Darknets Coming Soon?

← Back to Stories (view on slashdot.org)

Posted by CmdrTaco on Sunday November 13, 2005 @02:32AM from the something-to-think-about dept.

Anonymous Stalwart writes "CIO.com is running a story on darknets and their implications for security. With the ruling against Grokster, darknets seem poised to become a reality. How this will impact the future of the workplace, from top-level IT/IS managers all the way to non-IT jobs will depend on how the tech community that is developing this technology treats it."

12 of 288 comments (clear)

Min score:

Reason:

Sort:

Ok, real response by LiquidCoooled · 2005-11-13 02:36 · Score: 5, Insightful

Shouldn't the first sign "something" is up be an increase in bandwidth?
Once you know its happening, you know you have to identify the problem.

Unless somebody can root all the routers and IDS systems for every OS along the way, these darknets will always be detectable.

--
liqbase :: faster than paper
1. Re:Ok, real response by l3v1 · 2005-11-13 02:41 · Score: 4, Insightful
  
  The point is not hiding the network's existence, but hiding the traffic and the data itself. No use in you yelling "something's going on here" if you have no clue what it is.
  
  --
  I am putting myself to the fullest possible use, which is all I can think that any conscious entity can ever hope to do.
2. Re:Ok, real response by Kjella · 2005-11-13 02:50 · Score: 4, Insightful
  
  Unless somebody can root all the routers and IDS systems for every OS along the way, these darknets will always be detectable.
  
  Technically, they can look like any kind of encrypted connection, HTTPS, SSH or whatever. Besides, I think the idea of Darknets is flawed to begin with. It is taking current anonymous P2P networks (Freenet, Ants, I2P etc.) and tying both hands behind their back by no longer allowing all-to-all connections, but only connections to people you trust. That pretty much precludes any sensible routing and load balancing because people are selecting the available routes, and you can't create new connections. Say you are the only person with access to two different social groups, all info must flow over your connection creating a huge bottleneck that the software is not allowed to compensate for.
  
  --
  Live today, because you never know what tomorrow brings
3. Re:Ok, real response by 1u3hr · 2005-11-13 03:53 · Score: 3, Insightful
  
  ot in the corporate environment - the IT department will simply challenge you to explain why you're using so much more bandwidth
  TFA was focused on corporate espionage, which wouldn't necessarily consume huge bandwidth. Besides corporate types thnk nothing of sending huge files (video presentations, eg) around, so even sneaking out big files wouldn't necessarily make a blip. Of course, USB dongles and such are a much easier and right-now threat in that regard.
4. Re:Ok, real response by Florian+Weimer · 2005-11-13 05:35 · Score: 3, Insightful
  
  In other words, massive copyright infringement drives the demand for more bandwith, which drives research, investment and competition, benefitting the society enormously in the form of better technology (both communication and processing, since you need processing power for routing), better communication infrastructure, and cheaper prices for both. I see this as yet another reason for weaker, not stronger, copyright laws.
  
  Interesting line of thought. But I don't think it's compelling. Contemporary file sharing protocols (especially the search component) are often rather inefficient. Making file sharing clearly legal would make it possible to offer more centralized services supporting it (where it makes sense), which would increase efficiency and reduce bandwidth usage.
  
  On the other hand, if you outlaw file sharing completely and enforce it rigorously, as a user, you'd have to tunnel all file sharing traffic over secure anonymization networks (similar to what Tor does). Each packet would run back and forth through the network, in order to obscure its sender and receiver, tremendously increasing bandwidth requirements. So, following your argument, truly fascist copyright laws would advance networks even more.
the RIAA needs to be careful... by Spy+der+Mann · 2005-11-13 02:44 · Score: 5, Insightful

by prosecuting unencrypted networks like eDonkey, bittorrent, etc. they're only enforcing users to search for encrypted ways to transmit data. And I don't think encouraging encryption is gonna be any good for national security.

Just a thought.
Darknets? Blame the RIAA!!! by ThatGeek · 2005-11-13 02:45 · Score: 5, Insightful

Well, only 3 comments posted, and the link is already hosed.
As reported by Darknet dot com, a darknet is nothing more than a place where illegal communication (filesharing/hacking talk/speaking badly of the US president) can take place.
I don't see how darknets will make things any different. For years we've had gopher, IRC and other communication channels that have been below the vision of the management elite.
I think lawyers are starting to learn that techies can't be bullied as easily as most, because techies are able to build new infrastructures. Instead of giving up, techies take threats as a challenge or motivation to dive further and further away from public vision.

--
What are you eating? isItVeg?.
Not necessarily illegal by Ritz_Just_Ritz · 2005-11-13 02:51 · Score: 4, Insightful

A Darknet is a private virtual network where users only connect to people they trust. That's it. It can be used for good or evil.
They'll Never Learn! by TheZorch · 2005-11-13 03:15 · Score: 5, Insightful

You can't teach the RIAA anything. They think they can stop P2P file sharing but the truth is all their legal efforts are driving it underground...where it was before Napster appeared.

There are a lot of very talented techies out there who can come up with some astonishing new tech. A fully encrypted P2P service that masks a user's IP address would make it hard for "the man" to find those who are illegally filesharing. Also, the hacker community can adapt to changing situations faster than any corporation. This is because they aren't hindered by office politics, ethics, patant and copyright compliance and legal compliance. They operate above the law, so it was really no surprise to me when Slashdot ran the story of the trojan that exploited the cloaking ability of Sony's DRM.

