Slashdot Mirror

← Back to Stories (view on slashdot.org)

US Appeals Court Upholds Suspect's Right To Refuse Decryption

Posted by Soulskill on from the still-vulnerable-to-$5-wrench-decryption dept.

An anonymous reader writes "The U.S. 11th Circuit Court of Appeals has found that forcing a suspect to decrypt his hard drive when the government did not already know what it contained would violate his 5th Amendment rights. According to Orin Kerr of the Volohk Conspiracy, 'the court's analysis (PDF) isn't inconsistent with Boucher and Fricosu, the two district court cases on 5th Amendment limits on decryption. In both of those prior cases, the district courts merely held on the facts of the case that the testimony was a foregone conclusion.'"

89 of 358 comments (clear)

  1. Only when they don't already know? by Anonymous Coward · · Score: 3, Interesting

    Why only if the government doesn't already know what it contains? Does that mean that they can force you when they already know what it contains?

    That doesn't make sense to me.

    1. Re:Only when they don't already know? by Anonymous Coward · · Score: 5, Informative

      Yes. If the government knows your have child porn on your computer, then they can get a warrant to force decryption.

      It's EXACTLY the same thing if they know you have a dead body in your garage they can get a warrant to force you to unlock the garage.

    2. Re:Only when they don't already know? by Anonymous Coward · · Score: 4, Informative

      The EFF Covers things pretty well.

      http://www.youtube.com/watch?v=gohLZVAJAiI

      Watch that.

    3. Re:Only when they don't already know? by uganson · · Score: 4, Insightful

      So the government just have to say: we know that you harddrive contains X, and they force you to decrypt it.

      Of course, when it is decrypted and it turns out that it didn't contain X, they will just say... sorry!

    4. Re:Only when they don't already know? by Nidi62 · · Score: 2

      Why only if the government doesn't already know what it contains? Does that mean that they can force you when they already know what it contains?

      That doesn't make sense to me.

      I think the point of the ruling is to avoid fishing expeditions. If the authorities have probable cause or a reason to believe there is information relevant to an investigation on your hard drive, then a warrant would allow them to compel you to decrypt it. But they can't just force you to decrypt a hard drive without any evidence of a crime having been committed.

      --
      The only thing necessary for evil to triumph is for it to be pitted against a slightly greater evil
    5. Re:Only when they don't already know? by Anonymous Coward · · Score: 5, Funny

      So the government just have to say: we know that you harddrive contains X, and they force you to decrypt it.

      Of course, when it is decrypted and it turns out that it didn't contain X, they will just say... sorry!

      Hogwash. No way they're going to say sorry.

    6. Re:Only when they don't already know? by AGMW · · Score: 5, Insightful

      Yes. If the government knows your have child porn on your computer, then they can get a warrant to force decryption.

      If they know, that implies they can prove it, and if they can prove it they don't need to decrypt it!

      --
      Eclectic beats from Leeds, UK
      handmadehands.co.uk
    7. Re:Only when they don't already know? by somarilnos · · Score: 2

      Same as with any search warrant, they have to establish probable cause to search or seize property. If they don't know what it contains, then they don't have probable cause to search it.

    8. Re:Only when they don't already know? by Kjella · · Score: 5, Informative

      They can't just "say it". The other case was quite exceptional, the suspect did voluntarily show the decrypted disc to the customs officer, the customs officer found kiddie porn but as the laptop was powered down it wouldn't open again without a password. So they had proof he could access it, testimony that they'd actually observed it and a chain of evidence that the contents had not changed since then. That's a whole different level of knowing than just "knowing" they're involved in something illegal.

      --
      Live today, because you never know what tomorrow brings
    9. Re:Only when they don't already know? by lordmetroid · · Score: 2

      Some locks simply does not have keys. They may try to force me but they will be unsuccessful.

    10. Re:Only when they don't already know? by therealkevinkretz · · Score: 2

      Also, you have a much lower (nonexistent?) expectation of privacy when crossing the border than you do otherwise.

    11. Re:Only when they don't already know? by Lumpy · · Score: 5, Interesting

      Sounds great, I'll support that as soon as they put a penalty for the law enforcement being wrong.

      This is the problem, they CAN go on fishing expeditions without any recourse. They can smash down a door and kill the family dog on accident and the family does not get all damages covered, they get told "sucks to be you"

      As soon as I get to sue the Cops that did the deed and the city department for all damages and legal costs I'll support that warrants are legitimate.

      --
      Do not look at laser with remaining good eye.
    12. Re:Only when they don't already know? by Anonymous Coward · · Score: 3, Insightful

      To use the GP's analogy, if your garage smells like rotting corpse, a judge will issue a warrant forcing you to unlock your garage door. That does not imply the police (or judge) knows you've been summoning Cthulhu.

      Similarly, if your name/handle/URLID comes up in a money laundering probe*, that might be probable cause to force decryption even if it hasn't been proven that you've been using that particular drive. In any sane jurisdiction, any evidence uncovered during such a probe can not be used to file unrelated charges.

      * or any other terrorist-like act that may or may not involve minors

    13. Re:Only when they don't already know? by obijuanvaldez · · Score: 5, Insightful

      An excellent point, but not relevant here. However, in the United States, searches can be with a warrant issued "upon probable cause, supported by Oath or affirmation, and particularly describing the place to be searched, and the persons or things to be seized." Allegations can be supported by Oath, e.g. several friends and family members say they saw child porn on your laptop. Allegations can be supported by affirmation, e.g. they set up a sting operation whereby they do, in fact, know that at one time a computer in your house had downloaded child porn. But being very certain that it was downloaded onto a machine in the house just isn't the same as knowing on what machine and by whom. It also isn't the same thing as knowing it is still there. Finally, the burden of proof you mention isn't required until any subsequent trial.

