Slashdot Mirror
Kaspersky Calls For 'Internet Interpol'
angry tapir writes "With cybercrime now the second largest criminal activity in the world, measures such as the creation of an 'Internet Interpol' and better cooperation between international law enforcement agencies are needed if criminals are to be curtailed in the future, Kaspersky Labs founder and security expert Eugene Kaspersky has argued. He said, 'We were talking about that 10 years ago and almost nothing has happened. Sooner or later we will have one. I am also talking about Internet passports and having an online ID. Some countries are introducing this idea, so maybe in 15 years we will all have it.'"
The consequences will never be the same.
"I use a Mac because I'm just better than you are."
I really wonder how someone who sells protection would really benefits from having a more secure internet...
we all lose privacy so that the fucktards can pretend they're a little bit 'safer' from their own idiocy.
fuck 'internet passports' and 'online ids'. it's time for citizens to quit being chickenshits or eventually everything you do will be tracked back to this. this is different than the past because electronic surveillance completely erodes the natural privacy one has in the physical world. I don't want my every click, every download, every page hit recorded for some bored cop to puruse 20 years after the fact so it can be judged on current standards...all to meet a quota.
Didn't the FBI recently admit that almost 50% of their electronic crime capabilities are spent rooting around in child porn?
So, if Internet crime is the largest category, and half of it is child porn?...
wtf?!
Someone is lying.
Think there is an agenda here?
Won't someone please think of the children?
This could all have been mooted if in the original design of IPv4 it weren't made so easy to spoof. That same lackadaisical attitude spread to mail paths and DNS.
The fact is, in order to get data from point A to point B there is a necessary uniqueness to the identification of A and B. If that had been concretized rather than left flapping in the wind, while still allowing for mobility, then your packets would be your packets with 100% certainty.
I really haven't looked at IPv6 hard enough to know if it's less spoofable. But I hope so. I really want a button in my email client labelled "Spam" that brings up a full trace to the person who initiated the message, determines what spambot they were running, then correlates with the other bots to triangulate to the control node, and shuts it down with prejudice, preferably by injecting 50 kV into its keyboard.
what are you talking about? The "internet ID" and "internet passport" become items of intense personal value that must be protected. The stakes will be even higher to protect your papers under a "papers, please." internet.
Can you be Even More Awesome?!
Where's the 'idiot' tag?
Well, it seems natural that someone who makes money from selling snake oil would welcome more security theater.
You will, undoubtedly lead the effort to implement this Online ID, and provide your services for a very modest sum....
On behalf of the Internet...please go be fruitful and multiply. Not in those words.
Instead of continually beating our heads on securing systems and people, let's remove the profit motive. If we fundamentally change how financial transactions are executed, security will becomes less of a problem.
Get the requirements for security out of Windows, and put it into trusted bank-issued smart cards. Separate authentication from authorization from identification. Build system that humans can manually verify without a Windows box being the portal through which this verification happens.
John
Wow, I'm afraid I have to conclude this guys is possibly a little too full of himself.
If we ever get anywhere near a "single secure cyberspace", we're pretty much all screwed.
Governments will use this to stifle your privacy, your rights, and every other thing they can think of. They'll make sure they monitor everything you do, and ensure you don't do anything they don't approve of.
Anybody who thinks the solution to cybercrime is to more or less lock down the internet like this ... well, I think they deserve a series of well placed kicks to the groin. I can only see this as more or less fascism -- though I'm sure I'll be accused of hyperbole.
Lost at C:>. Found at C.
I understand his concern, especially after Kaspersky son's kidnapping, but this would erode online privacy to say the least.
'described himself as an “optimistic paranoid” when it came to online security'
I guess an optimistic paranoid is hoping that the next security technology is better than the one before, but never really trusting anything or anyone.
He who knows best knows how little he knows. - Thomas Jefferson
The first atrocities happen because of a having ID and Passports on the net?
If you do not belive that something bad could happen because of real ids on the net think about the recent protests in egypt and libya. Do you think that thouse dictators would not use a real id to locate protesters and make them disaper?
I wish some people would think of what the worst thing that could happen when they come up with stuff like this and not stick there head in the sand and say that it would never happen. That is was and ever will be an excuse when bad things DO happen that they didn't think it would ever happen.