I wasn't surprised one bit.

Because of Grokster and others the RIAA bring down a new, bigger, and better P2P service will emerge with multiple layers of custom encryption, IP address masking, and no central server that can be distrupted. You could even block ports at the ISP level and they'll adapt again to support multiple ports at once. Its a loosing battle they just don't get it yet.

Why do you think Internet Security and Antivirus Industies are racking in so much money these days. They DON'T want to see the hacker put in jail because if all the security threats cease and no more viruses are being made they are all out of a job. It a multi-billion dollar industry.

The RIAA is utter and completely out of their league.

--
Michael "TheZorch" Haney
thezorch@gmail.com
http://thezorch.googlepages.com/home
1. Re:They'll Never Learn! by squiggleslash · 2005-11-13 03:45 · Score: 3, Insightful
  
  Oh, bollocks. If Darknets become the future of P2P, the RIAA and its members are going to high-five one another and say "We did it!"
  The issue with P2P is that it's a way for a single person to distribute a piece of music to potentially millions of anonymous strangers. That hadn't existed before, and it was, by and large, mostly used for piracy. People took copyrighted materials whose producers were relying upon sales (and realistically have no alternatives) to pay for the costs of production and, without permission, used Napster and its successors to distribute it instead.
  That's what got the music industry in a panic. Suddenly content that could, previously, only be accessed under relatively controlled conditions was available, on a on-demand basis, to anyone who wanted it, without the receivers having to contribute a penny to the costs of production. While some Slashdotters have argued the additional publicity might have generated sales as people were exposed to content they wouldn't otherwise have been, it's also a fact that many, possibly even most, P2P users used P2P to build music collections directly, bypassing the usual pay-for-CDs routes. I know such people, and I know more people who I can definitely say didn't pay money they otherwise would have done, than people who bought CDs purely on the basis of being exposed to the content via P2P that they wouldn't otherwise have been.
  What Darknets do is they reduce the numbers involved considerably, and return music-redistribution to the limited scales we saw in the days of home taping. The participants know one-another. Downloadable music libraries become limited to those of a small group of friends. It ceases to be possible for millions of people to be able to download a song illegally the day after it goes on sale.
  Darknets represent a victory for the recording industry. Oh, they'll continue to chase them, if only to keep the numbers down and limited and prevent a single darknet from becoming large enough to constitute a threat, but over-all, darknets will never be as damaging, in practice, as Napster and its successors.
  Don't think like a geek. The issue with Napster wasn't that you could physically transfer an MP3 from one person to another. It was that you could rip an MP3, and then it'd be available to millions of people within hours, in a form easily searched for and obtainable on demand. In short, if someone thought "How can I get Rosen and the Hillarycats's latest hit 'Copy me to the moon'", they now had two choices: find the CD and buy it, or download the MP3." That latter method just isn't practical with Darknets.
  
  --
  You are not alone. This is not normal. None of this is normal.
Can't stop the signal by macemoneta · 2005-11-13 04:55 · Score: 5, Insightful

There are so many ways to abuse TCP/IP that it's impossible to stop data exchange unless you block all traffic. Heck, you can even communicate using ping, as in:
HOST1: ping -c 1 -p facedead12349876 host2 PATTERN: 0xfacedead12349876
HOST2: tcpdump -x ip proto \\icmp and src host host1 11:41:51.646216 IP host1 > host2: icmp 64: echo request seq 0 0x0000: 4500 0054 0000 4000 4001 1af7 8752 0886 E..T..@.@....R.. 0x0010: 8752 0888 0800 4550 242d 0000 cf6c 7743 .R....EP$-...lwC 0x0020: 25e5 0900 face dead 1234 9876 face dead %........4.v.... 0x0030: 1234 9876 face dead 1234 9876 face dead .4.v.....4.v.... 0x0040: 1234 9876 face dead 1234 9876 face dead .4.v.....4.v.... 0x0050: 1234
Sure, you'll see a lot of icmp traffic, but odds are most network folks won't considering the pad data in a ping to be payload.
It's like the old ppp over email implementations. Connectivity means data transfer. If some journalist or newbie network admin thinks otherwise, then it's just that much easier.

--
Can You Say Linux? I Knew That You Could.
But that's not a problem for IT managers by Sycraft-fu · 2005-11-13 08:44 · Score: 3, Insightful

If you are doing traffic on our network that I need to know what it is, I'll go to your computer and check. In a managed environment, like a corperation, you don't have privacy of your data. You can encrypt traffic, and should (we fight all the time to get the last few telnet users to switch to SSH) but that's to keep random malicious users out, not your IT staff. Your IT staff can come and ask to see what's happening on your computer and "no" isn't a legit answer, as the computer is company property.

I personally don't see any problems with Darknets that didn't already exist with SSH. If I work in an environment where we don't care what you do, unless it's a problem, then we'll ignore your traffic unless it's excessive. If I work in an environment where we restrict what you can do, then we'll monitor your traffic and if we see unknown encrypted traffic, you'll be asked what it was and your computer will be checked.

So I see Darknets as a problem for the RIAA maybe, and frankly I don't give a shit about them, but not for corperate IT.