Re:Recipe

AC:>Karma Whoring has and will be with us forever, thanks to the stupidity of Rob Malda.

Signal 11:>... so rather than taking that up with Rob, you're choosing to attack the messenger. Yeah, a boatload of good that'll do!

So Signal 11, what your saying is you don't accept responsibility for your actions? You treated /. like it was some big experiment for you to play with. Not nice.

Re:Recipe

he was talking about Milwaukee Bucks. Personally, I wouldn't want Sam Cassell's ugly ass in my home.

Re:Recipe

[cpt+kangarooski]

Well, the 5th also contains the eminent domain clause. Assuming that the burden of proof falls on the government (tricky in this case, with an ex-con) they must ultimately return the files, or have them fairly appraised and pay him for them. The latter is nigh-impossible w/o the key though, nor could an appraisor claim confidentiality, which makes this unappealing to Mitnick.

IANAL....

Re:Recipe

[fnj]

A fantasy:

Authorities: "Gimme the key, punk!"

Mitnick: "Gee, I seem to have lost it. Please give me back my property, since therefore it's of no use to you."

Authorities: "Well, it's no good to you either."

Mitnick: "Uh, I bet I can decode the stuff even without the key :-)"

Authorities: "Then decode it for us, first!"

Mitnick: "Are you on crack or something? I am not a number - I am a free man." (evidently he has seen the TV series The Prisoner, starring Patrick McGoohan)

Authorities: "HA HA HA HA!!! HO HO HO HO!!! GIVE US THE EEEEEENFORMATION!!!" (so have they)

Re:Recipe

[cpt+kangarooski]

Of course, he already waived his right to a speedy trial. IANAL, but if you can successfully withold evidence (e.g. by not testifying against yourself - obviously the case if Mitnick memorized the key and is in sole posession of it) beyond the statute of limitations you really are scot-free.

Besides, the government _is_ in posession of the evidence. No one said it would be easy for them though. When it is made so, deliberately, we call that a police state.

Re:Recipe

[trb]

You guys are missing the point. The feds don't want the cleartext contents of his disk, they want the key! It's probably something like DoJsux or the name of one of his old girlfriends, and he doesn't want to embarrass himself. Haven't you ever had a password like that?

Re:Recipe

[shiftaling]

> As the proceeds of a crime of which he has been lawfully committed. Burglars don't get what they stole back either.

yeah... but who says he has 'stoled data' in the files

Re:Recipe

[shiftaling]

> As the proceeds of a crime of which he has been lawfully committed. Burglars don't get what they stole back either.

yeah... but who says he has 'stolen data' in the files

Re:Recipe

[jconley]

The 5th amendment is thrown around a lot as something that can be used to just not talk to the feds, police, etc. However, it does not always apply. For example, in most civil cases it doesn't have any bearing. As far as Mitnick not turning over the key for fear of prosecution, he would be safe from that under the double jeopardy clause, stating he can't be tried twice for the same crime(and that canadian game show hosts are smarter than the contestants, have you ever noticed how much Alex loves answering a question that is in french? He savors it...). I don't think Kevin should turn over the key. As far as the legality of the government not returning it, I don't know. He doesn't have the right to use a computer, so what would he do with it?? Jordan ----- Not a sig.

Re:Recipe

[delmoi]

far as Mitnick not turning over the key for fear of prosecution, he would be safe from that under the double jeopardy clause, stating he can't be tried twice for the same crime

True, but what if theres evidence of *other* crimes....

[ c h a d o k e r e ]

Re:Recipe

[dirk]

Seriously now, Kevin has the right not to incriminate himself. This includes not turning over a key. This is all 5th Amendment.. the government is just trying to set a precident here so they can steam-roller it. g'luck, I have a small amount of faith that the supreme court will shoot it down.

This has nothing to do with not incriminating himself. This is a lot closer to withholding evidence. This is probably one of the reasons his case took so long to come to trial (well, it never really did, but you get the point). They had the evidence, but couldn't proceed until the got it decrypted. It's kinda like saying "You think I killed the guy? Well, I do know where his body is, but I won't tell you." You could bury evidence under a city so deep it would take the government 5 years to get to. Should they let you go until they get down there? Not if they have enough evidence to arrest you in the first place and they know where it is. It's better for you to tell them where it is if you want a speedy trial.

Re:Recipe

You forgot the part where they do give him back the data and, oops! Something must have gone wrong. All he can find on the drive is a bitmap of Don Knotts.

Re:Recipe

[Diesel+Dave]

Does anyone ever read the thing? This is not (directly) a self incrimination issue. They are not trying to (directly) force the key out of him. It's a property issue.

"nor be deprived of life, liberty, or property, without due process of law; nor shall private property be taken for public use, without just compensation."

Send the fuckers a bill for $100 million for his (patentable?) intelectual property, then put a lien against the government when they don't pay. Then when they bitch, start seizing the funds from their bank accounts.

Now the govt does tend to get a little bit pissed off when you do shit like this. (And yes I know of people that have)

Of course it's just fine when the IRS does it....

Re:Recipe

[cpt+kangarooski]

The fifth amendment is all over this issue like a cheap suit.

1) Mitnick doesn't have to incriminate himself, and therefore doesn't have to release the key.

2) The files are his (until proven otherwise) and if the government is planning to keep them then they are required to compensate him for them (though this would require an appraisal, so if he's smart he'll skip that to avoid revealing the contents ;) again b/c of the fifth amendment.

3) And of course, as the defense he's entitled to copies of the documents (which he can decrypt for himself) as a part of his legal defense.

The law DOES err on the side of the defendant. But this looks so cut and dry that I think that if this went to the Supremes they'd stop it in the name of common sense. ;)

Re:Recipe

[jaywood]

just because someone disposes of a body so no one can find it doesn't make them any less guilty of murder

they don't have to find the body to convict you of murder. and, as noted above, the gov't DOES have the files; he just wants to have a copy of them too.

Re:Recipe

[linuxonceleron]

Keep in mind that just because Mitnick isn't allowed to use a computer, doesn't mean that he can't have someone else give him hardcopies

Actually, He can't use a computer by proxy either. Is there any reason he can't go to a secluded island with an OC48 line where he can do all the cracking he wants to? I'm sure there is, but its funny to think about. IMHO anybody who really is for this "FREE KEVIN" BS should really have their head checked. However, I'm all for things like decryption of DVDs, Music Piracy(Unless You really like the music), Borrowing of programs from friends, even fooling around with an old cell phone to listen to calls over the network. I think that fooling around with technology while breaking the law is OK, as long as you're learning. If you're learning about encryption systems while you run DeCSS, that's fine, but as for stealing credit card numbers, and large scale computer crime, they should be punished.

Re:Recipe

[Demonicbunny]

Sounds fair. Just reimburse him for the cost of a one gig drive. The data is worthless without the key.

Re:Recipe

No, he would have a right to the value of the equipement at fair market value when it was confiscated. I don't think he can really ask for the value of the data since it's pretty subjective. Probably just a nominal charge for time spent originally putting together the data to compensate for the time he'll have to spend again doing the same thing (maybe).

Hey, didn't the government already alledge that the data he had in his possession was worth billions?

Re:Recipe

Your .sig sucks, Delmoi. And you smell.

Re:Recipe

Of course the gov't can give him the data, let him decrypt it, and then just "raid" his house under the cover of checking for parole violations...

Re:Recipe

[BlueMonk]

Hey, It looks like were forgetting something here. The fifth amendment seems an odd rule to apply to this to force the government to return his files! The fifth amendment may protect the defendant from having to give up the key, but it doesn't give him the right to his files if they are believed a potential danger to the greater public (does it?). If the issue is whether he has the right to get at his files, the fifth amendment rights don't seem quite applicable.

Re:Recipe

[hawk]

>By what right does the government claim the
>property (i.e. the encrypted data)?

As the proceeds of a crime of which he has been lawfully committed. Burglars don't get what they stole back either.

>IANAL

but I am :)



>Suppose I commit a violent crime and in the
>process steal a gun. During my arrest, the
>government finds a safe that they cannot open
>(for either legal or technical reasons). In fact,
>they cannot even determine if anything is in the
>safe. It could contain the gun I stole (that
>they never recovered) or it could be my
>(perfectly legal) tax filings.

If your tax filings are perfectly legal, you don't want them to see them--they'll show your income from criminal acts :)

The IRS doesn't care how you get your money, as long as you hand over their cut. Some hookers hire accountants to keep track of thier earnings to avoid problems with the IRS . . .

Re:Recipe

[dirk]

Of course, he already waived his right to a speedy trial. IANAL, but if you can successfully withold evidence (e.g. by not testifying against yourself - obviously the case if Mitnick memorized the key and is in sole posession of it) beyond the statute of limitations you really are scot-free.
Besides, the government _is_ in posession of the evidence. No one said it would be easy for them though. When it is made so, deliberately, we call that a police state.

To me this seems more like withholding evidence than incriminating yourself. You're not being forced to testify that you did something wrong. It's the equivalent to the Watergate tapes. Nixon was forced to turn over the tapes, but didn't turn over them all. If he had encrpted the tapes before he turned them over it would have been the same thing. If you withhold evidence it is illegal. If you refuse to answer questions (other than what is covered by the 5th amendment) you are held in comptempt of court. you can and usually will be held until you comply, because that is the only way to make people comply.

What your saying is if you hide the evidence well enough, you should be found not guilty. I don't know about you, but just because someone disposes of a body so no one can find it doesn't make them any less guilty of murder.

Re:Recipe

[pegr__]

Oh sweet irony! The government trumps up the value of the data he stole so they can really put the screws to him... Now he sues for his data, worth billions, of course! How sweet it is...

Re:Recipe

[klund]

The government already has a precedent: your diary is not protected by the fifth amendment!

If the government can sieze my diary (remember Bob Packwood?) and then use it against me, then it don't look good for encryption.

Re:Recipe

That's right, 5th ammendment doesn't seem to apply to getting his files back. That ammendment would only apply in getting him to reveal key.

Ammendments that apply would be the search and seizure one, and the cruel and unusual punishment one. It's his property and nothing in his sentence says anything about him being "fined" the ownership of his property, does it?

Speaking of cruel and unusual punishment, that reminds me: what the hell does Mitnick want with the files, since he's not going to have a way to decrypt 'em except by using pencil and paper?

Re:Recipe

Steganography, from the Greek, steganos - hidden or covered. The art of communicating in such a way that hides the communication.

Re:Recipe

[cpt+kangarooski]

It probably is a fine line, but I suspect that the difference is that as Mitnick believes (on advice from his council, who probably know the contents of the files but are not required to divulge them b/c of the attorney/client privilege) that to reveal the contents of that file would be self-incriminating.

To cite your previous example, someone accused of murder does not have to tell the police the location of the body as his special knowledge of that is incriminating. But if he were a witness instead, he would have to testify. (barring privileged circumstances) Basically the idea is that you do not have to be a witness against *yourself*.

This is quite different than withholding material evidence (as opposed to testimony). Nixon had to turn over the tapes. But if the tapes had been encrypted, he does not have to hand over the key - provided that it's knowledge in his head as opposed to a physical key.

So yeah, I am indeed saying that if you hide enough evidence you can be found not guilty. This is b/c you are presumed innocent until there is enough evidence and/or testimony that you didn't do it.

Being convicted of murder is not precisely the same as actually being a murderer. Many guilty murderers are not convicted or found guilty in a court of law, and there are quite a few incidents in which people innocent of murder are found guilty and end up in prision until they can clear themselves (e.g. 'Hurricane' Carter, in a theater near you)

Re:Recipe

who saided he stoled data? he maded money with his crimes, which boughted him stuff.

Re:Recipe

[Coyote]

Signal 11 has only demonstrated the truth of what he says in his user bio; too many moderators support dogma and not enough support poster's rights to intelligently disagree with the crowd.

I don't fault Rob for this. Is he supposed to give an IQ test to everyone before bestowing a basket of 5 moderator points to them?

If you want this system to work better, be critical when you Meta-moderate. Personally, when I meta-mod, a post that was moderated as 'informative' better have some information in it, not just unsupported opinions or I ding it 'unfair.'

Use meta-moderation to weed out the worst of the moderators and moderation will be more meaningful.

Re:Recipe

bah... it was a typo moron... screw off

Re:Recipe

I thought that it was interesting, but I'm not signal 11. I would moderate it up too. Your comment though appears to be flamebait and it has been moderated up to informative. Some moderator doesn't follow the meaning of the term informative. Moderator guidelines will need the terms defined, Rob.

Re:Recipe

[cpt+kangarooski]

If it was someone else's data he can't get compensated for it you know.

(besides something similar already happened in the 911 case ;)

Re:Recipe

[WNight]

Sure, punished the same way... with a fair and speedy trial.

They didn't.

Bad rules made by idiots need to be worked around, given that these idiots have guns and 'official sanction' makes them dangerous idiots, not right.

Re:Recipe

[deacent]

I don't think Kevin should turn over the key. As far as the legality of the government not returning it, I don't know. He doesn't have the right to use a computer, so what would he do with it??

The government will ultimately be forced to give it back or will have to compensate him for it. They might try to get a court order to try to force Mitnick to turn over the key. That would perhaps set some sort of precendent. I expect that if that were to happen, he'd probably refuse and face the consequences. But at least there might be some clarification. As it is, the prosecution is playing a risky game since the data in question was not used in this trial. That's sort of like the prosecution taking possession of a car that belongs to the accused, not using any part of it in evidence, and then refusing to give it back because the accused might use it to commit a crime.

Keep in mind that just because Mitnick isn't allowed to use a computer, doesn't mean that he can't have someone else give him hardcopies. Besides, as long as the equipment and the data belongs to him, it doesn't matter whether or not he can use it.

-Jennifer

Re:Recipe

You need to get a life. Who the fuck kares about karma anyway? Can I spend it on other goods or services? Trade it in a bartered transaction for guns or butter? NO! Slashdot's whole karma point system is a farce.

Signal 11's comments are much more entertaining than 99% of those moderated "up" as "informative" anyway. Leave him be.

Re:Recipe

[deacent]

I was thinking about more personal things that most people keep on their computer, like their finances, or any legitimate software that he authored. Of course, it's pretty difficult to assess the value of such data without disclosing it. The best that I think he could hope for is that the court's present stipulation of disclosing the key but the contents would be kept under seal away from the eyes of the public.

-Jennifer

Re:Recipe

[deacent]

Actually, He can't use a computer by proxy either.

Obviously there must be limits to this, otherwise he couldn't have a bank accout since nearly all financial transactions are recorded through computers. Is it reasonable to forbid him from having someone else print out his Quicken ledger?

Is there any reason he can't go to a secluded island with an OC48 line where he can do all the cracking he wants to? I'm sure there is, but its funny to think about.

If he has an Internet connection, it doesn't matter where he is. He's still dangerous.

IMHO anybody who really is for this "FREE KEVIN" BS should really have their head checked. However, I'm all for things like decryption of DVDs, Music Piracy(Unless You really like the music), Borrowing of programs from friends, even fooling around with an old cell phone to listen to calls over the network. I think that fooling around with technology while breaking the law is OK, as long as you're learning. If you're learning about encryption systems while you run DeCSS, that's fine, but as for stealing credit card numbers, and large scale computer crime, they should be punished.

While I agree that the whole Free Kevin thing seems misguided, I can't say that I agree with media and software theft or eavesdropping. In the first case, you're stealing and theft is theft. It doesn't matter how much money is involved; it's the principal. If you want the functionality so bad, write it yourself. If it's too much trouble, then maybe the author of that software deserves to be paid. As for eavesdropping, it's a violation of privacy. Enough said.

OTOH, I don't see the sense in outlawing any and all forms of cracking, since tiger teams would then be illegal, not to mention it would be difficult to make advances in software security until the horse is already out of the barn. I have no problem with DeCSS since it can lead to better forms of security and it's inevitable that someone will break it whether it's legal or illegal. At least this way, the MPAA knows that their security is broken. The MPAA, naturally, does not see it this way since they are relying on it to minimize piracy. They have every right to be upset but they need to realize that all systems get cracked eventually and, once they do, a new system needs to be implemented to remain effective.

-Jennifer

Re:Recipe

hi Signal 11.

Re:Recipe

[cpt+kangarooski]

I know from property law. IANAL, but my father is an eminent domain lawyer and I've grown up in an environment very saturated in property law.

The trick is this: Mitnick can't assign absolutely any value to his property. Rather, apprasals will have to be made by both sides and a common figure arrived upon. But as long as the files are encrypted their value cannot be particularly great. Furthermore, if it consists of illegally copied information Mitnick certainly would have no right to it (outside of using it as an element in his legal defense).

For Mitnick to really do anything along the lines you suggest he would have to reveal the contents of the file. But this is what he does *not* want.

It's pretty clear that Mitnick, or his counsel feel that the unencrypted information could lead to either more charges being made against him (and another five years in jail with no trial) or at least provide the basis for a 'fishing expedition' by the government - effectively telling them where to look for non-tainted evidence against Mitnick for other crimes for which he could still be liable.

The issue is a very interesting combination of 1)Self incrimination, 2)Eminent Domain, 3)Due Process. Personally I doubt there will be a resolution anytime soon.

Good encryption

[roman_mir]

Maybe the entertainment industry should have hired this guy to write the next version of DVD playback protection.

Re:Good encryption

[���_�he_|)u�k]

Well, well. All this going on when we are bithching and complaining at China for making everyone there who uses encryption software to register the key with the government. Are we any better?

Re:Good encryption

[Plasmic]

What's interesting is that this may add weight to the whole RC5-64 distributed.net movement. I used to think (and still do, to a lesser degree) that it wouldn't accomplish much of anything to prove that "it took hundreds of thousands of computers several years to crack this encryption; therefore, it's too weak".

That statement used to strike me as ridiculous. However, in light of a case where the government had 5 years to work with the data while its contents remained relevant, it's hard to argue with the distributed.net effort.

Re:Good encryption

Next time the feds should leave the drive with his data on it in the care of a rather frustrated caged gorilla.

Re:Good encryption

[Xenna]

It's funny but not entirely relevant.

The weakness of the DVD encryption is that the actual encryption key is embedded in the DVD players (even in the software ones).

It doesn't matter how strong your encryption protocol is if you leave your keys lying around. Mitnick is evidently not *that* stupid.

Re:Good encryption

[RandomFactor]

What's interesting is that this may add weight to the whole RC5-64 distributed.net movement.

The suspicious man wonders where they got the data distributed.net is currently trying to crack... :-)))

Re:Good encryption

Actually, we don't know that the goverment did not decrypt it. Maybe they decrypted everything and saw it was not interesting. Maybe it was only relevant to the past case (not interesting due to double jeopardy), was useless or not prosecutable (passwords for an ISP that went out of business four years).

All that we know is that both Mitnick and the government are willing to play games in court.

Re:Good encryption

[roman_mir]

Yes, well, noone told journalists that Jon Johansen hacked the DVD Key either, however half of the world now really believes that that is a fact, and they believe that hacking the playback protection of DVDs makes it somehow easier to make DVD copies!

Re:Good encryption

why? their lawyers would just turn it over in their pleadings! * a little bit of knowledge is a dangerous thing. a lot is a crime. *

Re:Good encryption

At no point did it say Mitnick wrote the encryption.

Re:Good encryption

[348]

Next time maybe the feds should outsource the job of decripting evidence files to some Norwegian teenagers.

Never knock on Death's door:

Re:Good encryption

[dattaway]

At no point did it say Mitnick wrote the encryption.

But he knew how to impliment encryption properly by not leaving unencrypted keys laying around, unlike a famous DVD software company. I would speculate that the great mathematicians at the NSA were asked to check out his encrypted hard drives to unlock this great 5 year challenge. It appears the laws of mathematics win over the prosecution's interpretation of the laws in this case.

For those who don't want to register

[floatdouble]

---The NY times article---

Wrinkle in Mitnick Case Hints at Encryption Battles to Come

little-known legal skirmish in the case of the computer hacker Kevin Mitnick was a preview of similar fights to come as more people use encryption software to protect their files, lawyers who were involved in the case say. Mitnick left federal prison last week after serving nearly five years for a series of crimes involving computer fraud and wire fraud. But his lawyers say they are still troubled by the judge's answer to a legal question raised early in the case: When federal agents seize encrypted files from a defendant, can they refuse to return them unless the defendant turns over the secret "key" to decode the files? That digital-age puzzle, which the judge regarded as a novel legal question, arose in Mitnick's case in a circuitous manner, as sometimes happens in criminal trials. In the course of the government's investigation, federal agents in 1994 and 1995 seized two laptop computers owned by Mitnick, according to Gregory L. Vinson, a lawyer who worked on the Mitnick defense team that was headed by Donald C. Randolph, a veteran criminal defense specialist in Los Angeles. On the computers' hard drives were approximately nine gigabytes of electronic evidence, Vinson said in an interview. He estimated that of that total, perhaps one gigabyte consisted of encrypted files -- documents that were unintelligible to anyone who did not have a key to decrypt them. Mitnick, of course, had the key. During the pre-trial discovery phase of the case, the government lawyer, Christopher Painter, an assistant United States attorney in Los Angeles, indicated that as required by the rules governing evidence, he would hand all of the seized files over to the defense -- except the encrypted ones. That set the stage for a hearing on May 20, 1998, before federal judge Mariana R. Pfaelzer in Los Angeles. Speaking for the defense, Randolph argued that Mitnick was entitled to copies of the seized encrypted files under two legal theories, according to a transcript of the hearing. First, he contended, under Rule 16 of the Federal Rules of Criminal Procedure, which establish the ground rules for the government's disclosure of evidence to the defendant, the government must allow a defendant to inspect or copy documents that "were obtained from or belong to the defendant." Since the encrypted files belonged to Mitnick, he deserved to get a copy of them, Randolph said. The defense also argued that the encrypted files might include information that could help Mitnick defend himself. Under the Constitution, the prosecution is obligated to hand over such material to the defense. Painter replied that because the government could not understand what was in the files, it could not use the files as evidence at trial. He also said that Rule 16 did not apply because the encrypted files in a sense were not "really in our possession," because "we don't know what's there." But the heart of the government lawyer's argument was that it would be wrong to hand over the files because they could contain the spoils of Mitnick's crimes -- secret information that he illegally acquired from the companies whose computers he hacked into -- or something even more dangerous. "For all we know, it could be plans to take down a computer system," Painter said at the hearing. "We don't know. And we think it's dangerous to release that, and that's why we don't want to release it. We're not going to use it, certainly, but we think that there's reasons not to release that information." In considering the matter, Judge Pfaelzer said that it was "clever" of Mitnick to have encrypted the files in such a way that the government could not use them in its own case but Mitnick could access them if given a copy. She asked: "Now, you know, what's the court supposed to do with that position?" Painter said the situation was akin to Mitnick asking for his coat back and the government not knowing if there was a pistol in the pocket. Judge Pfaelzer agreed, ruling that "this court is not going to order the encryptive material to be given" to Mitnick. The judge added that if Mitnick would "tell the government how to read" the files, then the government would turn over the files in decrypted form. Mitnick's lawyers immediately objected to this condition on the grounds that it would force him to waive his Fifth Amendment right against self-incrimination to obtain evidence he needed and that he had a legal right to see. The judge rejected this point and repeated her ruling. Vinson, the defense lawyer, said in an interview this week that he still thought Judge Pfaelzer's ruling from the bench did not give enough weight to the defense's arguments. He said he was worried that the case might create the impression that the government has no obligation to give back encrypted files that it has been unable to decrypt. "In ten years, when encryption becomes commonplace for people to use in order to protect their files, whether their files contain financial records, conversations with their spouse or a local drug dealer, the government is going to seize the files in a criminal case, and [government lawyers] will be faced with the same situation as they were in the Mitnick case," Vinson said. Painter, reached by telephone earlier this week, said both sides in the pre-trial legal battle over Mitnick's encrypted files had strong arguments. He said he agreed with Vinson that similar disputes may arise in the future as more people encrypt files. But he maintained that no precedent had been set, and that the government's responses would be on a case-by-case basis. "It could be that in future cases, depending on the circumstances, it would be more appropriate to return [encrypted files] under special procedures," Painter said. Gerald Lynch, a law professor at Columbia University who is an expert in criminal law and a former federal prosecutor, said in an interview that it was a "panic response" on the part of the court and the government to deny Mitnick access to his files. "If you think about this reasonably, the answer is that if the government does not have a reasonable basis to contend that something really dangerous [is in the encrypted files], and merely does not know what is in the files and can't decode them, then they should hand them over," he said. Alan B. Davidson, a staff lawyer who follows encryption developments for the Center for Democracy and Technology, a civil liberties group, said he believed the Mitnick encryption dispute is a precursor to a coming battle in Congress. As part of a compromise announced this fall by the Clinton administration that loosened export restrictions on strong encryption software, the administration has committed to sending a bill to Congress laying out rules for when the government can get access to encryption keys, Davidson said. "We are anxiously awaiting the administration's new bill, which will open up a huge debate," he said.

Re:For those who don't want to register

Or at least format it properly. :)

Re:For those who don't want to register

hum, i'm sure i've seen a quote just like that one you have in your sig somewhere before, perhaps it was an important person in the independence of one of those big asian countries...

You really should come up with an original quote, and not just modify someone elses and take credit for it, or else put the real quote down and give proper credit for it. It does not show any wit, or even intellegence on your behalf to do this.

just to stay on topic, your post is correct, but there is no precedent in the US for slashdot to be liable though.

Posting this as an AC, because i'm sure some anti-amercan bigot will just moderate it down.

THB

Re:For those who don't want to register

[levl289]

I'm sorry, I wasn't informed that you were the .sig monitor on /.

actually, it was overheard by a relative on talk radio - they then paraphrased it...this would explain my lack of credits.

As far as my intelligence/wit goes, I freely admit that I am ignorrant to many things, but, I do know how to spell 'intelligence'.

Re:For those who don't want to register

[levl289]

not to be nit-picky or anything, but to my knowledge, re-posting copyrighted information like this is illegal...nothing that'll be pursued, but really, how hard is it to just go and enter the login info manually?

someone please correct me if I'm wrong.

Re:For those who don't want to register

[hank]

Copyright 2000 The New York Times Company




Even though I agree with with the fact that those who don't want to register shouldn't have to, I don't agree with going against copyrights. However, I know virtually nothing about copyright law, etc. Could anyone enlighten me on whether this is legal or not, and what the punishments would/could be?

Re:For those who don't want to register

[cpt+kangarooski]

Well not if the poster is the copyright holder. Failing to make that sort of thing explicit is what leads to the DVD fiasco we've been having lately (where among other things the DVD CCA would not let the copyright owner of a DVD view it however he likes)

Re:For those who don't want to register

[Nate+Eldredge]

I've heard it attributed to Mahatma Gandhi. This page (which coincidentally belongs to a class at a neighboring college) gives it as: Reporter: What do you think of Western Civilization? Gandhi: Why, I think it might be a very good idea.

I wonder...

I wonder how he encrypted it... I would like to start using that encryption algorithm/program, because if the government can't crack it in five years... DAMN!

Re:I wonder...

[Random_Task]

Just because the DOJ couldn't crack it doesn't mean that another organization couldn't, for instance the N$A. But as far as I know they wouldn't be involved in a civil dispute like this unless it involved national security. Anyone know anything more about this? Kevin probably used a one time pad from some e-book he got in a kids store or something.

Random Task

Re:I wonder...

We don't know that the government did not decrypt it. Maybe they did and it's just not interesting. Maybe the did and they don't want to give him his hit list. Maybe they did decrypt it and already dug up his buried treasure vault...