    14. Re:Only when they don't already know? by DarkOx · · Score: 2, Insightful

      That depends on how specific you need to be.

      We "know" you have money hidden in that off shore account. We know you have your pgp private key on your hard disk. We need you decrypt the hard disk so we can decrypt the message from the bank we intercepted using the pgp key.

      They know the key is there, they don't know what the key is; so yes they need you to decrypt it. I think this is actually a pretty reasonable ruling. It treats an encrypted hard disk just like we treat a safe in the physical world.

      The government can compel you to open it If they can name something specif they are looking for inside and show that its reasonably likely to be there. They can't do it just because. If they don't have any evidence to show your computer was used in the crime you are being charged with and there is likely very specific evidence they expect find on it they can't make you decrypt it just to go fishing.

      --
      Repeal the 17th Amendment TODAY! Also Please Read http://www.gnu.org/philosophy/right-to-read.html
    15. Re:Only when they don't already know? by realityimpaired · · Score: 2

      They may be able to prove you viewed child porn, by having used a honey pot, and tracking your IP address/etc.. That is enough to get a warrant to search your computer for evidence of wrongdoing, where they will find the proof that it was actually you. If all they have is logs from a honey pot, then you can still argue that you have an open wifi and it was a drive-by hacker who committed the crime.

      In other words, they may not know the exact content of your hard drive, but they may know enough to get a warrant to search.

    16. Re:Only when they don't already know? by Coopjust · · Score: 2
      Also in Boucher's case they were able to get specific, and in Boucher's case, he only used a container, so files with names suggesting CP were there, and the defendant voluntarily decrypted them so they could be viewed.

      The ICE agent examined the computer and saw a file labeled “2yo getting raped during diaper change,” but was unable to open it. After the suspect navigated to the encrypted portion of the hard drive, the ICE agent located and examined several videos or images that appeared to be child pornography. Id. The district court concluded that the “foregone conclusion” doctrine applied under those facts because any testimonial value derived from the act of production was already known to the Government and therefore added nothing to its case

      The circumstances are different here, hence why a foregone conclusion was not found.

    17. Re:Only when they don't already know? by Hatta · · Score: 4, Insightful

      Except that an encrypted hard disk is not just like a safe in the physical world.

      --
      Give me Classic Slashdot or give me death!
    18. Re:Only when they don't already know? by Kjella · · Score: 5, Informative

      Actually this is a double smackdown. They hold that

      1) The act of decrypting would be testimonial in proving your control over the encrypted container.
      2) Even if the decryption wasn't testimonial, compelling you to produce a part of the chain of evidence is also prohibited by the 5th amendment.

      This is pretty much a full victory that your encrypted contents are immune from warrants, expect new keylogger laws shortly though... And it still needs to stand in the US Supreme Court before it applies to the whole US, but the ruling seems sound.

      --
      Live today, because you never know what tomorrow brings
    19. Re:Only when they don't already know? by dbet · · Score: 2

      No, they don't need solid proof, only evidence. An officer saying "I saw it before the shut off the computer" is evidence. If that convinces a judge, he gets a warrant.

      Of course, this does very little in the way of actually forcing you to do anything. If you don't open your door for a warrant, the police can break it down. If you "forget" your password, I have no idea what will happen.

    20. Re:Only when they don't already know? by DarkOx · · Score: 5, Insightful

      How is different? Really explain that one to me!

      *Its a storage unit for information; lots of people use safe's for that
      *Its designed to keep others not its owner out, exactly what the encryption is doing
      *It needs a key or combination to open it; you need a key to decrypt

      They seem pretty damn similar to me. The Constitutions spells out my rights to "personal papers and effects". I am normally a pretty strict constructionist but I think its reasonable to character as a persons electronic documents as "papers" or if you don't want to do that than as "effects" and I really do think the same rules for how an when the government may take possession of them should be applied!

      --
      Repeal the 17th Amendment TODAY! Also Please Read http://www.gnu.org/philosophy/right-to-read.html
    21. Re:Only when they don't already know? by rickb928 · · Score: 5, Insightful

      I don't agree, first because we can no longer reasonably assume the government is always truthful in its allegations and statements.

      I know that legally the government enjoys the presumption of trust, but this is as close to self-incrimination as it can get.

      It also doesn't answer the question of what happens if, during their examination of the decrypted drive, they 'discover' other information that could lead to other charges. At least in the example of the rotting smell from the garage, if it turns out to be your dog, do they have the right to dig up the foundation to try and find a human body also? Or would the goverment then have to ask for a new warrant? In the cse of data, would they be compelled to ask for a new warrant it they 'happen' to notice evidence of unrelated crimes.

      Actually the real question for me is still a Fifth Amendment one. If they drag you into court and ask you about the rotting corpose in the garage, you can still sit there mute and refuse to answer, and there may be penalties for that, but you cannot so easily be compelled to incriminate yourself.

      Decrypting your data is a different thing, and it is virtually impossible for the government to claim they can look ONLY for the data they seek, and ignore all else. It's another thing to say they are looking in the garage for a corpse, and be able to avoid looking in the trunk of car parked on the street, despite walking by it repeatedly as they swarm over the garage.

      Sorry, but I think we need much more protections. My phone has enough information on it to give law enforcement access to things they should need more than one warrant for, and discovery they should not be able to make while searching for something else.

      --
      deleting the extra space after periods so i can stay relevant, yeah.
    22. Re:Only when they don't already know? by betterunixthanunix · · Score: 2

      Forensic teams can pry a trunk open if they need to, just like they can brute force your passphrase (probably using clues about possible passphrases that they gathered in your home). The problem with requiring defendants to assist the prosecution in evidence gathering is that you are requiring defendants to work against their own defense. Worse still, a defendant can be punished for failing to work against the defense.

