Slashdot Mirror

← Back to Stories (view on slashdot.org)

Encrypted Torrents Growing Fast In the UK

Posted by kdawson on from the deeply-inspect-all-you-want dept.

angryphase writes "The British Phonographic Institute (the UK's RIAA) has noticed a significant increase in the amount of encrypted torrents — from 4% of torrent traffic a year ago to 40% today. Whether it follows a trend for hiding suspicious activities or an increased awareness of personal privacy is up for (weak) debate. Either way, this change of attitude is catching the eye of ISPs, music industry officials, and enforcement agencies. Matt Phillips, spokesman for the UK record industry trade association explains, 'Our internet investigations team, internet service providers and the police are well aware of encryption technology: it's been around for a long time and is commonplace in other areas of internet crime. It should come as no surprise that if people think they can hide illegal activity they will attempt to.'"

37 of 432 comments (clear)

  1. Or maybe.... by jnaujok · · Score: 5, Insightful

    Maybe it's because all the more recent clients are supporting encryption by default?

    --
    Life, the Universe, and Everything... in my image.
    1. Re:Or maybe.... by Anonymous Coward · · Score: 0, Insightful

      >Maybe it's because all the more recent clients are supporting encryption by default?

      exactly - especially the latest 'official' bittorent client (the one based on utorrent)

      pls mod parent up

    2. Re:Or maybe.... by Technician · · Score: 5, Insightful

      Maybe it's because all the more recent clients are supporting encryption by default?

      Your snail mail is able to deliver packages in plain brown wrappers. Online the delivery is in clear plastic baggies and carried by many people besides the government post office. In addition, third parties are able to examine your packets. Now that expensive attacks are happening because of the contents of some of these displayed packets to others, the search for security envelopes has began. The mail from an to my bank is not in clear packages. My online packets should have the same expectation of privacy.

      Vendors of the envelopes has noticed the users crying the packages are transparent and the carrier is not providing privacy. Vendors are responding with providing security envelopes in place of the transparent packaging.

      The real world security breaches have shown the need.

      --
      The truth shall set you free!
    3. Re:Or maybe.... by Technician · · Score: 4, Insightful

      I dunno... could have used a car in it somewhere...

      OK.. Here goes. Cars have windows permitting anyone on the street to see anything in your car. When you lock your valuables in the car, it is recommended you lock the laptop, purse, and other valuables in the trunk out of sight. The old packets did not have a private trunk in which to transport valuables. Bad guys could see your valuables. Having an expectation of privacy is the same reason we wear clothes. You may have an ides what someone is concealing in there, but it's none of your business.

      Other things you expect a car to protect to some degree besides the contents of the trunk and glove box, is the code to your garage door and your home address. Government has access to this information, but third parties can't send you settlement letters demanding $5,000 based on the contents they see in your trunk.

      --
      The truth shall set you free!
    4. Re:Or maybe.... by iron-kurton · · Score: 4, Insightful

      Holy crap! Do people really do that? Seriously what ISP needs to install something on your computer in order for it to work? I've always taken the coaxial cable...

      I think you just lost the average user with the words "coaxial cable." Seriously, some people will switch off after the first technical-sounding word -- the length of the conversation thereafter is then proportionate to the amount of money they are willing to spend to get this "internet thingy installed"

      --
      Change is inevitable, except from a vending machine -- Robert C. Gallagher
    5. Re:Or maybe.... by Technician · · Score: 3, Insightful

      Yeah, because I ALWAYS use encrypted torrents to do my banking.

      Nice straw man. Too bad you had to go and knock him down.
      --

      I get other things in plain brown wrappers... What they are is NOYB even if it isn't illegal.

      --
      The truth shall set you free!
  2. Maybe... by Matt867 · · Score: 3, Insightful

    Maybe its because they aren't doing anything illegal yet they are being prosecuted?

    1. Re:Maybe... by jizziknight · · Score: 5, Insightful

      Since when is BitTorrent only used for copyright violation and stealing music? I could be using BitTorrent completely legally, and still have an ISP trying to delay/block/throttle/etc those packets. If I encrypt them, it's harder to do.

      --
      Everything I say is a lie. Except that... and that... and that, and that, and that, and that... and that.
    2. Re:Maybe... by PlasticArmyMan · · Score: 2, Insightful

      Well, you'd be a fool to say that Bittorrent, for the wider populace is used for anything OTHER than copyright violation and 'stealing' music. I can see why they do it.

