Slashdot Mirror
FBI Complains About Wiretapping Difficulties Due To Web Services
c0lo writes with news that the Federal Bureau of Investigation is lamenting the difficulty in executing wiretaps because of "web-based e-mail, social-networking and peer-to-peer services."
"President Barack Obama's administration is debating ways to deal with Web-based services not covered by traditional wiretap laws, including incentives for companies to build in surveillance capabilities, said Valerie Caproni, general counsel at the FBI. Many Internet services are not covered by the Communications Assistance for Law Enforcement Act (CALEA), which requires traditional telecom carriers to allow law enforcement agencies real-time access to communications after a court has issued a wiretap order, she told members of a subcommittee of the US House of Representatives Judiciary Committee. But Caproni told lawmakers she was not asking for expanded CALEA powers. And she stopped short of calling for rules requiring Web-based communication providers to build in so-called back doors allowing law enforcement access to their software, although she said she's optimistic the US government can find incentives for companies to 'have intercept solutions engineered into their systems.'"
Is anything sacred?
The FBI needs to have easy access to everything - to keep up safe. All sites need to provide the FBI with all user data.
Would peer to peer services which offer end to end encryption like Skype be required to re-engineer their software to allow government wiretaps? This could be the end of personal use encryption as we know it.
If I can be modded down for being a troll, can I be modded up for being an orc, or a balrog?
Oh cry me a river!
Why don't we just skip to the part about Thought Police and having mandatory spinal cord antenna?
They're here to serve us, not the other way around. History shows that when you give the FBI increased investigative powers, those powers are used not to prevent the next 9/11 or OKC bombing, but to spy on dangerous subversives as Martin Luther King and John Lennon.
With power should come responsibility, or at least accountability. The FBI has shown neither.
allow me to say this:
"PLEASE! WE'VE BEEN WAITING FOR IT!"
Ok, on a more serious note, how long do you think 'til such a backdoor will be sniffed out and abused by people with even less concern for constitutional rights and fewer qualms to abuse such a privilege?
Think about it for a split second. What qualities would such a backdoor have to have? First, it would have to work with all such providers, every single network, and you may rest assured that it will have to follow some standard and possibly even be accessible with a single set of login credentials. And second, the provider would of course not be allowed to monitor or even log such an access to keep them from possibly noticing such an access (of course, only to make sure that no "inside man" could warn the bad guys).
Can anyone, or everyone, here see the possible value for MUCH worse guys?
We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
Fuck off.
Love, a concerned PRIVATE (in all meanings of the word) citizen.
Maybe these makers don't want to sell their devices on China.
On second tought, they may already doing and have them ready for US consumption now.
If I was an evil politician, I would create and leverage US tax law to provide the economic incentive to those that provide ease-of-wiretapping features into their products. I could sell the bill as a way to further save lives and money as a result of less time and effort spent capturing communications.
But, I'm a nice guy. So I could never run for office.
Life is not for the lazy.
Where it says to "Automatically share my personal information with identity thieves, sex predators, psycho exes, and the government" Yeah, you're gonna want to uncheck that box.
The poor little FBI is having trouble spying on people (court order or not). Let's all show our love for them and help them out!
Filthy, filthy copyrapists!
although she said she's optimistic the US government can find incentives for companies to 'have intercept solutions engineered into their systems.
I wonder if the FBI considers "not facing bankrupting fines and legal harrassment" an incentive...
"she said she's optimistic the US government can find incentives for companies" Dammit, time to open my Yandex.ru e-mail account I guess.
in the UK the cameras can see in to alot of homes and apartments.
I can think of about 84,000 good reasons we don't want to make pushbutton law enforcement any easier than it already is.
Watching people is supposed to be resource intensive, that's what makes sure they only do it when it's absolutely necessary.
Here's an idea, I will build in a police API to tap the web messages BUT it will automatically CC all requests to the EFF, ACLU, and Wikileaks. By using the API they agree to the CC up front.
I'm guessing it will be the world's least used police back door.
Many Internet services are not covered by the Communications Assistance for Law Enforcement Act (CALEA)
They do realise that even more Internet services are not even in the US....right? Or does their jurisdiction actually extend to other countries now?