      If the government has a copy of a letter you sent, and it is destroyed in a fire, do you think they should be able to force you to reproduce that letter for them? Failing to copy a disc image is a failure to follow the DOJ's own recommendations on evidence gathering -- if the police do not even follow their own guidelines, why are we even talking about having defendants help correct their mistakes?

      --
      Palm trees and 8
    23. Re:Only when they don't already know? by Anonymous Coward · · Score: 5, Insightful

      To use the GP's analogy, if your garage smells like rotting corpse, a judge will issue a warrant forcing you to unlock your garage door.

      No, the judge will issue a warrant allowing the police to break in if you don't unlock the door - an important distinction. Despite the warrant, If you can't find the key to the garage door, no judge would throw you in jail for that.

    24. Re:Only when they don't already know? by medcalf · · Score: 4, Funny

      While I admit that having troops quartered in your house might, in fact, result in them making unreasonable searches and seizures, I suspect you should reread the Bill of Rights.

      --
      -- Two men say they're Jesus. One of them must be wrong. - Dire Straits
    25. Re:Only when they don't already know? by demonlapin · · Score: 3, Interesting

      As I understand it, the primary distinction is that giving the government the key to a locked door in your home can be compelled, because it's a locked door in your home - it's entirely reasonable to expect you to have control of that door. But forcing you to give the government the combination to a safe is forcing your testimony, as it's only in your mind, not a physical object, and thus can't be required. (The law rapidly becomes murky as hell to me once you get beyond these statements, and IANAL, so I won't say more.)

    26. Re:Only when they don't already know? by Anonymous Coward · · Score: 5, Insightful

      The one major difference I can think of is that decryption requires a transformation of the data. By decrypting the data you've demonstrated the knowledge of how to perform that transformation. Opening a safe does not require transforming data, simply allowing physical access to it. If you had hard copy encrypted, obfuscated, or ciphered data within your safe, would the court be able to compel you to decrypt that?

    27. Re:Only when they don't already know? by rilian4 · · Score: 3, Insightful

      It's EXACTLY the same thing if they know you have a dead body in your garage they can get a warrant to force you to unlock the garage.

      No it isn't. To continue your analogy of a dead body, they can get a warrant that allows them to search your garage. If you don't open it for them, they then can break in and conduct their search. To apply this to the laptop scenario, the government indeed had a search warrant for the laptop and it was turned over by the defendant. She, in no way, can be compelled to unlock it or do anything else to it but in retrospect, the government would have the right to break into it. In trying to force the defendant to open it, the government has stated that they can't or won't break into it for fear of damaging possible evidence. That's their problem, not the defendant's problem.

      [IANAL] I agree w/ the appeals court's decision here. Forcing the defendant to unlock and/or decrypt her laptop would be forcing her to provide evidence against herself thus violating her 5th amendment rights.

      --

      ...quicker, easier, more seductive the darkside is...but more powerful, it is not.
    28. Re:Only when they don't already know? by rilian4 · · Score: 5, Insightful

      I don't agree, first because we can no longer reasonably assume the government is always truthful in its allegations and statements.

      The constitution was written because the founders assumed government could not be trusted with power. This is why government must *prove* a case against a free citizen beyond reasonable doubt. You assume the government is wrong until they prove otherwise. If you ever assume government is right, you're in trouble.

      --

      ...quicker, easier, more seductive the darkside is...but more powerful, it is not.
    29. Re:Only when they don't already know? by EllisDees · · Score: 5, Insightful

      It's different because you can also think of encryption like a secret language that only you can decipher. If you wrote down all of your incriminating information in this secret language, there is no way the government could compel you to translate it for them since doing so would incriminate you. Sure, we can make analogies all day, but when we come right down to it, an encrypted document is a lot more like a secret language than a safe.

      --
      -- Give me ambiguity or give me something else!
    30. Re:Only when they don't already know? by the+eric+conspiracy · · Score: 5, Insightful

      The reason is that any safe can be physically forced. This makes access inevitable. The combination only prevents property damage.

      That is not the case with electronic encryption.

    31. Re:Only when they don't already know? by StikyPad · · Score: 4, Insightful

      What if your safe contains a piece of paper with what appear to be random markings. Does the government have the right to assert that you "decode" the paper? What if it really *is* random markings?

      A safe either contains something, or it does not, and that can be rather easily verified by looking at the contents. The same cannot be said for either the paper described above, or for a hard drive filled with noise and/or encrypted data.

      --
      https://www.eff.org/https-everywhere
    32. Re:Only when they don't already know? by sohmc · · Score: 3, Insightful

      There are two problems with this analogy: Doors can be picked and destroyed. Picking a lock or destroying a door would not destroy the evidence/property that the door was protecting.

      A better -- but still not perfect -- analogy is a safe (as another user pointed out earlier). Assume a perfectly unbreakable safe, the government would need you to provide the combination to the safe in order to gain access to the documents. IANAL, but telling the government a combination is generally not something that they can use against you. The government would have to prove that the safe belonged to you and only you through some other method.

      An encryption key is slightly different as the passphrase could be "I have a ponzi scheme and the contents of this safe prove it". I would assume that the government could not use this phrase against you. But they sure can use the contents of the decrypted files.

      All cynicism aside, we as a People need to find a way to allow the government to prosecute real criminals but also protect John Q. Citizen. I think the compromise that the police know that the drive contains specific information (e.g. they saw a specific kiddy porn picture) and then forcing the suspect to provide the decryption key is a good one. However, requiring a decryption key as a condition of me flying, driving, or doing anything else would be an intrusion.

      --
      We don't live in Shouldland.
    33. Re:Only when they don't already know? by sohmc · · Score: 4, Insightful

      The only thing a honey pot would prove is that your computer accessed child porn. Proving you viewed it is different.