    3. Re:Maybe... by TheMeuge · · Score: 5, Insightful

      Most guns inside the US are used for crime. That doesn't mean they don't have legitimate uses.

      Really?

      There's over 100 million units of firearms in private hands in the USA. If the majority of them were used for crime, there'd be a lot of crime...
    4. Re:Maybe... by phoenix321 · · Score: 4, Insightful

      It is a given that there are 100 million privately owned small arms in the US of A.
      (It is actually 192 million, including 65 million handguns, ref. Cook PJ, Ludwig J. Guns in America: Results of a comprehensive national survey on firearms ownership and use. Police Foundation. Washington DC. 1996.)
      You assumed that the majority of them used for crime.
      A majority is more than 50 percent.
      50 percent of 100 or 192 million is 50 or 96 million.

      The fact that you can step outside your home without being peppered with lead should make it clear that you're wrong on the majority = crime part.

      And I won't try debating with you about the fact that criminals will always have guns, as they always had. And I will not say that short of orbital bombardment there is only one thing to keep YOU safe from millions of enemy guns: billions of guns in the hands of neighbors that are mentally sane, lawful and courageous. (It's actually sufficient to have them sane and friendly.)

  3. Could someone clarify... by Arathon · · Score: 5, Insightful

    why anyone thinks the encryption will be effective? Since the RIAA (for example) catches torrenters by downloading the file from them in order to prove that they were 'making copyrighted content available', it doesn't really seem to matter whether or not it's encrypted. You're sending the RIAA a file that won't be encrypted on their end....

    1. Re:Could someone clarify... by click2005 · · Score: 5, Insightful

      It seems to be more about stopping Comcast/BT style bandwidth throttling than trying to stay anonymous.

      --
      I am a free slashdotter. I will not be modded, blogged, DRM'd, patented, podcasted or RFID'd. My life is my own.
    2. Re:Could someone clarify... by compro01 · · Score: 4, Insightful

      i don't think that's the purpose.

      the purpose is to make the traffic not recognizable (to a degree) as torrent traffic so it can bypass the mindless traffic shaping of torrent traffic by some ISPs.

      --
      upon the advice of my lawyer, i have no sig at this time
    3. Re:Could someone clarify... by moderatorrater · · Score: 4, Insightful

      So we're locking something and then handing them the keys to those locks in an attempt to keep them from using it in a way that we don't want them to? My how the tables have turned...

      But in all seriousness, it's not hiding the activity from the end users, but from the ISPs that are blocking torrent traffic.

    4. Re:Could someone clarify... by shark72 · · Score: 5, Insightful

      "I think it could be argued that you're sending some data... Its just that their client happens to apply some algo to it that happens to put it together in the style of a MP3/OGG or something else."

      This would be about as useless as a child pornographer arguing that all they did is send JPEGs; it was the client who just happened to put it through a JPEG decompresser.

      The laugh test applies to this one. If you're using a tool to break copyright law -- any tool -- the particulars of the storage mechanism don't mean much.

      --
      Sitting in my day care, the art is decopainted.
    5. Re:Could someone clarify... by Sloppy · · Score: 3, Insightful

      why anyone thinks the encryption will be effective?

      Effective for what? Who gives a shit about pirates? ISPs are interfering with torrents whether copyright infringement is happening or not. If Comcast is going to forge packets that interfere with your Ubuntu download, then you need to have that download happen inside a secured pipe, so that packets from the other end are authenticated.

      And yes, that will help.

      Personally, I think bittorrent is a generally bad idea; http should usually be used instead, so that the ISPs can cache things closer to the downloader. But they're not doing it! Instead of trying to really solve the network load problems in a non-user-hostile way, they're filtering. So the trend toward using crap like bittorrent is going to continue. And to make it reliable, it's going to be encrypted. We're heading toward a situation where everything needs to be encrypted anyway.

      If that makes things harder for the xxAA, oh well, too bad. But like you said, they can just participate in the torrents, and gather info that way.

      --
      As copyright owner of this comment, I authorize everyone to defeat any technological measure which limits access to it.
    6. Re:Could someone clarify... by kripkenstein · · Score: 4, Insightful

      i don't think that's the purpose.

      the purpose is to make the traffic not recognizable (to a degree) as torrent traffic so it can bypass the mindless traffic shaping of torrent traffic by some ISPs. Exactly. People see 'encrypted bittorrent' and they presume it is meant to be hidden from the RIAA. But in fact bittorrent is, and always was, a public protocol: anyone can connect to a tracker, anyone can get the list of peers from the tracker, and anyone can connect to anyone else running that torrent. Everyone in the swarm sees everything else: IPs, what pieces everyone else has, etc. All the **AA need to do is connect to the swarm and download from your IP (at least to incriminate the IP, if not you personally).