Re:I wonder...

i believe it was called secure dos version 1.4 (i think). Also, I am pretty sure they didn't try to brute force it for 5 years straight. Either way i know the company that made it is out of business.

Re:I wonder...

Dude!

I bet a nickel he used plain old PGP 2.x command line. And you can get *much* better stuff than that for file storage these days.

How about Scramdisk? (http://www.scramdisk.clara.net/ ) Not only can you make encrypted container files that act as individual drives when mounted, you can put them inside big ole .wav files using the steganography option. If Kevin had had Scramdisk, the Feds would not be able to prove that there was any encrypted data on his hard drive in the 1st place.

God I love modern cryptography!

Re:I wonder...

[skelly]

Well oviously he did not get it from over here. There are other countries that use stronger codes than the RSA keys. But after 5 years, come on! Either Mitnick is a genius or he haas very good friends who can hack.

Re:I wonder...

[TurkishGeek]

Let's assume that the government actually decrypted the contents of Mitnick's data. The announcement of this success would give out too much about the government's crypto capabilities, so it's definitely not in the best interest of US national security. In other words, the fact that this encryption can be broken by the government could well be a more valuable secret than the contents of Mitnick's hard drives.

I tend to believe that the government had not really bothered to break the encryption. But then, even if they could, they would most certainly keep it a secret.
--

BluetoothCentral.com
A site for everything Bluetooth. Coming soon.

Re:I wonder...

[drig]

Actually, five years is an extremely short time for crypto to work. Generally, cryptographers think in terms of thousands, if not billions, of years.

Every extra bit in the key means twice the search space. Most crypto is broken by a flaw in the algorithm, rather than a brute-force attack. DES is the exception to this, but it stayed strong for almost 20 years.

Encryption: A Good Thing (tm)

[MrHat]

According to the article, Mitnick only got five years. Even relatively weak (and 5-year-old) encryption held off "intruders" who had physical access to the data. Anyone willing to bet he would have received a few more had the data been left unencrypted? Mitnick should take the loss - what could the Feds want with the key other than to use it to lay on more charges?

On a side note, are there any legal precedents or restrictions regarding how long Federal officials are allowed to hold confiscated equipment/data? I've heard stories of equipment being kept even with no charges being filed...

Re:Encryption: A Good Thing (tm)

Sounds a bit like the D.A.R.E. program hosted by your local police departments.

We'll take that joint... and your car.

Harper's (?The Atlantic?) did a recent story on the miserable failures of DARE, and its myriad abuses by pork-loving county sherrifs.

Re:Encryption: A Good Thing (tm)

[c64k]

If you're arrested, and they confiscate anything, don't expect to see it again.

Police evidence after a certain point goes to auction, to raise money to help them lock up more innocent people.

If it's a drug related seizure, they can sell it off immediately, otherwise there's some time limit it has to sit in an evidence locker before it can be sold.

I was arrested, and I admit I was doing something illegal, but the charges were dropped, everything they took however, was never returned.

Re:Encryption: A Good Thing (tm)

[SoftwareJanitor]

On a side note, are there any legal precedents or restrictions regarding how long Federal officials are allowed to hold confiscated equipment/data? I've heard stories of equipment being kept even with no charges being filed...

Unfortunately, it seems not at all uncommon for the authorities to sieze property as you note. It is not at all uncommon for defendants, even those against whom no charges are ever filed to have to go to court in order to get their property back. In many cases it takes so long that the property in question no longer has much value (in the case of computer equipment in particular). Sometimes defendants find that their property has either been lost (often a creative euphemism for when authority employees personally aquire goods from evidence), damaged, or even sold by the agencies. Of course at that point, there is usually no way for the defendants to get any sort of compensation.

Re:Encryption: A Good Thing (tm)

[Lord+Kano]

Have a look at www.fear.org

LK

Free Kevin(s Data)!

[prok]

I'll register the domain right now... :P

Not surprised

[onyx00]

Gee, the way this case has gone thus far, i'm not really surprised by this.

Re:He DOES have the right to use a computer

Are you deliberately moronic? His conditions of parole forbid him from using any computer for several years. That would certainly include his old laptops. And Article X is totally irrelevant to this.

Idiot.

distributed.net

[gargle]

Maybed distributed.net can do something useful for once and try decrypting Kevin Mitnick's data.

So what encryption did he use?

[LinuxParanoid]

So what encryption algorithm or program did he use? How big was the keysize?

Inquiring minds want to know.

--LP

Of course...

[Hephaestus_Lee]

Of course this is true, the gov't could _easily_ break encryptions. That is why the US gov't built their original computers, so I have no doubt that they can break most homemade encryption.

Hepaestus_Lee

IANAL

[anonymous+loser]

...but what is the precedent for something like a safe or strongbox which has been confiscated as evidence? Granted, the fact that it is physically accessible probably means there's never been a case where they couldn't get the safe open, but I wouldn't be so sure there isn't already a precedent on the books.

Does anyone know?

Re:What did he use?

[extra88]

Of course PGP has been around that long, since 1991.
http://www.cypherspace.org/~adam/timeline/

If Mitnik used a 1K or 2K keysize (not really uncommon, remember assymetrical keys have to be a lot bigger than symetrical ones), I wouldn't think the feds could crack it. Maybe NSA can but as someone else pointed out, they may not want to let that fact get revealed, even to the Justice Dept.

The federal government is not one big happy family.

Algorithm he used!

Just speculating (If I were him): 1. He uses one time pad algorithm (=xor with random key as long as data (~1 Gb). So he has hided 1Gb key file into some safe place. This method is 100% secure *IF* key is random enough, key is used only once and key is not found. 2. He has crypted the whole thing with 1024 or 2048 bit RSA. This is *SLOW*. (Can anybody think how slow this might be?). 3. He has used some clever (not cryptographically clever) methods like multiple encryption or faking file format etc. (megaflops don't help when you are trying to crack wrong algorithm) - this could be something really simple: first, crypt with DES, then reverse file or something. How about: gzip -> DES -> rot13 :) 4. This file is actually 1Gb of truly random noice to annoy feds (or keep them from looking other places)

A good reason to use steganography

[X]

Man, if ever I saw a reason why steganography, this is it.

I'd like to suggest a solution to this problem. Let's call it the "Redundant Distributed Network Steganographic File System", mostly because it's an acronym that can't be made into a cute name. ;-)

Now, the idea is, everyone gives up some disk space, say 0.5gb, which they make acessible on the Internet. In exchange, they get like 0.1gb of space on the RDNSFS. The filesystem LOOKS like noise, but if you have the right key, you can extract a certain amount of data from it. If you have the wrong key, you get fake data.

Now, the big problem is how to allocate space for someone without giving away that they have data out there somewhere....

Re:A good reason to use steganography

Red DiNet SteF

It's the small red kitchen table where Stef plays Quake at home.

Re:A good reason to use steganography

[Black+Parrot]

> Man, if ever I saw a reason why steganography, this is it.

Best twist: use steganography to hide your stuff in political cartoons and post them on your web page for all to see. For best effect, make the cartoons be about freedom of speech on the internet, right to privacy, etc. -- whatever will make them look the worst if they take your system (along with the pages) and won't give it back.

Just for fun, you should also occupy most of your free disk space with files of random bits named *.crypt. (nuclear_secrets.crpyt, ez_cracks.crypt, DeCSS.crypt, mayor_with_underage_girl.crpyt, etc.), if only to help the NSA justify a bigger computer budget for next year....


Tangential thought...

Shouldn't it be possible to encrypt your data in such a way that the real key decrypts your real data, but a second bogus key "decrypts" some meaningless drivel (a diary or something) out of the same binary file?

Surely someone is already doing that.

--
It's October 6th. Where's W2K? Over the horizon again, eh?

Re:A good reason to use steganography

[Nate+Eldredge]

Sure there is, a one-time pad. IANAC (I Am Not A Crytanalyst) but this works by basically having a key that's as large as the data and completely random. Then you can just xor them. The clever thing about this is that without knowing the key, every possible sequence of data is equally likely and equally correct. With some ciphers (like those PGP uses), you at least know when you've got the key right. With a one-time pad, you don't. So "Tomorrow we attack the Justice Department" and "Did you buy milk for the baby" might both be possible decryptions. There is no way to prefer one over the other. Therefore, without having some other reason to believe a certain key is correct, nobody can find the real text. It is, I believe, the one algorithm proven mathematically to be perfect -- you *cannot* find the data without the key. (Of course, it has other problems -- you need a secure place to store the key, and if you have that, why don't you just store the data there?)

Re:A good reason to use steganography

[stripes]

It is, I believe, the one algorithm proven mathematically to be perfect -- you *cannot* find the data without the key. (Of course, it has other problems -- you need a secure place to store the key, and if you have that, why don't you just store the data there?)

FYI there is another algo Applyed Crypto. (Schnier) claims is proveably secure. It's drawback is it takes forever to transmit messages (like thousands of years).

One-time pads have some other nasty side effects. Like if you forget which one-time-pad you have allready used and re-use one it is trivial child's play to retreve the key and both messages (XOR the two encrypted messages, you'll get the key back). You also have to have a really random keystream. "Mostly random" won't do (actually "really really close to random, as close as we can get" is how stream cypehrs like RC4 and RC6 work...)

One-time pads are terrable for storing data (like you said the key is as large as the data), but it is not bad for transmiting data.

Re:A good reason to use steganography

[X]

Yup. There's a stegonographic filesystem out there for Linux.

Re:A good reason to use steganography

[sesquiped]

> XOR the two encrypted messages, you'll get the key back

No, the key will XOR out and you'll get two messages XOR'd with each other. It will look pretty much meaningless, but there are some statistical methods you can use to recreate one or both of the messages, which will let you get the key. It's definitely a huge weakness of the OTP, but it's not as easy to get the key as you indicate.

Algorithm he used!

Just speculating (If I were him):

1. He uses one time pad algorithm (=xor with random key as long as data (~1 Gb). So he has hided 1Gb key file into some safe place. This method is 100% secure *IF* key is random enough, key is used only once and key is not found.

2. He has crypted the whole thing with 1024 or 2048 bit RSA. This is *SLOW*. (Can anybody think how slow this might be?).

3. He has used some clever (not cryptographically clever) methods like multiple encryption or faking file format etc. (megaflops don't help when you are trying to crack wrong algorithm) - this could be something really simple: first, crypt with DES, then reverse file or something. How about: gzip -> DES -> rot13 :)

4. This file is actually 1Gb of truly random noice to annoy feds (or keep them from looking other places)

Why not give it to them?

[spaceorb]

He can't be retried, and they couldn't open up a new trial if they found anything new. If anything, I would like them to see what else I had on there. I'm not a 'FREE KEVIN' dork, but if I were him I would like to spit in their eye by showing them what else they didn't catch me for.

Caught With His Pants Down?

[Skip666Kent]

Poor fella just wants his porn back!

Re:Caught With His Pants Down?

But his pr0n is all low-res by today's standards. He'll have to squint as he whacks off. Also, prison life probably gave him an appreciation for prostate stimulation via anal access.

Face it, the guy needs new pr0n. And since he'll be barred from using computers to browse alt.binaries.pictures.erotica.*, expect to see this dude lurking around news stands in a raincoat. Even when there's not a cloud in the sky.

When the probation officer asks, Kevin can smile and honestly say, "No, that's not a gun in my pocket."

Like your "right" not to take a breathalyzer

[Pfhreakaz0id]

.... but you go to jail for not doing it (in my state, it's worse).

So the state'll probably do the same thing.
---

Ummm... I think this is a bit more important...

[zonker]

What good is his data to him if he can't use a computer in the first place? I guess maybe after his probation...?

/ k.d / earth trickle / Monkeys vs. Robots Films /

I know if *I* were a criminal ...

[Kombat]

I'd sure encrypt my data too! You should always encrypt illegal things, it just makes sense, right guys? All smart criminals encrypt their data, and people who encrypt things obviously have something to hide.

wouldn't getting his data back violate his parol?

[fixe]

wouldn't getting his data back violate his parol?

heh heh.

Re:Maybe the government CAN decrypt it...

[SoftwareJanitor]

If they could decrypt it, would they tell us? They didn't need the data to get Mitnick convicted, so they would have no reason to reveal that they know what the files contain, especially if they are something that isn't terribly valuable to the government (but might be to Kevin). On the other hand, by not admitting to have decrypted the files, they can keep Kevin from getting them back.

Probably most seriously though, is if the government admitted they could crack the encryption, it would not be good for the government. It would encourage more people to use more heavy-duty encryption. It would put more political pressure on the government to further laxen the export rules, which is not something they would like. By not admitting to being able to crack the encryption (assuming for a moment they really can), they give other people a false sense of security. All in all, it would be a loss for the government to make the admission with very little upside for them.

Re:Bitchin' boxes for 1994

[ThePlague]

Yeah, I wondered about that too. Anybody know what kind of comps these are? I suspect the brand known as "Misprint", but I could be wrong.

Hmmmmmm

[Otto]

Seems to me that the government is taking a risky position here.. I mean, basically, they're saying, "We'll give this stuff back, but only if you tell us what it is."

They can't force him to give up the key. The Fifth Amendment would protect him there. I'm not sure I see how they can legally refuse to return the files.

What if it wasn't encryption that this was over? What if it was just some file in a special format that didn't make any sense to the prosecuters? Could they then say, "We'll give you your file if you tell us what it means?" That's essentially the arguement the government is making.

In any key difference of opinion like this, always remove the controversial bit and see if the argument still holds water. This one doesn't.

---

Maybe it's just random data!

Perhaps Mitnick is having a little fun and the
so called encrypted data is just random data.

Re:Maybe it's just random data!

Its pr0n.

Somebody mark the above post flamebait

I've been reading slashdot for several months now and really don't recognizre that many names. It seems that maybe you have something personal against him. It should be easy to check whether what you are saying is true. Either way it's not something to get that excited about. Icould care less if he bumps up his score a point. OOhhh. Beware of subconscious jealous motives..

Re:Somebody mark the above post flamebait

hi Signal 11.

(notice the plethora of "anonymous" comments supporting Signal 11)

its not really encrypted!

[sPaKr]

Kevin should just tell them its not encrypted. but Reall just raw sample data from some experiment. What are they going to do.. say its something else..wouldnt it be there problem to prove it really was that something else.

Re:Goverments Point of View

[ucblockhead]

How is he supposed to decrypt this information anyways. With an abacus? pen and paper? After all he's restricted from practically all computer use.

He's not restricted from giving it to someone else...

Even hackers have friends.

You are incorrect.

[GMontag]

Had a nice theory going, but one little problem. The government has not proven that these items belonging to Kevin were ever used in a crime.

Now, just because you do not want to keep the few rights you have left is no reason to advocate that the rights of others should be removed.

But there is no "potential danger" established.

[MO!]

You have a very valid point, however you forgetting that the US Constitution supposedly guarantees the assumption of innocence. If the government cannot show just cause that the information is dangerous (and not being able to read it does not constitute just cause), then there is no constitutional grounds for denying it's return.

He was tried and convicted based on evidence not contained in the encrypted files. With regards to the information which is encrypted, he has not been charged with further criminal acts. Therefore, it must be assumed that he is innocent of illegal activities relating to the encrypted data. If the government has evidence to the contrary, then they must disclose this in court and file the appropriate criminal charges.

What this really demonstrates, is the utter erosion of Constitutional Rights we American's believe we still have.

Re:But there is no "potential danger" established.

Um, sorry, but Kevin was never tried or convicted. He was held without trial until he agreed to confess. (The papers he signed include a clause where he affirms that his confession was not coerced.)

Re:But there is no "potential danger" established.

Um, sorry, but Kevin was never tried or convicted. He was held without trial until he agreed to confess. (The papers he signed include a clause where he affirms that his confession was not coerced.) Hmm. You've been held in prison with no trial, not allowed your medication, and been subject to other "questionable" actions like that. Now sign this paper saying you are not making this confession under Threat, Duress, or Coercion, and we'll let you go.... Sounds to me that that was done under T/D/C.

Re:But there is no "potential danger" established.

Does being held for 4 years without trial count as being coerced?

I think the best point made was this:

[Dirtside]

"If you think about this reasonably, the answer is that if the government does not have a reasonable basis to contend that something really dangerous [is in the encrypted files], and merely does not know what is in the files and can't decode them, then they should hand them over," he said.

Just like the authorities need a warrant to search your house, they should also need a warrant to require you to decrypt your data. Of course, in order to get a warrant, you need probable cause that there is something to seize/search. Just because data is encrypted, and just because it's the data of a convicted felon, has NO BEARING on whether the data is of any criminal relevance.

Re:Easy way out

[fnj]

Money? Why would it take money? :-)

How do you know that SETI@Home is not actually a government front and they are not already using distributed processing to break Mitnick's encryption :-)

Re:I've got large files of randon numbers on my bo

Does that mean My PC should be siezed and not returned until I do remember?

Are you a convicted felon out on parole?

If not, what does your plight have to do with any of this?

Re:Hello.

[Duke+of+URL]

I fully expect that the govt will make PSAs now about encryption.

"This is your brain on ecryption..."
"Don't let a good file go encrypted"
or..
"See Dick. See Dick use encryption. Don't be a Dick."

We can have uniformed policemen come to school children's classrooms and show them pictures of ugly geeks and say "See kids? This is what encryption does. Only Ugly Geeks use encryption. Don't be an Ugly Geek."

I feel ill just thinking about it.

Mark above flamebait.

[ucblockhead]

Oh, crap! I mean crackers...

If I were the (amoral) government.

[GoNINzo]

(After making a backup)

[Agent Smith] "You want your data back? oh. Sorry, the data on the laptop is gone. Bob tried to install Linux on it."

[Bob] "Whoops, my bad. FIPS didn't like your drives."

[Agent Smith] "You must supply me with the codes to Zion's mainframe now!

Problem solved, no court-case now concerning encryption, especially when they are in such a poor position. I don't like Kevin (for being a punk) but it wouldn't look good for the government if they tried to force the encryption issue now.

--
Gonzo Granzeau

Re:If I were the (amoral) government.

[Agent] I've got a deal for you, mr. Mitnick.
You give the key to us, and we'll shut up
about your actions in the Net...
[mr. Mitnick] Well, what about... I give you
the finger, and you give me the data...
[Agent] Weeeelll, mr Mitnick,
tell me, what good is the data to you
if you are unable to de...crypt!

Re:If I were the (amoral) government.

(prev posting lacked some stuff in squary brackets...)

[Agent] I've got a deal for you, mr Mitnick:
You give us the key and you get your data.
[mr Mitnick] Well... what about, I give your the
finger and you give me my data.
[Agent] (flicks his sleeves) Weeell, mr Mitnick,
tell me, what good is your data to you,
if you are unable to de...crypt!
(takes away mr Mitnicks computer)

What good would it be anyway...

[BluFinger]

What good will it do Kevin to get the data back? He can't use a computer and I'm sure he's not going to decrypt a GB worth of data by hand!

Yeah... I know he could give it to someone else :P

Re:What good would it be anyway...

[mindstrm]

If you know he could give it to someone else.. what are you blabbing about?

Re:What good would it be anyway...

[BluFinger]

Well... it was intended to be some humorous/sarcastic. Given that your post actually got moderated up, maybe I should refrain from ever attempting humor in the future. Thanks for the bitchslap back into reality.

Export of strong encryption

[ActiveSex]

I know this is slightly off-topic, but while the discussion is about encryption, I though I'd ask:

There were a few lines in that article talking about the U.S. relaxing the rules about exporting strong encryption software; this reminded me of a thought I had a while ago:

Netscape Navigator is available freely from the web, and so are other software packages which contain strong encryption software. They do have a warning before you download that if you live outside of North America, you aren't allowed to download it. But that's just like the warnings on porn sites, isn't it? "Click the enter button only if you're 18 or older, otherwise you're violating a bunch of laws." How do they prevent you from downloading the software, check what domain you're downloading from and if it's foreign, then the server doesn't let you have it?

Or is the law barring export of strong encryption pretty much useless and the message on the webpage is just there to cover Netscape's ass?

I'm just curious. Also, forgive me if someone has already asked this, or a flame war has already been fought over this. :)

-Markus


Rainy days and automatic weapons always get me down.

Re:Export of strong encryption

They check the domains. They reverse-resolve it, whois the domain, and check whether it has a US or Canadian address. If you have a non-resolving IP you won't be able to download it (that's how I found out about this). But the new regulations cover these things anyway - you can not knowingly export it to terrorist countries (putting it on a public HTTP/FTP site does not qualify as "knowledge"), but most other countries can have it.

Another theory..

[Ruis]

I'm thinking that the government CAN decrypt it, they have, and they know what's in it. That's why they don't want to give it back to Mitnick. Maybe he can use it in his defense, and they're counting on people not knowing they can decrypt it. That way, they can say they don't have to give the files back to him because they don't know whats in them.

Re:Well, technically...

[drig]

Now that I think of it...
He probably used password-based encryption to encrypt the key to the files with a password. This would be a lot easier to crack. But, it could also mean that a single-bit error renders the plaintext unreadable. If the error came in the right place, you could never retrieve the proper decryption key. So, he could say "My password is 'foobar'" while it was really 'bazfoo' and then claim that there was an error in the ciphertext. Though, this would mean the US wouldn't have to give him the encrypted files back.

hmm...

1 gb of unintelligable junk?
I know!
He should have named it NTOSKRNL.EXE... then the gov would've have said: "Oh, it's just NT." and left it alone.

Re:wouldn't getting his data back violate his paro

[haus]

Well, maybe they could print it out for him. He could spend the three years of parole manually decrypting the data.

all persons, living and dead, are purely coincidental. - Kurt Vonnegut

could it be a NY Times or a Govt Troll?

[daveb]

I smell dis-information here!
Consider this:

1. Multiple Gig's on a 6 (?) year old LAPTOP
   
2. The Govt hasn't cracked it (and the article implies they tried - or at least wanted to)
   
3. A laptop that old was capable of running algorithms in a reasonably useful time that were of significant complexity to stump the NSA. I mean - how useful is it to have it take a day to encrypt one doc - Kevin might be paranoid but he would have wanted someCPU-time left in the day rather than totally dedicated to a ground-breaking new encryption

Something stinks about this whole thing. I suspect a rat making up stories to set a precedent.

Re:could it be a NY Times or a Govt Troll?

[mindstrm]

6 year ago was 1994. There were some pretty cool laptops in 1994.
A laptop capable of running a useful algorithm?
My C64 could do strong encryption.
Encryption may have become more POPULAR lately...
but some VERY strong algorithms have existed for 10 years or more.

A day to encrypt one doc? Think about this.
I can encrypt a doc in 5 seconds.
For it to take a day, say, half a day, 12 hours, I would have to say... computers would have to be 8640 times faster today than they were in 1994.

Re:could it be a NY Times or a Govt Troll?

[burris]

> Encryption may have become more POPULAR lately...
> but some VERY strong algorithms have existed for 10 years or more.

The Vigenere Cipher has been around since 1913 or so and when used with a truly random key is absolutely unbreakable (proven by Claude Shannon in the 1940's).

DES has been around since the mid-1970's and has no practical attacks that are better than complete-trial-and-error (since the key size is only 56-bits). Now that DES has been proven not to be a group (early 1990's), certain variants of triple DES are the most trusted block ciphers in the open crypto community today.

PGP-2 came out in mid '91 and uses IDEA, which doesn't have any serious flaws that would allow the FBI to compromise Kevin's data if PGP-2 were used (IDEA is not an AES contender because of patents).

I learned about PGP-2 at HoHoCon (a cracker/phreaker convention in Texas organized by LoD folks) in December 1991 where John Draper, a.k.a. Captain Crunch, was busy telling everyone who would listen about it. So it was definitely well known in the cracker community by 1994.

Summary: There was plenty of strong crypto available to Kevin and he probably used it. Strong encryption has been available to anyone who bothered to do their homework for a while now. Most commercial crypto is written by people who are just plain ignorant.


Burris

Re:Mitnicks lawyers have a valid point

Even if there was a pistol in the pocket of his coat - It's his damn pistol!

Precedent in (physical) property?

[cbustapeck]

The logical question, in my mind, is: "What is the precedent for physical property?"

Surely safes have been seized as evidence in other trials. What happens when an individual will not turn over the combination for the safe? What if the government cannot force the safe open?

The most proper solution would be to apply the answer to these questions to the encrypted files.

Re:Well, technically...

[Sloppy]

And the feds just say, "Ok, here's your data" and present him with 9 Gigabytes of freshly generated random numbers.

---

Lawyers out there?

[V.]

Suppose Mitkick gave the police the key. Could
they look at the disk and get more evidence for
*another* possible conviction or would that
fall under "double jeopardy"?

Re:Options

[Random_Task]

"If Mitnick isn't willing to demonstrate that the material on the drives is legit, then the assumption that it's illegit isn't too far off base."

Do the words "innocent until PROVEN guilty mean anything anymore? The US judicial system is not founded on making assumptions. I would not want to be sent to jail because the government read my mind and placed intentions in my actions that did not exist. This comes back to the same bullshit arguement: "Why should I care if the government bugs my phone if I'm not doing anything wrong?" Just because Kevin doesn't choose to divulge the information does not make it illegal. What if it is P@rN pics of his ex-girlfriend? Would you want those paraded around a court room? Your constitutional rights as an American (if you are one) prohibit your incarceration based upon speculative evidence and un-based assumptions.

If you let "The MAN" get away with one small infraction of freedom eventually these small pieces will get larger and larger until you cant even urinate without the proper paper work and permit.

Random Task

Re:Question

[treat]

If this were a case of say, a bomber, and the government had confiscated his chemical fertilizer, which he may have obtained legally, and may only intend to use for farming, would the government be required to return it?

Probably not - when people have their alleged drug labs raided, and their chemistry equipment confiscated, they don't get it back. Even if they're acquited of any crime - even if they're never charged with any crime!

Re:Why is their stupidity a legal issue?

[jlplas]

Yes, that is kind funny. Imagine the justice department confiscating an art painting from your collection and then refusing to return it because "they don't get it", so to them it is "not really art"

But maybe if can explain to them what the artist meant, they will "get it" and return the painting to you...

Re:Mitnicks lawyers have a valid point

[4of12]

Given that the data is Mitnick's property as far as is known, the government should be required to return his property.

And, following the analogy of the coat with the possible pistol, Kevin should be trusted to have learned not to use pistols, rather than be required to demonstrate that he has no pistols.

At least, that's the society in which I'd prefer to live.

He could tell them the key is "rm -rf /".

[Skratch]

:)

Re:He could tell them the key is "rm -rf /".

Bad command or file name.

Re:He could tell them the key is "rm -rf /".

ahahahahahahahahahaha

too bad no one can actually score posts right

Re:Moderate Early & Often

[cyberdonny]

Or we could make it so that for the FIRST! 50 posts you can only moderate down. At least that would take care of the obvious use of mod points early in a thread...

Re:I plead the fifth.

[deacent]

I wonder then if Mitnick can sue to get the data (and any equipment) back, or is this something that this judge has final say over? I think he'd have a pretty strong case, based on the fact that the data in question was never used in this trial and the prosecution hasn't obtained a warrant to get the key from Mitnick. If they did manage to get a warrant, the prosecution would at least have something more than "it might be dangerous" to stand on.

-Jennifer

Re:Easy way out

I would enjoy reading that the government had "forgotten" where they'd stashed the files.