      There was a case (specifics escape me) where some guy hacked a wi-fi network and made it look like his neighbor was viewing child porn and making threats to political officials. The police originally had the same mentality: your computer, and therefore you, view child porn. Only after his company conducted their own investigation did they prove that he didn't. Note that I said company, not the police.

      With Trojans, worms, and other malware, I would think this is an area that needs legal work: proving that an actual person accessed something illegal and not just a computer attached to an IP address.

      --
      We don't live in Shouldland.
    34. Re:Only when they don't already know? by shentino · · Score: 2

      Unlike a real physical safe, though, you can't crack it with brute force.

      If you lose the key to a real safe, you can always get a locksmith to pick the lock, and as a last resort, good old oxy acetylene cutting torches can open it.

      Which is exactly what happens when the owner "loses" the key.

      No such analog exists with encryption.

    35. Re:Only when they don't already know? by Jessified · · Score: 5, Interesting

      The key is in your mind, and you have to make words to give it to others. It's not entirely the same.

      But let's assume you can be compelled, whether they know what's in the container or not. I have been trying to think about ways to get around this. From an academic point of view of course :P

      What if the pass key itself was incriminating (i.e. "I killed a guy in 1994 and his body is under the bridge.")? Could you plead the 5th? Might be a bit of a risk. (I mean...killing is bad.)

      Truecrypt allows the plausible deniability with the drive in a drive. Give them the wrong code and it opens a second container with something more innocuous in it. For those who are actually afraid of giving in (to torture? desperation?) the under duress password could have the function of changing the real password to 500 random characters, thereby making it permanently inaccessible to anyone.

      Another idea is to have a daily or weekly maintenance password. That is, you are required to type in a password once a day or once a week, and if you don't, the passkey changes to some random 500 characters and is permanently inaccessible. If your stuff is seized or you are arrested, all you have to do is sit back and relax. While I am sure it would be a problem for you to go around actively destroying evidence, I'm curious to see if you get in trouble for this. First of all, you aren't destroying evidence per se, rather it is being rendered inaccessible (automatically I might add). Second, while you can't actively destroy evidence, can you get in trouble for not actively preserving it for the authorities?

    36. Re:Only when they don't already know? by rahvin112 · · Score: 5, Insightful

      You and others are dancing around trying to poke holes in the 5th amendment. The spirit of the 5th amendment is to prevent the government from compelling you to help them prosecute you. The founders talked extensively about how it was immoral to require someone to help the government put them in jail. Providing encryption keys is helping the government prosecute you. In fact I'd argue the combination or key to a safe does exactly the same thing and the court rulings that allow the government to compel cooperation in opening safes also violates the spirit of the 5th.

      This is only an issue because Judges go out of their way to violate the constitution when they think it should. As a result there is a case history in the US that providing the key or combination to a safe doesn't violate the 5th. Those rulings completely violate the spirit of the 5th even though they found weasel logic to get around a fixed interpretation of the words of the 5th. Just because this stupidity exists in case law isn't justification to piss on the 5th some more with a similar ruling on encryption.

    37. Re:Only when they don't already know? by Reverand+Dave · · Score: 5, Interesting

      All cynicism aside, we as a People need to find a way to allow the government to prosecute real criminals but also protect John Q. Citizen.

      In all seriousness, as soon as the government starts making a distinction between real criminals and John Q. Citizen we can start letting our guards down on this but until then we should always err on the side of less power and intrusion.

      --
      I got here through a series of tubes
    38. Re:Only when they don't already know? by arth1 · · Score: 5, Insightful

      Oaths are also religious acts, and there would be 1st amendment concerns with forcing people to take an oath if they were, for example, an atheist. Just a fun fact.

      Its 2012 - it's common enough to not be a "fun fact" anymore, just reality.
      The last time I was in a court a few years ago, I was signaled to put my hand on a bible, raise the other and answer "do you swear to ...". I put my hand on my chest and said "I affirm", and this didn't raise any eyebrows. It's common enough, and hopefully soon, the religious oath will be separated from government and no longer be given preferential/default treatment.

      If it were up to me, any testimony given by someone who professes to believe in supernatural beings by taking a religious oath should be treated as suspect; they've already demonstrated their willingness to put hearsay first.

    39. Re:Only when they don't already know? by Runaway1956 · · Score: 3, Insightful

      What is reasonable? If it's locked in my mind, you can't force it out of me. The decryption key is locked in my mind. My thoughts are my thoughts. If the hard disk doesn't work without "plugging it in" to my mind, you're shit out of luck.

      You KNOW that I have top secret state secrets on my hard drive? You better prove it with real police work. I'm not incriminating myself.

      You KNOW that I have industrial espionage documents? Again - you better prove it, 'cause I'm not GIVING you the evidence.

      You KNOW that I have child porn on my machine? Well - you're fucked, because there isn't. You're on a fishing expedition, and I'm not biting.

      You KNOW that I've visited chat sites that promote (terrorism, rebellion, insurrection, whatever)? Well, it's up to you to prove it, because it's your JOB to investigate. It's not my job to incriminate myself.

      Bottom line is, if the only place you can get evidence against me, is from my own mind, then you are pissing into the wind.

      --
      "Windows is like the faint smell of piss in a subway: it's there, and there's nothing you can do about it." - Charlie Br
    40. Re:Only when they don't already know? by onyxruby · · Score: 2

      The case you cited.

    41. Re:Only when they don't already know? by Runaway1956 · · Score: 2

      Very similar. Very very similar. But, even very, very, very, VERY similar is not "exactly the same".

      The cops can get a plasma torch to get into my safe if all other methods of gaining entry fail. I don't HAVE to open it for them.

      Let the cops use a plasma torch on my hard drive then. As you say, it's "exactly the same".