      The reason for encryption was to prevent people outside the swarm from easily seeing that certain packets were bittorrent traffic. ISPs wanted to do that to throttle bandwidth. Now, the ISPs can connect to all the torrents and figure out what to block, but that is a hassle, so they mostly don't. In that respect encryption was a success; it made bandwidth throttling much harder and people got faster download speeds. But it has nothing to do with the **AA.

      There have been some attempts at 'private' trackers - registered users only can connect to the tracker. This might be useful in recording upload ratios, but isn't really useful against the **AA, who can register like anyone else. Some sites try to be 'invitation only', and presumably the **AA won't be invited to the party. I am unaware of any large-scale useful network of this sort (but I might be uninformed).

      Another issue here are blocklists, which any filesharer should use: PeerGuardian, SafePeer, lists from BlueTack, etc. These are constantly-updated lists of **AA and other malicious IPs that you can automatically block. This might be a partial solution to hiding a client from the **AA, but an unreliable one. It does, however, improve download speeds, if it blocks anti-p2p agents that attempt to 'poison' swarms.

      In the end, bittorrent was never meant to let people share data covertly. Attempts to make it do so are cumbersome and impractical. Yet, despite this shortcoming for file-sharers, it is still highly popular, simply because it is easy to use and fast, and at this point has basically every type of recent content you could want - movies, TV shows (on the day after, if not the same day), music, etc.
  4. Is it just me? by mcrbids · · Score: 5, Insightful

    ... or is this yet another hit on the use of privacy-protecting encryption?

    I use encryption all day long in a very legal, legitimate form. (ssl/ssh/mcrypt) It's a core part of my operating principles - I don't even allow unencrypted connections to my production systems - EVERYTHING IS SSL ENCRYPTED.

    So it really annoys me when the case is made that (encryption == criminal). Yes it can be used for illegal purposes. So can cars, guns, and tennis rackets. It's not the tool that identifies the crime, it's the crime that identifies the crime.

    --
    I have no problem with your religion until you decide it's reason to deprive others of the truth.
    1. Re:Is it just me? by betterunixthanunix · · Score: 4, Insightful
      I guess you don't go to many banks during the winter. People wear various things into a bank, that would make it difficult to identify them on security cameras, and it really isn't a problem. Claiming that one shouldn't be allowed to wear a ski mask in a bank is:

      1. Arguing against the constitution of the United States, at least as interpreted by the courts.
      2. Blaming ski masks for bank robbery.
      3. Claiming that there is no legitimate reason to be wearing a ski mask, except in the commission of a crime.

      I use encryption for my email, and I decrypt those emails in RAM so that there is no record left on my end. This technique could be used for the following, very serious crimes:

      1. Conspiracy of various kinds.
      2. Planning an electronic bank robbery.
      3. Exchanging child pornography.
      4. Sending designs for weapons to terrorists.

      But, it also has many legitimate uses:

      1. Sending private photographs to a lover
      2. Sending email through a system that is open to a FIA request, such as the email server at my university (yes, you can request a copy of my email from the government, if you so choose).
      3. Sending email that is critical of the Bush administration (in the context of the PATRIOT act and the NSA program, and the known behavior of the FBI and NSA following the 9/11/2001 attacks).
      4. Communicating with people in countries with oppressive regimes, such as China or Burma (also legitimizes the use of steganographic techniques).
      5. Sending confidential information, such as bank account numbers, credit card numbers, social security numbers, copies of birth certificates, patient records, etc.

      And those are just the obvious. Arguing that something should be illegal or otherwise disallowed because it might be used for a criminal purpose, even for serious crimes, is nonsense, unless you have no respect for a person's freedom to wear what they want or have a private life.

      --
      Palm trees and 8
  5. Thank intelligent filtering by lavalyn · · Score: 3, Insightful

    If Comcast is going to disrupt Bittorrent traffic, all users will see benefit from using encrypted Bittorrent, just to keep Comcast's systems from sending the RSTs to them. Even a UK user, talking to an American system. Legitimate traffic or otherwise.