That's what interpol's job is supposed to do in the first place in all forms. Coordinate police dept's and services around the world. The real problem isn't so much that police don't talk, it's that the governments don't give them the resources to deal with internet related crime. In Canada, financial crimes under $200k are done on a case by case basis, by local dept's or by the provincial police, if there's enough officers available to take them off traditional crimes. Financial crimes over $250k are looked at only by the RCMP, and the RCMP will not take any case under $200k due to the lack of manpower and resources. And financial crimes under $40k are pretty much written off unless there are officers available. That's not even touching on the training.
It's a sad state, but the problem is three fold. First people don't think you need more police. The average citizen to cop ratio is between 100:1 and 750:1, though in some parts of the US it's 4000:1. Second, while a lot of younger cops(that's under 40 as the average age here is around 45), see this as an issue but not a pressing one(too much traditional crime, and staff sgt's who have too few resources, or too few inspectors for the job and are on other cases). Third, politics and bureaucratic BS. There are either weak laws, no laws, a mishmash of laws, or politicians and chiefs stuck in 30-40 year old thinking.
Om, nomnomnom...
We were talking about that 10 years ago and almost nothing has happened. Sooner or later we will have one.
Nothing has happened because we the fucking people don't want it to happen. We the Geeks responsible for implementing these BS control-freak fantasies for Big Brother don't want it to happen. We the citizens of a planet rapidly coming to recognize the meaninglessness of national borders don't want our rights to depend on those available in the most restrictive theocratic dictatorship on the planet.
Nothing will happen because, for all its flaws, we designed the internet to survive government attempts to control it.
"With cybercrime now the second largest criminal activity in the world"
I call bullshit. Anything that follows is irrelevant.
My detailed jargon filled response to this idea is "BURN IN HELL KASPERSKY!!!"
people will be publishing their IDs and passwords for everybody, and streaming encoded information through whoever's ID they like... and maybe we could even try that ontop of Facebook.
I'm not fond of the online ID thing, but botnets are a huge problem and the only way we'll ever be able to do anything about them is to have better international cooperation between law enforcement agencies.
It is my view that botnets represent the single most serious threat to a healthy and stable Internet. They also cost society billions of dollars in DDoS prevention and spam filtering technology and man hours.
Ban the use of credit cards for online purchases and replace then with some kind of digital currency, something like is used in Second Life. You transfer funds into this account and use it for online transactions and then transfer funds back out of it into your bank account.
"With cybercrime now the second largest criminal activity in the world, measures such as the creation of an 'Internet Interpol'
We don't need an 'Internet Interpol', what we need is computers that aren't so easily hacked ..
With cybercrime now the second largest criminal activity in the world
Seriously? Way to use vague, scary words to say absolutely nothing.
better cooperation between international law enforcement agencies are needed if criminals are to be curtailed
Why do I get the feeling that large American and European corporations will be the ones to benefit most from this "international law enforcement"?
Anytime Yevgeny Kaspersky profers his advice on how internet security should work, it should be remembered that he is a former KGB officer.
This is really allow about making it easier for States to control what people do online.
While I would prefer an internet without any regulations, it is very far if ever will be possible. Until then it's better to have an international regulatory board because the current practice of suing and convicting certain businesses or people for things done on the internet in specific countries is ridiculous. Like, someone starts a website then gets sued in some random state in America because one of its users posted a link of something thats illegal there ad then loses his domain.
Don't get me wrong, Kaspersky is an asshole, 'internet passports' would defeat the purpose of INTERnet itself, and mandatory online IDs would make everything traceable what someone does, any dictator's wet dream.
I'm just saying that local regulations also fragment the internet to an extent.
haven't we heard this before from that cryptocommunist?
their logo will be a cat
Bingo. Someone manages to get ahold of someone's "internet credentials" can go to town, and the owner of the creds would be nailed, both civilly and criminally for this.
Remember, we have people who are unable to tell the difference between an IP address and a person. Think about the havoc someone can reach with forged credentials.
Of course, this would make the AV company fear campaigns be able to go up a notch by telling people the consequences of someone stealing their "internet passport", and how consumers need their CPU-hogging, OS-crashing, I/O intercepting, expensive [1] crap, when in reality, something like AdBlock is what actually will get the job done.
[1]: $30 to $50 per computer per year. There is just no real point to paying that, unless you have a business, and if you have a business, you should use ForeFront or SEP which doesn't care about subscriptions.
There's already an interpol, and they know how to use the internet.
Why would ICE & DHS give up their god given rights to pull anything they wanted off the net?
This sounds like there's way too much room for possible checks and balances...