      Alright, I'll clue you in here. The encrypted hard drive is an extension of my mind. Only my mind can unlock it. My mind is not subject to search. The cops can question me, but I don't have to answer any questions. Talk to my lawyer.

      --
      "Windows is like the faint smell of piss in a subway: it's there, and there's nothing you can do about it." - Charlie Br
    42. Re:Only when they don't already know? by Lumpy · · Score: 2

      "HOWEVER, a cop who kicks in the door without a warrant and finds nothing becomes personally (and his agency, collectively) responsible for damages, including punitive damages."

      Nope. Cops are indemnified all the time. They can KILL someone during a high speed chase and can not be sued by the victims relatives. IT's a bullshit law that the feds and most states put in place to protect police from being responsible for their actions. This is outside their "good ol boy" network of the cops covering things up for each other. Cops protect other Cops above all else.

      --
      Do not look at laser with remaining good eye.
    43. Re:Only when they don't already know? by Oxford_Comma_Lover · · Score: 2

      But is your encryption key really protecting the testimonial contents of your mind? Or the physical evidence on your computer? One can definitely argue this issue either way, legitimately.

      --
      -- IANAL, this isn't legal advice, and definitely isn't legal advice for you. Also, Squee!
    44. Re:Only when they don't already know? by MozeeToby · · Score: 4, Insightful

      Imagine that instead of a garage is a 10,000 lb, ultra high security safe. The kind where opening it by force is more than likely to destroy the contents. They will absolutely subpoena you for the combination to that safe and will absolutely hold you in contempt if you refuse to give it or if you claim that you can't remember it. Especially if they have evidence that you opened the safe on a regular basis (which is the kind of thing a good computer forensics team might be able to show).

    45. Re:Only when they don't already know? by hairyfeet · · Score: 5, Informative

      You are so close to where the true scariness is about this yet so far. What is truly scary is that with an obstruction charge you have now a situation where you have to prove a negative or get life without a trial! Is there a single file anywhere in your possession you no longer know the password for? All it takes is for some government goon to say "Give us the password" and when you say "I don't remember it" BAM, you get to rot because you have no way of "proving" what you actually do and don't remember.

      Got a copy of truecrypt somewhere? Even if you don't have it installed some goon can walk up to a judge and say 'Here is a copy of truecrypt we found on one of his discs. Since this software is used to hide data we believe the suspect has used it to hide illegal activities" and then when you tell the judge 'I don't have a hidden volume" thanks to obstruction you can rot because again how do you "prove" what knowledge is or isn't in your brain? Hell I have NO doubt that I have encrypted files I don't know the passwords to simply because i've played with everything from .RAR's built in encryption to truecrypt to just about every thing ever highlighted on /. and since I was just throwing random crap like text and pictures in them before trying out password crackers so needless to say I didn't give a shit enough to write the codes down and since i have 3Tb worth of space I've not been the greatest at hunting for and deleting old crap.

      In the end what makes this so scary is with this they have the perfect catch 22, either you produce some evidence they can stick you with or if you say you can't remember unless you can somehow PROVE that you don't remember, which as pointed out is pretty much impossible, well they can then throw you in a hole and forget where the key is. With crimes IRL they can simply go around you with you cooperating. They can cut open the safe, kick open the door, etc, but with this unless you are using some sort of government approved crypto where the state has a master key you are screwed.

      --
      ACs don't waste your time replying, your posts are never seen by me.
    46. Re:Only when they don't already know? by blueg3 · · Score: 3, Insightful

      The spirit of the 5th amendment is to prevent the government from compelling you to help them prosecute you.

      This is where you and many Constitutional scholars disagree. The spirit of the 5th Amendment is to prevent you from having to give actual testimony against yourself. Prior to this, people were often forced to confess and to bear witness against themselves in court.

      There are well-established legal situations in which you do, in fact, have to help the government prosecute you, in the broad sense. If they subpoena information, you are legally required to provide it, even if it's damning evidence.

      The founders talked extensively about how it was immoral to require someone to help the government put them in jail.

      Out of curiosity, where?

    47. Re:Only when they don't already know? by __aajgon4133 · · Score: 4, Interesting

      I've been a court reporter for a few years now. I'm in court pretty much all day, every day.

      Our judge is better than most. We certainly don't have a bible in the courtroom and every witness is asked "Do you swear or affirm under penalties for perjury that the testimony you are about to give..." before testifying. I'd say one in twenty people specify that they specifically affirm even though the question is deliberately phrased so that they don't have to specify. I like those people.

      If it were up to me, any testimony given by someone who professes to believe in supernatural beings by taking a religious oath should be treated as suspect; they've already demonstrated their willingness to put hearsay first.

      No argument there.

    48. Re:Only when they don't already know? by RandCraw · · Score: 2

      Actually, breaking into a strong safe exactly like breaking strong encryption. Both will require greater-than-average expenditures of time and money to crack, but given enough resources, both are possible.

      If the state chooses not to expend the resources, that doesn't change the role of the defendant. It only makes it more likely that the prosecutors will whine to the judge about the unfairness of it all, and the judge will then throw the defendant's ass in jail until s/he capitulates and opens up the safe or removes the encryption.

      The relevance of the 5th amendment to encryption seems to be, what evidence is necessary to justify the search of your computer? If 1) contraband or your acquisition of contraband has been observed, and 2) containers that *might* contain contraband are observed in your possession, then you're screwed. If 1 but not 2, this ruling says you're OK. If 2 but not 1, then you're OK as long as you wait out the imprisonment for contempt because you should eventually win your appeal of the search warrant since it lacked probable cause.

      So the moral of the story is: make sure you hide your encrypted containers.