"oops, sorry, someone must have dropped this hard drive." etc. etc.

too nit picky

[marcus]

It was properly credited, perhaps he could have included more detail. Such as:

By CARL S. KAPLAN in the cyber law journal of the january 2000 issue of of the ny times tech library.

Re:Mitnick...

Uh..talk like that ruins the purpose of this page. If you want to act like that, go to an irc channel, leave you ignorant comments to yourself. I would like to see you in Mitnick's place in jail and see you laugh and say the word "nigga". You wouldn't be laughing my friend. So take that attitude elsewhere, /. tries to be an itelligent platform to speak, lets try to keep it that way.

My little black box.

[The+Other+Nate]

I don't like the concept that we can't give it back to him, because it MIGHT be bad.

If I had a little black box that was confiscated, would the argument that it MIGHT be some kind of weapon be ample reason for the law enforcers to not return my black box. To extend this logic, could they confiscate my bank accounts because I MIGHT do something destructive with the money, or that the money MIGHT be the spoils of my previous crime?

You MIGHT have noticed the gratuitous use of a specific word. It's this little word that worries me a great deal about any precedents that may arise from this event.

The Other Nate

Re:My little black box.

[Paelon]

The idea behind them not giving back the data (or at least their explanation, probably not the real reason), is that a man like Mitnick who has been convicted of certain computer crimes should not get access to potentially dangerous information. I wonder if many people who have commented thus far read the part where the judge likened it to giving back a coat without knowing whether there was a loaded gun inside.


Now it may be childish to assume that just because someone wants their data encrypted, it must be used for conspicuous purposes. But for someone who has allready been convicted of crimes of this nature, it's not so farfetched to assume that since you don't know what the information is, it could be potentially harmful.


I don't think that he should ever have to give the key to decrypting his files to the government. However it's hard to say whether he should get the files back. There is no comparable legal precedent here. I wouldn't write it off as a basic right of his to have his files returned. A drug dealer wouldn't have his smack returned after it was ceased in a bust, ever.


Anyhow, this would be a precedent setting case, but after reading all the 3+ moderated comments, not one of them convinces me that Kevin obviously deserves his files back.


I gave you a quarter, that'll be 23 cents back please.

Re:My little black box.

[ocie]

Come on, now. Everyone knows that MIGHT makes right :)

Please moderators have pitty on my poor punning soul :)

Re:My little black box.

[FlyByNite17]

Now it may be childish to assume that just because someone wants their data encrypted, it must be used for conspicuous purposes. But for someone who has allready been convicted of crimes of this nature, it's not so farfetched to assume that since you don't know what the information is, it could be potentially harmful.

How is it anymore dangerous today than it was when he had it decrypted for his own use before? What did he spontaneously forget his plans for world domination during his 5 year incarceration? If so why didnt he forget the more likely component of the equation namely the encryption key? Infact because things are 5 years older all the information in there could be so dated right now unless he has information in there on some sort of secret government coverup, which I doubt he does or he would have posted it immediately. After all we know they're out there what did he do break into Area 51 computers that have tachyon FTL realtime linkups to aliens out there? Then again this is the same government that thinks the anarchist's cookbook can still take down the modern world :)

The Governments are so screwed, its been that way since the birth of politicians rather than average joe in the political offices

Re:My little black box.

[Paelon]

How is it anymore dangerous today than it was when he had it decrypted for his own use before? What did he spontaneously forget his plans for world domination during his 5 year incarceration? If so why didnt he forget the more likely component of the equation namely the encryption key? Infact because things are 5 years older all the information in there could be so dated right now unless he has information in there on some sort of secret government coverup, which I doubt he does or he would have posted it immediately. After all we know they're out there what did he do break into Area 51 computers that have tachyon FTL realtime linkups to aliens out there? Then again this is the same government that thinks the anarchist's cookbook can still take down the modern world :)

The Governments are so screwed, its been that way since the birth of politicians rather than average joe in the political offices

This being a dead thread I doubt anyone will get this, but what the hell:

You cannot speculate about how dangerous the information that has been encrypted may be. Do you not think 5 year old information can be potentially dangerous in the ways the gov't is worried about? Source code to programs dates, but does not become worthless in 5 years. Nor do password files, private financial records, or any number of other bits of information which were meant to be kept protected. The fact they might not have been adequately defended from someone with malicious purposes bothers me greatly; this happens because of the carelessness of people in charge of the data, and is very wrong. But, the idea that the gov't should willingly give that data back, even though they have legitimate suspicion about that data and how it could be used, well that would just be plain moronic.

I don't think the data on there is anything against the government anyhow. It's much more likely that they are merely protecting the assets of a large company. That being said, I'm very glad the government would attempt to protect the assets of a large company. I'm glad like I would be glad to see them attempt to protect the financial history of someone who has had their identity "stolen". The government should be out there fighting for our rights. It doesn't always happen (yes, an understatement of immense proportion). But fighting to uphold basic intellectual property laws (ie. preventing thievery of code, or trade secrets), even when it's to protect big business, is a good thing.

At least that's what capitalism taught me.

Re:Goverments Point of View

Wrong. He is also forbidden from proxy computer use.

Re:Idea: Two keys decript to different content?

[GMontag]

Yes, that is possible and is covered frequently in the crypto and pgp forums on Usenet. Use your favorite archive to learn more.

Lawyer: uh, no.

[hawk]

I am a lawyer, but this is not legal advice.If you need legal advice, see an attorney licensed in your area.

You've turned the presumption of innocence sideways. He was convicted; there is no longer a relevant presumption.

He was convicted for stealing electronic information. It takes a stretch of the imagination to think that there is more than a remote chance that the data does not include the fruits of his crime.

The state does *not* have have to prove a connection to each and every apparent proceed of his criminal enterprise--*especially* when there is a simple way to check.

He *has* been convicted, and it defies logic to suggest that that this data isn't part of his crime. *He* now has the burden of proof, not the government.

This is not an erosion; I believe that this is exactly the outcome you would see from a court staffed by the founding fathers. I'm just about all the way out to the extreme on the rights of individuals in the face of the government (just l like the folks who wrote the Constitution and Bill of Rights), but in this case the law is on the government's side.

Re:Lawyer: uh, no.

[hawk]

I'm not suggesting that he can be forced to turn over the key; I don't think he can (unless given immunity). However, wihtout that, I don't believe that he's entitled tohis data back.

Also, as a legal issue, it makes no difference whether we plead or was convicted at trial; he is now guilty for all of the laws purposes.

Re:Lawyer: uh, no.

[hawk]

That's not the law, though. They can't go poking around for the marijauana, in places where guns wouldn't fit, but if they find it incidental to a legal search, such as bales in plain view in the living room table, or in the gun rack, it's admissible evidence.

However, if you are stopped in an illegal search, and they find and confiscate an illegal gun, they can't use that illegal gun, but they'll never get it back. Or in your case, if the warrant was illegally obtained, you couldn't get the drugs back, but they couldn't prosecute you.

Re:Lawyer: uh, no.

[mikery1]

Excuse me, lawyer, but I think the summarization by Hemos confused you.

At the point that this motion was argued, he was NOT CONVICTED YET.

To quote from the article in the NYT: "During the pre-trial discovery phase of the case, the gov't lawyer . . indicated that . . . he would hand all of the seized files . . . except the encrypted ones."

Also, 3 paras later, it says: "The defense also argued that the encrypted files might include information that could help Mitnick defend himself." This defense argument would make no sense if the motion had not be argued prior to conviction (or perhaps as part of an appeal to the conviction).

next para: "Painter [the gov't lawyer] replied that because the government could not understand what was in the files, it could not use the files as evidence at trial."

several paras later: "In considering the matter, Judge Pfaelzer said that it was "clever" of Mitnick to have encrypted the files in such a way that the government could not use them in its own case, but Mitnick could access them if given a copy."

All of this points to the fact that the motion was not post-conviction, but prior to conviction at-trial.

(Emphasis in all quotes added.)

Note that the article does mention a date of May 20, 1998 -- this seems too late, since I thought he was convicted by that point, so perhaps this date is a typo. Anyway, what do you believe -- a single date reference, or the logic of the arguments by both sides. caveat: IANAL, though I have taken some law courses.

Re:Lawyer: uh, no.

[PG13]

Okay then so suppose I am accused of stealing a bannana and my car is seized as evidence (maybe it was a getaway vehicle and I left traces of bannana on the seat). Now I am convicted of bannana theft and rightly pay a fine or short jail sentence or whatever. Are you implying that I now have a burden of proof to show that the car was not stolen in order to retrieve it?

This seems to lead to an arbitrary abuse of government confiscatory power whereby they may take my stuff and convict me of misdemeanors asking me to prove that my stuff is rightly mine.

Given the fact that no evidence has been admitted which shows that this encrypted data actually contains stolen documents it would seem that this case is similar to the stolen bannana case. As I understand it was never even entered into evidence so no court of law deemed that this encrypted data was in fact what he stole.

Re:Lawyer: uh, no.

[ocie]

Ah, but during his trial, he was also denied access to these files. Imagine that the prosecution has 100 files that they took from me. 5 files appear to convict me, 5 would appear to exonerate me, and 90 are completely irrelevant. Now, imagine that the juicy bits are 1-2 paragraphs, and that each of these documents is 100 pages long. I don't remember which 5 clear me and which frame me, but I can tell the 10 relevant documents by looking at their title pages.

SO...

Does the prosecution have to let me copy, or provide copies for me of whichever documents I want? If I tell them which of the 10 documents I want, they might be able to find the incriminating evedence against me. OTOH, If my lawyer and I (remember, IANAL) obtain copies of these documents, we can find the 5 documents that might free me.

The prohibitive length of the documents is the encryption, the title pages which identify the documents are the keys, and by turning the keys over, I increminate myself, which I should have a constitutional protection against.

Re:Lawyer: uh, no.

[Casca]

This may be oversimplifying things, but what if we were to compare him to a convicted jewel thief that just happened to have some sort of "super-vault" the feds couldn't open. Would we expect them to give it back without him opening it in that case?

Re:Lawyer: uh, no.

[PG13]

Well from my inexpert standing I am still confused about something.

Sure, Kevin Mitnick was convicted (or at least plead guilty) so his penalty could quite legally have included the government not returning his files. However, as I understand it, his punishment does not say anything of the kind. This might be an oversight of the government but they can't increase his sentence once alreay convicted can they?

In a normal theft case isn't the thief specifically charged with turning over certain items? Or am I just completly full of it? Regardless of whether he is convicted of a crime or not as long as his conviction says nothing about the data isn't this an entierly new case which must be tried seperatly and hence the burden of proof once again rests on the government?

Please tell me why im wrong

Re:Lawyer: uh, no.

[coyote-san]

I agree with you that Mitnick faces the burden of proof on all material regarding criminal acts involved in his plea bargains (N.B., not convictions obtained by demonstrating overwhelming evidence - an important distinction when a person is held in jail, without bond, for something like 80% of their eventual prison time), but that says nothing about incidental data being held by the feds.

To give an (hopefully) ludicrious example, let's assume that the disk also contains hundreds of encrypted kiddie porn pictures. He was never charged with possession of such pictures, never even suspected of possessing them, and has surrendered no presumption of innocence regarding possession of such pictures. Yet turning over his encryption key would inevitable result in prosecution for possession of contraband material.

IMHO (and highly non-legal one), I think it's reasonable for the feds to demand the encryption key to be confident that "criminal tools" aren't returned to Mitnick. At the same time, I think they are crazy to expect anyone to agree to that without a blanket immunity against the material being used in further persecution... sorry, prosecution. And that may be precisely the point - to make an offer which looks reasonable in a 12-second sound bite in the evening news, but which could never be accepted in the real world.

Re:Lawyer: uh, no.

[hawk]

That's the example I tried to come up with, but I couldn't conceive of anything physical that couldn't be opened :)

Re:Lawyer: uh, no.

[Eraser_]

Well Mitnick is currently on Probation, and a very strict one at that, so if the contents of the files are incriminating they could be concievably used against him in probation hearings. I dont know if thats legal or not, so even if it couldnt officially be used, it would still rest in the back of the judges mind when deciding to loosen/lift the probation.

Eraser_

Re:Lawyer: uh, no.

[Demonicbunny]

What if it was a box that might contain a weapon in a murder case. If the police can't open this box, do they have to return what might be a dangerous object. If mitnick wants the contents of the box back so bad, why not just give them the key to open it. He cant be convicted of the same crime again, so even if it contains evidence of his previous crime, the gov. cant use it against him. If it is evidence of another crime, then why should he get it back. If its harmless, just give them the damn key. Lets start another distibuted encryption challenge. Read Mitniks Mail!

Re:Lawyer: uh, no.

[hawk]

>That would be true IF they knew that the data on
>the HDD was stolen, they dont.

The blindfold on Lady Justice aside, the law need not ignore common sense. Given that he was convicted of stealing the data, it is flatly unreasonable to believe that it is not on that hard drive.

Given that, the only way that he can make a claim for the return of the physical drive is if all stolen date is wiped beyond recovery--and I'm not sure that that standard can be met.

Re:Lawyer: uh, no.

[hawk]

Yes, there are two things at issue: was he entitled to it at trial, and is he entitled to it now. He lost before trial, and I thought the article said he was asking for the data back now as well.

His right to have the government produce the data before trial relies on the possibility of the government using it against him. While it remains encrypted beyond the government's reach, it has no evidentiary value, and thus there is nothing for him to defend against.

*if* it really has evidentiary value that could help in the defense, it is a document subject to the warrant, and the government is entitled to see it too, having been lawfully seized. The law does not tolerate absurdities, and letting him have the evidence in the hands of the other party yet still deny the other party its use would be an absurdity.

Also, the moment it is rendered readable, he would be obligated to turn that data over, or be subject to very strong sanctions--particularly, those for destroying evidence, which causes it to be construed as having the worst possible meaning for the party who destroyed it.

Re:Lawyer: uh, no.

[turg]

Nope. There are two ways to adjust your example to make it fit

1. If your are convicted of banana theft, you don't get the banana back
2. Also, you don't get tools for lawbreaking back. If you take a radar detector into someplace where radar detectors are illegal, you maybe able to convince the cops you didn't know it was illegal and to let you off, but you don't get the radar detector back (after all, to take it back at this point would convict you :-). If someone slips cocaine in your luggage, you could convince the customs agents that you didn't know it was there and maybe no-one will ever be charged or convicted, but that doesn't mean they'll put the cocaine back in your bags and send you on your way.
   • To bring this back to the car example, a vehicle modified for smuggling counts as a tool for lawbreaking -- even something as simple as pulling back the door panel and dropping in a few packs of smokes means you can lose your car forever

The murkiness in this case comes from the fact that the cops don't know for sure whether the banana or the radar detector are in the car or not.

========

Re:Lawyer: uh, no.

[hawk]

I only saw this by chance when looking to see what Foogle was replying to--if it's not worth sighing you r name to, it's generally not worth my effort to read.

Anyway, he was in jail that long without trial because he explicitly waived his right to a speedy trial. As it was his choice, there's no durress.

Re:Lawyer: uh, no.

[hawk]

The sentence in a criminal case doesn't tend to include "and you can't keep the money, either."

The material was seized due to a warrant and the belief that it was part of a criminal act. He has been convicted of that act. The data is *what* he's been convicted of stealing. If there are parts of the data that are not stolen, he has the means to get them back.

To put it another way, the problem is that the property in question isn't his--he stole it from someone else, and isn't entitled to that portion of the data any more than a crack dealer is entitled to get his inventory back.

Re:Lawyer: uh, no.

Any chance you could tell us why being inprisoned for 4 years without a trial does not invalidate both the conviction and any subsequent plea deal due to the extreme duress of the situation?

Re:Lawyer: uh, no.

[SimCash]

Actually, information is different from, say money. Making a copy of information does not directly reduce the value of the original, so unless Mitnick destroyed the original data, there is no value in the encrypted copy in the gov's possession.

OTH - if they are looking to see what data he stole, then 5th ammendment might apply. A sticky wicket, I hope the people who sort it out understand the concepts better than they seem to have in similar situations.

Re:Lawyer: uh, no.

[Sunthalazar]

I'm not positive about this, but I thought I remember hearing in one of my classes that if you get information that doesn't apply, it can't be used.
Example: Police suspect that I'm smuggling guns into the country. They get a warrant to search my house for guns. When they get there they find that I'm growing marijuana, but no guns. They take the marijuana because it's a controlled substance, but they can't arrest me for it because they didn't have a warrant to search my house for it. (Of course, if I were them I'd go get a warrant for it and then research, but that's a separate item.)

If this is the case, there is a simple analogy. They require the key to look for incriminating evidence in regards to the crime. However, if they find something else, they have to get a separate request for that. And he should have time to recover from it. As in the previous example, if they take all the marijuana and I don't grow any more, they can't get me on that. They might be suspicious and if I'm stupid and continue they could bust me on it, but if I stop then I would be okay. (So if he had kiddie porn and he didn't have any other pictures that they could find, he would be okay)
Of course, IANAL, but I do believe I remember this.
Alternatively, I would just like to know if what I remember is correct. I obviously don't smuggle drugs/weapons, but I like to know when my memory fails me.

Re:Lawyer: uh, no.

[pellis23]

Since someone can't be tried for the same crime twice, if the files contained evidence of the crime for which he was already convicted, then he is immune from prosecution anyway. If it may contain evidence of another crime, he has the 5th admnedment right to not incriminate himself. Either way, there's nothing the government can do with it unless they decipher it without his assistence.

Re:Lawyer: uh, no.

[gwalla]

I can't conceive of anything digital that can't be opened. Five years and they couldn't decrypt it? What the hell kind of encryption was Mitnick using?


---

Re:Lawyer: uh, no.

[PG13]

Yes I agree you don't get the banana back and probably don't get the burglary tools back. Mt point is that there appears to NEVER have been a finding by a jury or even a court of law that these items are in fact either the fruits of his crime or the tools used in his crime.

As an earlier poster pointed out it could be his grandmothers cookie recipe or lots of child porn. I agree his refusal to open it up for the authorities is sugestive but remember the excersice of his rights (in this case refusal to turn over the key) cannot be held agaisnt him. In essence his data is being taken away from him on the assertion it was used/was the product of a crime not the finding thereof.

The government has taken his stuff and asked him to prove it is not the fruits of a crime which appears to be in violation of the normal procedure of where they prove it is the fruits of a crime so they can take it.

Re:Lawyer: uh, no.

[Demonicbunny]

But its not dust to Mitnick, its possibly important files. Now if there so important to Mitnik, then why wouldn't they be important to the Gov.

Take the gun out of the box, and put in 500,000 dollars, and make mitnik a bank robber. Should the gov get the combination of the box, or just give the money back to Mitnik?

Re:Lawyer: uh, no.

[root:DavidOgg]

>>> But its not dust to Mitnick, its possibly important files. Now if there so important to Mitnik, then why wouldn't they be important to the Gov.

not the point, there his. because they dont belong to the gov.

>>>Take the gun out of the box, and put in 500,000 dollars, and make mitnik a bank robber. Should the gov get the combination of the box, or just give the money back to Mitnik?

Put whatever the hell you want in the box, He's not being charged with anything, and the government cant hold it as evidence by its own admission.

Re:Lawyer: uh, no.

Trouble is Mitnick has it all in his head, and he can re-create any/all of it again, but may take him a bit of time, after the 3 year ban has passed. Still stupid, as he could give lessons or private tuition, again, without a computer. After 5 years, arguing there there may be something harmful is bullshit. They dont want to give it back because they dont know what s on it'. Can be solved, by say having a 3rd party, like British or Swedish Data Ombudsman, let Mitnick take some data under their auspices, then destroyed. Thats fair, reasonable and protects privacy, and ammendments. I suspect his hard disk has been pulled to bits (after a copy or three), and the oxide scaped layer by layer to get clues, aka illegally destroyed without compensation. If something special was done, giving back a replacement/copy may not be good enough. I see a difference in pulling apart a car, searching for drugs, as opposed scraping/dissolving the paint off the mona lisa, to find out if the painters breath had something unusual in it. Don't suppose they will tail mitnick afterwards?

Re:Lawyer: uh, no.

[root:DavidOgg]

>> The blindfold on Lady Justice aside, the law need not ignore common sense. Given that he was convicted of stealing the data, it is flatly unreasonable to believe that it is not on that hard drive.

>> Given that, the only way that he can make a claim for the return of the physical drive is if all stolen date is wiped beyond recovery--and I'm not sure that that standard can be met

We dont try people on common sense, we have laws and lawyers instead. The problem with your definition of "Common Sense" is that it fits most peoples definition of "Guessing". We have Laws to protect us from charges that are "guessed", The law doesnt allow guessing, things must be proved, we dont put people in jail because we "guessed" he commited a crime. We cant hold personal property because we "guessed" its stolen. If that were the case, we would not NEED laws, OR lawyers.

This is moot anyway, as the HDD is not even considered evidence by the court.

Lady Justice may be blind, but we're better off with her blindly protecting our rights, than blindly ignoring them. THATS Common Sense, and that is the Spirit of the law and our governments Constitution.

Re:Lawyer: uh, no.

[Demonicbunny]

I a see your point. I don't think their holding it as evidence, its potentialy stolen goods. On another thread some one pointed out that the government can always just give him for the value of the files. What do you think about that? Who determines the value.

Re:Lawyer: uh, no.

[root:DavidOgg]

>To put it another way, the problem is that the property in question isn't his--he stole it from someone else, and isn't entitled to that portion of the data any more than a crack dealer is entitled to get his inventory back.

That would be true IF they knew that the data on the HDD was stolen, they dont. The property, the HDD is definately his. They may make a backup as evidence IF THE DATA is the evidence in question, but if they are not willing to use the evidence, or prove it IS evidence, they cant hold it.

The analogy about the crack dealer, well, everyone knows what crack is, its physical, and it was evidence used to convict the crack dealer, and it was tested to be sure it WAS crack, and then used against him in court. (unlike the data) The court never offered to give the crack dealer his crack back on the condition that he disclosed what he mixed it with. He will refuse to divulge the mix however ;)

Re:Lawyer: uh, no.

[COAngler]

Example: Police suspect that I'm smuggling guns into the country. They get a warrant to search my house for guns. When they get there they find that I'm growing marijuana, but no guns. They take the marijuana because it's a controlled substance, but they can't arrest me for it because they didn't have a warrant to search my house for it.

I don't recommend trying to ride on that analogy. In the US there exists what is called the "Plain View" doctrine. That doctrine holds that any evidence is admissible, if an officer sees it in plain view and he is in a place where he has legal authority to be, and does not use "extraordinary means" to view the evidence.

That warrant in your example gave the officer legal authority to be present in the home. As long as the marijuana was out in plain sight, he can seize it, and charge you with your state's version of Cultivation or Manufacturing of a Controlled Substance.

Or at least that's what they told us at the police academy.

Re:Lawyer: uh, no.

[root:DavidOgg]

>> What if it was a box that might contain a weapon in a murder case. If the police can't open this box, do they have to return what might be a dangerous object. If mitnick wants the contents of the box back so bad, why not just give them the key to open it. He cant be convicted of the same crime again, so even if it contains evidence of his previous crime, the gov. cant use it against him.

Yes they do, because the gun in this case has already been found, and the suspect has already been convicted of murder, and served his sentence. And, they CAN open the box, but all they see inside is metal shavings, could CONCIEVABLY have been/could be a gun, but they already charged him with using a different weapon, and they have no intention of using this box for any other porpose or as evidence, but he wants it back, its his dust.

>> If it is evidence of another crime, then why should he get it back. If its harmless, just give them the damn key.

Because its not evidence, the case is over and he isnt CHARGED with any other crime. The government cant come in your home, take your stuff, and say, "prove this is yours or you wont get it back, we arnt charging you with anything... BUT it is possible this stuff aint yours, If you have nothing to hide then prove it."

It could be pure garbage!

[(void*)]

Who knows, maybe it is just pure random data that Mitnick has. Imagine: Mitnick vs. US Govt over 9G of crap. After all, what does Mitnick have to lose, now that he use computers? Could be Mitnick's way of giving the finger to those that sent him to jail? :-)

NY Times login/password

[SMN]

Try this one out - I'm not the one who started it, but I and many others use it:

Login: slashdoteffect
Password: slashdot

Copyright versus republication right

[Morgaine]

Perhaps the poster would contend that, by posting an article on the web, the NYT had implicitly given copyright on it to the public. After all, it is *IMPOSSIBLE* to read an item from a webserver without taking a copy first.

The issue isn't one of copying but one of republication, and copyright law doesn't necessarily cover that as it's a separate issue. Even more income for lawyers in that direction, I bet.

I wouldn't hire that guy

Look at his background, drug arrests, theft, cloning cell phones, evading authorities. Its proven he is not to be trusted.

amusing encryption scheme...

[Dharzhak]

It would be pretty damned funny if he wrote the files in Klingon with no spaces and punctuation and then encrypted them. Even if the feds managed to successfully decrypt the files, they'd still think they were looking at gibberish.

Re:amusing encryption scheme...

[coolgeek]

I'll bet he did something like that or similar, just encrypted some data that really bears no relevance at all to anything he may have done (e.g. a phone book :). Just a trail of breadcrumbs that leads to nowhere - a way to distract those who would attempt to apprehend him.

Re:Hello.

Its obvious at this point in the parent-post's life that nothing can be funny on /. anymore without being marked as overrated 15 times.

Search Warrents for Encrypted Data

[bwt]

I'm confused. Why didn't the police get a search warrent for the encrypted file. How is encrypting a file different than putting a lock on your Cedar chest in your house.

The search warrent process has safeguards built in: you have to demonstrate probable cause to a judge to get a warrent. This should include a description of what you hope to find. Trying to go on a "fishing trip" hoping to find something, when you have no idea what is there does not qualify as probable cause. If they can't get a warrent, they have no right to keep the files, but if they do, he should decrypt them.

Also, now that Mitnick is free, why not hand over the key, let the cops decrypt it, have his lawyer seal the evidence, and milk "double jeapordy" for all it's worth. I'm sure that most statues of limitation have surely passed for any possible new crimes that might be demonstrated by the contents.

Re:Search Warrents for Encrypted Data

[togtog]

IANAL, but I believe if the FBI gets a search warrant to search your house you do not have to grant them access at all. However, if they have a warrant they have the right to break down your door and search the house without your consent. Same for the encrypted files. A search warrant would only allow them to try to crack/ decode/ decrypt the files. It would not allow them to force you to give them the key, or decrypt it for them. It is up to them to gain access on their own.

Just as if the FBI knocked on my door tomorrow with a search warrant to look for that nuke I'm making (oops, I wasn't supposed to tell you that... umm) I could slam the door in their face. They then could just knock down the door a second later to gain access.

I don't believe doing such is illegal for either side, I may be wrong. I would get a broken door for my action and they would get access. I believe a search warrant is just that, a "search" warrant. Its not a "Give us your keys and search" warrant.


Just my 75 cents, damn taxes...

Re:Mitnick...

Give it up, AC. Response is what the FP is looking for.

Evidence in Public Record?

[deesvito]

IANAL, but isn't this the same situation as the DeCSS evidence being in the public record? Couldn't Mitnick just ask a friend to ask for all records of his trial, including copies of the files?

Re:Evidence in Public Record?

[David+Price]

No, because the prosecution didn't enter the encrypted files into evidence - had they done so, they would have been required to turn the information over to Mitnick's defense team.

Re:Bitchin' boxes for 1994

A megabyte here, a megabyte there, pretty soon you're talking real storage!

works here too

[toast0]

and i'm going through junkbuster so they will get no cookies of mine

Re:I plead the fifth.