...we bring the Information into the Government Age!
I8-D
Last time I checked, the majority of the criminal activity on the internet was perpetrated by Governments... what good would creating an international agency to patrol criminal activity when it would have to report to the criminals themselves?
This amounts to effectively assaulting free speech by turning the entire internet into a thoroughly badge-checked walled garden. He's a corporate type with a security spiel to sell, that's clear enough, but that alone is not justification to turn the world into a big corporate environment.
In short, the guy is painfully short-sighted for "internet scale" and beyond. Too bad the rest, from google and all the rest to just about all governments, especially the big ones, suffer from the same ailment, so it still seems this guy is making sense.
He's not. Just nailing people to their (one, official) "identity" with every step they take is neither sufficient nor necessary. As such, it's a privacy problem waiting to become so entrenched as to become unfixable. Meaning we need to do far better, and do it right quick.
The key is not to try and stamp out badness. The key is to preserve goodness by making it robust against badness. And you don't do that by "hardening" it with millstones and concrete shoes.
Turn on yer brain already, Kaspersky. So far, you're not part of the solution, and I fear you never will be. Prove me wrong please.
Hmm... maybe there should be a telephone Interpol too.
... that I can certainly guarantee;
Is a system so secure and able to identify you, that it CANNOT allow for crimes to be committed.
Reasonable security is good. But we want a system that NEEDS the will of the governed. If people are treated fairly -- and there is a system in place where Identity can MANUALLY be ascertained, than real security is through the GOOD WILL of the people.
Also, you need people who react, rather than waiting for some authority to come by -- but that's another discussion.
>>"ad space available -- low rates!!!"
* citation needed
Person/Company with a stake in something wants the public to pay attention to them.
Seriously /. stop being an ad-whore.
We already have a structure in place for law enforcement across borders we just need for them to have the tools they need to work in "cyberspace"
I just wonder why Interpol does not have
1 a facebook group
2 a set of twitter accounts
3 a region in SecondLife
im sure that the companies involved would be more than happy to certify that these accounts are actually held by the REAL agents.
Any person using FTFY or editing my postings agrees to a US$50.00 charge
It's not intuitively obvious how to use it though. Examine the email headers and do a little poking around to find the nearest police station to the Internet cafe in Lagos that the 419 scam was sent from. Then, email the police station and tell them that you will gladly give them half of the two thousand dollars that was picked up from Western Union 3 hours ago if they can retrieve the money for you, but alas, all you have is the cafe's street address. Oh, and you also have the IP address and the time, here they are, the cafe owner can use them to identify who has the stolen two thousand dollars, unless it was the cafe owner themselves who took it. Thank you and god bless.
Lady Gaga commented that cybercrime also is one of her concerns. There you go, that will pull in a few more search-engine hits.
"The greatest lesson in life is to know that even fools are right sometimes" - Winston Churchill
Online Passports? People will just proxy around these or find some new exploit to work around it. In the mean time, governments will be able to track the "average" citizens activities and suppress people more.
I choose an OPEN internet. Not a closed internet (walled garden). To think, this guy actually calls himself a Russian. Oh, that's right, Russia is a communist country that sedates protesters with needles. It all makes sense now.
ten points if you uninstalled kaspersky av after reading this!
just let me punch the guy who says "you may have won" on a thousand and one annoying popup ads
Remember kids, if you're not paying for the service, YOU ARE THE PRODUCT THAT IS BEING SOLD.
"I am also talking about Internet passports and having an online ID."
In China, a significant number of sites require you to use your identity card number to register. It's not very advanced, but obviously the desire is there for this, just the technology isn't there at present. This really isn't the sort of thing that needs to be encouraged.
Say, some large entity ( which can't easily be sued out of existence ) keeps log of all IP addresses, and if some IP addresses are dispensing problems on the web, their activites are noted, kinda like the credit reporting agencies keep track of all of us.
A web application, much like a PING, could be distributed which would query this repository. Hit it with a packet containing the IP being queried, and it would return with either a clean bill-of-health, or a pointer to news of that IP's misbehaviour if that IP has a record of dispensing problems.
Its not a guarantee of safety, but it would give one a heads-up is that IP or subnet has a history of leaving messes on the net.
"Prove all things; hold fast that which is good." [KJV: I Thessalonians 5:21]
If I hadn't already stopped using Kaspersky I would do on this news.
only outlaws will have anonymity.
is the person making their commercials.
Be seeing you...