    49. Re:Only when they don't already know? by DarwinSurvivor · · Score: 2

      That's not how it works. Hidden encrypted partitions don't make it impossible to tell that anything is encrypted, they make it impossible (theoretically) to tell if the encrypted partition has a SECOND encrypted partition INSIDE it. It's like having a safe with a hidden safe in one of the walls that only opens if you use a different combination on the main door.

  2. Re:oh noes, a scumbag is going to jail by Anonymous Coward · · Score: 5, Insightful

    No self-respecting tyrant would try to attack your rights without an excellent strawman. In your example, the scumbag is the strawman.

  3. How can they force you to remember something? by backslashdot · · Score: 5, Funny

    Seriously, cause my own memory really sucks, it would be nice if i could make myself remember things. How do i waterboard myself?

  4. Did the submitter not read the article...? by omega6 · · Score: 4, Informative

    /. Headline: US Appeals Court Upholds Suspect's Right To Refuse Decryption Linked Headline: Ruling Stands: Defendant Must Decrypt Laptop

    1. Re:Did the submitter not read the article...? by Anonymous Coward · · Score: 5, Informative

      I think they just linked the articles confusingly.
      The first link is the 2nd Circuit Court of Appeals on Fricosu, which is a different case still ongoing.
      The second link is the 11th Circuit Court of Appeals for another case where they now decided that forcing him to decrypt his hard drive would violate his 5th Amendment rights.

  5. But how do you know if you know? by rebelwarlock · · Score: 4, Insightful

    Let's say, hypothetically, John Doe gets brought up on child pornography possession charges. He has one computer in his home, and the cops are reasonably sure that said porn was accessed and stored at that physical location only. They order him to decrypt his hard drive, because they know it has evidence of his illegal porn habits. He replies, "No it doesn't. It has other stuff. Stuff you don't know about. You can't see it."

    Now, they could say that they know for certain that he's a lying sack of crap and force him to decrypt it anyway. No child porn evidence, but he's be embezzling from his company, according to what they find. Now what?

    1. Re:But how do you know if you know? by Anonymous Coward · · Score: 3, Informative

      Let's say, hypothetically, John Doe gets brought up on child pornography possession charges. He has one computer in his home, and the cops are reasonably sure that said porn was accessed and stored at that physical location only. They order him to decrypt his hard drive, because they know it has evidence of his illegal porn habits. He replies, "No it doesn't. It has other stuff. Stuff you don't know about. You can't see it." Now, they could say that they know for certain that he's a lying sack of crap and force him to decrypt it anyway. No child porn evidence, but he's be embezzling from his company, according to what they find. Now what?

      Fruit of the poisonous tree, that evidence would be inadmissible.

      This is first year law school stuff...

    2. Re:But how do you know if you know? by betterunixthanunix · · Score: 5, Insightful

      Except that the cops believing someone is guilty is not the same as the cops actually knowing that a hard drive contains evidence. If all we cared about was whether or not the cops believed someone to be guilty, we would not even bother holding trials.

      --
      Palm trees and 8
    3. Re:But how do you know if you know? by Hatta · · Score: 4, Informative

      In the perfect world, that means that anything they find outside of that scope is inadmissible in a court of law, and, that if they investigate further solely based on the information found there, anything they find is inadmissible. Colloquially, it's called "Fruit of the poisonous tree"

      Of course, we don't live in a perfect world, and that's not what "fruit of the poisonous tree" means at all. "Fruit of the poisonous tree" only applies to evidence that was obtained illegally. If the search was performed legally, anything a cop sees incident to that search, even if it's outside the scope of the warrant, is admissible.

      If a cop illegally searches your house for weapons, and finds drugs, that's not admissible. If he gets a warrant to search your house for weapons, and finds drugs, that's admissible. If he searches your house on exigent circumstances(e.g. he claims he saw a suspect flee towards your property), and he finds drugs, that's also admissible.

      --
      Give me Classic Slashdot or give me death!
    4. Re:But how do you know if you know? by Hatta · · Score: 2

      We can't tell the difference between the cops "knowing" and the cops "believing". All we really know is that the cops asserted something. If they want us to believe it, it's their burden to produce proof. Forcing someone to provide incriminating testimony on the word of the police is blatantly unconstitutional.

      --
      Give me Classic Slashdot or give me death!
  6. Really? I mean really? by Xylaan · · Score: 5, Informative

    The first link is to a completely different case. Similar story, except that one ruled that the defendant must decrypt their laptop and was heard by the 2nd Circuit. The second link refers to the 11lth Circuit case.

  7. New Miranda Warning by mcwop · · Score: 5, Insightful

    You have the right to remain silent. You have the right to remain encrypted. Anything you say, do, or decrypt can and will be held against you in a court of law. You have the right to speak to an attorney. If you cannot afford an attorney, one will be appointed for you. Do you understand these rights as they have been read to you?

    --

    "I don't think it's selfish, to eat defenseless shellfish." -NOFX

  8. Re:Foregone conclusion? by betterunixthanunix · · Score: 2

    https://en.wikipedia.org/wiki/In_re_Boucher

    --
    Palm trees and 8
  9. Re:Really? I mean really? by Cornwallis · · Score: 2

    Oh rubbish! There is an excellent description of the "behind the scenes" technical detail that goes into /. editorial management here.

  10. Re:What if you honestly forgot? by Svartalf · · Score: 3, Informative

    No... You can get a Writ of Habeas Corpus at some threshold. People keep claiming that they can hold you indefinitely under contempt- which isn't wholly true as this violates the Fifth Amendment.

    --
    I am not merely a "consumer" or a "taxpayer". I am a Citizen of the State of Texas
  11. Unenforceable laws by JSBiff · · Score: 2

    It seems to me that the courts generally frown on "unenforceable laws". In this case, if the government can't decrypt your hard drive without your cooperation, they can't really "force" you to reveal it. They could try to torture you for it, but that's, at least presently, illegal. They could throw you in jail, but if you know that the penalty for refusing to cooperate is less than the penalty for whatever crime your data might provide proof of, then the rational thing is just to take the penalty for refusing to cooperate.