[john187]

I think the fifth amendment protects you from being induced to give information that would lead to incrimination or conviction.

Most crypto-systems involve a key of somekind or even a pass-phrase along with the key. Being induced to give the pass-phrase is tantamount to giving information that would lead to incrimination, IMO.

John

Re:Options

[Random_Task]

I think we were thinking the same thing at the same time *laugh*.

Random Task

Re:Brute force in 5 years?

[forii]

it's extremely doubtful that even the NSA can break a 128 bit key via brute in anything resembling a useful time frame.

I think that it's a little bit dangerous to assume one way or the other what the NSA can do. Not to be paranoid or anything, but it is always possible that they may have techniques that are currently unknown to the public, as appears to have happened in the past. (the weakness of the particular permutation blocks in DES (given to IBM by the NSA )to a certain type of cryptanalysis is an very suggestive example. See Applied Cryptography for details).

Not only that, but if the NSA did have any interest in the files, and wanted to take a look at them, it isn't as if they would announce that fact to the world. Even decrypting it for another government agency (like the FBI) might bring up questions of what the capabilities of the NSA are. For example, if some hypothetical hard drives were encrypted with 128bit encryption, and the FBI knew what was in them, then it could be assumed that 128 bit encryption was "breakable", giving unwanted information to the public (and other countries). What could happen (and I'm in no way implying that this did happen) is that the NSA would take a look at the files, see if there was anything that interested them, and if not, then just give it back to the FBI, without telling them what was on it.

I'm not trying to be paranoid, but I'm just trying to point out that one shouldn't assume, on the basis of action or inaction in one certain case, what an adversary can (or can't) do.

MOD UP! Important!

Thank you.

Re:Attitudes like yours...

[Drog]

They will NEVER be able to PROVE that those 0's and 1's are some sort of contraband. So they will never be allowed to keep it. So criminals will ALWAYS be able to keep their encrypted records.

Would you be so affronted by the governement refusing to return a briefcase (which they had been unable to open, for whatever reason) to someone who had just robbed a bank just because they can't PROVE that it contains stolen money and the convict refuses to prove to them that it DOESN'T contain stolen money?

This isn't quite the same as being guilty until proven innocent because he's already been proven guilty of something, to which the files in question may be related.

Only recently has encryption become so good as to be undecipherable (for all intents and purposes). So now we are forced with only two choices -- (a) to make life easier for criminals (by not demanding that they give up the keys to encrypted files) and more lucrative for criminals (by giving the files back after they served their time) or (b) to take a little bit of freedom away from everyone else by being allowed by law to demand that those either charged or convicted with a crime give up the key. Don't forget, there are already a LOT of liberties taken away from us as soon as we're charged with a crime. It's unfortunate, but a necessary evil if you are to actually convict anyone. Wouldn't it be rather silly if the authorities were NEVER allowed to search someone's house to gather evidence, no matter how much reason they had to believe that the evidence was there?

Re:Files

ftp://ftp.kevins-leet-haxor-files.org, duh

A leagal reason for the data to (not) be returned

[shanec]

A few months back, I remember someone was proposing a change to the law that handled seized property. In short, the law (at least at the time) read that the government did NOT have to return seized property that was not held as evidence, or in connection with any crime.

(even shorter: the govenment could take something that was totally irrelivent to a crime, and not return it)

The only reference I could find was this proposed change:

Civil Asset Forfeiture Reform Act (Engrossed in House )[H.R.1658.EH]

I'm not certain if that's even the correct bill (Damit Jim, I'm an SysAdmin, not a lawyer!), but you get the jist of what I'm getting at. If this got into place, maybe he has a chance at getting the data back. If not, maybe not. {shrug}

Shane

Re:Bitchin' boxes for 1994

We'll never know, because the brand name plate seems to have been shaken loose. I guess that two days the machines were in a paint shaker didn't do the data on the drives any good either.

Information wants to be free. Maybe the data should be available to ALL of us on an FTP site somewhere. I bet someone would eventually decrypt it.

I love the "not really in our possession" bit

[Evro]

I don't understand this. How can they say that the files are "not really in [their] possession" with a straight face? I mean, if they're not in the possession of the government, then whose? They're not in Mitnick's, otherwise the defense wouldn't have asked for them. They only wanted copies, anyway. This is such bullshit. I really think this case was a shining example of government tyranny and makes me rethink my anti-gun stance.

So what if there was a plan to take down the entire internet in there? The defense lawyers wanted it -- I don't think the lawyers could have done anything like that, nor Mitnick for that matter, since he was in jail. Even now he couldn't do it because he can't come within a mile of a computer.

I think the prosecution and the judge just hated Mitnick or something, I don't see how any of this can be legal. Why doesn't Mitnick plea this up to the Supreme Court? If this is really a constitutional violation, which it seems to be, that's the place for it.

Does anybody know, was Mitnick even a good hacker? Like, was he revered among his colleagues/peers/whatever? I don't get this entire case, it seems like it didn't occur in the United States. But it was in California, wasn't it? California is its own little universe anyway.
___________________

Re: Speedy Trial

[coyote-san]

Why don't you think about your "solution" for a bit, then get back to us? It wouldn't hurt to read a few well-known cases under British law (both in the home country and the colonies) to know exactly what happens when the state has the power to detain people indefinitely while "collecting evidence."

Hint: this rule is intended to protect political prisoners, not common criminals, and is tightly coupled with the presumption of innocence.

Re:Hello.

To bad your not signal 11. If you were, by now your post would be marked up to at least 4, marked friggin hillarious.

Why Jon can't read

[bons]

It's not funny, don't laugh

Jon Johanson : My name is Jon Johanson. I'd like to get a copy of the address book on my PC so I can e-mail my friends and keep them updated on my situation.
government rep. : I'm sorry. We cannot release those files.
JJ : What? Why not?
gr : You use the Linux operating system which is known to be user unfriendly. No one here knows how to use Linux.
JJ : So?
gr : So we decided that since we can't get to the files, we don't know what's in them. They might contain a lethal compuetr virus or something. Until we know what's in them you can't have access to any of them.
JJ : You have got to be kidding me. Is there anything I can do to get around this?
gr : Well, if you're willing to train everyone involved in this trial how to use Linux for free, I'm sure we can make an arrangement after everyone has sucessfully completed the course.
JJ : ARRRRGGGGHHHH!

Disclaimer: If you're offended Jon, I'm sorry.

-----
Want to reply? Don't know HTML? No problem.

Re:Easy way out

[Paranoid+Diatribe]

If they decrypted it, then that would be public proof that they could decrypt it. One of the gov'ment's strengths is that we just don't know what its full capabilities are, especially when it comes to Spooks. This keeps the sheep in constan fear of the wolf.

Does anyone even know what algorithm Kevin used?

One could always take the fall for the rest of us. Send a PGP encrypted email to someone at the whitehouse. Make a threat about killing, say, Janet Reno, and wait for yourself to disappear. :) Make sure the subject line is menacing enough to get someone's attention. When we all notice you've suddenly vanished, we'll have proof They can crack PGP.

I don't

[marcus]

The limit to what they/the prosecutors can decrypt is not the same as the limit of the technology available. Rather the limit is their budget.

Most likely the prosecutors gave Mitnick's boxes a cursory scan, knew enough of what they were doing to recognize that some were encrypted and stopped there. For the rest of the time they have been sitting idle, ie no money being spent.

What I wonder about is how he managed to fit 9G into a couple of laptops 5 years ago?!?!?

The answer is:

[GMontag]

If it cannot be proven to be contraband the government is supposed to return it. The big dumb question is, how could a bunch of possibly bits be contraband?

Before anybody jumps on the "Richo act" property grabbing theory, that is obviously unconstitutional too but the cops and judges just don't care.

Re:Nice try....Judge already said no though

[Sir+Tristam]

The judge added that if Mitnick would "tell the government how to read" the files, then the government would turn over the files in decrypted form.

Ok, try this then: The police want to search your house, but don't have enough to get a warrant. They've set up shop on your front step, and won't let you in. "The judge added that if you would tell the government how to unlock your front door, then the government would turn your furniture over to you in the street."

Or maybe this one: To keep down on demonstrations, you can no longer petition or demonstrate in public. "The judge added that if you would tell the government what you view is, then the government would petition itself on your behalf."

Or maybe this: To keep you safe from armed criminals, the government decides that you can't have a gun. "The judge added that if you would call the government if an armed criminal shows up, the government will come protect you from them."

Or perhaps: To speed criminal trials, you can no longer have your own lawyer for defense. "The judge added that if you would tell the government prosecution team your side of the story, the government prosecution team will also provide your defense."

If this action doesn't violate Mitnick's Fifth Amendment right against being a witness against himself, it probably violates his Fifth Amendment right against having property taken without just compensation, and certainly violates his unenumerated Ninth Amendment rights.

Mitnick wants them for a reason...

There's one thing that bugs me about this article. Mitnick was before his time in the fact that he managed to get into places that were supposed to be "hack-proof". The things that arise to me would be that either.

1.) There's evidence in there that may be able to be used against him in the future

2.) He's got something he knows is of value and even though he can't use a computer for a while that doesn't mean he can't give the harddrive to someone else and tell them how to unencrypt it.

3.) His mom has a great brownie receipe

Now I usually don't post if there's well over 200 comments, but I decided that I would on this occasion. Mitnick has alot of secrets and he should he's the hacker that everyone wants to interview and make movies about. He also got caught and he'll be forever watched. So is he that genuis that he managed to encrypt to the point of being able to keep it secure for five years.

There's a small chance someone might read this.

Re:I plead the fifth.

[Cycon]

If you're thinking, "yeah but with a safe they could just jackhammer it open," think of it as a boobytrapped safe. The court could require someone to disable the boobytraps.

Or the government could try yet again to pass legislation that forces all safes to have a special comination that the government can use at will that disengages the booby trap. Just because we all know that that would effectively render the safe useless, doesn't mean that they're not attempting to set some sort of precedent with this case.

--Cycon

bzzzt, nice try though...

If it wasn't used as evidence at the trial, then it isn't in the record of the trial.

Sure glad you're not my lawyer ;)

No Way, He Should Not Get His Files Back

[Drog]

I'm sorry, but I don't think Mitnick should get his encrypted files back. Regardless of whether he deserved the prison sentence he got, he IS a criminal and those files may contain illegally gathered information. When you're arrested, the authorities have the right to search your home and go through all your belongings, including your computer files. When you're convicted, they have the right to put you in prison for years. I'm surprised the courts didn't force him to give up the key or face a much stiffer sentence. To knowingly give a criminal the spoils of his crimes after he is released from prison would be ridiculous. If the encrypted files really are innocuous, I don't think that forcing him to prove it before returning them is a violation of his rights.

Re:No Way, He Should Not Get His Files Back

[Xenu]

When you're arrested, the authorities have the right to search your home and go through all your belongings, including your computer files.

No they don't, not without a search warrant. An arrest warrant is not a replacement for a search warrant.

Re:No Way, He Should Not Get His Files Back

umm... are you a moron

see... encrypted means that you cant see whats in side... that means that you are making WILD accusations about "illegally gathered information" and "the spoils of his crimes"

think about it.... its probably all his pr0n ;-)

Re:No Way, He Should Not Get His Files Back

[Legerdemain]

>he IS a criminal and those files may contain illegally gathered information.

Key phrase you used is "may"

>To knowingly give a criminal the spoils of his crimes after he is released from prison would be ridiculous.

How do you know the file contains "the spoils of his crimes" ??

You are assuming he is guilty.. He has not been tried for any of the contents of the 1G encrypted files.

It could be something that is personally valuable to him.

Plainly, the judge was retarded..
1) Encryption was VERRRY clever of him.
2) She assumes its dangerous without knowing and violates his rights.

I would love to see something like this get to the supreme court. I trust them to be smart enough to figure out the right answer.

How smart do you think these "ELECTED" judges are?

As much as I hate polotics, some smarter peeps need to run for some offices, whether its to be judges or whatever. We need competent elected officials. All we have are good shmoozers.

I got off topic.. my bad.

Re:No Way, He Should Not Get His Files Back

[Drog]

I said "may contain" illegally gathered information. And since the goverment has no way of knowing, giving him back his files MAY be the same as giving him the "spoils of his crimes." To require the governement to PROVE that encrypted seized files contain illegal information or evidence of illegal activities in order to keep them would make every criminal's life a whole lot easier. Just encrypt all your records and never worry about being raided because they can't force you to decrypt anything, so they can't get at the evidence, so they can't prosecute you.

Re:No Way, He Should Not Get His Files Back

[Tyrell+Hawthorne]

Thing is, he has already been convicted, and he has spent his time behind bars. The case is over, the judge has ruled and Mitnick has had his penalty. What I think about the way the police can take all computer equipment and keep it until it's so old it's useless is not relevant here, what is, is that they are done with the 'evidence'. Now it's time to hand it back.

can't use a compu;he DOES have theright 2 his info

He Said He Wants His Data Back! The Feds had impounded his car (ie computer &nonvolatile mem ie HD) but doesn't he have the right to his DATA?! THAT's wrong.

So he can't use a computer.... maybe its a simple crack if you know some key things, and he's going to print it in hex and work it by hand. Whatever. He still has the right to the information itself, regardless of the equipment being impounded.

The VERY FACT THAT THEY DEMAND THE KEY is that THEY DON'T HAVE A LEG TO STAND ON. They're willing to let him have it, so its not a national security issue for HIM to know it, they just WANT TO KNOW what HE KNEW!! plain and simple.

antidisestablishmentarianiphobe

Re:I plead the fifth.

yes, and he said to you that Mitnik DID plead the 5th, BUT the Judge rejected it. bah ... I give up, there's obviously no getting through to you, is there?

Re:Moderate Early & Often

[SEWilco]

No, because moderation is often needed before there are 50 comments in order to separate the noise from the signal. [Pun Intentional]

Re:I plead the fifth.

[jareds]

• 5th Amendment doesn't keep people from being required to provide a blood sample for DNA and I'm pretty sure it doesn't keep them from being required to turn over keys to a safe if the court issues a warrant.

Wrong. If the cops come to your door with a search warrant and ask you you for a safe key, you don't have to get it and bring it to them. You don't have to tell them where it is. They can then proceed to tear apart your house looking for it, but if they don't find it, that's just their tough luck. Anyway, a much better analogy would be a safe with a combination lock. There might even be case law on that.

Of course, he could claim that he forgot the key. That might be hard to believe, but people claim to forget things that should be much easier to remember than an encryption key without getting jailed for contempt. It would set a very dangerous precedent to start jailing people who say they forgot something, because some people actually do forget important stuff.

Re:(OT) For those who don't want to register

[KyleCordes]

It would be difficult to show damages, since the content is available on their site for free.

(It is nonetheless a violation of their copyright, though.)

Re:Options

[Score+Whore]

Err, upon reading that footnote, I see that it may be poorly worded. Just note that a lot of people are arrested and jailed until a trial based upon the propisition that they are guilty (ie. the law enforcement agent caught them in the act.) And once you are at that point you often are subject to searches and numerous other personal and legal violations.

Re:Easy way out

I knew something was funny about the whole thing, after all we all know space alians exist. Right?

Re:What is the funniest thing..

[DeadEye]

The chances are very good that those systems are still around. Just not in the numbers they might once have been. But where they are still relatively prevalent is in large companies and corporations that take many many years to completely move on from legacy systems. But what I don't understand is.. is the government trying to indict him again based on this data they have never managed to read? I haven't followed closely so maybe that is what they are doing.

Re:Easy way out

Sorry, Joe, but "mighty clock cycles" just won't do it. Break a pass phrase by brute force? Often, but not always. Break an actual encrypted file, using 1024 bits or more of RSA/ DH/ DSS or ElGammal? Or 128 bits worth of CAST, IDEA, 3DES, or Blowfish? Not!

The problem is easier to understand if you actually calculate the magnitude of the numbers involved, and then take into account that paralell processing to try (on average) half the combinations would require memory space to store the intermediate numbers (huge, since they involve exponents of the potential keys), and processor space to crunch those numbers in. If Moore's law holds, and we limit the size of our mighty cracking engine to, say, the Moon, even old fashioned PGP 2.x is good for another 20 years at least.

Without a fundamental breakthrough in mathematics, modern encryption is bullet proof on the mathematical level. You have to attack the machines it is done on, or the people who are doing it, to get anywhere at all.

Small wonder our fearless leaders experience "cyberterror" at the thought of free citizens using computers to monitor their legislators' performance, and secure encryption to talk to each other about how to solve the problem of throwing the bastards out of office.

Heh heh heh...

Forcing Mitnick to hand over the key

[jea6]

I wonder how this translates to another scenario: If Uncle Sam wants to search my house, that would require a search warrant. If I do not open the door, that would require a battering ram. Paranoia aside, a battering ram does not seem to be readily available.

Now let's say they got in my house and found a book written in Esperanto. Being short of Esperanto translators, they ask me to translate it for them. I say "Never!" or "Neniam!" and pleading my 5th Amendment, keep the contents of the book to myself until the government finds an alternative.

At this point, I draw another parallel to the Zapruder film which the government declared as its property (I'd like to do that) in exchange for proper compensation. So it's not out of bounds for the government to claim domain and walk away. Then the question is one of assessing the value. (As discussed in earlier postings).

I'd let the government compensate me for x amount and then have all of my "Free Kevin" supporters sue under the Freedom of Information Act to make its contents public. Although these may be considered court records entitled to a higher degree of protection, this might be a strategy worth considering.

It really would be great if they spent all this time and money decrypting only to find that the encrypted gig contained alt.binaries.tickleandspankme pictures from way back when!

Logging in

[veldrane]

Some people are just paranoid about logging in.

Maybe they have a right to be.

Wrong hysterical analogy.

[GMontag]

This is nothing like having some magic unopenable suitcase that may contain real money or some undetectable drug or undetectable explosive or anything remotely like that.

This is like having a very long book that you can not read. In no way are a bunch of characters "dangerous", even if they are plans for cracking into 7 year old computers, 7 year old credit card numbers or anything else that is printable.

It is exactly the same as if the data were in a book that YOU could not read.

Your the moron

And if the judge had decreed that he could not openly criticise the government or practice a religion of his choice your saying that the First Admendment doesn't apply here either, right?

Your the fucking moron, whether or not judges order that he can't use a computer does NOT mean they have the constitutional authority to do so!! The Tenth admendment SPECIFICALLY says so!

Re:Your the moron

[Diesel+Dave]

Not quite, but please read article 9. The enumeration in the Constitution, of certain rights, shall not be construed to deny or disparage others retained by the people.

Re:Your the moron

[Doctor+Faustus]

It doesn't matter what The Constitution says. If a judge orders something, no one and nothing but a higher judge can stop that order. There is no check on the judicial system.

Re:Your the moron

Yes, there is. The United States Constitution is the check on the judicial system and this [piece-of-sh*t] judge. The requirement also goes to cruel and unsual punishment. I do not know a person alive who would say that this is *not* unusual punishment. It f*cking well is unusual. I hope that power-hungry judge gets a rope tied around his neck (metaphorically, of course).

Re:Your the moron

[Courts]

>It doesn't matter what The Constitution says. If >a judge orders something, no one and nothing but >a higher judge can stop that order. There is no >check on the judicial system There *is* a check on the judicial system and the Constitution as a document of law *does* matter. Should this case eventually reach the Supreme Court and they decide to hear it, they will have the right to interpret the wording of the Constitution as they see fit. Our legal system provides a system of appeals and each level can overturn the prior. Guess what...that's a check on the Judicaial system. Furthermore, there is a simple way to check the judicial system. The Court can only rule on a law once they have a real life case where that law is being directly and legitimately challenged. Courts are checked when new laws are passed thus redefining the context and the relevance of their former decisions and narrowing the scope of their future ones. The upshot of all this is the simple reality that the Judicial System is not the ominous conspiritorial power that you're making it out to be. --Courts PS. You are = You're not Your --- Possessive form I know it's not a grammer discussion page, but as long as we're slinging around insults....

Re:Your the moron

[cpt+kangarooski]

Yes, but the constitution doesn't just get up and whack members of the government with a clue stick (but I'd like to see a schoolhouse rock in which it did ;)

Rather, a higher court must consider the case in an appeal, and it's expected that they will pay close attention to the constitution's bearing on the case.

Re:Nice try....Judge already said no though

[Raven667]

The way he is looking at it, the files may be property but asking him to give up the key, that would be testimony.

In reference to annother post, asking about Double Jeopardy, that wouldn't apply if they could find evidence of a crime that he hasn't yet been charged with. For example evidence that he broke into a server that he has yet to be charged with breakin into. They'll just find a different statute and claim that they are charging for a different crime. Then annother 5 years in maximum security without trial for Kevin.

Re:Easy way out

Hey, great idea! Not only do we get proof that they can crack the ciphers, but we even learn how long it takes!

LOL

he gets it only if...

[levl289]

he keeps the data encrypted.

data is data...right now it's a jumble of bits that's simply unidentifiable by a human. That's how both parties should get the data - then they're equal. If Mitnick decrypts his data, so should the gov't be able to...

This was a legal case, and as much as anyone may be against what happened to Mitnick, certain aspects of the law need to be followed. Would you all be so vehemently against the gov't if this was the case of a real terrorist?

There's no room for "yeah, but he's one of us" when you're arguing about the law...corrupt govt's are really into that...

Forget the 5th, this is about the 4th.

[ca1v1n]

Ok, we know the government could brute force it if they wanted to (and may have already), and they are probably allowed to under the warrants they received 5 years ago, and Kevin probably has backups, but this case is about precedents.

With that in mind, I think the courts will extend the traditional rules that have applied to safes and the like. In this case, they have the right to assume that the encrypted data could be some form of contraband, such as stolen phone codes, proprietary source, etc. Granted, it's five years out of date and probably useless, if that's what it is, but that's beside the point. In this case, it does not constitute an unreasonable seizure for the government to hold something that may be illegal. They can require him to give the key before they hand it over, and they can use the new evidence only if it is relevant to the warrants they had at the time the data was seized. If they should suddenly turn up some evidence that he did some other damaging crack, or if they find child porn or state secrets, their hands are tied by the warrant, and all that data would be inadmissable in any case, resulting in a charge that would never even make it to trial. While it is theoretically possible that the government got a warrant to search for any incriminating evidence, such a warrant would routinely be dismissed, and the evidence ruled inadmissable.

The only way Kevin could be damaged by this is if they turn up evidence of some crack that was mentioned in the warrant, but never prosecuted. If there were charges that were not prosecuted, there was most certainly a provision in his plea agreement effectively closing those charges, as that is sort of the whole point of a plea agreement.

Re:Hello.

[Slak]

I'm starring in the following PSA:

"This is a DVD. This is a Linux box. This is what happens when you put DVD on Linux." [cut over to a Braveheart-esque scene of MPAA Lawyers filing Copyright lawsuits]. "Don't get LiViD."

Cheers,
Slak

Re:Maybe they already have...

[Chandon+Seldon]

They shouldn't be trying to set precedents, nor should they be trying to make an example - they should be trying to perserve individual human rights.

Perserving individual human rights, that's that they're there for - that's all they're there for.

A good way to use steganography

You don't need the 'Net for that. Just stick your steganographic file system into the low precision bits of your MP3 collection. If anyone asks why your MP3s are encoded at 512kbps, tell 'em you're a very dicriminating audiophile. When playing MP3s, mutter cryptic (heh) phrases about how nice your pr0n collection sounds.

Re:A good way to use steganography

[X]

The 'Net has the advantage that there's nothing to seize. The feds would have to seize 4/5ths of the network to prevent access to it's contents.

Files

What I want to know is, where can we get a copy of the files.. encrypted or not?

No login is needed

My friend Spankey clicked on the link, and it opened up without needing a login. My friend Spankey says that Hemos lied to us. My friend Spankey demands an apology. I wouldn't apologize to my friend Spankey if I were you, Hemos, because my friend Spankey is a silly man. I was suprised that my friend Spankey found a Web Browser to use on the old Commodore 64 with Geos installed that my friend Spankey still uses.

-A Friend of Spankey's

Too late for Ontario

[Pope]

Remember, the Provincial Gubmint here is encouraging private citizens to make use of any cryptography they deem necessary.


Pope

FREE LOGIN IS NOT REQUIRED!

Read title.

Re:Easy way out

[hawk]

Oh, come on. Does anyone seriously doubt that Reagan himself couldn't remember? :) With nixon, the qustion was "what did he know, and when did he know it?" With Reagan, it was "what did he know, and when did he forget it . . ."

The rest of his administration, though, showed a collective suspcious memory lapse that wouldn't be topped until the current administration . . .

Re:Options

[Score+Whore]

Wow three people who came up with the "innocent until proven guilty [1]" argument. Don't you all realize that he has been proven guilty? They decided to drop the charges because of the long hassle he's had awaiting trial.

Why do you even give a shit about Mitnicks rights? He's had a long history demonstrating that he doesn't give a shit about yours. Societies work when everybody adheres to the same rules. Jails infringe upon criminals rights because they have shown that they aren't willing to respect the rights of others. Very similar situation here.

Finally, having an investigator examine Mitnick's hard drive is a a lot different than publishing the contents on the front page of the NYT. There's been a lot of times when people have been coerced or tricked into giving up information that is relevant to a criminal case. This isn't a lot different than that either.

[1] Innocent until proven guilty is not about whether people's rights are violated during investigation. It's a matter of whether people are punished without a legal trial.

Re: 4th & 5th Amendment Issue

[Sir+Logic]

I believe that this falls under both the 4th and 5th ammendments. The Supreme Court has already ruled that forcing a person to give up his private papers violates the 5th amendment, and the "unreasonable search" clause of the 4th ammendment.

It would seem to me that this would fall under the category of "private papers".

If you are really interesting in this, you should see Boyd vs US, 116 US 616 (1886), which is a really interesting case.

While it could be argued that this doesn't apply in this case, I would ask, was he convicted for the data which resides on that drive? I would say not, for only Kevin knows what is on the drive. Therefore, would not searching the drive be a "fishing expedition" to find additional charges to bring against Kevin? What other reason could the government possibly have for wanting the keys to the data? And if this is the case, or even possibly the case, I would think it is a clear violation of Kevin's 4th and 5th ammendment rights.

The oppinions expressed in this message are my own, and in no way to be considered legal advice.

He should be ordered to turn over the keys.

[Chagrin]

If the government knew what they were doing, they'd get the judge to order him to turn over the keys to decrypt the data. If he fails to comply, hold him in contempt of court and throw him back in jail. The government had a valid search warrant when they siezed the data -- they just haven't enforced it completely.

Re:He should be ordered to turn over the keys.

[arcum]

I personally think a reasonable (and somewhat evil) thing for the government to do would be to hand over the data regardless, but if not given the key, *encrypt* the data first. Then they could refuse to disclose their encryption key without recieving his in return.

Just a thought...

Who says hes a cryptographer?

[shiftaling1]

Why do half of the posts up talk about how good of a cryptographer Mitnick is?

It really doesnt take a genius to run an encryption program... Nobody said he wrote his own algorithms or anything... and I seriously doubt (as suggested in one post) that he'll have a "cushy job" working on crypto stuff due to the fact that 1. he cant use a computer and 2. he not a crypto wiz.

At the same time... I'm not saying that Mitnic is stupid... he's got some respect from me and is pretty intelligent... I'm just saying that he has really nothing to do with how strong the crypto he used was.

shift

see what westlaw says....

