Slashdot Mirror

← Back to Stories (view on slashdot.org)

How To Stop the Next WikiLeaks

Posted by samzenpus on from the plugging-the-holes dept.

Hugh Pickens writes "Eli Lake reports that the U.S.'s 16 intelligence agencies are using a program called SureView that makes it easier to spy on the spies and catch whistleblowers early in the act. SureView is a type of auditing software that specializes in 'behavior-based internal monitoring' that monitors the intelligence officer's computer activity. If the officer acts like a potential leaker, sending an encrypted email or using an unregistered thumb drive, the analyst might push a button and watch a screen video of the officer's last hour of work. Once a case is made that a leak might be imminent, it is checkmate: the agent is thwarted. 'Had SureView been on Bradley Manning's machine, no one would know who Bradley Manning is today,' says Ryan Szedelo, manager for Raytheon's SureView software. The intelligence community has had auditing software for years. SureView came on the market in 2002. But the programs were buggy and often prone to false positives, alerting a network administrator too often to routine behavior. 'The technology has gotten substantially better in the last year,' says Jeffrey Harris, a former head of the National Reconnaissance Office. 'The problem with audit files was it took an army of people to understand them. Now we have rule-driven systems and expert systems that help us reason through the data.'"

19 of 191 comments (clear)

  1. Stay classy! by lisaparratt · · Score: 5, Insightful

    'Had SureView been on Bradley Manning's machine, no one would know who Bradley Manning is today,'

    They say that like it's a good thing...

    1. Re:Stay classy! by lisaparratt · · Score: 2

      I read the rather more sinister implication into the statement that he would have been permanently "disappeared".

      When it comes to leaks, it's all a matter of perspective, one that Yes Minister got down pat: "That's another of those irregular verbs, isn't it? I give confidential press briefings; you leak; he's being charged under section 2A of the Official Secrets Act."

    2. Re:Stay classy! by beh · · Score: 2

      From the article:

      the analyst might push a button and watch a screen video of the officer's last hour of work

      Hmmm, so it would need 'cleverness' like a closed shell window:

      $ sleep 3600 ; cp /path/to/secret.file /mnt/thumbdrive

      Then wait half an hour, insert your thumbdrive to be mounted to the proper location; open a completely harmless (but non-work document) from it, say - an invitation to a garden party, and print it -- all the while leaving the thumbdrive mounted, so that the sleep-job can write the document in the background after in the next hour...

      Then ensure the thumbdrive is only ejected once more than an hour has passed and the file has been written.

      Nothing untoward will ever have been on your screen in the half hour before the thumb-drive access. The worst they'll see on screen is you opening a private garden party invitation to print it at the office...

      Stupid system...

    3. Re:Stay classy! by mjr167 · · Score: 4, Insightful

      Manning knew the consequences of leaking classified information. They make it very clear to you when you get access. It's not just a form you sign, but an hour long meeting where they go into explicit details about duties, responsibilities, and consequences. They then repeat this training on an annual basis. He may have believed he wouldn't get caught, but he had no reason to not know the seriousness of what getting caught would mean.

    4. Re:Stay classy! by kilfarsnar · · Score: 3, Interesting

      From a security perspective, yes it is a good thing. But at the same time the level of secrecy and classification has become absurd. It is undermining our democracy because the citizenry cannot find out some basic stuff that their government is doing. It is (or should be) common knowledge that the three letter agencies (and a bunch you've never heard of) spy on Americans on an ongoing basis. We can't find out just what they are doing because it is classified, and if we try to sue we have no standing because we can't prove we were spied upon because it's classified. That is absurd and Kafkaesque. These days leakers are the only way we find out about the shenanigans our agencies pull.

      On a side note "senior white house officials speaking on the condition of anonymity" leak classified material all the time. But they are never prosecuted. I wonder why.

      --
      "What the American public doesn't know is what makes them the American public." -Ray Zalinsky (Tommy Boy)
    5. Re:Stay classy! by PopeRatzo · · Score: 2

      Please respond with your full name, address, date of birth, SSN, bank details and credit and debit card details, a summary of your medical conditions, the themes of your last five masturbatory fantasies, and what you had for breakfast.

      Do you understand things that are done individually and things that are done as a group?

      Government/economy is what we do as a group. My name, address, etc are what I do individually.

      Maybe if we didn't have so many secrets in the first we wouldn't need so many in the second.

      So let me give you this slight adjustment to the statement you found so perturbative:

      Nothing we do as a group should be kept secret from members of the group.

      If you were in a car with three friends, wouldn't you want to know that the other three were planning to knock over a 7/11 and kill a cop?

      --
      You are welcome on my lawn.
  2. Recursion by GhigoRenzulli · · Score: 4, Funny

    If a spy spies a spy who spies, who spies the spy who spies the spy?

    In italian is funnier because both "spy" and "spies" translate into "spia".

    Se una spia spia una spia che spia, chi spia la spia che spia la spia?

