Slashdot Mirror

← Back to Stories (view on slashdot.org)

Crypto Restrictions Are Taking Over the World

Posted by timothy on from the and-you'll-like-it dept.

zeke writes: "An article on SecurityFocus details how forced key escrow and other crypto restrictions have taken root around the world, in countries like France, South Africa, the Netherlands and the UK. Ironically, this leaves the United States -- the birthplace and graveyard of the Clipper Chip -- as one of the few bastions of unregulated encryption."

15 of 348 comments (clear)

  1. And Canada by Newtonian_p · · Score: 3, Interesting
    Canada is the only developped country in which there are no laws regulating encryption.

    That's one of the reasons for which Openbsd is developed there.

    --

    There are 2 kinds of people in this world: Those who write in decimal and those who don't

    1. Re:And Canada by gmack · · Score: 3, Interesting

      Actually that's not true. I used to think that as well but then somone pointed me to the laws in question.

      We have a specific exemption for open source or free software. Commercial apps still have regulation (although less ornerous than the US)

    2. Re:And Canada by Anonvmous+Coward · · Score: 4, Interesting

      I think the idea is not to thwart, but to provide punishment for it.

      I'm playing Devil's Advocate here, I'm not saying it's right. I think the mentality might be along the lines of "Yah well it sure sucks that we weren't able to bust Al Capone on anything but IRS dodging."

      It's very possible that they're looking for ways to define 'accomplice'. Let me put it another way: Lots of people were involved in executing 9-11. But besides the hijackers (that died), how can we punish the other people involved? Well, if they used illegal encyrption to communicate, they could be arrested and pulled out of the plan of the next attack.

      Again, I'm playing Devil's Advocate here. I'm explaining what their reasoning probably is, I'm not saying that I support it or that it'd even work. I'm saying that I could see some old powerful fart using reasoning like that.

    3. Re:And Canada by MrFredBloggs · · Score: 2, Interesting

      >Organized crime and terrorists don't use crypto

      Who says they`re after organized criminals? I always assumed these `anti terrorist` laws will be used to harass the general public, in the same way that drug laws have been (or the anti-terrorist laws in the UK, come to that, unless you can point me in the direction of some black IRA members).

    4. Re:And Canada by ultima · · Score: 2, Interesting

      If I SSH into a machine in Canada, run Emacs, and write cryptographic code, am I exporting anything/breaking any laws, if it would be export-regulated code, in the US (or maybe in another country?)

  2. US unregulated ? by Anonymous Coward · · Score: 1, Interesting

    If you export crypto from the US you still have to tell your government where you live.

  3. I wonder about e-commerce by jc42 · · Score: 3, Interesting

    The main way that most people use encryption is when they order something from a web site, and the traffic is encrypted to protect credit-card numbers. I've been wondering how well the various restrictive governments police this.

    Consider that most users aren't even really aware that they are encrypting their internet traffic. It's done by behind-the-scene transactions between their browser and the remote web site. The user never invokes any encryption software, and never sees the keys.

    Will we eventually see cases where a poor baffled user is arrested and charged with illegal encryption, when what they really did was order a pair of socks from llbean.com?

    --
    Those who do study history are doomed to stand helplessly by while everyone else repeats it.
  4. You dont need encryption.. by perlyking · · Score: 3, Interesting

    ....when you are being detained as part of the "war on terror" without trial and denied legal counsel.

    But yeah there are bad encryption laws in other places like here in the UK. Its worrying.

    --
    no sig.
  5. US is totally NON-free by Anonymous Coward · · Score: 1, Interesting

    You have been brainwashed if you think the US is free !

    Acording the US justice department, the US has 25% of the entire world's population of prisoners.

    And your going to have 1 in 24 amercians spying on your friends.

    The US and a lot of other western countries a quasi-dictatorships, do you really think the US government represent the will of the people. ?

  6. Re:The UK has less rights than the US? by MemRaven · · Score: 3, Interesting
    Yeah, I don't think I made my point on that particularly well. I think what I was meaning to say is that in terms of freedom from government intrusion in your privacy, the US has it pretty paranoid-leaning. Partially it's a historical thing in the US, partly it's a cultural thing, but we have the most paranoid culture about government intruding on your privacy without your consent that I can imagine. That's what I was really trying to get at.