For those of you looking for legal info, check out http://www.westlaw.com/ You have to pay for it and everything, but they specialize in copyright law. Follow the white rabbit. -Trinity CR 1999 Warnr Bros. Studios. all right reserved blah blah blah

You ignored his point

Does the government, in the hypothetical case above, have to return the safe? If not, what is their justification?

Re:I plead the fifth.

[NetMasterOC3]

Just courious? How do you force someone to give up a key if that key is safely tucked away in their mind?

Obviously you could argue that the government could torture the key out of him, but last time I checked, that was forbidden in the Constutition.

So how do you get some one to reveal a thought or memory if they dont want to?

Idea: Two keys decript to different content?

[dchaos]

I'm no encryption guru, but would it be possible to design an algorithm to encrypt two sets of content with two keys simultaneously? The result would be that one key would decrypt the content to some arbitrary text and the second key would decrypt the content to the "real" content. dchaos - just thinking while I type.

Re:I've got large files of randon numbers on my bo

Ever heard of the supremacy clause?

That means that fundemental rights protections or other elements of the Constitution supercede any attempts at trying to wiggle around those garauntees after the fact.

The 5th & the rest are MORE the law than what ever BS governs parole.

Re:Data back

[cyberdonny]

> Excuse me, but can't they just copy the freakin' data!?

The data was encrypted, so their was no way to copy it. Or were you asleep when the DVD CCA explained this? ;-)

No way... no how...

They'll get my crypto keys, when they pry them from my dead neurons... Kevin's got the right idea - either decrypt it yourself, or give it back. I'm not helping you do a damn thing. I mean, really folks, would *YOU* want to help someone who essentially ran your ass through the legal wringer and tossed you in prison for a lengthy period of time until you simply submitted to a stipulation of charges to a felony? Oh, let's not forget that they put him in MAXIMUM security, and he got his front teeth knocked out for using the phone too long one day... Oh yeah, I'd surely be glad to help those fucken pimps in the [in]justice department... They ought to stop acting like a bunch of assholes and give him back his property... And while we're at it, they ought to give up on the whole War on Some Drugs - it's a complete invasion of everyones rights. And for the guy who posted the NYTimes article - THANK YOU! I really hate having to register for those damn things so I never go to that site...

Re:Easy way out

[DeadEye]

Do you really doubt the government couldn't decrypt his files? That's what I don't get.. the NSA has balls like watermelons when it comes to computing horsepower. So why haven't they brute forced it yet? How much money could it cost to do it? Haven't they already sunk a bunch of money into this by dragging it out? So many questions with this ongoing case, which is why it is so interesting to me.

Piracy?

[eagl]

Can't Kevin just copyright all his stuff, then claim that it's encrypted to prevent piracy? Works for DVD...

Re:I plead the fifth.

[john187]

I did read it, if you had read it carefully, you would know that Mitnick argued that the files may contain exculpatory evidence which the fifth amendment requires disclosure of.

The argument stated above is that 'I know there is damaging information in these files, and therefore I invoke the fifth amendment to protect me from revealing it.' -- this is the traditional sense of the use of the fifth amendment.

Please try to understand before you flame.

John

Re:Options

[cyberdonny]

It's not like he can demonstrate any actual damage since he's the only one who knows what's on there.

Wrong. He could have digitally signed his data, or kept an md5 checksum. If the signature doesn't match, well, then it means it isn't his data... But then, the government could always claim that an "accident" happened with the drive, and that now there was no way to bring it back.

Attitudes like yours...

[GMontag]

Attitudes like this kept the German owned and operated ovens full during the Holocost. You know, "if the government person says so it must be so" attitude.

If they prove that those 0's and 1's are some sort of contraband, then yes, they can keep it. If not then they should give it back.

First off, there is no way that there is ANYTHING dangerous on that drive. Second, if they cannot even prove that the info is evidence then it should be returned.

Re:Attitudes like yours...

[FlyByNite17]

Okie, question... Does the government have the electronic equivalant of TNT or some other explosive which could be used to break an 'encryption safe'... Not to anyones knowledge at the present Would someone be legally obliged to open up a safe they owned if the cops got a warrent to search the premesis? (I'm inclined to say no) Besides Kevin isnt really a criminal, sure he hacked into a few sites and stuff but all he did was copy without permission and he admitted to that. If the government wants to be really fair they could keep a copy of the encrypted thing and brute force it when quantum computing comes along which would take a hell of alot shorter than it does nowadays unless Kevin was smart and dual encrypted it, put all his files down in a special code and reversed it before encrypting in which case when the first time machines come along they can go back in time and see what it is when Kevin actually inputs it

Re:I plead the fifth.

[SoftwareJanitor]

5th Amendment doesn't keep people from being required to provide a blood sample for DNA and I'm pretty sure it doesn't keep them from being required to turn over keys to a safe if the court issues a warrant.

The 5th Amendment may not apply to physical property (such as a blood sample or a safe) like it does things that are in the defendant's head, but we aren't talking about physical property in this case. I haven't ever heard of a case of someone being ordered to turn over keys, not that there haven't been any. In any case, they'd have to prove that the defendant possessed them, in which case they would have just siezed them the same way they seized the safe. What would be a better example would be the combination to a safe. Again, I'd like to see an example where someone has been ordered to turn over a combination to a safe rather than the authorities just cutting it open.

Perhaps encrypted files could be thought of as a safe. If law enforcement can convince a judge that the encrypted file(s) probably contain evidence of a crime (files from a cracked system) or are criminal themselves (encrypted kiddie porn), they'll get a warrant for Mitnik to provide the key. If he doesn't comply he could be jailed for contempt.

The prosecution made the assertation that the files did indeed contain evidence that they would have liked to have used against Mitnick. If the government could have gotten such a warrant to override Mitnick's 5th amendment rights, they would have done so during the trial, and they didn't. They are, and have been, holding out on the files in order to try to find a back-door way around that. I don't believe that the judge ruled that forcing Mitnick to reveal his key wouldn't be a 5th Amendment violation as much as she ruled that the 5th Amendment didn't apply directly in this case (which I would personally disagree with) because the file wasn't being used as evidence against Mitnick.

If you're thinking, "yeah but with a safe they could just jackhammer it open," think of it as a boobytrapped safe. The court could require someone to disable the boobytraps.

However, since these files aren't a physical thing per-se, that argument just doesn't really apply. Nobody would be in any kind of physical danger brute forcing encrypted files open.

Re:Huh.

[darrenford]

So are you saying that Kevin deserved all of the other violations of law? Why is this violation any different?

It seems simple to me ...

[dannyman]

... he should get his files back. If the government thinks they contain naughty bits then they can subpeona them and nail him for contempt of court when he refuses to cooperate.

Or perhaps I'm thinking a little too rationally or something.

Re:Easy way out

[cpt+kangarooski]

Like the NSA would share its expertise with the FBI in a zillion years anyway. The NSA has spent the better part of the century at learning how to break codes and they've spent huge sums of money and hired most of the best mathematicians around.

I kind of doubt that the FBI could get on their feet in a similar operation rapidly - besides, how many math geeks are going to want to deal with FBI training?

(meanwhile the NSA read Kevin's files years ago and has probably financed a Cray by stealing the money he stole from someone else ;)

Get over it

[drix]

This is stupid. I can't stand Mitnick or what he did, and personally the only reason I'm happy he is released is because I won't have to wade through any more of that "Free Kevin" crap anymore. And I can't believe so many people went for the 5th amendment argument hook, line, and sinker. A criminal does not get the spoils of his crime back after jail. I have never, not once, heard of a guy doing 15 for grand theft auto and then getting the stolen car back when he is released. The one person I have actually met who once robbed a bank is dirt poor. He hasn't exactly been able to recoup his plunder, and Uncle Sam certainly didn't hand it to him with a bow on top when he got out.

Mitnick robbed companies, guys. He isn't entitled to the data. Legally, he's not even entitled to a computer. His parole would be revoked seven ways to Sunday if he were to actually use whatever encrypted things he had, and I don't see any reason for giving it back.

--

Re:Get over it

[shiftaling]

stop spouting the propaganda:

can you tell me whats in the files... i mean you seem to be so damn sure that its stolen information

yep he broke into systems and stole data... well he didnt profit from it, nor did he blackmail with it... and btw.. hes already served his time

Re:Get over it

[drix]

Because if it wasn't incriminating then his lawyer wouldn't be pleading the fifth. Read the article, you jackass.

--

Re:Get over it

Okay let's rehash this: the information is encrypted. Mitnick could have it back, no sweat, by just letting them see what it is. But he won't. And he is taking the fifth. Read between the lines!

Re:Get over it

[FlyByNite17]

This is stupid. I can't stand Mitnick or what he did, and personally the only reason I'm happy he is released is because I won't have to wade through any more of that "Free Kevin" crap anymore. And I can't believe so many people went for the 5th amendment argument hook, line, and sinker. A criminal does not get the spoils of his crime back after jail. I have never, not once, heard of a guy doing 15 for grand theft auto and then getting the stolen car back when he is released. The one person I have actually met who once robbed a bank is dirt poor. He hasn't exactly been able to recoup his plunder, and Uncle Sam certainly didn't hand it to him with a bow on top when he got out. Mitnick robbed companies, guys. He isn't entitled to the data. Legally, he's not even entitled to a computer. His parole would be revoked seven ways to Sunday if he were to actually use whatever encrypted things he had, and I don't see any reason for giving it back.

Ok... Can you steal a car yet leave a car in its place so that noone would know the wiser unless they seen you cloning the car (for lack of a better term I'd use copy but that dont translate well to the physical realm) If the answer is no then only one person can have it and thats the person who claims to own it legally. Also if Mitnick robbed companies he'd have gotten off with a lot lesser sentance than he did :P

Re:Get over it

[shiftaling]

oh well.... he probably does have illegal stuff in there... but you cant base arguments off that.... its his personal perogative to NOT disclose whats iside there...

Re:Get over it

[shiftaling]

WRONG

pleading the fifth DOES NOT MEAN that you are admitting guilt... it means there might be something that could incriminate you. if i get arrested for say... drug dealing and you plead the fifth to every question mr. cop asks YOU ARE NOT SAYING that your guilty... simply that you refuse to answer on the basis you MIGHT incriminate yourself

oh gosh

[delmoi]

Gee, For a while I felt terrible. Then I rememberd that I don't live my life based on lame slashdot posts by ACs who can't even come up with a relivent sentance. You're 31337, man

[ c h a d o k e r e ]

Re:oh gosh

Actually, the AC got you. Nailed you in fact.

After all, you responded, didn't you?

presumption of innocence, self incrimination

[MattMann]

US Constitution supposedly guarantees the assumption of innocence

This is widely believed but for good or for bad, it is not true. You are entitled to the presumption of innocence in court, i.e. before the judge and jury at your trial. However, the rest of the system is entitled to presume you guilty with reasonable suspicion. That's why the police can get warrants to search, that's why they can arrest you and that's why they can hold you in jail if they think you are harmless but probably will run away.

I think morally and as a courtesy it is nice for the public at large to also give you a presumption of innocence, but it's clear that the only way to run the bureaucracy is pretty much they way that it is run.

I am not familiar with the Mitnick case specifics, but it is quite common for defendants to give up the right not to self incriminate as part of a plea-bargain. If he agreed to cooperate, for example, then I can see both sides of this dispute.

Also, it is interesting: encryption brings up a question that does not exist in meatspace so new law might be required: we don't give burglary tools back to burglars. Encrypted files have this weird property that you can hold them in your hands but not be able to tell what they are. I believe that if the government offers him immunity from any new prosecution, that he may not claim the right not to self incriminate because he would not be. Then it becomes a privacy issue and there really is very little law protecting actual privacy.

Re:presumption of innocence, self incrimination

[hawk]

[read my disclaimer somewher else in this thread :) ]

>I believe that if the government offers him
>immunity from any new prosecution, that he may
>not claim the right not to self incriminate
>because he would not be.

You are correct. This came up a few times with the assorted Clinton issues, for example. This would certainly be a way to force him to surrender the key. [But this doesn't mean that he's entitled to get the data back.]

And btw, a memory failure that is not credible *can* and usually is prosecuted as perjury.

Re:Innocent until proven guilty

[Wah]

like the lawyer says above this post, he was proven guilty, that changes things tremendously.

If anyone wondered why the FBI,CIA,NSA, etc. is fighting so hard against encryption, this is it.

Hello.

Encryption is bad. Don't use encryption.

Thanks,
The US Government

Bullshit

How exactly do they prove that he had "proxy access to a computer"? What utter bullshit you write.

Maybe the government CAN decrypt it...

[ronfar]

...but won't because they want to set a precedent.

Paranoid ramblings from a paranoid person... but after all, isn't that what the Mitnick case is all about, setting precedents?

Re:Maybe the government CAN decrypt it...

My question is,
if the govn't brute-forcedly decrypts it and
table as evidence, is that decrypted data legal?

Re:Maybe the government CAN decrypt it...

[Ralph+Wiggam]

I would doubt that your rank and file FBI G-man has access to that kind of code breaking power.

Even if they could, there's no way they would tip their hand over this little case. Privacy advocates would throw a shit fit.

Seven wasn't my favorite movie, but I liked how the cops used illegal privacy invading technology (the library system watch) to catch the bad guy. Then they chalk it up to "Old fashion detective work" or "Police intuition". I would be willing to bet this stuff happens all the time. Ahh...fruit of a poison tree.

-B

Re:What did he use?

[Error27]

Trick is to choose a good password and encrypt it with pgp. And then choose another password and encrypt it again 5 or 6 more times.

It would take years to brute force that out...

Really...

[J.+Chrysostom]

Could the government decrypt Mitnick's files if they really wanted to? Sure. But honestly, they probably don't care about Mitnick. I doubt they ever did, actually. They just want to keep him from possibly getting any ``stolen'' material back ... or would like to have a better idea of what he did. He as much as admitted such with his 5th ammendment argument. It'll be interesting to see how this plays out.

Re:Government incompetance, or caution?

[jareds]

I'm absolutely sure that you're wrong. If they can seize the other files, why not the encrypted ones? Imagine a similar line of argument: "Your Honor, when the cops who had a search warrant used bolt cutters to remove the padlock, and found documents incriminating me for embezzlement, they violated my privacy."

Re:Government incompetance, or caution?

[technos]

Yes, but if the cop is standing there, insisting that you give him the combination to the locked box he just legally confiscated pursuant to a search warrant, you don't have to. You are under no burden to aid the police in their investigation of you, 5th or no 5th. If he can't open it himself, too bad.

But the government made no attempt to open the box. In court, they attempted to get Mitnick to give up the key by claiming that if they couldn't have the box's contents, they didn't have to give him them to him either. (this is true) Now they're just jerking him around because they don't like the defiance he showed by refusing to open it.

JUST BE NICE TO PEOPLE

I AM SO FUCKING SICK OF THIS SHIT JUST CUT IT OUT @#$@#$

But that wouldn't bring his files back...

[cyberdonny]

The government would get suspicious as soon as he asked for the files back. Indeed, what good would they be if he no longer had the key?

Re:But that wouldn't bring his files back...

[cpt+kangarooski]

Yeah, but he's entitled to them because either:
1) It's his property, it has not been proven to be illegally acquired (though this depends a lot, given that it's very likely to have been and Mitnick was guilty)

2) If ever used as evidence, the defense is entitled to a copy

At worst the government can keep them even if they're just encrypted random numbers or something else innocent, but he has to be compensated for them (difficult to get a good appraisal though ;)

He should have made an off-site backup..

[Dwonis]

...and then he'd have an advantage, as he would no longer care that they could nuke his data.

Or maybe he did.
--------
"I already have all the latest software."

Re:He should have made an off-site backup..

[Viv]

After 5 years of being in jail, and completely out of communication with everyone, what are the chances that his backups would still be there?

Re:He should have made an off-site backup..

[Dwonis]

Better than not making them at all!
--------
"I already have all the latest software."

Why he can't use it anyway?

[cpuffer_hammer]

The Goverment could print it out and give it back to him, in a form he can use, on paper. I would think a few trucks of paper could do it. Kevin Mitnick with his cracker mind, penncel, and paper will be able to decode his data just fine.

Or maybe they should just offer him amunity for the from anything in the data for the data. At least this way he can feel safe from the contents and goverment can feel safe from him.

They could also buy it form him I am suspect he has a price. I of course could wrong but it would be worth a try. (probebly cost less that the computer time to crack it.)

Anyway it may all just be randum bits :-)

they only want us to think they cant break it

the RSA obviously can break that shit. give me a break.

Innocent until proven guilty

[SPorter]

The government can't just assume you're doing something bad. They have the burden of guilt. Kevin the right to his own property. Unless the government can overcome the burden of guilt they have no reason to restrict him from getting his personal property returned to him.

Re:Innocent until proven guilty

Kevin was not proven guilty. His case never came to trial. It could not be tried, because to do so would have involved the disclosure of felony crimes by law enforcement officers. They just held him indefinitely until he "saw reason" and signed the papers...

cool I hope he has a good job

[josepha48]

I'd imagine he could have a real cushy job working somewhere if he wanted in encryption if he does't already. It kind of figures though that the gov wants the key. They want to know what he has got. They want to know eveything and I personally think that they need to let people have there privacy. I realize that they think of all these national security issues, but where does national security end and personal privacy begin. It is things like this that make life easier for hackers. If the gov would let us all create and use good encryption then the hackers would have a much harder time.

send flames > /dev/null

Re:Registration needed? Huh?

[wnissen]

I just installed Mozilla this morning, so I have no cookies, etc. Unless they're detecting my IP, there is no more login. Honestly, even a small barrier to reading like registration probably scared away lots of people.

Walt

Public Records

[mortonda]

Soo.... just simply ask to have the files entered in as evidence! Make copies from public records before it gets sealed!

Oh, wait can't copy encrypted data can we...
(see earlier post RE: DeCSS)

If Kevin can't even go near a computer...

[Horizon_99]

...how can he decrypt his files if he gets them?

Re:If Kevin can't even go near a computer...

[Col.+Klink+(retired)]

He can give the key to his lawyers to decrypt.

I plead the fifth.

[john187]

I'm not a lawyer, but ...

Doesn't he just have to say, 'I refuse to give you my key on the grounds that it may incriminate me?'

There is no way they can force him to give it up due to fifth amendment protection, then it becomes a right of siezure/ownership issue ...

John

Re:I plead the fifth.

[cpt+kangarooski]

Bear in mind that this judge is an idiot.

(Mitnick was IIRC prohibited from using a phone b/c she believed he could hack with it. WTF?)

Re:I plead the fifth.

[extra88]

First, IANAL.

5th Amendment doesn't keep people from being required to provide a blood sample for DNA and I'm pretty sure it doesn't keep them from being required to turn over keys to a safe if the court issues a warrant.

Perhaps encrypted files could be thought of as a safe. If law enforcement can convince a judge that the encrypted file(s) probably contain evidence of a crime (files from a cracked system) or are criminal themselves (encrypted kiddie porn), they'll get a warrant for Mitnik to provide the key. If he doesn't comply he could be jailed for contempt.

If you're thinking, "yeah but with a safe they could just jackhammer it open," think of it as a boobytrapped safe. The court could require someone to disable the boobytraps.

Re:I plead the fifth.

[Col.+Klink+(retired)]

Did you forget to read the article? His lawyers *did* argue the 5th, but the judge rejected it.

Re:I plead the fifth.

[COAngler]

I think the fifth amendment protects you from being induced to give information that would lead to incrimination or conviction.

Most crypto-systems involve a key of somekind or even a pass-phrase along with the key. Being induced to give the pass-phrase is tantamount to giving information that would lead to incrimination, IMO.

Not quite true. The Fifth Amendment does not apply to non-testimonial evidence. If I as a peace officer have probable cause to believe that someone has just committed a traffic offense, then he can't refuse to exhibit his license on Fifth Amendment grounds because he's a habitual traffic offender and it's a felony if he drives again.

Nor does the Fifth Amendment prevent me from seizing personal or business records. The Fourth Amendment might, as I would need a warrant supported by probable cause to believe that such records are evidence of a crime. But all a warrant requires is probable cause, shown under penalty of perjury.

Compelled Testimony/Fascism

[Jett]

Aren't they in essense trying to compell him to testify? Trying to force him to tell them how to decrypt his property? If you ask me this whole thing seems very fascist. Especially the government saying Mitnick can no longer use a computer. How the hell is he supposed to survive in the 21st century if using a computer is a crime? He'll have to go move to a cabin in Montana. Computers are the future, making it illegal for someone to use them is no different than in a past era, making it illegal for someone to read and write words. Imagine a hypothetical situation, the Gutenburg press has been recently invented. The government decides they don't like you. They make it illegal for you to have anything to do with books. You can not read books. You can not write books. You can not study books. The written word is off-limits to you. You are stuck with verbal communication. Is that not fascism?

Re:Why is their stupidity a legal issue?

[treat]

How is *that* relevant -- suppose they confiscated a physical device from you which they were unable to understand -- would you be forced to explain it before it was returned to you?

That does indeed happen - remember, this is a government that can take your property and make you prove that you didn't buy it with drug profits before you can have it back. In that case, you have no rights and the burdeon of proof is on you, because they're putting the property on trial and not you! (see FEAR's webpage for more information about civil forfeiture). Certainly when they're dealing with someone who's been convicted of crimes that are probably related to the evidence they can't understand, he's going to have even less of a chance of geting his property back.

A friend of mine had some cellphones taken from him by the police because there had recently been a burglary in the area - because it was electronic equipment, they were going to confiscate it. He wasn't arrested, he wasn't charged with any crime. They didn't just give them back when they determined that nothing like that had been stolen. He had to get the company they were bought from to fax the police a list of the serial numbers.

Brute force in 5 years?

[Checkered+Daemon]

Regarding your comment about the government brute forcing Kevin's encrypted files in five years:

As an example, the most recent DES crack, done by distributed.net, and aided by John Gilmore's Deep Crack DES cracker machine, decrypted a 56 bit DES encrypted message in about 23 hours. A reasonable estimate of the time that the same machine-power would take to brute force a 128 bit symmetric key is 10^19 YEARS! (see Schneier, p. 153) This is the whole point behind strong encryption, it's extremely doubtful that even the NSA can break a 128 bit key via brute in anything resembling a useful time frame. And 128 bit symmetric keys have been available in PGP since it was first released.

Re:Brute force in 5 years?

[Checkered+Daemon]

;-) Note that I specifically said "via brute (force)" here.

Brute forcing a 128 bit key is presently technically infesable, and will be for quite some time. There are other ways, weaknesses in algorithm, implementation, random number generation, etc. And I agree that assuming that the NSA doesn't have such a bag of tricks up their sleeve would be dangerous.

But unless they've got something like quantum computing that they're hiding, brute forcing 128 bit keys is out of the question, even for them. (And quantum computers, which would be extremely fast at factoring, ala RSA, probably wouldn't speed up symmetrical key breaking anyway.)

Re:Brute force in 5 years?

[nelomolen]

okay, nice IDEA, but remember how the decryption works with distributed... we aren't talking a beowulf cluster or nothing, we're talking independant users on their own connections, some teams POSSIBLY consisting of people on MODEMS for crying out loud... BAD ANALOGY.

AND we gotta remember that article a while back about that group from india (or pakistan or krugstrakipanistan or whatever) that made the handheld that could crack 56bit in... how long was it again? i'm sure it was less than an hour... i think it was in the minute range, actually.

-barton

MODERATION????????

you have got to be kidding me, this post gets a 5????

more evidence that moderation is screwed up when some fucknut like signal11 keeps herding moderation points for this idiotic posts.

Prosecution should've gone after the key first

[Splork]

The prosecution needed to "obtain" the encryption key-(using tempest, bugs, etc..) before going after the raw data. In the future I expect this to become a more common practice, although obtaining the key in a legal court admissable way should be difficult assuming the "defendent to be" cares about their keys.

The defendant is protected under the 5th amendment from having to divulge the encryption key. The prosecution can't decide not to return or copy something for the defendant just because its utterly useless to themselves.

PS Who says the govt. hasn't decrypted it? If they have that ability it would be classified.

What a load!

Illegal incarceration until he confessed. And all those "witches" that were burnt at the stake during the Dark Ages were also guilty, right? I mean, they confessed too. What a fucking moron you are! With the precendents the government is setting with Mitnick's case and their insistence on secret evidence in the trial against the Egyptian Muslim accused of being an accomplish of the Trade Center bombers I think the Soviet Union really won the Cold War and is now presiding in the US!

Re:What a load!

[small_dick]

hello, flamebaiting AC.

this is not the middle ages, and kevin is not a witch. your lame analolgy matches your intellect (what a suprise).

To me, the case at hand is no different than searching a bank robber's house, under a warrant, and finding a (hypothetical) perfect safe.

"I will not open the safe, on the grounds it may tend to incriminate me". Then later, "Oh! I'm out of prison, and I want my safe back! You have to give it to me, it's mine!" Oh yeah, let's give the thief his safe. I don't think so.

I think the way the gov. handled this case is criminal in and of itself, but that's not the issue.

The issue is whether a convicted computer criminal has the right to his encrypted binaries. The answer is "No".

Unlike you, I (and friends) have suffered from crime. The people who did the crimes had intellects similar to yours -- "I have rights!! Wah, Wah, Wah. I want a lawyer! Fuck the government! This is an inquisition! It's the dark ages!"

I have little or no patience with convicted criminals. They should be punished strongly, and whatever assets they used in the commission of their crime should be seized by the people and auctioned or destroyed.

IP, anyone?

[karma+vs+Dogma]

hey, it's been said a few times that this is a home-grown encryption scheme. Could he claim that it's intellectual property? IANAL, so...

Re:Options

Okay, get this much right at least: Kevin was never tried. Kevin was never found guilty. Kevin was held for over four years without trial to coerce a guilty plea out of him.

Maybe I need to track down a few of the people who thnk that Kevin was tried and convicted, and try this thought experiment on them:

1. I point a loaded gun at your head. 2. I tell you to sign a form that says you volunteer, without coercion or inducement, to give me your wallet. 3. You sign and hand over your property.

Get the picture?

Encryption Software

[Nasser]

Anyone have any idea what Mitnick used to encrypt his software? Something tells me it wasn't the encryption built into pkzip...

Re:Goverments Point of View

[cpt+kangarooski]

Ah, but he need do nothing like that.

Kevin can tell his lawyers the key and it is still safe as a matter of attorney/client privilege. Then the lawyers can examine the decrypted files themselves and not worry about the govt. The trick is proving to be getting the files.

a lot actually hinges on the key - if he memorized it, no problem. but if it's written down somewhere, the government can confiscate that w/o violating his rights. So I would expect that Kevin has used a key which is hidden someplace, and the location of that key need not be divulged.

if he was really smart, instead of just hiding a disk somewhere he used some widely available but innocent thing (e.g. all odd-numbered pages of 'One Million Random Numbers') as the key so that there was no concern that the key could be confiscated, or that he'd forget it.

Yeah, it's security through obscurity, but in this case that's probably an okay plan.

Well, this is stuped

[delmoi]

Well, I wouldn't think that they'd be able to brute force it in 5 years... You'd figure that someone like KM would use more then PKzip encryption.... That said, it just seems like the government wants to rape Kevin up the Ass some more. There basically saying "If we can't have it, you can't have it, nener nener nener" That's like something a little kid would do.

The other thing is, if these guys haven't been able to crack the crypto then it proves that it's Not evidence, at least in its current form. While I'm sure the government does it all the time, it's not legal for them to keep your stuff If its not evidence. If the encrypted data is not evidence, then they have no right to keep it from him.