  3. The real purpose by dkleinsc · · Score: 4, Insightful

    'Had SureView been on Bradley Manning's machine, no one would know who Bradley Manning is today,' says Ryan Szedelo, manager for Raytheon's SureView software.

    And nobody would have evidence of the serious crimes he told the world about. That's what they're really worried about.

    --
    I am officially gone from /. Long live http://www.soylentnews.com/
    1. Re:The real purpose by should_be_linear · · Score: 2

      And Gaddafi would be probably just fine right now, in his palace. Thats awesome technology!

      --
      839*929
  4. Another solution by Kidbro · · Score: 4, Insightful

    Or, you could stop committing and covering up crimes and routinely classify any and all information regardless if it's needed or not. Then nobody would feel the need to leak the things that are rightfully secret.

    Just a thought.

    --
    May we live long and die out
  5. I think Dr Seuss said it best by Rogerborg · · Score: 4, Informative

    Oh, the jobs people work at!
    Out west, near Hawtch-Hawtch,
    there's a Hawtch-Hawtcher Bee-Watcher.
    His job is to watch...
    is to keep both his eyes on the lazy town bee.
    A bee that is watched will work harder, you see.

    Well... he watched and he watched.
    But, in spite of his watch,
    that bee didn't work any harder. Not Mawtch.

    So somebody said,
    "Our old-bee-watching man
    just isn't bee-watching as hard as he can.
    He ought to be watched by another Hawtch-Hawtcher!
    The thing that we need
    is a Bee-Watcher-Watcher!"

    WELL...

    The Bee-Watcher-Watcher watched the Bee-Watcher.
    He didn't watch well. So another Hawtch-Hawtcher
    had to come in as a Watch-Watcher-Watcher!
    And today all the Hawtchers who live in Hawtch-Hawtch
    are watching on Watch-Watcher-Watchering-Watch,
    Watch-Watching the Watcher who's watching the bee.
    You're not a Hawtch-Watcher. You're lucky, you see!

    --
    If you were blocking sigs, you wouldn't have to read this.
  6. If you don't want the world to know... by vpaul · · Score: 2

    ...that you are a murderer, stop murdering.

  7. Re:Coming soon by thesh0ck · · Score: 2

    Most of corporate america has had this for about 10 years. I found out my old boss was using similar software like this to spy on us one day when he called me into his office with screen shots from my computer showing me looking at a tech news site and asking why I wasny working for those 5 minutes. I said, "well I am entitled 1 hour of break time per day. I never use this break time, eat lunch while working and answeing phone to be more efficient so I figured 5 minutes of looking at a job related news website would be okay." He shut up but I was horrified that hewas so paranoid. He only had 3 employees. He then installed cameras everywhere too so he could not only see what you were doing on your computer but what you were doing at your computer. This was a small comapny and we had this.. imagine what large companies have.

  8. Re:What many people know is no secret by Dcnjoe60 · · Score: 2

    Don't give millions of government employees access to confidential documents. The Manning documents were likely already in the possession of all major powers.

    That may very well be true. However, that isn't what he is really in trouble about. He's in trouble because he was instrumental in the documents being released to the public !

  9. Re:What if... by durrr · · Score: 3, Informative

    Use a VGA/DVI interception hardware device to save to external storage. People will be stuck thinking in the box so you'll have no problems whatsoever as long as you don't save or move any data "in-system".

    Please don't forget to mention how SureView is awsome and ensures 100% data security while at it to keep the blinders on.

  10. Don't even need wikileaks to see righ through this by roman_mir · · Score: 2

    At the age when US president openly murders US citizens on a hunch and starts whatever war he wants, like a Boss (like a King) and the rest of the government doesn't stop him in his tracks.

    At the age when US Supreme Court doesn't see anything wrong with the federal government going way beyond its authority on pretty much every issue, every law, every regulation, every tax.

    At the age when Congress and Senate bail out banks and companies and vote to increase debt limit without ever considering the consequences.

    At the age when Federal Reserve is counterfeiting currency left right and center.

    At the age of fascism/corporatism on the top and Marxism/communism on the bottom.

    What do you need wikileaks for? Are you blind?

    --

    Of-course they want the specifics of their secrets to remain secrets, they are now your rulers, not your servants.

    --
    You can't handle the truth.
  11. How to stop the next wikileaks? by dbIII · · Score: 3, Funny

    Three Swedish girls next time.
    And two guys willing to throw everything away from the Bank of America leak.

  12. Re:What if... by ElectricTurtle · · Score: 3, Interesting

    I am a federal contractor and we're required to encrypt attachments that contain 'sensitive' information. (Which isn't to say 'classified' since that's not supposed to get tossed around in the first place.) If this were rolled out in the agency I work with, everybody and their dog would be setting off this 'alarm' every hour of every day.

    Sounds like bullshit to me.

    --
    I support the Slashcott and will not be reading or commenting from 2/10/14 to 2/17/14. Beta is steaming pile of dog shit
  13. Re:What if... by RivenAleem · · Score: 2

    Care to explain why you have so many blind people on your staff? Is it some kind of security measure?