    --
    Doing the Right Thing should not be preempted by making a buck.
  6. Captain obvious moved to the UK? by zappepcs · · Score: 5, Insightful

    Matt Phillips, spokesman for the UK record industry trade association explains, 'Our internet investigations team, internet service providers and the police are well aware of encryption technology: it's been around for a long time and is commonplace in other areas of internet crime. It should come as no surprise that if people think they can hide illegal activity they will attempt to.'" (emphasis mine)

    Why why why why is it automatically assumed that encryption by non-government entities is in actual fact an attempt to cover up illegal activity?

    I believe that in general, western societies have set up laws that generally respect the rights of an individual to whisper a secret in the ear of a friend and not be forced to reveal the message to anyone else. If I choose to encrypt email and torrent files, there is no reason that I should be thought guilty of some crime... fscking idiots.

    It would entertain me greatly for them to find out that these illegal encrypted downloads were in fact, a Linux distribution.
    --
    Support NYCountryLawyer RIAA vs People
    1. Re:Captain obvious moved to the UK? by moderatorrater · · Score: 5, Insightful

      Saying that encrypting traffic is only used to cover up illegal activity is like saying that sealing the envelope before giving it to your postal carrier is only being used to hide illegal activity. In fact, there are laws in the US saying that you can't open a letter that's not yours, so why is it so suspicious suddenly when we demand and enforce the same thing online?

  7. Perhaps... by wattrlz · · Score: 3, Insightful

    They are trying to avoid packet-shaping?

  8. evolution by TrippTDF · · Score: 5, Insightful

    you know how antibiotics have a huge downside, in that the infection can evolve and become resistant? There's a similar downside to the RIAA's tactics with regard to torrents- now that everything is heading towards being encrypted, it's going to create a (somewhat) safe haven for child pornography to skip through undetected. If the traffic can't be monitored at all, then people you really are trafficking something terrible are going to be able to do it more easily.

  9. Libel, anyone? by darthflo · · Score: 3, Insightful

    [...] in other areas of internet crime. It should come as no surprise that if people think they can hide illegal activity they will attempt to.
    I'm not an expert on this kind of stuff, but hasn't the MAFIAA furnished BitTorrent copyright holders and maybe even the interviewed ISP's customers the perfect occasion to take a nice bit of revenge? They realize it's encrypted, they realize they don't have a fucking clue about what's running through the pipes, yet they criminalize it? Free speech is great and all, but this seems like openly stating that thousands of users participate in illegal actions, without any proof.
  10. Not just that... you realize this is a piece... by DaedalusHKX · · Score: 2, Insightful

    Not just that... you realize this is a piece... of a much bigger puzzle.

    They have to get the regular sheeple to clamor for back doors to be put into all encryption software.

    It has little to do with "stolen moozak" or whatever crap they're claiming. That's just to make a legit story.

    "We want to know what you ate for breakfast" is not going to sit so well with the common sheep as "moozak is being stolen, save us, those illegal encryptors are stealing our muzak!!"

    And it will be the MASSES that vote themselves out of this freedom, also... it will not be the few, the intelligent, the strong, the resilient or the self sufficient, to whom these tools are useful.

    PS - I agree on the encryption. My servers accept nothing without it :) And I accept no actual private email without it either...

    --
    " What luck for rulers that men do not think" - Adolf Hitler
  11. Encryption == Illegal Activity by Matt+Perry · · Score: 2, Insightful

    Matt Phillips, spokesman for the UK record industry trade association explains, 'Our internet investigations team, internet service providers and the police are well aware of encryption technology: it's been around for a long time and is commonplace in other areas of internet crime. It should come as no surprise that if people think they can hide illegal activity they will attempt to.'
    So they assume that because someone is using encryption that they must be doing something illegal. This is yet another reason that we need to start encrypting everything by default. It needs to be automatic or easy enough for the average joe or jane to use. Does anyone know the status of general purpose opportunistic encryption software these days?
    --
    Slashdot: Failed Car Analogies. Amateur Lawyering. Anecdote Battles.
  12. Pre-emptively... by Ochu · · Score: 3, Insightful

    I'd just like to point out that "if you've done nothing wrong, you have nothing to hide" does not hold up. Apart from the myriad of things which, while not wrong, any sane person would want to hide, we need to keep it clear in judges minds that hiding something does not mean one was performing illegal activities. The comment by Matt Phillips hints at a worrying application of just that principle, and I can quite easily imagine the BPI or RIAA suing someone who they think was sharing copyrighted material, and using an encrypted torrent (which could contain anything) as evidence of that activity.