Now, what Kevin Mintnik plans to do with reams of encrypted and no computer is beyond me... (does he think he can run DES in his head?)

[ c h a d o k e r e ]

Re:zhe shi troll?

[sklib]

I feel a slashdot poll coming up: How many of you would rather be in jail with a computer, or out of jail without one?

Re:Goverments Point of View

How is he supposed to decrypt this information anyways. With an abacus? pen and paper? After all
he's restricted from practically all computer use.

He'll call you up on the phone and ask you do to it for him. ;)

He's a very good social engineer, I wouldn't be a bit surprised if the encrypted files are just aload of junk and he ask for them back just to cause a big bruha.

Legal References

[JabberWokky]

.

First off, the standard disclaimer: IANAL. But I can use Google to find and read what Lawyers have already written.

Item 1:

A. Michael Froomkin, Associate Professor, University of Miami School of Law writes in his article "The Metaphor is the Key": Simply putting something into a safe does not, however, ensure that it is beyond the law's reach. It is settled law that a criminal defendant can be forced to surrender the physical key to a physical safe, so long as the act of production is not testimonial.{706} Presumably a similar rule compelling production would apply to a criminal defendant who has written down the combination to a safe on a piece of paper. There appears to be no authority on whether a criminal defendant can be compelled to disclose the combination to a safe that the defendant has prudently refrained from committing to writing, and in Fisher v. United States,{707} the Supreme Court hinted that compelling the disclosure of documents similar to a safe's combination might raise Fifth Amendment problems.{708} Perhaps the combination lock problem does not arise because the police are able to get the information from the manufacturer or are simply able to cut into the safe. These options do not exist when the safe is replaced by the right algorithm. Although brute-force cryptography is a theoretical possibility,{709} neither safe cracking, nor number crunching, nor an appeal to the manufacturer is a practical option when the armor is an advanced cipher. The recently released Federal Guidelines for Searching and Seizing[Page 872]Computers{710} suggest that "[i]n some cases, it might be appropriate to compel a third party who may know the password (or even the suspect) to disclose it by subpoena (with limited immunity, if appropriate)."{711}

(The numbers are footnotes to specific cases)

Item 2:

The Crypto and Self-Incrimination FAQ simply lists (for America... it also covers a few other countries): "The Fifth Amendment of the Bill of Rights reads: "No person (...) shall be compelled in any criminal case to be a witness against himself". The Supreme Court has restricted this to giving evidence "of a testimonial or communicative nature". ". It also lists several cases that apply.

--
Evan --

Registration needed? Huh?

[P_Simm]

I just clicked on the link given, and got directly to the article. No login asked, and I've never registered with the NYTimes before so it wasn't some sneaky cookie action.

Could anyone else confirm this? I'd love to get at the NYTimes for 'free', rather than selling them my information. :)

Re:Registration needed? Huh?

[jmcglash]

Same here. Consider it confirmed.

Re:Registration needed? Huh?

[Issue9mm]

It's a cookie... Maybe not yours, but it's definately a cookie...

Look for it, should be there.

Re:Registration needed? Huh?

[Hephaestus_Lee]

Just give blantantly false information. 0000's for any numbered field etc.

Re:Government incompetance, or caution?

[IdIoTt]

Who says the government made no attempt? I do not believe they would tell everyone one way or
the other if it suited their purpose. But your suggestion leads to an interesting point.
Could the refusal to turn over documents demanded by the court be considered contempt?
It should be interesting to see how this whole scenario plays out.

ThE iLlUsTrIoUs IdIoTt

Lawyer: the speech/property split

[hawk]

Iam a lawyer, but this isn't legal advice. If you need any, see a lawyer licensed in your jursdiction.

You're close. Let me elaborate (hmm, how could you possibly stop me?)

Speech cannot be coerced, but "attributes" can. You can't be forced to give information, but you can be forced to provide a blood sample, a handwriting sample, or even to repeat a phrase in a lineup (I've never heard of this used for anything other than identification by a witness. I can't back it up, but I believe that that's about as far as it can go).

So here he can be forced to turn over the data, but he can't be forced to communicate the code. However, if perhaps there were sensors on the keyboard to verify identity, he could probably be required to type a *particular* code.

But as you and others are suggesting, the fifth amendment only applies to him surrendering the code--it has nothing to do with getting back the data, which would be a fourth amendment issue.

Re:Lawyer: the speech/property split

[cpt+kangarooski]

Looks like a strong argument in favor of secrets and against biometrics to me. ;)

pistol in your pocket?

[jaywood]

said the situation was akin to Mitnick asking for his coat back and the government not knowing if there was a pistol in the pocket. which seems like a reasonable argument. I wouldn't give him the coat back either.

actually, if they didn't know that there was a pistol in the pocket, why WOULDN'T they give it back?

Mitnick's terms of release

[gothmog126]

Can't Kevin's terms of his release be constituted as cruel and unusual punishment? We live in a world that is filled with all kinds of internet-related devices and yet he can't touch them. I would go mad if I couldn't hop on my machine and surf the web.

Options

[Score+Whore]

They should give it back with the stipulation that any illegally acquired material must be removed. If at some future point they find out that he has not complied, they should put him away for life. Sure he's had some rights violated by the government. But what about the rights of others that he has violated? Maybe they should make part of the whole issue, that he must personally contact each individual whose right's he has infringed and apologize in person and find out what he can do to make restitution. It's pretty damned inconsiderate of him to act all hurt.

Optionally they can just wipe the hardware completely. It's not like they give drugs, weapons, and such back to people when they let them out. If Mitnick isn't willing to demonstrate that the material on the drives is legit, then the assumption that it's illegit isn't too far off base. Or just stomp all over the drive with some nice little random garbage. It's not like he can demonstrate any actual damage since he's the only one who knows what's on there.

Re:Options

But he *has* been proven guilty. He went to trial, was found guilty and sent to jail for five years.

Re:Options

[ErikZ]

>Why do you even give a shit about Mitnicks rights?

Because you short sighted MORON, he has the same rights as I do. And every right they figure out how to take away is a right that I, you and ALL Americans loose.

Later
Erik Z

Re:Options

[shiftaling]

yep... he has... and guess how much that has to do with this post-trial nonsense

thats right... absolutely NOTHING

Re:Options

[Random_Task]

Just because One is proven guilty for one crime does not mean that one shall by be assumed equally guilty for another crime by association of character. Mitnick served his time and paid for his mistakes. He admitted that he was wrong. His debt to society has by the law been repaid, has it not (yah I know of cases where it wouldn't, child molestation, murder etc.) We SHALL not now label him a criminal and assume that once a criminal always a criminal. This is character generalization. I hope that we can all see the problems with this. It leaves no room for one to be a human being and make mistakes.

Random Task

Re:Options

[Genom]

If Mitnick isn't willing to demonstrate that the material on the drives is legit, then the assumption that it's illegit isn't too far off base.

There's a little thing called "Innocent until proven guilty" - Mitnick doesn't have to prove that he's innocent - the prosecution has to prove he's guilty. At least that's the way it's supposed to work. In Mitnick's case the whole thing evidently got thrown out the window.

Re:Options

[Dman33]

If Mitnick isn't willing to demonstrate that the material on the drives is legit, then the assumption that it's illegit isn't too far off base.

So why don't we just throw the whole "innocent until proven guilty" thing out the window. This is about how much power should the government have. Personally, I do not want the gov't walking around confiscating everyone's computer and not giving them back unless the owner proves that all the software is legit! It is all about precidents, and what will set the guidlines for the future.

Besides, we all know that the gov't really wants to get into Kevin's porn collection!

Mitnick's Book

[Elwood+Blues]

I think it's entirely possible the reason the data hasn't been able to be decrypted is that it is in fact garbage. In Mitnick's book (with Jon Littman), _The Fugitive Game_, they describe how Mitnick's partner encrypted garbage several times, just to irritate the law enforcement officers who seize the boxes.

isn't he barred from computers?

[dawg]

Isn't Kevin barred from using any computers for a looooong time? So why would he want the files back? Here's a drive with your files Kevin... uhhh.. yeah.

zhe shi troll?

[delmoi]

Hrm, I've got a feeling that this is a troll (I've been reading the troll boards to much, I think, its making me paranoid).

But incase it isn't, Let me say. Kevin Mitnick did surrender his right to use a computer. His choice was to stay in jail (w/o computer) or go free (w/o computer). He chose to go free. Its an agreement between Mitnick and the Gov.

[ c h a d o k e r e ]

Re:zhe shi troll?

Yes, but the agreement is invalid because the government placed Mitnick under extreme duress by keeping him imprisoned for 4+ years without a trial, fully against his Constitutional rights. The agreement isn't worth the piece of paper that it's written on. The Feds (in this case) can go fuck themselves!

Re:zhe shi troll?

[Eternal+Darkness]

You idiot... he waived his right to a speedy trial.

Encryption is our best weapon for freedom.

[unquiet]

Last September, I published a Totalitarian Burger (sort of a political cartoon, BTW), about government's tendency to stick their noses in everything. The better encrypted we become, the better.

None of this would happen if people assumed that some things are not government's business. Instead, the assumption is that everything is.

This judge needs to learn a bit.

[Crixus]

From the NY Times article:

In considering the matter, Judge Pfaelzer said that it was "clever" of Mitnick to have encrypted the files in such a way that the government could not use them in its own case but Mitnick could access them if given a copy.

Yeah, it's pretty clear that the judge understands this encryption concept.

-right-

How can a judge render such an important decision on something she doesn't understand on any level?

Weird comment from the judge

[treat]

In considering the matter, Judge Pfaelzer said that it was "clever" of Mitnick to have encrypted the files in such a way that the government could not use them in its own case but Mitnick could access them if given a copy.

What does she mean? It's not "clever" to encrypt data that you want to keep secret - it's obvious. It's not "clever" to encrypt data in such a way that somebody else cannot decrypt it but you can - that's the purpose of using encryption.

Re:Weird comment from the judge

Yes. And while it was "clever" of Nitpick... it was "ignorant" of the judge to make that comment. This is a case of not just blind justice, but deaf, dumb, and just plain stupid too.

Mitnicks lawyers have a valid point

[348]

As much as I personally dislike Mitnick and what he did, I think that the lawyers have a good point. On one hand the feds state: said the situation was akin to Mitnick asking for his coat back and the government not knowing if there was a pistol in the pocket. which seems like a reasonable argument. I wouldn't give him the coat back either.

On the other side the argument boils down to fifth amendment rights: Mitnick's lawyers immediately objected to this condition on the grounds that it would force him to waive his Fifth Amendment right against self-incrimination to obtain evidence he needed and that he had a legal right to see. the judge shot this down hard. But from my point of view, I think he would have been in deeper poop if he allowed the files to be decrypted. Hence he would have been contributing to his own demise.

On a side note, with all the MIPS the government has, I think it's odd that they seem to have never broken his homemade encryption scheme. Maybe they should outsource the job to some Norwegian teenagers.

Never knock on Death's door:

Re:Mitnicks lawyers have a valid point

What he did? We don't know what he did, only what his antagonists *say* he did. No trial, remember?

He can't even *use* a computer...

[bobalu]

Wait a minute, if he's not allowed to possess or use a computer as terms of his parole what would he *do* with it when he got it, other than violate those terms?

Still, interesting that they didn't crack it already.

The Warrant! Yes!

[GMontag]

First, are you speaking of the blank warrant that even the issuing judge said should not have been executed?

Second, If the feds can not show this is actual contraband of some kind then they should give it back.

This notion that the government can take any piece of property from anybody because it "may have been" or "may be" used in some unnamed crime or for some as yet to be determined "bad" purpose has to stop someplace.

he should have used stools

[toppk]

steganography, mix up his stuff in some bill clinton avi's... that'll get them. http://www.funet.fi/pub/crypt/steganography/

Re:He DOES have the right to use a computer

[Viv]

Last I heard, his surrendering that right was a condition of parole.

He was released on parole, which means he agreed to the condition.

Ergo, he surrendered the right.

Re:can't use a compu;he DOES have theright 2 his i

[delmoi]

maybe its a simple crack if you know some key things, and he's going to print it in hex and work it by hand. Whatever.

He's only prohibited from using a computer for 3 years, I think. It would take a lot longer then 3 years to decrypt a gigabyte of stuff...

Anyway, how's he gonna print it out if he can't use a computer (in person or proxy)

[ c h a d o k e r e ]

This will be like Al Capone's Safe Someday

[HighLordofNothing]

First let me say that I really doubt Kevin will get those files back. He is already convicted, therefore as I understand the law, the presumtion of innocence does not really apply.

So I can just see it, in 10 years or so, computers will be so powerfull that some pseudo journalist like Geraldo will brute force the encryption and then everone will be staring at a bunch of his grandma's recipies or something.

Or maybe not.. who knows?

The TRUTH about the info

It says:
Each word is encrypted seperately, with a different key. So far they have:

"|-|0\/\/ 70 937 f!R$7 p0$7 3\/3R33 7!|\/|3 $|_|k4z"

8y |<3\/!|\| |\/|!7|\|!k 3!3373$7 |-|4><0R !|\| 7|-|3 |_||\|!\/3R$3"

They want the info NOW but aren't willing to spend 6 months on each word.

Re:The TRUTH about the info

[epine]

Completely contrary to the implications of the post, even if the government had successfully broken M's encryption, they would still press for him to publicly disclose his keys. The life blood of an intelligence service is to create ambiguity and uncertainty about what capabilities and resources you have at your disposal.

Until they obtain or manufacture a plausible cover, they must at least pretend that they can't break these codes.

Even as far back as Enigma, the vast majority of the vital intelligence gathered on German activities was concealed operationally, often at great cost.

I've got large files of randon numbers on my box.

They're "bait" for any would be crackers. Huge files take time to copy and thus slow h4x0rz down to make them easier to nail. Files like sw-tpm.vob.3des and mp3archive.ext2fs.3des and even one file called random-data.dat, which oddly enough, seems the best lure of the 3. (No one believes it). Of course, they *could* really have all sorts of neat stuff in them. But I don't remember no key. Does that mean My PC should be siezed and not returned until I do remember?

Clever?

[Inoshiro]

"In considering the matter, Judge Pfaelzer said that it was "clever" of Mitnick to have encrypted the files in such a way that the government could not use them"

Yeah, it's clever I keep important data encrypted, just like it's clever I send letters in envelopes, and it's clever I don't go handing out my credit card number to every doofus who can run a packet sniffer.

"For all we know, it could be plans to take down a computer system."

Forgetting that any computer that needs to be secure would 1) not mix executables and data (like Microsoft's DocBomb (tm) technology), and 2) would likely also not have an internet (or other network) connection period, which would render it safe from simple overflow attacks.


This level of technological imcompotence coupled with the luddite level of gut reaction stupidity makes me glad I don't live in the United States of America.

Freedom? What freedom?
---

hrm... good thing you don't live in the UK

[delmoi]

The exsistance of those files could encrimate you, if you don't turn over the key... And how would you turn over the key?

[ c h a d o k e r e ]

US gov't looking stupid for a reason...

Perhaps you are all wrong.

Maybe the US government does not want to disclose what they are capable of and are playing the role of the sheep right now.

Getting laughed at yes, but ultimately holding onto the knowledge of what they are capable of.

Come on, Mitnick is far from national security, why would they risk exposing what their supercomputers and algorithms are capable of for a simple cracker?

here! here!

[GMontag]

TH is finally the voice of reason.

NYTimes is 100% free

[P_Simm]

I checked my cookies file, no nytimes.com listed, and I clicked around the front page without a login request in sight.

Send the word to the privacy paranoid, NYTimes is safe territory now. :)

Re:Government incompetance, or caution?

[jareds]

You're absolutely right. Now, what does that have to do with my post?

In the parent post of mine, someone postulated that the government had decrypted Mitnik's files, but didn't tell anyone because they were afraid that Mitnik would sue them for violating his privacy.

My analogy was supposed to show how stupid such an argument would sound. I can see how it can be interpreted as a bad analogy arguing in favor of the government's position, but that isn't what it is. I was just arguing that the government has every right to break his encryption if they can.

That said, why/how did you read my post without reading the parent? The parent was moderated higher!

Similarities..

[Xian_FluX]

This isn't completely on topic, but doesn't anyone besides me find the sentance rather a cheap rip off of the movie Hackers? Perhaps in the 80's sentancing a person to not be able to use computers was feasible. Even in the early 90's. But in the... 00's? is it feasible? Especially for a hardcore geek.. If the government were smart, they would have tried to employ Kevin, not put him in jail, and 'exile' him. And the debate is... Can the Government actually not break his encryption, or do they just say they can't? Others have pointed out the reasons for not breaking it if they could, or not admiting to it at least. To make the prescedent.

BUT, if they can't break it, one has to assume the fact that Kevin wasn't using any standard encryption. Since the NSA and other government agencies make encryption keys and such, it is a rather safe bet that its not a standard form of encryption. If so, did Kevin write it himself?

From the 'damage' that Kevin did, its safe to assume he is very talented, perhaps a genius. (Perhaps I say! Not meant as flame-bait.) So, if he wrote it himself, and it hasn't been able to have been decrypted in five years.. Either it was very good (Being realistic though, I can't imagine any form of encryption that couldn't be broken over a peroid of five years), or we come back to the government only wanting to build a prescedent.Which seems most likely.

It seems to me that all of the media, the government, and everything is turning against us. Its just an observation I've made. Even the techno news magazine Wired is against us it seems to me. Sure, some of their articles seem to slightly favor the Linux community... but doesn't it disturb anyone else that any article mentioning Slashdot always refers to us as a community of Hackers and crackers? It bothers me, because when even other techno news turns on you... Well, there's a lot of legislation, and with the large media companies, and things like the RIAA and all the companies behind the DVD situations.. the Linux community seems to have become a target. We want things for free, we program them ourselves, and we share them. That stands in the way of the companies objectives. I mean, since Linux is becoming mainstream more and more, I'm rather sure the large media companies and software giants will not ever release something free-source, when they can try and release say.. a DVD viewer, and -try- to make us pay. No one will, but they don't know that, well... they don't comprehend that. Their existance is based on turning a profit. So, the large companies would find it easier if all of the Open Source Advocates (us), get swept under the carpet, and they call in on their big brother.. The government is just a capitalistic machine, turning in money and making things stable for big business. Thats just my views on the matter.. I probably sound like I'm ranting, but I have this feeling of doom forshadowing the future.

Xian_FluX

Re:Mitnick...

[Lord+Kano]

You don't go to prison without being raped by a few niggas.

Are you speaking from experience? So you like the dark meat, huh AC?

LK

Yep

[bdavenport]

been happening like that for a couple of weeks now.

Question though

[MbM]

What if the magic decoding sequence he turns over to the government is really just a glorified rm -rf *. He did think far enough ahead to encrypt the files what's to make us think he didn't have an escape plan?
- MbM

Well, technically...

[JudgePagLIVR]

Can't he just give them the wrong key? "Sorry guys, the data must be corrupted. Gimme."

Re:Well, technically...

[drig]

Doesn't work this way. Most likely, Kevin used a standard block cipher with CBC feedback. CBC feedback is a method of affecting the ciphertext so that patterns in the plaintext are not obvious from the ciphertext. Bruce Schneier's Applied Crypto has a very good explanation of CBC.

The short of it is; any errors in the ciphertext will show up in the plaintext in a predictable manner. You'd have to garble the whole ciphertext to make it look like you had the wrong key. Any single-bit error will only affect one block and one bit (one whole block gets destroyed and one bit in the next block). This is a pretty obivous signature, and would be usable in court.

Why do they think he knows it?

[pnevares]

However much a genius the man is, after all these years his memory is still volatile! Maybe he just doesn't want to let out that "ummm, I forgot the key".

Or even worse, "I encrypted the key".

Pablo Nevares, "the freshmaker".

Re:What's Interesting...

Nice troll, that was hilarious. FOMC (Fell off my chair)

Don't do this!!

You just posted copyrighted information. Very dumb idea. If people want to read it they can go to nytime.com and read it. Arg!!! This make slashdot/linux people look very bad.

Re:Easy way out

[sconeu]

If I understand the NSA's charter, they are legally prohibited from trying to undo Mitnick's stuff. Their charter prohibits them from performing domestic surveilliance. Therefore the Feds cannot LEGALLY ask the NSA to break it. However, I'm surprised the FBI hasn't asked for that kind of CPU power (but a request for that amount of $$$ would probably freak out congress...)

I have the password

[Wolfier]

The password is,

"I'm a fu**ing clu*less bas*ard!!!"

I leave the * for anyone who want to use the data to fill in. One annoyance though - you have to type in the whole password and read it out loud in order for it to work.

Encryption

[dodobh]

A hell of a good reason to use 128 bit encryption. What algorithm was used, I wonder? Hey, can Kevin post up the source at least under the new laws? I would love to lay my hands on that code (I'm not in the US).

Re:Encryption

Gee that's intelligent saying that you are not from the US. He cannot export it to you if it is strong encryption.

Re:Encryption

1. He can export the ALGORITHM and even the CODE. Just print it out on paper.

2. Why does everybody want to know HOW Nitpick encrypted his data? Isn't that like asking for one-half of the key? After all, if the government doesn't know how it was encrypted they know neither the key length or how to apply it. Give the method and the key length and it does become a question of brute force. As is, the key could be as big as the data itself (9 Gig). Allowing for any key to produce any results. See "one use pads" and other methods for more details...

what if the NSA runs the show?

Could it be that they are doing this to convince all the hackers following this case that the encryption we have is strong enough that they can't break it. Even with 5 years to play with. I do not doubt that the NSA has the capacity to break any publicly available encryption on the planet. I do not believe that they are unable to break the encryption on Mitnicks files. This all makes more sense as an attempt to convince us that they aren't as strong as we know they are, as well as an attempt to set precedence for compelling people to decrypt their files.

Re:what if the NSA runs the show?

[steffl]

if you make the key long enough there is no way they can crack it. cracking of an ecrypted data is basically NP problem (well, if your encryption algorithm is any good) and there is no way to decrypt it but knowing the key or using the brute force. using the brute force requires more resources then they technically can have. even theoretically.

erik

Looking at it from another view.

[NatePWIII]

If this were a case of say, a bomber, and the government had confiscated his chemical fertilizer, which he may have obtained legally, and may only intend to use for farming, would the government be required to return it?
If yes, then there is no reason by which Mitnick's data can be held.
If no, the government could keep it under "reasonable suspicion" or "danger to the public", then the government should have the right to withhold the data.


Nathaniel P. Wilkerson
NPS Internet Solutions, LLC
www.npsis.com

You all make an interesting point...

[NatePWIII]

This technically could become another landmark case for the constitution and the way in which we handle cases like this in the future. I'm quite sure that it will be appealed to a higher court and may eventually reach the supreme court. If it does I can almost guarantee you that the supreme justices will carefully consider the ramifications this may bring to bear on the constitution and will most likey set a precedent. In any case it should be interesting.


Nathaniel P. Wilkerson
NPS Internet Solutions, LLC
www.npsis.com

Re:You all make an interesting point...

[erc]

Mitnick has a clear right to refuse to turn over his key to the Feds, since that would violate his Fifth Amendment right to self-incrimination.

On the other hand, this case presents interesting points. To put it in Fourth Amendment terms, suppose you were arrested for a crime. You had in your possession a briefcase. The Feds, believing that this briefcase contained incriminating evidence, seized it and got a search warrant. But they can't open the briefcase! So, they demand the key from you and you tell them to jump in the lake.

What can they do? They can't get into the briefcase - do they have the right to refuse to return it to you? Can they destroy the briefcase? Can they hold it forever?

I think the USSC is going to have to hear this one eventually - and it will undoubtedly make some interesting case law...

Re:I've got large files of randon numbers on my bo

I'm pretty gut-dang sure that felons are disqualified from owning guns. Is ownership not a "property right"? Of course, the law didn't stop them the first time, so who knows...

Re:What did he use?

[thogard]

If the NSA is one step ahead in the prime generation game (and they have paid hundreds of billions to get there) then they can crack the 1024 bit keys with ease. If you use PGP and you don't pick a good prime, you generate an additional 2 keys for every factor your psuedo-prime has. Since my pc isn't going to generate a real 512 bit prime, I don't know how many other keys will unlock my messages.

FUCK THE GOVERNMENT

[PureFiction]

It has grown like a plague over the american people to encroach as much as it has been allowed on all your rights.

Is the government in existance today in the spirit of the fair and impartial and well balanced institution envision by the founding fathers? Fuck no. And they will continue to grab as much power of all of us as we continue to let them. Welcome to your future, it will only get worse.

Check the latest issues with the MPAA, not only is big brother getting his hands deeper into your everyday life, he is allowing big business to influence legislation and interpetation of law.

Wake up people, before its too late.

Think about it a minute boys and girls

[Listen+Up]

Let's look at it this way. Is it legal for the courts to order him to not use a computer. Yes, of course it is. Let's look at an example. A man gets really drunk, drive his car down the freeway, goes over the median and kills a mother and her kids in a fatal car crash. The man immediately goes to jail for a period of time. Then, when the man is up for parole, one of the conditions of his parole is that he can never drive a car again. So, what you are trying to say is that this man should say "Fuck You, I've got Constitutional Rights to drink and drive whenever I want" and then do it again without any repercussions? Most of you people sound very foolish. This man commited a crime and therefore he gave up his rights to do certain things. Are child rapists allowed to work in schools? Hey, they've got the Constitution to say they can even if their parole says that they can't be within 1000 feet of any child. Please people.

Re:Think about it a minute boys and girls

[Munky_v2]

I agree, who does care about Kevin. He broke the law and he got caught. He was punished and now he most live with the consequences of his "crime". What I am talking about is the fact the as I see it the very kinds of things the original settlers left England for is now becoming a problem here in America. The government and the courts have too much control. If they wanted to, they could kill someone for insulting a gay person and there would be no one to put them in check for it. The peoples voice has no bearing in anything anymore, it's the corporations that are running the country, deciding how politicians will vote. All I am saying in my comment is that it is a bullshit stipulation to his parole.


Munky_v2
"Warning: you are logged into reality as root..."

Re:Think about it a minute boys and girls

[Munky_v2]

You are absolutley correct. Kevin did a bad thing, he even admitted it. What we are debating here is not whether Kevin should just say "fsck you" give me my computer back and go hacking away again. What we are talking about is the legality of the governments decision to prohibit him from using a computer. There is a HUGE difference between raping a child, going through a fair trial and then having to live with the consequences of your actions, and Kevin's case. There is no record of the "financial loss" that occurred because of Kevin. There was no fair trial for Kevin and now the judge is trying to pry info from him that is no longer relevant to the court system (it mat very well be relevant to Kevin). What we are discussing is the whether or not it is right to take away someone's computers for 3 years. I know people that don't have access to computers, their dumb, not by choice, but because they do not have access to the information the rest of us do.


Munky_v2
"Warning: you are logged into reality as root..."

Re:Think about it a minute boys and girls

[Listen+Up]

I don't believe that you are making a very good point, I am sorry to say. So, let us assume that he did have a fair trial. Then it would be okay to bar him from the computer. But, since in your own personal opinion he did not have a fair trial, then obviously this is not legal and there must be a conspiracy against this man. That's interesting. And another thing that doesn't make any sense to me. This man should not be in trouble because he didn't cause any damage or loss to anyone? Okay, this makes no sense to me.If an act is illegal, it doesn't matter if it hurts anyone. And the argument about raping children and breaking into a computer. In principle, if the message I originally posted was read correctly by you, was simply another example of what happens if you break a law. There will be consequences for your actions. It doesn't matter what the crime. He's a computer hacker, car thief, rapist, drunk driver, whatever. It's all the same in the eyes of the law. That was the point and the constitution does not protect these people from losing rights as punishment for a crime. And who really gives a shit about this guy anyways. 3 years from now nobody will give a damn one way or another. Slashdot will simply be filled with pissed off people bitching about Win 2003 beta release 16 anyways.