    So, fundamentally, unenforceable.

    1. Re:Unenforceable laws by betterunixthanunix · · Score: 3, Informative

      They could throw you in jail, but if you know that the penalty for refusing to cooperate is less than the penalty for whatever crime your data might provide proof of

      You might not know that. The current record for longest time served for contempt of court is H. Beatty Chadwick, who spent 14 years in prison for failing to surrender money his wife claimed he was hiding during a divorce case. He could not have been imprisoned at all had he "cooperated," which in this case meant producing money that he did not have. Now, suppose you are accused of possession of child pornography, and you refuse to decrypt; if convicted, you might spend 5 years in prison, but you might be held indefinitely for failing to decrypt -- it is up to a judge to decide whether or not you have been held long enough. How do you even make a decision in that situation?

      Now, deniable encryption systems might help somewhat in these cases, because in the United States the prosecution would have to prove that there is a second secret key that you failed to produce, which in a good system should be a hard thing to prove. Unfortunately, this could also mean being held in contempt if the police claim that they saw incriminating evidence on your computer, so clearly the passphrase you provided is not the one they are looking for.

      --
      Palm trees and 8
    2. Re:Unenforceable laws by ShooterNeo · · Score: 2

      I was quite curious about the Beatty Chadwick case, so I looked it up. Actually, while the headlines say he had to produce the money, that isn't quite true : he also would refuse to sign documents needed to actually investigate where the money was. Had he cooperated with the effort to find the money, and no funds could be found, he would have been released much sooner or not jailed at all. Most likely, he does have access to the money somehow, and he felt that giving up his life's fortune of severald million dollars (plus 14 years of interest) was not something he wanted to do. Not that he has enough lifespan left to spend all that money : I think he endured 14 years of prison just to stick it to his ex wife.

    3. Re:Unenforceable laws by Kjella · · Score: 2

      Now, suppose you are accused of possession of child pornography, and you refuse to decrypt; if convicted, you might spend 5 years in prison, but you might be held indefinitely for failing to decrypt -- it is up to a judge to decide whether or not you have been held long enough.

      Actually that's exactly what happened in this case. He tried to invoke the 5th, was denied, continued to refuse and was held in contempt of court. The last lines of the PDF:

      The refusal was justified, and the district court erred in adjudging him in civil contempt. The district court's judgment is accordingly REVERSED.

      --
      Live today, because you never know what tomorrow brings
  12. Re:oh noes, a scumbag is going to jail by therealkevinkretz · · Score: 4, Insightful

    Her rights don't depend on you being more or less annoyed at what she's alleged to have done.

    That what governments have always done - relied on the ignorance of the populace to usurp the rights of the unpopular to establish a precedent that's eventually used against others.

  13. Go Truecrypt!!!!! by Pepebuho · · Score: 5, Informative

    From the Opinion:
    "But random characters are not files; because the TrueCrypt program displays random characters if there are files and if there is empty space, we simply do not know what, if anything, was hidden based on the facts before us. It is not enough for the Government to argue that the encrypted drives are capable of storing vast amounts of data, some of which may be incriminating. In short, the Government physically possesses the media devices, but it does not know what, if anything, is held on the encrypted drives."

    1. Re:Go Truecrypt!!!!! by gatkinso · · Score: 2, Funny

      You realize that TrueCrypt is a honeypot, right?

      --
      I am very small, utmostly microscopic.
  14. What I want to know by medcalf · · Score: 4, Interesting

    What encryption product was used? It sounds like it is doing its job.

    --
    -- Two men say they're Jesus. One of them must be wrong. - Dire Straits
  15. Re:What if you honestly forgot? by betterunixthanunix · · Score: 4, Informative

    Unfortunately, you might be held for many years before they finally stop harassing you:

    https://en.wikipedia.org/wiki/H._Beatty_Chadwick

    14 years in prison because his wife claimed he was hiding money which the judge demanded that he produce for the court. In a child pornography case, you might spend more time in prison for refusing to decrypt your hard drive than you would have spent if you had been convicted.

    --
    Palm trees and 8
  16. 11th Circuit Court of Appeals by wcrowe · · Score: 5, Interesting

    What I find heartening is that this is the 11th Circuit Court (Alabama, Georgia, Florida) -- i.e., not a court known for "wacky" decisions. If it were the 9th Circuit I would be more worried that this fight isn't over.

    I particularly liked how the court used the government's own analogy of a combination to a safe to make their ruling. The ruling explained that the Truecrypt software shows random characters even if nothing exists on the hard drive, so if the hard drive is like a safe -- as the government contends -- then it can be full of incriminating evidence, or completely empty. There is no way for the government to know without opening the safe. Therefore the government cannot use the argument that the evidence was a foregone conclusion. Additionally, the court (thankfully) acknowledged that just because the defendant owns a safe, is not an indication that any criminal activity is going on. The ruling both turned the government's analogy on its head, and revealed that the court has a fairly good understanding of the technology.

     

    --
    Proverbs 21:19
  17. Re:Foregone conclusion? by Hatta · · Score: 3, Insightful

    I'm aware of that. It's a really bad decision. If the officer's testimony that the documents existed was sufficient to prove that the documents existed, the jury should be satisfied without seeing the documents. If the testimony of the officers was insufficient to convince the jury that the documents existed, then there is no foregone conclusion at all.

    The decision is facially nonsensical. The judge fails not just at applying the constitution, but basic logic.

    --
    Give me Classic Slashdot or give me death!
  18. Bomb password? by AbRASiON · · Score: 3, Insightful

    Is there an encryption system available where if you put in a specifically bad password it damages the data forever?
    I have no interest in kiddie porn but I sure as shit don't agree with people forcing me to decrypt.