Silly rabbit
http://en.wikipedia.org/wiki/NSA_warrantless_surveillance_controversy
The NSA has been tasked with the domestic spying on America's own citizens by executive order. While I don't understand how said agency can decipher all the communications that criss-cross American territory on top of all the data that goes through satellites, cable, fiber to foreign destinations on top of all that, is beyond me.
http://insidecharmcity.com/2007/06/25/nsa-power-supply-problems-continue/
Perhaps, this explains all the recent power hits we've been experiencing here in MD lately...
When the fascists at the NSA and FBI started their massive domestic spying program (Echelon, Carnivore, etc), I decided to make their lives harder and run my own mail server. While they can still snoop on the big boys (yahoo, aol, msn, etc), at least email from my end is safe, and if I send emails to non US based mail servers over SSL, theres at least some chance the fascists cant read the traffic.
Lawyers, MBA's, RIAA? A jedi fears not these things!
And here we are seeing a wave of democracy sweeping the Arab world, facilitated in part by these very technologies. At the same time, the U.S. government is positioning itself to prevent those very tools being used against it.
There are still those here who will say that it's hyperbole, but the same tipping point is approaching here. Our real rulers (hint: neither political party, but those behind both) are getting nervous and moving to keep their grip on our society. They have perpetrated the most massive theft in the history of mankind, absconding with trillions of dollars of our money, selling our children into a lifetime of debt servitude while theirs party on; they know it, and we know it, and they're starting to realize that we know it too.
Do what you can, with what you have, where you are.
http://wiki.debian.org/FreedomBox
Inspired by Eben Moglen's vision of a small, cheap and simple computer that serves freedom in the home. We are building a Debian based platform for distributed applications.
Freedom Box is about:
* privacy
* control
* ease of use
* dehierarchicalization
Vision Statement
We live in a world where our use of the network is mediated by organizations that often do not have our best interests at heart. By building software that does not rely on a central service, we can regain control and privacy. By keeping our data in our homes, we gain useful legal protections over it. By giving back power to the users over their networks and machines, we are returning the Internet to its intended peer-to-peer architecture.
In order to bring about the new network order, it is paramount that it is easy to convert to it. The hardware it runs on must be cheap. The software it runs on must be easy to install and administrate by anybody. It must be easy to transition from existing services.
All they need to do is ask China how to do it.
Have they banned curtains yet?
For justice, we must go to Don Corleone
Here's how it works:
1. Identify the individual you want to spy on. ...
2. Identify the web services you want to spy via.
3. Obtain the SSL certificates of the web services.
3. Gag & Order the certificate authorities named in the SSL certs to create the FBI/NSA a new fake trusted cert.
4. Use the unwarranted wire-tap systems already in place to "Man in the Middle" any connections the individual makes to the web services you wish t spy on.
5. Return the fake cert to the individual, and re-encrypt the data to the web service using the real cert.
6. Spy on the individual as much as you like.
7.
8. Oppress!
Note: If the CA is not a US company, then simply use Verisign or other US company to creat the fake certs -- No one checks to see if the cert is actually the one that the domain normally uses...
CAs can make certificates without the domain owner's permissions -- As long as the certificate authorities don't need the domain owner's permission to generate certificates the SECURITY THEATER of SSL will remain intact.
Also Note: FF > Preferences > Advanced > Security Tab > View Certificates > CNNIC ROOT
This is the root certificate that China will use in these types of MITM attacks.
P.S. Remember when a large portion of the Internet was "accidentally" routed through China?
But WTF does it do!?
This is the Government-based peer-to-peer networking in action!
If you don't have anything to hide, why buy curtains?
Fascism begins when the efficiency of the Government becomes more important than the Rights of the People.
And it is always sold the same way.
They want to "protect" you from the "enemy".
So you need to do your part and give up some rights (just for a little while) to make it easier to find the "enemy" hiding among you.
If you aren't supporting their team ... that means you're
a. supporting the "enemy's" team
b. delusional / stupid
c. secretly hate us and really are hoping the "enemy" wins
My companies solution to this was to ship the entire email nightmare over to Google, let them deal with it. In fact, if law enforcement were to REQUIRE we do something anyway I'd think we'd just drop email all together. It's not profitable, we can't charge for it, it's nothing but a headache. So basically law enforcement would just be force ALL email off shore.
Some people need curtains to stop showing us what they look like nekkid. Some things should simply remain a mystery. In regards to the FBI... how can the government simply bribe companies to provide back doors for the FBI? (And if the FBI has one, so do hackers...) Cocksucking lawyers. I hate them all.