Re:Think about it a minute boys and girls

[Magus38]

Is that last comment a plea for apathy? I think that anyone who has taken the time to become well acquainted with Mitnick's circumstances will feel a degree of outrage. Frankly, I find your whole attitude remarkable in that it is so pat. Things are never so cut and dried; life is never so black and white and no decision of justice can ever be weighed but on a situational basis. Your indifference is both irrelevant and alarming.

Re:Think about it a minute boys and girls

[root:DavidOgg]

thats a stupid analogy, you dont have the RIGHT to drive, you need a license for the "privelige". You dont need a license to use a computer. NEVER LET THE GOVERNMENT TELL YOU A COMPUTER IS A PRIVELEDGE. BAD BAD BAD PRECIDENT!!!!!!!! ***VERY BAD***** Our 2nd ammendment right to bear ARMS should be ammended to include COMPUTERS also, for the same reason, TO keep the government in check. (and hey, defend your computer with your guns ;)

Re:What did he use?

[thogard]

I read that someone is doing des in about 28 cycles using a MMX based hack. Let see here:
add about 50 cycles to generate the next key(assume its ascii folded to 40 bits). Add in 22 more cycles to check to see if the result needs to be looked at. That means I've got 256 sets of 2 billion iterations of an inner loop of 100 cycles. One of those nice 1 trillion cycle per second K7's on ice and it takes how long to brute force this? Triple des has problems that make its key size much less than 3 times des.

One thing that lots of people are doing these days is putting hash sigs outside of the encrypted packet. This is just stupid because if the encrypted packet is small enough, you may not need to decrypt it. Just guess at the data till you get the same sig (this generaly is more work that just cracking des)

Re:What did he use?

[ChadN]

Triple DES, with 3 separate keys has (according to my handy copy of Schneier's Applied Cryptography has an effective key length of 112 bits (or 2^112 keys)) That means it is effectively immune from a brute force search, meet-in-the-middle attack, differential attack, etc.) for many of our lifetimes. Basic DES is susceptible to a serious brute force attempt, yes. Triple DES (when done right) is NOT. Many people, businesses, and corporate customers are using Triple DES, and are probably quite safe in doing so (at least from anyone with less than $100,000,000+ US).

Your statement that a casual user with a desktop machine can effectively break even the normal DES, is patently false. The DES challenges showed that it took an ENORMOUS amount of work to break it, well beyond anyone without massive parallelism (beyond even what a good university has :) Of course, if the key is not randomly chosen, all bets are off.

And personally, I like Blowfish (patent free, VERY secure against brute force, and just plain clever).

2 Laptops, 9G of hard drive space in 1994?

[lydiap]

I would like to know which company was putting out 4.45G hard drives in 1994? Were you even able to buy a commercially available laptop at that time with 1G? I thought 4.5G was still only in the dream stage then. At best, they would have been prohibitively expensive. (Reference point: In 1994, I bought an IBM 360C with a 720mb harddrive)

Come back to the real world

[Bosplaya]

So, your supposed to keep some pedophile in prison just because he cant seem to keep his hands off the kiddies because of a mental problem he has? I am not a fan of phedophiles by any means, i think they should be drug off to a field an shot. but, I have a felony pending against me and am walking the tight rope to not get that on my record. say you owned a store or better yet a bank and this guy puts in his application, im sure youd love to know he was convicted of a felony such as burglary or hey even bank robbery. yes there are ways to get felonies off your record, but that whole system is good as it only allows those who have truely reformed to get it off of their record, and the people who dont i guess didnt want it that bad in the first place ? just my 2cents.

Re:Come back to the real world

[ronfar]

Yes, you are supposed to keep the pedophile in prison.

Otherwise he could do it again, parole officer or no parole officer, drugs or no drugs. (Even castration isn't enough to be sure he won't do _anything_)

He could run. Really strong house arrest might stop it, but any amount of freedom is far too dangerous. Since really strong house arrest is just comfortable prison anyway, and could cost as much, just keep him behind bars. If he runs, how do you make sure he is taking his drugs?

The tiny number of pedophiles there are, along with the serial killers, do a number on our judicial system. Life without parole or death are the only safe options with such people. Both groups have a recidivism rate close to 100%

Oh, and discussion of violent crimes don't really apply to non-violent criminals like Kevin Mitnick, anyway. Kevin committed minor crimes which landed him a tough sentence because the government wanted to get tough on hackers. At this point he's no longer just a criminal, he's a former political prisoner, because the government didn't prosecute him based on what he did but to show all the other hackers what would happen to them if they got caught. Of course, I'm a big fan of Cool Hand Luke...

Re:Come back to the real world

[root:DavidOgg]

>> So, your supposed to keep some pedophile in prison just because he cant seem to keep his hands off the kiddies because of a mental problem he has? I am not a fan of phedophiles by any means, i think they should be drug off to a field an shot. but, I have a felony pending against me and am walking the tight rope to not get that on my record. say you owned a store or better yet a bank and this guy puts in his application, im sure youd love to know he was convicted of a felony such as burglary or hey even bank robbery. yes there are ways to get felonies off your record, but that whole system is good as it only allows those who have truely reformed to get it off of their record, and the people who dont i guess didnt want it that bad in the first place ? just my 2cents.

"JUST BECAUSE HE CANT KEEP HIS HANDS OFF THE KIDDIES"??? What are you smoking?! Yes, you keep him in jail. If he's crazy, make it a crazy jail. but NOT the street!

Bitchin' boxes for 1994

Whoa. Two laptop computers, total of nine gigabytes of data, in 1994. Sounds like he had fancy laptops for the times. Drives of less than a single gig were typical for desktop machines back then.

I *am* a lawyer, but not a US-trained one...

[khaosworks]

... so I may be a bit off on this one, but:

Personally, I tend to agree with Gerald Lynch's opinion. The entire idea behind criminal discovery in the States and the UK is that all documentary evidence the prosecution has, used or not, is to be revealed to the other side and the defence has no such quid pro quo obligation. Therefore, unless the state can show a clear reason why the encrypted files should not be released, there is no reason to refuse.

The state's argument in this case is disingenuous - claiming that because it's encrypted it's not really in their possession - and I'm surprised the Judge didn't give them a good bollocking for that. Imagine encrypted data as items in a locked box. You may not be in possession of the items inside the locked box because you do not have the key (and therefore no knowledge or opportunity for inspection), but you're definitely in possession of the box itself.

A better approach would have been to attempt to obtain a warrant to get the decryption key from Mitnick. Taking the locked box metaphor forward, approach a judge, show probable cause that the contents of the box may be evidence of a crime, and then get the search warrant to "open the box". That preserves the Fourth Amendment procedural safeguards. Of course, if the state can't show probable cause, that's their own bad luck.

Re:Easy way out

[Wah]

How much money could it cost to do it? Haven't they already sunk a bunch of money into this by dragging it out?

I think that would be the rub for them.

Option 1 : Use mighty clock cycles to read what some cracker has on his already seized machine while he sits in jail.

.or.

Option 2 : Use mighty clock cycles to hear what terrorists/crackers "in the wild" are planning.

Limited resources being the name of the game, I know where I want my tax dollars, and, I think, so do (spooky voice) They.

Re:What did he use?

About the cracking of his encryped files:
There were some interesting posts by RProcess the creator of JBN (windows client for theremailers) and others. They are in alt.privacy.anon-server. You can see them doing a power search on Deja.com. Doing lots of tests (some evidence provided) he has come to believe that :

1) 1k bit RSA is breakable to the NSA and (randomly) some larger keys are weak
2) IDEA is breakable to the NSA but DES3 is not

the subject of these posts were Traffic Analysis Capabilities or Selective DOS
links:

http://x28.deja.com/[ST_rn=ps]/getdoc.xp?AN=529081 549&CONTEXT=948766143.1213595713&hitnum= 197

http://x24.deja.com/[ST_rn=ps]/getdoc.xp?AN=553439 499.1&CONTEXT=948766483.1384316966&hitnu m=24

http://x24.deja.com/[ST_rn=ps]/getdoc.xp?AN=552487 982&CONTEXT=948766483.1384316966&hitnum= 36

A quote from the middle link:
"...Cryptographically strong keys and reply-block features have a higher likelihood of disappearance. I get the feeling I'm dealing with a system, and I've been able to predict its behavior in some very specific respects. (For example, when I first tested Encrypt-3DES, zero of the messages got through for several days, although Encrypt-Key messages sent in parallel did. Then suddenly they started trickling
feebly. The lost ones never did show up. I had anticipated exactly this response to an unexpected
strong format. - blackout followed by limited transmission after the system was adjusted. What was
really startling is that the 3DES was inside of IDEA, which made it appear that IDEA is vulnerable,
something which I had already suspected because of other behavior. The system still punishes
Encrypt-3DES disproportionately.)..."

Re:wouldn't getting his data back violate his paro

[mindstrm]

No.
And recall, giving it back means putting it legally into his posession. Perhaps just given to his lawyer.

And his use of computers is not absolutely forbidden by law. He can, as with all parole cases, do things at the discretion of the parole officer. The parole conditions are more guidelines for the parole officer than anything else.

Learn more about the Kevin Mitnick case here

CNN Entertainment story about "Takedown" the movie.

HEY! ON TOPIC THIS TIME!

Thank You!

UK rights?

[MrKipling]

What I want to know is: Do those of us who live in the UK (or any other country without a written consitiution) have the same type of rights as Mitnick? Or can the government do whatever they like as long at it doesn't violate the UN's Human Rights?

Re:UK rights?

[ickle_matt]

In the UK we've got the EU Convention (or Declaration, I forget which) on Human Rights built into our legal system now, so we should be OK.

sort of pointless?

Seems kind of pointless to debate whether or not the gov has to return his property when they let him go since they can take stuff without even accusing someone.

Why is their stupidity a legal issue?

[john@iastate.edu]

Painter [the government lawyer] replied that because the government could not understand what was in the files, it could not use the files as evidence at trial. He also said that Rule 16 did not apply because the encrypted files in sense were not "really in our possession," because "we don't know what's there."

How is *that* relevant -- suppose they confiscated a physical device from you which they were unable to understand -- would you be forced to explain it before it was returned to you?

For all we know your honor, this mysterious cylindrical object could be a weapon -- it makes an ominous vibrating noise when powered up!

Re:can't use a compu;he DOES have theright 2 his i

If he can't use a computer, he can open the lock. They can't have it both ways. "We COMMAND you to help us, but never help yourself. Go work in manual labor but let US use your genius." Assholes.

I really think this is...

WigyZQSAHCKUNqXsD9gcdlto60NiKmBMDd+dVf03O/NP9iQ6V/ RUT7wLaSwDxmNCcMKtujmPv7bX7bKHgvvMhZi7Wp

FovM5tH/nPjDgaLZM+ddPiNO2nPRCWP58azMa1w6qJRnoGcg NL0tUL92wBSOBvQbggb36YvG20Bsj+cA5QJHd9V679 jlTK1DTbZslf2rIuHe5Zc47mm8HJYVrkZloYPZFVp6eWf6ZUik

9e1cg67CRRhYpzg1NwVZfbOB36q/QiiKANT8jO85 gObJ+NBgN3BeY5ctbqbOm4W1GigPLkjEz83PvYHh1heF8q//fU

Eue+AxioRzJexq5AgIWGg6JjK/FDazp4Pkn05r1X /NkcoleLiXjgBk9De5g0ftqS8teZU1D19D4yqR25QRl9ibWyqz

6Qg2pit3TFUyK9IdUnfMP2RzH8GSfGHyKZFUy

7AGZ0pwJdytWt7RuQT0CYyWosYcHGPF/6FD9QINktRjQD0

iVFJYM5u9OrkR0Xjncjd5KOhHEFUa5ZAyAz7i1ApYczD qB0DJqr9rCF7xfXgft3fh1D91MhBYwD4fU2ngIV31spE264jgI

vFzz/5K3ClEa74mwDQnqn2aHWGlfL67QZAga64FQ bQbJwHL8c627PmSJcI6rn2HYh+RMhb1B+KAFLAxM2k0vFAObH5 U24w6tr+fsUXn1nr+u5h/45gWYeT4ZyXCgw0fRRB

Vvxg3/lw4ZxcWEj0z3ItvIXbm7sskh3qwrnunW4Nv2/1WkIz T36WZQH2QgMOd5CcgB9D5/43w0gFY1AGxGD0ElOulN 1jKfqy+vBOVz4PMjQZRIQx+zJwfKiCvOgBsjp0ZJkbNQZfu6z6 sOucnLQF7gOE2DWZXGgSy6Lfy0sWoHFHZmsT2Asd 1bLV6RKTVYMHneObhD4JcoYOxG2VdNSP4+T5PRfRLVUAQR1Auh gn8D5zu4v3rJtPnxy63qOUFrKCLFdHaqNCeXPto6 tvqD0dCa9miL3Dd/kHypx3viiaOJvw29i88

Re:Maybe they already have...

[Euphorea]

I doubt that they have considering that it really wouldn't be of any use to them and there would really be no point. How is wasting a whole lot of resources on decrypting some of Mitnik's stuff (Maybe he used a different key for different parts of it..) just to see what information he had stored in them.

I think that there was probably just his own logs and notes in most of the stuff, but since he has already served his time, and the USA has that "Double Jeopardy" thing, they can't send him back to jail for his crimes again.

The problem would be if the files really contained personal information that has nothing to do with the illegal actions Kevin involved himself in. What if the files contained things like his own bank PIN's and such, and other private information... then the government would really be shittin' on their porch.

Who knows, maybe it was just his mom's recepies for French Onion soup...

Where is simple commend line file encryptor prog?

I'm looking for a simple command line program that lets me encrypt/decrypt files. Ideally it should allow me to select from any of several encryption methods (des, 3des, rc4, blowfish, twofish, md5, enigma, safer, pgp, rot13, whatever...). Sort of a souped up version of the old crypt(1) program. Any pointers?

BTE what type of crypto did Mitnick use that stumped the feds. I wanna use it too!

Re:What did he use?

[shiftaling]

actually encrypting a password has absolutely nothing to do with how long it would take to brute force it... the only thing that matters is key bit length

to a crypto program 'hellomynameisbob' is no different from 'af@#$Akfda$!#*%^'.... brute forcing has nothing to do with the readability of a key/pass

and this got moderated up??

oh well... /. intelligence is lowereing greatly

Re:Mitnick...

Idiot.

Re:I've got large files of randon numbers on my bo

Are you a convicted felon out on parole?

If not, what does your plight have to do with any of this?

Being a felon does not mean you give away your property rights.

Re:What did he use?

[Crixus]

Of course PGP has been around that long, since 1991.

If Mitnik used a 1K or 2K keysize (not really uncommon, remember assymetrical keys have to be a lot bigger than symetrical ones), I wouldn't think the feds could crack it. Maybe NSA can but as someone else pointed out, they may not want to let that fact get revealed, even to the Justice Dept.

Sure, the NSA could have probably brute forced 1 or 2 of Mitnick's files by now. But is the NSA going to put that kind of computing power into something this small? I don't think so. Plus they're not allowed to work on stuff from US Citizens... (cough!).

I suspect the NSA is happier reading Russia's and Hussein's mail, not Mitnick's.

The federal government is not one big happy family.

But even if they were one big happy family, they still would not tell another federal agency, it's too big a national security breach.

Data back

[SheldonYoung]

Excuse me, but can't they just copy the freakin' data!? Give Kevin his data back, and brute force it later. If there's anything dangerous in there, they'll know about it later. It's been a lot of years and most of the computers he hacked are gone.

How much of a chance is there of being some sort of dangerous data? Credit card lists? Incriminating files? They might have legal grounds to keep the original (evidence in a criminal case), but it can very easily be argued he can have a copy because the original evidence is not modified in any way.

Re:Data back

[Foobaz]

The data was encrypted, so their was no way to copy it.

He's talking about a bit-by-bit copy of the encrypted data. Data, even if it's encrypted, is still just 0s and 1s, and you can still copy it. You may not be able to decrypt it, but nothing stops you from making a duplicate.

So the post you replied to was merely suggesting that the govt give Mitnick the data and keep it. Then, if they wanted to know what was in it, they could crack it themselves.

Re:Data back

I'm kinda surprised they didn't kill a forest and give it back to him on hardcopy...

Or is this more about getting the laptops back then getting the data files back?

what's the real story here? (non-expert analysis)

[iGuru]

Why can't the judge offer to place the information in his custody? The judge could rule on what could be used in M's defense and keep the rest in escrow until its status can be decided. Unless the contents are too sensitive for even the judge to see...? (DISCLAIMER: While I'm not a lawyer I do watch them on TV).

The govt seems to want that data badly. Did we ever find out exactly what Mitnick was supposed to have obtained during his tour of various secretive type computer networks? Odds are if there is anything it's in that encrypted data.

I can imagine at least five possibilities:

1) Predictible: The data is largely unremarkable but does constitute potential evidence against M and the govt dreams every night of forcing the data open so they can bring further charges about obtaining government secrets so the prosecutor can send him away (and not to an island) and hang him on his wall next to the hunting trophies (no doubt this would help their chances of promotion and help them further their boring existence).

2) Less predictable, but not unpredictable: The government wants to know exactly which of its depraved secrets are in that encrypted data - but only silly things only a government would think is valuable (psych profiles of slashdot members maybe? Inventory of our garbage?)

3) Less interesting: The data contains evidence that while not earth-shattering could be used to bring further charges so Mitnick is trying not to incriminate himself.

4) More interesting: the data contains evidence of some new shocking abuse of technology by the U.S. government and Mitnick is holding out because he feels the need to try and expose it?

5) As Sculley would say, it's also possible I've seen too many movies and TV shows :)

Trust no one

UK rights? What rights? I see no rights here.

Wow! Now I sleep comfortably knowing that the EU, that pillar of "human rights" and defender of:

a) trial *without* jury
b) assumed guilt

is safe-guarding my legal rights. NOT!

Re:Lawyer: wrong analogy

[hawk]

That's the wrong analogy. A closer (but still not as strong) case would be that it was a very valuable banana, which was never found, but that you are found driving a car that you have just bought while you have no other visible means of support.

We're not talking about seizure of assets *used* in a crime; we're talking about the *fruits* of the crime.

btw, a banana is an herb, nto a fruit, or so they told us at the Hawaiin botanical grrdins . . .

Lawyer: probation

[hawk]

[read my disclaimer elsewhere in this thread]

Probation (parole in this case, i believe) cannot be imposed upon the court, but is agreed to by the criminal. It is a release of the wrondoer on terms and conditions. A universal term is a waiver of search & seizure rights; an agreement to be searched at any time.

On the other hand, events prior to probation generally aren't at issue in whether the probation/parole is violated or not, so this just wouldn't matter.

Re:Lawyer: probation

[Eraser_]

Thanx for clearing that up, i was never very clear on how all that worked.

Eraser_
ps: So you're the one with that nick, sorry if i emailed your password to you a few times ;-)

If they really wanted it they WOULD get it

Putting a gun to someone's head has a funny way of getting answers, especially when you're dealing with a lunatic behind the trigger. How about ripping out his fingernails one by one? Papercuts all over his body and soaking him in saltwater? Oh, be VERY sure if the government wanted something our precious little constititution isn't going to stand in their way. For example, if it was a matter of "national security" you could be torture would most certainly be employed to get results. So, hook him up to a rack and send 20,000 volts through his fat ass.. that'll get him talking.

Re:If they really wanted it they WOULD get it

[SoftwareJanitor]

I'm not sure if this is just a troll or what, so at the risk of feeding the trolls...

send 20,000 volts through his fat ass.. that'll get him talking

Uh, he'd be quite dead if there was any amperage behind that. Besides that, you must not have seen the interview with him on 60 Minutes last Sunday. It appears that Kevin has lost a considerable amount of weight in prison, as he looked fairly fit in the interview.

As for using torture techniques, sure, they could do that. But luckily they tend to be fairly cautious when it comes to that sort of thing because they don't want a lot of negative publicity or to stir too much general sympathy for the convicts if that sort of thing leaked out. Generally they seem more inclined to do things like putting people in with other inmates that are trouble makers so that they can maintain plausable deniability (WE didn't do it, it was his evil cellmate!).

Re:Question

[Dell+Brandstone]

The difference between Mitnick's situation and your own is simply that the government cannot identify the data that Mitnick encrypted. Look at it this way...

Instead of having chemical fertilizer, the government has in their possession an object. They don't know what it is... it's black and extremely heavy, but its composition includes carbon.

They cannot release the "object" because it cannot be identified. They do not know if it is dangerous or not. When you compare this to Mitnick's situation, the fact that Mitnick's data is in fact data is similar to saying that the object in the scenario I created above is composed (in part) of carbon - you still don't know what it is.

correction: attributs *cannot*

[hawk]

(oops, typo)

Re:IRS and the Fifth Admendment

[hawk]

I once knew someone who claimed that he didn't file returns because not filing was a misdemeanor, while a false return was a felony . . .

(I really couldn't tell you if he was right or not, and given that I haven't cared enough to look for ten years, it's not likely that I'm going to do it now . . .)

Re:Question

[Dell+Brandstone]

It may also be noted that in the case of the fertilizer, the guy is not trying to cover up the fact that it is fertilizer.

what the gov't should really do

[NewShoes]

if Kevin refuses to return his key, the government could just encrypt his encrypted data before they hand it back to him.

how's that for a frightening scenario?

Government incompetance, or caution?

[IdIoTt]

The government very well could have failed to decrypt Kevin's files.
Or
The government very well could have decrypted the files, but wishes to avoid a potential
counter-suit where Kevin would claim that his personal privacy was invaded by the cracking
of the files, especially if there is damaging information contained therein.
That may sound a little far-fetched, but in today's court system, is it really that hard
to believe? Instead, the government may wish to avoid any
possibility of a counter-suit by attempting to first get Kevin's key and open the files
with no legal questions. I view this as a case of warranted search and
seizure. I don't know the privacy laws involved in this, so if someone knows if there
is any time when an individual can refuse to turn over documents to the courts, it would
be helpful to know. Otherwise, if the encrypted documents were
confiscated, they should have every right to seeing what's in them before giving them back.

ThE iLlUsTrIoUs IdIoTt
Tired of evil empires ruling you?
The Source is with you!
DoLinux.org

Re:Government incompetance, or caution?

[technos]

Flat mode, newest first.. I had moderator points to kill. The parent was another two pages down, and I hadn't made it that far..

BTW, Mitnick did not know how to program?

In John Littmans book "the fugitive game" one can read that:

1. Mitnick was not a C programmer
2. according to Markoff Mitnick was an average programmer.


If Mitnick was not programming in C, what did he use? Assembly, Perl, shell, awk&sed?

Re:BTW, Mitnick did not know how to program?

[Random_Task]

Have you been listening to the posts that Kevin has been making on various websites? Markoff does NOT know what he is talking about and Kevin has repeatedly exposed the lies that Markoff has written about him. I won't dispute your claim, but I think that people like Markoff should no longer be used as reliable sources for valid Mitnick information.

Re:BTW, Mitnick did not know how to program?

[nelomolen]

javascript :)
-barton

Re:Easy way out

Score one for the AC.

UNI

A:So, where do you go to school.
B:UNI
A:Oh, so you go to collage the, where?
B:UNI
A:uh... I know you go to a uni, but witch one.
B: dude, UNI
A:YEH I GET THAT, NOW WHERE DO YOU GO TO SCHOOL FUCKHEAD

B:Univercity of northern Iowa! A:oh... haha, you fucking looser

It's not Mitnick per se, precedent matters

[blueskyred]

The US Government does not care at all about Kevin Mitnick. They are not out to get him, they are out to make an example and to set precedent. This case becomes worse every day... if this is not won (if Mitnick does not get access to his unencrypted files) then there will be legal precedent. Either you allow the Government to see your encrypted files, or you don't get them back.

Of course, this gets silly quickly - there could be off-shore datahubs that existed just to hold copies of people's private, encrypted data, such that if Big Brother ever came knocking, you knew that your data was out there for you to retrieve, even if you could not get the physical drive storing your data...

Then laws would get passed, continuing the "whack-a-mole," that would make this activity illegal. Then another method to keep your data and not let Big Brother have it would be made. And then that would become illegal. Repeat ad nauseum.

(My views, not my company's. I'm guessing you knew that.)

Law

[elthia]

If the government had this data for five years and cannot crack it, they are either trying to mess with him (we could, but we want YOU to do it), or he was using an encryption algorithm that is immensely powerful - and hitherto unknown. To me, that would mean that _they_ _want_ _that_ _weapon_.

So the more appropriate example would probably be...

He has a previously unknown weapon, something that cannot be stopped. It has to have a specific code to operate, though. They take it during a search for weapons, say, or drugs. They realize what he has and they want it, so they insist that he open it up - without the code, they can't examine it and learn how to make one of their own.

Creepy.

-Elthia
YES, I'm paranoid.

no, you are.

[small_dick]

the seized computers had incriminating files as well as encrypted files, the same way a vehicle used in a crime has tires, the same way seized land has trees.

He gave it all up when when he did the crime.

I DO have a problem with some of the crazy laws that allow the gavernment to take property on SUSPICION of a crime, but in this case, the encrypted binaries of a hacker?

No way. Take them, don't give them back, watch him like a hawk.

The government bungled thae case, but I see no reason to reward KM, especially w/o knowing the contents. It would be like giving a "Perfect Safe" back to a bank robber.

Re:Easy way out

Maybe they have not cracked it because they want to set a precedent by legally making him turn over the keys. They could then use this as a basis for the turning over of encryption keys as mandatory in hacking cases in the future.

Re:He DOES have the right to use a computer

[netik]

I guess he can't use a car either; cars have computers in them (fuel injectors, door controls, etc)

Huh.

Painter replied that because the government could not understand what was in the files, it could not use the files as evidence at trial. He also said that Rule 16 did not apply because the encrypted files in a sense were not "really in our possession," because "we don't know what's there."

So, if I put something in an impenetrable safe and the government seizes the safe, they get to keep it because they don't know what's in it?

"For all we know...
it could be empty.
it could be p0rn0 p1x 0f K3v1n'5 l33t b1tch35 (we wish!)
it could be detachable penises (we lost ours)
it could contain alien remains
it could be a hydrogen bomb built to destroy the universe, YOU NEVER KNOW!"

That's how silly the government's excuse sounds to me.

I mean, give me a break, the government has no right to hold onto that data. Despite my feelings that Mitnick got what he deserved, this is beyond that. This is violating the law.

Re:Huh.

He was stupid. He broke the law and got caught. He waved his right to a speedy trial. He should still be in jail.

Here goes our rights AGAIN

Innocent until proven guilty? My arse.

They basically turned that notion on its head with the "sorry, you could have dangerous information in there, so we're not going to give the data back until you prove that you don't."

What is incredulous to me is that the Judge in this case didn't care about that particularly OBVIOUS violation of a persons Constitutional rights.

Isn't there a way he can appeal this decision? Shouldn't he be doing so, right quickly? The government is starting to screw with its own citizens as much as it does with foriegn ones. Viva le revolution.

Re:What did he use?