  13. Serves them right by iamacat · · Score: 3, Insightful

    Nobody has enough resources to monitor everyone, all the time. Cracking down on public P2P networks resulted in encrypted, invitation-only networks. If the pressure is still on, pretty soon we'll have office "potlucks" where everyone brings their music and movies to swap. Once people get completely pissed off about DRM, they will not mind analog copying with microphones and camcorders to get around it. If nothing else, it is possible to simply exchange movie discs or even portable players without even necessarily breaking the law. The end result is the same though - only one person in 10 will actually pay for the content they are viewing.

    The solution? Unencumbered, reasonably priced, possibly watermarked legal product. Even Radiohead strategy yields 1/3 of the downloaders paying.

  14. The Internet by driftingwalrus · · Score: 5, Insightful

    This reminds me of an old quote,

    "The internet interprets censorship as damage and routes around it."

    Recording Industry associations: You are now being routed around. Congratulations.

    --
    Paul Anderson
    "I drank WHAT?!" -- Socrates
  15. Re:Is encryption private? by shark72 · · Score: 4, Insightful

    "Somebody should create a file sharing program that has the user create a small copyrightable piece of art, and encrypt it along with the data to be transfered. Any attempt to decrypt the data is also (illegally) decrypting your copyrighted art."

    Stuff like that's been tried. I recall somebody writing a script to ROT13 song names in P2P indexes. This was in the days of Kazaa or even the original Napster, if I recall. The reason was the equally bogus claim that undoing the ROT13 violated the DMCA.

    Some time ago I ran a pretty popular site exposing Make Money Fast letters and their writers. A popular claim at the time was that if you called your chain letter a "recipe exchange" or added the words "please add me to your mailing list" when you sent your money, you were actually paying for a service. Like your decryption idea, these served solely as panaceas to make the participant think they were getting one over on the powers that be. That is all.

    Putting it another way: courts have something called "the laugh test" and this would not pass it. A false hope that somehow you can sue a record label for decrypting your artwork might get you some sympathy from the uninformed masses (the same legal geniuses who've marked your post "Insightful"), but will do you not one bit of good when the record company takes your house.

    --
    Sitting in my day care, the art is decopainted.
  16. Re:Won't Work by arevos · · Score: 4, Insightful

    The ISP can still do "man in the middle". The ISP can afford to purchase a crypto key that the typical browser will accept without question. In turn, the ISP can talk to the site (using HTTPS), and then (re)encrypt to the user browser. They can do this in theory. In practice, I suspect they'd have a lot of explaining to do if they did. Performing a man in the middle attack on the channel between a customer and, say, their bank is not going to go down well.
  17. Re:Is encryption private? by oyenstikker · · Score: 2, Insightful

    The laughable part is not the strength of the encryption, but that he is assuming that you are breaking the law and trying to trick somebody else into breaking a law to catch you.

    Why he is assuming that I am breaking the law, I do not know.

    --
    The masses are the crack whores of religion.
  18. Encryption increases SPEED, does NOT lower risk by Anonymous Coward · · Score: 5, Insightful

    > The real world security breaches have shown the need.

    I don't know if it's "security breaches" per se. After all, encrypting the torrent does NOTHING to prevent anyone who knows that that torrent contains copyrighted material from finding your IP from the tracker and going after you legally.

    The ONLY thing it does is bypass some ISP-level throttling aimed at BitTorrent traffic. In other words, the ONLY reason people use it is because it makes the torrents go faster, rather than being stuck at low speeds.

    That said, more people are probably doing it because it's on by default. And the reason it's on by default in more clients is because it's faster.

    So yeah, the spokesman here is an idiot. Encrypted torrents will NOT help you evade responsibility for sharing copyrighted materials. Not even a little bit. This guy is a dumbass.

  19. Re:Won't Work by Anonymous Coward · · Score: 1, Insightful

    Illegal might stop them.

    Unethical most certainly won't.

  20. Re:Or maybe NOT.... by lgw · · Score: 2, Insightful

    Well, let's run down the "Four Horsemen of the Internet Apocalypse" checklist:

    Encryption benefits Terrorists: check.
    Encryption benefits Pedophiles: check.
    Encryption benefits Drug Dealers: check.
    Encryption benefits Hackers (music thieves!): check.

    Yup, we're doomed. Sadly, it seems that most voters will respond irrationally to having one of those four buttons pushed.

    --
    Socialism: a lie told by totalitarians and believed by fools.