It's the Stay-Puft Marshmallow Man.
"If you don't have anything to hide, why buy curtains?"
Exactly. Those with curtains must surely be cretins quite capable of crime. Their criminality must be curtailed. Time for the big scanners, where curtains would be no protection. Don't have it today? Don't worry, it will be here sometime. All this talk should surely be nonsense, but give it a bit of time. There are those who would much prefer it. (Yes, yes, of course: "Peeping Toms" would love it ) But total transparency really means the gov't should be able to see what you're doing, not that you should know what they're doing.
And curtain makers, whether or not they have curtains in their homes, should be sent to gitmo.
rewriting history since 2109
And all the cameras see is a raging alot staring back at them.
Am I supposed to feel happy that I can preserve my privacy or should I feel sad that FBI is reduced to complaining about its own incompetence and asking to be spoon fed?
"The FBI is concerned about about criminals running loose because the agency can't execute a wiretap", Caproni said. "That criminal may be a massive drug dealer, they may be an arms trafficker, they may be a child pornographer or a child molester."
Don't worry, the Muskegon County Prosecutor has got you covered! He's already found one of those pesky child molesters, no wiretap required.
You mean,in spite of the abus....err, empowerment of authority granted by the Patriot Act, they STILL can't connect the G@#d@^&#d dots?
Do I laugh? Do I cry? Do Iaugh until I cry?
Meh, pass me another cold one please. Obscurity theatre is so entertaining these days.....
Good article, thanks for sharing... ;)
Kamagra
Assuming most of you do not run Windows, there is no cause for concern of course.
But there is already a mega-hole backdoor in Windows.
They listen to whatever they want, to whenever they want to.
Between the fact that the laws haven't caught up to the technology and the Patriot Act, they're laughing right in your faces while they're doing it.
And before all you gurus respond with some tech savvy lackluster comment, let me just say;
you may not run Windows, but I guarantee you someone that you love does.
Why won't you allow me to post comments exactly?
Actually, I know of at least one company, IP Fabrics, that creates devices to sell to the FBI/CIA for wiretapping and extracting content from popular sites.
From their website:
My heart bleeds for the poor, defenseless FBI. Truly.
ahhh, didums.
Go get another job then.
I just checked the US Constitution and all the amendments. It is a quick read.
There is nothing in it about the FBI having the right to wiretap peoples communications without a warrant. A few years ago, there were less than 3,000 judge approved wiretaps inside the entire USA. http://www.justice.gov/nsd/foia/reading_room/foia_readingroom.htm
There are 310,000,000 people in the USA. http://www.census.gov/population/www/popclockus.html They are suggesting all that this infrastructure be built to monitor 3,000 people? Only government thinks this way.
I'm sorry that monitoring private communications isn't easy. I'm also happy it isn't.
A servant of public, appointed by representatives of people, selected by people, complains to those representatives of people that the servants working with him/her are not having an easy time SPYING on the public that had had put them in service .....
...
and this is not only legal, but apparently, also 'ethical' and 'normal'.
corporate democracy, youre one of a kind
Read radical news here
Does this mean more IT companies base themselves outside of the US and do the work there where they are not forced to put back doors in? Taking jobs out of American and having the work done in other countries.
http://blog.karit.geek.nz/
"she's optimistic the US government can find incentives for companies to 'have intercept solutions engineered into their systems.'"
What incentives? Like money? Like the US government wants to be able to pay the companies for our privacy and buy it away from us? Like freedom and privacy aren't actually "rights" at all? Just luxuries that can be taken away from us if we don't pay enough or provide other incentives to compete with the government? This is what Penn & Teller call "Bullshit!"
Erm, "That criminal may be a ... an arms trafficker," ?!
Guess who's the largest arms trafficker in the world? Yeah, the US! All facilitated by the Feds.
As for the rest of the rogue's gallery, if you want to argue that preventing those crimes is an absolute value, then you should also be arguing that there be one government "minder" for every citizen.
What, you're merely promoting wiretapping, and not direct government surveillance (minders)? So you're in favor of child molestation?
I'm not a lawyer, but I play one on the Internet. Blog
While they are at it, why don't they force all keyboard manufacturers to include a firmware backdoor that records everything typed ? After all, if you are posting subversive messages, you have to type them first, and the manufacturers are at fault for allowing their products to be used to facilitate terrorism, right ?