[HeghmoH]

I believe that he just worded it wrong. When he says "choose a password and encrypt it" I believe "it" refers to the file in question, not the password. You then proceed to encrypt the encrypted file several more times with different passwords.

You don't need to.

[drsoran]

Make up a name and email address. There's certainly NOTHING stopping you from just randomly creating a bunch of fake data and using that to feed their info hungry ad generation engine. ;-)

Question

[re-geeked]

If this were a case of say, a bomber, and the government had confiscated his chemical fertilizer, which he may have obtained legally, and may only intend to use for farming, would the government be required to return it?

If yes, then there is no reason by which Mitnick's data can be held.

If no, the government could keep it under "reasonable suspicion" or "danger to the public", then the government should have the right to withhold the data.

KEVIN MUST DIE

After all the trouble he'd gave companies he should die on the electric chair! FUCK KEVIN!!!

Re:You bastards are all alike

[hawk]

Your response is one of the most intelligent and insightful things I've ever seen around here.

And if he'd bothered to look around, or was even vaguely familiar with my other postings, he'd know that I"m pritty far out on the fringe (I'd maintain the last step before the nuts) on the side of the individual in the face of the awesome power of the state.

That said, Mitnick is a thug trying to manipulate the system. This is not about civil liberties, but an attempt to cloak criminal behavior in the dressings of liberty, and relying on knee-jerk reactions from folks who lack enough backround information or legal education to make an informed conclusion--a more serious version of the petitions to ban dihydrous oxide as a dangerous substance and the like.

Re:Moderate Early & Often

[IntlHarvester]

Good idea -- I've seen new threads where the first 50 posts have had at least 50 mod points expended on them. (A few 5s, 3s, a bunch of 2s lots of -1s).

What happens to the next 300 {good, bad, trugly} posts? Nothing! The moderators blow their load in the first 30 minutes.
--

Re:(OT) For those who don't want to register

[extra88]

Access to the NYT site is free but they lose advertising revenue if people read their content elsewhere. So to determine damages they could just use Slashdot's logs to find out how many saw the posting and multiply that by what they charge advertisers per impression.

IRS and the Fifth Admendment

[aufait]

The IRS doesn't care how you get your money, as long as you hand over their cut. Some hookers hire accountants to keep track of thier earnings to avoid problems with the IRS

Your tax return is an interesting problem. You can't 'plead the fifth on your tax forms because it is not a criminal investigation. However, they can be used as evidence against you.

The Constitution and the Judiciary

[oriel]

The judiciary is *not* some unstoppable power. In fact, it was Hamilton in the Federalist papers who said that the judiciary must be fortified because it has neither the power of the purse nor the sword. (Purse == Congresses' power of money, Sword == Exexcutive's power of enforcement). The courts *cannot* enforce their own decisions (just look at what happened when they told Jackson he couldn't remove the Indians. He did anyway. "Marshall has made his decision, now let him enforce it," Jackson said). However, in this day and age no one is crazy enough to simply ignore a court order. It just doesn't happen.

Secondly, the Constitution is perhaps one of the most ingenious documents regarding American government. The judiciary is supposed to interpret it. It always pertains.

Now, in the arguments of the 9th Amendment (unenumerated rights are not denied), it is by and large useless. When the courts first made decisions regarding it, everyone went around crying 9th Amendment (hippies said they had a 9th Amendment right to long hair, etc). However, it is now ignored and has not been even mentioned in case law in at least a few decades. Although it is tempting to cry 9th Amendment rights to anything under the sun, it just doesn't work or apply.

Re:He DOES have the right to use a computer

How does that apply here? It simply says: anything not made explicit is up to the states to decide. Then, if the state doesn't decide, the people can.

What about this precedent?

[oriel]

How about this--

The government (or any party) must return the encrypted files to the defense.

If the defense decides to use *any* of the decrypted material, it must provide copies of *all* the decrypted material back to the prosecution.

Could this work?

probably not a one-time pad

if he used a one time pad the key would have to be as big as the data he encrypted. that means the key would also have to be a gigabyte.. very unlikely he would resort to something that un-realisticly

Space x Time

[RabidChipmunk]

> A day to encrypt one doc? Think about this.
> I can encrypt a doc in 5 seconds.
> For it to take a day, say, half a day, 12 hours, I would have to say... computers would
> have to be 8640 times faster today than they were in 1994.

Actually no. Because you can trade some of the
time for space. So, assuming that you can
design the alg to use all of your space,
My 64Meg P233, has >20,000 times the
SpaceTime capacity of a C64 with a 10mhz
(that's a guess) chip and 64k RAM.
I would suspect the Gov can do the equivalent for
any hardware commonly available in 1994.


-sh
----

Re:Nice try....language and testimony

[mrgoat]

I would probably put it this way- the files are written in another language, which the feds don't have translators for - lets call the language Ancient Panvrovian. They could figure out Ancient Panrovian on their own, but they either don't have the will or the means.

Kevin can provide them with the ability to translate the files into English, but that may incriminate him later. He himself can translate ancient Panrovian, given he knows the key phrase to do so under the right translation matrix.

Or, rather, he put a magic lock on the filing cabinet, and they won't give back some of his spellbooks and tomes until he gives them the magic word and the spell. Of course, the documents contain things that could be speech, or could be considered warlock's spells, or both.
Unfortunately, I haven't heard of any caselaw that clearly determines whether something you have written could also be considered a tool. Doesn't mean it doesn't exist, but I think it is a new thingy. However, I am not a priest of the constitution; merely a lowly packet-herder teleporting some minor lord's sheep to market.

Re:Where is simple commend line file encryptor pro

[dodobh]

You can search for it at www.attrition.org. Too lazy to do it myself.

What did he use?

[jelwell]

All I want to know is where I can get my hands on the software he used to encrypt his files! If he encrypted this 5 years ago - and it's still strong then I gotta get my hands on this.

Anyone know what program he used? was it PGP? was PGP even around 5 years ago?
Joseph Elwell.

Re:What did he use?

[sesquiped]

Um... DES has been around for a very long time (decades), and it's still uncrackable by most casual cryptographers. Triple DES is still strong against most anyone, except the NSA and some other governments. Any maybe a few major international corporations. Good cryptography is made to last decades, if it wasn't, no one would use it. Saying that it's good if it lasts 5 years without being broken is like saying a computer is good if it can go five minutes without crashing.

Re:What did he use?

[Anonynous+Coward]

What rock have you been sleeping under for the last 5-10 years? DES is totally unsuitable for anything. Even triple DES. And I'm not talking about government and major corporations, I'm talking about casual computer users who happen to have access to a cluster of fairly mid-range machines (say, at their university...or even just a high end desktop and a couple weeks to spare) or even not-for-profit orgs like EFF, which have a DES cracking machine.

This is just goofy..

When you get out of prison, your supposed to get back all your personal belonging that they took from you prior to being incarcerated (provided that it's not used as "evidence").

This case is similar to saying, "I don't know what the heck this blue thing is, but it could be evidence, so we're not going to give it back to you."

If they don't know what it is, and can't prove that it is evidence or a weapon, they should give it back. Just like they do with your keys, wallet, pack of gum, etc.

memory

[Hard_Code]

wouldn't it be believable if he just said he forgot it? I mean it /has/ been a long time. Then again, I guess if he forgot the key why would he want the data back...

Jazilla.org - the Java Mozilla

Re:memory

[nelomolen]

i would assume the government HAS already cracked it... they just need him to "confess" the key so it doesn't become a breaking and entering counter-suit... after all, even criminals are protected by law.
-barton

Message from the US Government.

[Rodney+L+Caston]

Encryption is bad mm'kay? If you use encryption, you're a bad criminal person mm'kay? Don't use encryption, mm'kay? -Brought to you by the US Government

Re:(OT) For those who don't want to register

[extra88]

Once again, IANAL.

Only the copyright holder has the right to copy, distribute, etc. the materials. This reposting violates NYT's copyright unless the person has permission.

They consequences are highly variable. Copyright violation is a civil, not criminal, case. NYT would have to show their copyright had been violated by whoever (possibly including Slashdot for hosting it, precidence varies) and it cost them X amount of dollars. If NYT wins, the loser pays them X amount of dollars. It's not necessarily easy to prove how much something like a single article is worth, especially when you're giving it away yourself.

For people who violate lots of copyrights, I think they sometimes get charged with fraud. The idea is that they're posing as someone who either created to content or has the right to do so. Cloning NYT's site and hosting it www.nytimes.to would be an example.

C'mon people now...

...smile on your brother everybody get together try to love one another...

Goverments Point of View

[mitheral]

I think we have to have at least a little sympathy for the goverment's point of view. From what I've read they have no idea what is in the gig or so of data they can't dycrypt. Being the pariniod kind of people they are; they probably think that he has a couple million credit card or Swiss bank account numbers. Or maybe something really bad like a mpeg of a senator gettin' busy with an aide.

I've never seen reported what method Kevin used to encrypt his data. Let's speculate that he used 1024 bit RSA. The goverment may have decoded the stuff and therefor they know he has the plans to the B1 encrypted on his laptop. But to reveal the fact that they know what he has on his laptop would also reveal that they can break 1024 bit RSA. Not good. So they play dumb instead while still denying access to the data.

How is he supposed to decrypt this information anyways. With an abacus? pen and paper? After all he's restricted from practically all computer use.

Assuming he has nothing more then 100,000 credit reports they still would be in very hot water if Kevin was to somehow commit a crime with the data. How the heck he would do that without access to anything more technological than a light switch I have no idea. He seems to be a master of the wetware attack so I guess it's possible.

Re:Goverments Point of View

Remember this /. post on an Israeli developed quantum computer?

Was this ever proven true/false?

If a group of people are "in the know," why would they want to share it with the world?

It is called the Eternity Service

The idea of having a safe and permanent place to store data has been described nicely by Ross Anderson.

See http://www.cl.cam.ac.uk/users/rja14/eternity/etern ity.html (html version) (ps version)
All theoretical though.

Closest to implemented is: http://www.cypherspace.org/~adam/eternity/ and read about it here.

Re:He DOES have the right to use a computer

[Muck]

well, he does have the right unless he waives it.. which he does in his parole hearing.. they'll offer him an early release on the conditin of "X" things.. also, someone gave the example of a drivers license.. same type of situation.. when you sign up for your drivers license you agree that your license can be revoked on certain conditions (one of which is certain crimes like DUI). So while a JUDGE (or committee or whatever) cannot take away those privilages, he can sign them away in return for things to his advantage (escaping bubba).. although he was in lompoc federal prison for at least the last part (donno where he was before that)... i live near lompoc and its a pussy prison. its all crooked bankers, telemarketing scammers, etc etc... if anything he learned other ways to scam money from people while in there :) pretty good trade if you can't use computers.

This is your brain ...

[SimCash]

This is your brain ...

Re:Radioactive smarts

[unitron]

"In my school, being smart is exactly like being radioactive."
Radioactivity has a tendancy to be contagious, being smart unfortunately doesn't.

How do retards like you survive?

The standard in the US is that the gov't has to prove that whatever they want to take from you is illegal. You are not supposed to be forced to prove that your property is legal.

That other post about your fucked up attitude keeping german ovens full is right on target. Too bad people like you are not lined up and shot, instead of the people that support freedom.

The MPAA should have hired him

[Salsaman]

Then they might not be having these problems with broken keys ;)

He DOES have the right to use a computer

[UnknownSoldier]

> He doesn't have the right to use a computer, so what would he do with it??

Yes he does retain that right, since he didn't surrender it.

BILL OF RIGHTS
ARTICLE X
The powers not delegated to the United States by the Constitution, nor prohibited by it to the States, are reserved to the States respectively, or to the people.

Cheers

Re:You bastards are all alike

[Foogle]

Though I know you are nothing but a troll, I feel compelled to answer this:

Hawk explained the facts of the situation. He didn't even say what he *felt* was the appropriate action in this instance. Imagine a government where our judicial system operated on the premise that courts could rule how they "felt". Our country was founded on thoughts quite to the contrary.

It's not about winning arguments - it's about interpreting the law and abiding by it. Regardless of whether it makes perfect sense or not.

-----------

"You can't shake the Devil's hand and say you're only kidding."

What is the funniest thing..

They mention that "For all we know, it could be plans to take down a computer system". Now, come on now... if Kevin Mitnick had plans to take down a computer system 5 years ago, what are the chances they system is even still running and not in the trash heap? Systems/networks change so much for week to week that 5 year old data on how to penetrate a system would be worthless to anyone but a computer crimes historian. "Woohoo.. I have plans here to break into Bell Lab's data storage server housed on their Sparc IPX.. huh? What do you mean they trashed that 4 years ago!?"

My Gawd

You are such a fucking idiot. Wht don't you go live in North Korea or mainland China where fuckheads like you run everything, OK you goddamned storm trooper? Your analogy is full of shit, as are you. Numerous people have tried patiently and nicely to show you what the actual issue is and you keep talking in fairy tails.

Now, pack yor bags with all of your commie approved books (if you truly own any) and go let big brother fuck you in the ass the way you really want it.

Of course the government could not break it.

[www.sorehands.com]

They don't have all us /.ers parallel processing their machines and working day and night to crack it.

For the government people it's a job, for us it is an obsession.

Re:Of course the government could not break it.

Maybe we are, maybe distributed.net is a government conspiracy and maybe they have us working on cracking his encryption? huh?

Has the paranoia set in?

Maybe Even SETI@Home is in on it?
Who's to tell?
How do you know that RC5 packet you got is actually a trying to crack RC5 and not KM2K-1024 (or whatever he would have called it)?

hehehe... AC for the obvious reasons...
Screw protecting my interests, I'm protecting my Karma!

Re:Of course the government could not break it.

[fishbowl]

How do you know for certain that's not what Distributed.Net or Seti@Home has been doing?
Cracking Kevin's Keys under some innocuous pretense?

Cute Acronym Alert!

[dbrutus]

REdundant Distributed NETwork Steganographic FILE System. REDNETS FILES

There, that didn't take 30 seconds
B-)

DB

Mitnick a criminal?

Seriously... Kevin Mitnick isn't half the criminal that Bill Gates is! Poor Kevin. I feel for the guy. What really did he do? Stole a little bit of cell air time? C'mon... Maybe stole UNIX source code that should have been free anyway!?! And Bill not only walks free, but is rolling in cash. Makes me so @#$! mad!!! Time to boycott not only everything $MS, but ever stinkin' proprietary thing!

cute

A guy who breaks into companies private data now without remorse wants to be able to keep his own data private.

Why don't they...?

Could the Government hire crackers to crack the encryption, or perhaps just post the code anonymously, hoping someone unencrypts it? Also, if Kevin's THAT good to encrypt his files that the government couldn't get into them for all those years, shouldn't they offer to lift his parole if he helps them out with other cases?

Maybe they already have...

[devphil]

...and likewise, don't want to set a precendent of "Oh, just ignore them, they'll have to take years to decrypt it." Forcing a criminal to obey the law sets a much better tone than making the government dance to the criminal's tune.

(This holds in general, regardless of whether you think Mitnick (the specific case) is "guilty" or not.)


My two timeslices, is all.

Re:I've got large files of randon numbers on my bo

[Magus38]

Well Spoken.

Let me tell you something about Mitnick

Now, I don't know much about that "hacking" stuff, because, you know, that's not my style. I prefer a more direct approach. But I must say that I like this Kevin Mitnick's attitude. Now, I don't know if he's got the skills that count, but I think I'm willing to give him a shot. That's why I'd like to invite Kevin Mitnick to join me as my tag team partner next week to take on that lame-ass duo Drakos and Driver. I'm sure Mitnick will accept my offer, because it's not every day that you get to team with someone as talented as me, the Slashdot Wrestling Federation Inter-Continental Champion!

Always remember, I am the greatest!

Re:A leagal reason for the data to (not) be return

[belroth]

Don't forget Steve Jackson Games.
The Secret Service walked off with his computers, including new game designs, and truckloads of stuff and nearly ruined his business.
He had to lay off half his employees, no-one was charged with anything and he never got his goods back.

Read "The Hacker Crackdown" by Bruce Sterling.

Wouldn't democracy be a nice thing to try?
----

Unbreakable encryption isn't improbable

[copito]

There are a number of publically known encyrption algorithms that are thought to be uncrackable in the lifetime of the universe even given substantial amounts of money and specialized computers. The practical limit on encryption is not the availability of an algorithm, but the ability to generate and secretly store a key of sufficient length and randomness and keep the plaintext of the data from being recorded or transmitted elsewhere.

Decrypting is not easily done, even if the data was encrypted with a relatively bad encryption algorithm. If the algorithm is not known, decrypting a single message is nearly impossible. If the algorithm is known and it is reasonable secure still huge amounts of expensive computer time and analyst time must be spent on the problem.

That's not to say that the government couldn't have broken Mitnick's encryption. They may not have been trying too hard, since they could get a conviction without it and decrypting information is expensive and time consuming, and may not have had the expertise, since most of the really good cryptanalysts in the government don't work for the FBI. But Mitnick clearly would have known of unbreakable encryption methods, and if he was disciplined enough, he very well might have used them.
--

did anyone think about this one?

[nelomolen]

the most ironic part about this... Kevin has already spent his time in prison, a period of time that is theoretically supposed to "straighten him out"... what really gets me here is the prosecutions total lack of faith in the legal system. EVEN IF the files are incriminating (like the coat having a gun in the pocket parallel) the lawyers are FAILING to take into account that the time spent in prison is supposed to CHANGE Kevin into a law abiding citizen. #2 nobody can spend time in jail for the same offense twice, isn't that right? isn't that considered double jeopardy? so in this case, even if the evidence IS incriminating, it's AFTER THE FACT, he's already spent his time, HE CAN'T GO BACK FOR THE SAME OFFENSE... i think i got that right... #3 the government has NO right to look through my underwear drawer (but that's an opinion) -barton

the government is right.

[small_dick]

mitnick refused to turn over the key, under the 5th amendment. he just lost all rights to the blob, since it may or may not contain fruits of his criminal activity.

there are other situations where personal property used in the commision of a crime is forfeited. guns, drugs, vehicles, land -- all can legally be taken and sold/disposed of by the gov. w/o compensation.

remember who the criminal is here. the gov treated his case very poorly, but kevin is the moron breaking/stealing/etc.

oh yeah...yet another good reason to keep backups :-)

Moderate Early & Often ::WAS:signal11 = asslicker

[Parsec]

Maybe a discussion should not be moderatable until at least 50 comments are made. This would allow inexperienced moderators to see the possibility of more intelligent comments than those made by Signal 11.

Aha!

[Sloppy]

I've heard stories of equipment being kept even with no charges being filed...

Aha! That's brilliant! Don't you see?

All the feds have to do is decide that they suspect that the files may contain information related to illegal drugs. Then they get to keep the files forever. In fact, thanks to the war on drugs, they even have the "right" to sieze anything else that they want of Mitnick's, and never have to worry about trials.

Damn, we've got a great government. I mean, that's downright clever. I'm so proud of it. If only Jon Johansen lived here, the MPAA could have implied that DeCSS might be used to watch drug-related movies. Our cops would have done things that would have made the Norway cops look like total pansies by comparison.

---

Hope the NYT doesn't see this...

[Skyshadow]

I rather suspect that the good people at the NYT might take exception to this being posted in its entirety, without the hits and ads and all that they use to fund their online site.

I think it might be wise of we /. contributers to be a bit more careful in the future to avoid causing Rob & Co. problems. Remember, the important concept here is fair use. A quick explaination of what constitutes fair use can be found here.

----

Did I read that right?

[iainh]

9 Gig on two circa 1994 laptops

If my drive space was that far ahead of the curve today
I could store my decrypted DVD library.

Barking Up the Wrong Tree

[cantor3]

A lot of the postings in this discussion focus on property law. Information is not property the way a car or a banana might be. The main point is this: the government could easily give back Mitnick's data and retain a copy.

A lot of us think he shouldn't have been sent down in the first place, and would change IP law, but the relevant legal arguments are going to center around what the data represents, as in, the data is a tool to do things. They wont focus on whether the data is speech or who it belongs to.

If Kevin had invented super weapons (which, in some people minds he did), and noone else could figure out how to work them, and he took them and killed someone (but noone knew how he managed to do it, just that he did), and got put away for 10 years, he couldnt come back and ask for their return. So I think hes gonna lose this one.

Re:Mitnick...

[Joe+Bananas]

u

one i forgot to add

[nelomolen]

plus he can't even use computers for... how long was it again? so even if those files WERE something bad, it's not like he can run off, decrypt, then wreak havoc. however, i would think it funny if he did. :)
-barton

Missing the point.

Read the article:
During the pre-trial discovery phase of the case, the government lawyer, Christopher Painter, an assistant United States attorney in Los Angeles, indicated that as required by the rules governing evidence, he would hand all of the seized files over to the defense -- except the encrypted ones.

That's the point. This isn't about returning stolen goods to a criminal. It's about the government witholding evidence that the defendant might have been able to use in his own defense. 11% of Mitnick's files were unavailable to his defense team. Anything the defense team might have decrypted and entered as evidence would then be available to the prosecutors and court.

I think the best analogy here would be "Sir, the police seized 3 years worth of your records, but the prosecutors have only had time to read 2 years of the records. So, you are only allowed access to the 2 years they read to defend yourself. Unless, you want to point out the parts they might have missed in that other year."

Nothing in the article talks about returning encrypted data to a convicted felon. I could understand the logic behind refusing that. But, (taking the worst case view) it sounds like the court and prosecutors just wanted to tip the scales of justice in their favor and not have any surprise evidence entered by the defense team.

Re:I've got large files of randon numbers on my bo

Interesting concept for stegography, just have a big file called "testing_random_generator" which is filled with random-looking bytes. If ever asked, you can easily say you were testing the rand() function.

Who the hell knows what is in that file?

going way offtopic was:Moderate Early & Often

And let's face it, a bunch of geeks blowing their load in only 30 collective minutes is not the way to get good head in this world...

"Encrypted files"

[ucblockhead]

If I were Mitnick, I would have written and run the following program:

FILE*fp=fopen("SuperSecretEncryptedStuff", "a+");
for(long i=0;i1000000000L;i++)
{
unsigned char c=rand()%0xff;
fwrite(&c,1,1,fp);
}
fclose(fp);

It would give me something to laugh about as I sat in my cell.

YOu fucking commie

shit like you needs to be flushed

The retarded government position supports stego

[GMontag]

According to the blithering nonsense from both the judge and the persicution, if the files were "readable" there would not be a problem.

Thus, if one "hides" their encrypted information, using strgonagraphy,in a file or series of files, and those files appear to be readable, the government would have no reason to hold the files.

Be that as it may, I believe the government has no right to keep property just because they do not know what it is. The burden is on the sholders of the state to prove that the information is some sort of contraband. This is just another example of the government giving individual rights a wink before cracking the whip to show who is master.

BTW, "plans for taking down a system" should be covered under "free speech".

Why they couldn't decrypt it.

[RabidChipmunk]

The files aren't actually that well
encrypted, it just that they stored
the harddrive on top of some speakers
and randomized it.

"Truely complicated noise is indistinguishable
from random information."

-sh

----

Your basic self-reply.

[Black+Parrot]

Now that I've had a few hours to think about it, my last-mentioned trick is trivially easy.

Step 1: Use steganography to hide your secrets in an image or data file.

Step 2: Use that file as the matrix to steganographically(?) hide something less secret, and using a different key.

Then, when "they" threaten you with scary vileness if you don't hand over the key, you give them the second key and, alas, all they get is your diary filled with purient fantasies, rather than your nuclear secrets. To get the "real" stuff, you have to repeat the operation with the "real" key.

And the nice thing is, if they catch on to the double encryptation scheme (i.e., if they're browsing /. right now and I've blown your secret), you can do it three layers deep, or four, or five... How will they know when they've really hit bottom? How will they convince a judge that there's still data in there once they've gotten your naughty diary?


--
It's October 6th. Where's W2K? Over the horizon again, eh?

Nice try....Judge already said no though

[Carnage4Life]

The judge added that if Mitnick would "tell the government how to read" the files, then the government would turn over the files in decrypted form.

Mitnick's lawyers immediately objected to this condition on the grounds that it would force him to waive his Fifth Amendment right against self-incrimination to obtain evidence he needed and that he had a legal right to see. The judge rejected this point and repeated her ruling.

It seems that the right not to incriminate yourself is solely testimony based from what I have read. So your writings can be used to incriminate you in a court of law...even if they are private (i.e. a journal). It seems the government is treating the files like property (i.e. it can be searched/seized) instead of testiomony.

Re:Where is simple commend line file encryptor pro

[roystgnr]

How about GNU Privacy Guard? It's only got 3DES, CAST5, Blowfish, Twofish, and (modular) IDEA for symmetric encryption, but how many do you need? And it does public key encryption, too, and it's PGP compatible.

Easy way out

[spineboy]

He could alweays pull a Ronald Reagan (during the Iran-Contra trials) and just claim that he has forgoten the key. I doubt the gov will ever crack it soon unless they do something like the distibuted net stuff. I'm not sure if they want to spend tha much money on this guy either and crucify him now that he is becoming a "cause celebrite" (where's the damn French accent keys?).

Offtopic

And how that relates to my comment I have no idea... :)

Knowing how to use software and writing that software are different things.

Mitnick's a thief

[psylence]

Who gives a rats ass if he gets his stuff back...

... here come the "mitnick was unfairly treated" replies

Re:I've got large files of randon numbers on my bo

[root:DavidOgg]

A felon SHOULDNT be disqualified from having guns or being around children or whatever...

If you cant be trusted to own a gun because of a crime you've committed, you shouldnt BE OUT OF JAIL. If you cant " " children " " crime " " you shouldnt BE OUT OF JAIL!

Criminals should be punished and then AFTER the punishment given their rights back. The government should NEVER have the power to strip the rights of people who are "on the street".

If the Jail wasnt enough without the additional punishment, then the Jail wasnt enough to fit the crime and should have been lengthened.

our founding fathers knew ALL too well how important it is to restrict the athority of the governments influence on the pedestrian citizen, and how "creative punishment" grants the government longer arms over ALL the citizens.

If the Judge felt that Kevin would still be a considerable threat to society after his term, then he did a shitty job deciding the length of the term.

I believe that the American Citizens right to use a computer will in the near future be regarded as a constitutional right parallel to the Second Ammendment, as the roles computers play or will play are the same ones that bearing arms played 200 years ago.

Power to the People

New analogy

After reading the whole discussion about the 4th and 5th amendments, I am not sure that is really the question we have here.

I think I have a good analogy, though. Suppose a person is arrested for a crime, and the police have reason to believe that person stored evidence of those crimes in safe deposit boxes, and indeed did find evidence in safe deposit boxes of that person's crimes. Now, the authorities have one key, but it is not stamped as to what bank or box number it goes to.

Do they need to give that key back?

Does anyone know what would happen in a property case like this? My gut feeling is that after you have plead guilty/been convicted you are not going to be able to get to the contents of that box without the police there to also see what is in the box.

This doesn't really seem that unreasonable to me.

the REAL question

[nelomolen]

what it all comes down to is "own" and "acquire", which is also brought up in the DVD-cSS case... if the gov't can "prove" that even though they possess the data, they don't HAVE the data because it's encrypted... if that flies, geeks of the werld unite, we just won the DVD case on precedence... BUT, if it can be proven that they both possess AND have the data, we're screwed on the DVD thing...

or something like that. it's late, and i'm sleepy...

...but addicted to this confusing and frightening thing called the "internet".

-barton