    Although, I would point out that any nation without an actual constitution or any viable or realistic checks on its Prime Minister can hardly be considered to be a place where you can be guaranteed your rights (as anti-terrorism legistlation passed to try to deal with teh Northern Ireland conflict can attest to).

  7. Now just you hold on there a minute... by johnlcallaway · · Score: 5, Interesting

    Am I the only one who really read this, or did I not read it right.

    I saw places where it said "..and the police can order you to hand over your keys" or '..such and such a company has to register with the officials', but nowhere did it say '...you can't use encryption'. (I do agree that the key escrow stuff is very bad though.)

    Just like a gun, ecnryption can be used for good things (hiding my p0rn from my girlfriend), or bad (emailing terrorism plots to agents.) In this country (USA), if the police have enough evidence, they can go to a judge and get a very specific search warrant. So, if they accuse me of having illegal p0rn (instead of just the good stuff), they can search my computer till the cows come home. But if they find a terrorism plot, they can't use that information.

    To follow that point, what is wrong with issuing a search warrant and demanding that I decrypt the data?? I may not like it, especially if I'm guilty or don't want to share my p0rn, but I don't see where that is any different than letting the police go through a drug dealers house looking for drugs. Ok...there is that fifth amendment thing, so maybe a law like that couldn't even be enacted in the US.

    And so what if company X has to register with the government. They probably had to get a business permit anyway, and if they do anything novel they probably have patents. Not too many companies survive by being secret about their existance.

    So...tell me what is all the hub, bub.....

    --
    I rarely read replies, it's my opinion and if you thought about your opinion a little more, I'm OK with that.
  8. Is there a dead body in your trunk? by lugonn · · Score: 1, Interesting
    Ah...no Mr. Police man.

    Then open the trunk, or give me the keys.

    No, I have rights...you can't look in my trunk! NO!

    ____________________

    Excuse me Mr. User.

    Yes, Mr. NSA man.

    Are there terrorist messages in your email inbox.

    Ah...no Mr. NSA man.

    Then un-encrypt your inbox, or give me the private key.

    No, I have rights...you can't look in my inbox! NO!

    ________________

    I'm confused. What is the difference between these two scenerios? Sheesh...they check your trunk when you cross state/country borders. Just don't do terrorist/pedo/cracker shit, and you should have nothing to fear. uh, right?

  9. Palladium and Encryption by Anonymous Coward · · Score: 2, Interesting

    Does anyone see a quandary with Palladium, encryption and government in general?

    If Palladium is implemented, as everyone expects it will, and encryption becomes standard to the operating system does this not mean that the data on the hard drive is therefore protected from intrusion by outside sources? Would this not be a boon for those looking protect their nefarious purposes from prying eyes? This creates a problem for Microsoft and computer manufacturers in general; How to provide "trustworthy computing" to the general public while resassuring the government that data can be retrieved from hard drives when needed.

    If Microsoft or the Palladium hardware manufacturers build in a "backdoor" for just this purpose, then the idea of trustworthy computing is lost. Who would trust their sensitive data to a compromised system? Hence the quandary.

  10. DJB vs the United States by Anonymous Coward · · Score: 2, Interesting

    Since there are "no crypto restrictions in the US" my MCS professor can teach cryptography again? Last i checked such was not the case.

  11. Re:We could argue the other side of the coin... by Christianfreak · · Score: 2, Interesting

    I really don't think most law makers are interested in spying on people (call me naive, whatever, no one has given a really good answer why they would want to at least in a Democracy). I think law makers are interested in money and votes, and if the public is crying "Save us from the evil hacker terrorists" the law makers are going to at least try to appear to be giving the public what they want. In this case in many governments its regulation of encryption.

    The lawmakers don't understand the technology so if someone gives them a case where restricting encryption actually benefits the "evil hacker terrorists" by being able to spy on us because we all have weak encryption. (and yes regulation or not the terrorist's encryption will be just fine)

    Its a case of playing the same game the lawmakers do, it doesn't really have to do with what the terrorists can get their hands on.

    --
    The Anti-Blog