Non-Linux Penguins ?
No really, I couldn't feel any more sorry for you. I understand how hard it is not being able to probe through peoples' personal lives and information without consulting them. Stay strong, FBI, we can make it through this together.
When Canada decides to transform USA into its personal powerplant?
Banana republics are so... 20th century. Solar republics will be so much more democratic. (Or at least less volatile. Electricity doesn't stand disruptions in transport.)
No, they can't. It's illegal for cameras to be able to see into people's windows. To that end, they have mechanical interlocks that prevent them being pointed in certain directions, and pre-programmed "blanking areas" that blank out the video feed if they're aimed at certain areas.
Using CCTV to look through people's windows is generally a sacked-first-time-it-happens thing.
No, but they have banned aiming CCTV cameras at people's windows. Slashdot needs a "-1, Just Plain Incorrect" moderation.
It's been 10 minutes since you last successfully posted a comment
Fuck you, slashdot janitors.
The mullahs of the US government have decreed that Allah will be
displeased if they are not allowed to spy on the common people.
Caproni leads the Jihad. And god damn, what a nasty ugly fat dyke she is.
There exist solutions already such as products like Netwitness, full capture and recording of all internet traffic.
But they are again bypassed using VPNs and networks like Tor, so there can never be a 100% solution to this problem. It will always be bypassable.
People who suspect being tapped just use internet cafes, buys p2p vpn services through different countries or uses networks like Tor.
Even if its accurate?
The truth is always correct, despite what people may want you to think.
If people wear towels on their head and they live in a shithole, *then its okay to say that*.
After the court order, they can do pretty much anything they want anyway ( like installing a keylogger, or bug your house ). So other then making it a bit less of a technological hurdle, the 'stakes' are pretty much the same.
Not saying it wont be abused later, but on the surface there isn't a fundamental change proposed.
---- Booth was a patriot ----
It was specifically designed not to have single points of failure and to reroute traffic around obstacles, and now they whine about troubles making a central point of control?
No, but they have banned aiming CCTV cameras at people's windows.
That's even dumber than banning curtains. That can dictate what you can look at now?
For justice, we must go to Don Corleone
the more ( star ) systems will slip through your fingers.
The reason encryption hasn't caught on is because the people you want to talk to don't use it. They don't use it because you don't use it. Having a secure VPN from your house to nowhere isn't going to get you secure facebook or email. For this to catch on you'd need to build it into everyone's home firewall/router with autoswitching between secure and insecure mode based on if both ends have this feature.
It seems to me that a forced crippling of somebody's ability to communicate confidentially would be the essence of a prior restraint. The government can get prior restraint, but only in extremely unusual situations.
OK, so they have a difficult job. That's why we pay them the big bucks (8 billion for FY 2011).
I find it annoying that so much money is spent, but I find that preferable to trampling on civil rights.
What's "dumb" about it? You're not allowed to use CCTV to invade people's privacy. No, you do not have any privacy in the middle of a crowded shopping street.
Nonsense. Unless it's impossible to block the camera, there is no "invasion" of anything. Telling me where I can point is outrageous.
For justice, we must go to Don Corleone
So, do you think it's perfectly okay to stand outside someone's house staring in the window?
If he's on public property, there's no argument. I don't know what you're trying to defend here, but it sounds bogus. If you don't want me to look into your window, you close the damn curtain, put up one way glass, whatever. You don't tell people they must wear a blindfold, or turn off their camera when they walk by. You're being absurd, or just messing around
For justice, we must go to Don Corleone
Blind it with a laser.. hehe.. better than spray painting the lens.
For justice, we must go to Don Corleone
Skype isn't fully open source
Did I miss something? Since when is Skype open source? It works on a lot of platforms, sure (and this is admirable, even if somewhat ineffectual due to how crappy their clients have been for non-mainstream OSes) - but it is certainly not open source.
~/ssh slashdot.org ssh: connect to host slashdot.org port 22: too many beers
because I can't shit in public.
Govt must constitute a panel to rewrite US Constitution and Quran
I stopped offering support services for this very reason. People deserve privacy and Sir Arthur C Clarke told me when he was alive. The world is just not ready for some technology and Einstein was also abused so he stopped helping before things became out of control.
I can hand craft code to suit my needs, remember, why give knowledge to people who cannot responsibly hold it with without corruption or sinister intentions?
All cows eat grass!