    1. Re:Bomb password? by dbet · · Score: 4, Informative

      No idea, but Truecrypt can have 2 passwords, one which unlocks a "fake" set of data, but still hides your real one. Due to the way data is stored while encrypted, there's no way to tell the difference between a second encrypted section and noise.

    2. Re:Bomb password? by swillden · · Score: 4, Informative

      Is there an encryption system available where if you put in a specifically bad password it damages the data forever?

      It doesn't matter, for two reasons.

      First, you can't do it, because standard procedure in cases like this is to duplicate the drive contents and do all analysis on the duplicate. If your system destroyed the data when a "duress" password is entered, it would only be destroying a copy.

      Second, if you could do it you still probably wouldn't want to, because then you'd be prosecuted for destruction of evidence. I suppose if the penalty for destroying evidence is much lower than the penalty for the crime the contents of the drive would prove, that might be a good idea. But it still seems like you'd be better off just not saying anything.

      --
      Note to ACs: I usually delete AC replies without reading them. If you want to talk to me, log in.
    3. Re:Bomb password? by Hemi+Roid · · Score: 2

      First, you can't do it, because standard procedure in cases like this is to duplicate the drive contents and do all analysis on the duplicate. If your system destroyed the data when a "duress" password is entered, it would only be destroying a copy.

      Yes but then they are in violation of Copyright...

  19. Re:Not secure enough by CitizenJohnJohn · · Score: 2

    I'd have got away with it if it wasn't for you pesky kids.

  20. Re:What if you honestly forgot? by Hatta · · Score: 5, Informative

    Wrong. "civil" or "criminal" refers to the type of contempt, not the type of court case during which the contempt occured. Civil contempt is coercive (forward looking), criminal contempt is punative (for something that already occured). Coercing someone to produce evidence is exactly the kind of thing civil contempt is used for.

    Under civil contempt the victim is said to "hold the keys to his own cage", which is used as an excuse to deprive him of any sort of due process whatsoever. It's barbaric and should be abolished.

    --
    Give me Classic Slashdot or give me death!
  21. Simple: the data no longer exists by Anonymous Coward · · Score: 5, Interesting

    Posting AC, but there's one simple difference:

    With a safe, if it's locked, the contents still exist.

    If I encrypt a disk, the original data quite literally no longer exists. The encrypted disk is not a "container" for my data -- it is a completely different set of data.

    The original data can only be recreated on cue if I supply my encryption passphrase. Therefore, by supplying the passphrase I am creating or assisting in the creation of evidence against me. I'm pretty sure the Fifth Amendment has something to say about being forced to do that.

    1. Re:Simple: the data no longer exists by preaction · · Score: 3, Insightful

      That's splitting a technical (or technological) hair. Encryption cannot be a perfect safety net with which to break the law with impunity, so I accept this court's compromise. Remember what the lower courts wanted: Your encrypted data is theirs and they will use it all to prosecute you for everything.

    2. Re:Simple: the data no longer exists by Runaway1956 · · Score: 2

      That is what lawyers are for - splitting hairs. If it weren't for hair splitting, we wouldn't have any more than ten or fifteen percent of the lawyers who are milking us today.

      --
      "Windows is like the faint smell of piss in a subway: it's there, and there's nothing you can do about it." - Charlie Br
    3. Re:Simple: the data no longer exists by maxwells_deamon · · Score: 2

      If I call someone on the phone and just say "Go ahead, do it now", then I hang up. The person I called, later dies during a crime. The phone call was tapped so the police know what I said but not what I meant.

      Can the police force me to answer the following question: What did you mean when you said: "Go ahead, do it now"

      The answer is no unless I have tesitified on my own behalf at trial.

    4. Re:Simple: the data no longer exists by izomiac · · Score: 5, Funny

      With a safe, if it's locked, the contents still exist.

      And that is why I always place my important documents in a locked safe with a tiny radiation source and a Geiger counter. If the Geiger counter detects radiation, then a thermite charge is activated. Due to my poor understanding of a 77 year old reductio ad absurdum of the Copenhagen interpretation, my documents neither exist nor don't exist! And I surely cannot be compelled to collapse the waveform by a court of law, the constitution gives them no power over quantum physics.

  22. Re:Foregone conclusion? by bws111 · · Score: 2

    The judge does not fail at either constitutional law or logic. You, however, most definitely do.

    The judge is issuing a warrant based on the officers testimony that there is good reason to believe evidence will be found. Said evidence (not the officers belief), if found, will then be used at trial.

    The jury is looking at the actual evidence, not the officers belief.

    Your idiotic 'logic' would imply that either a) actual evidence is not required at a trial, just officers testimony, or b) that the judge would need the actual evidence to support a warrant to look for the actual evidence.

  23. Re:Then Miranda must be Bullsh*t by Overzeetop · · Score: 2

    Of course you can remain silent. You just have to write the password down in that case.

    --
    Is it just my observation, or are there way too many stupid people in the world?
  24. That has unintended side-effects by pavon · · Score: 2

    There is a school of thought that holds that warrants should be much rarer than they actually are. This school of thought holds that if the cops know you have stolen goods or whatever, they can enter the premises, find the stolen goods, and off to jail you go. ...
    HOWEVER, a cop who kicks in the door without a warrant and finds nothing becomes personally (and his agency, collectively) responsible for damages, including punitive damages.

    The problem with this is that warrants serve another important purpose of documenting and limiting the scope of the search. In the system you describe, if cops bust into your house and didn't find what they were looking for, they would have a strong incentive to proceed on a fishing expedition to find (or even plant) evidence of some crime, any crime they can nail you with, so they won't be held responsible for their mistake. It is good to have a judge sign off on all warrants, and give limited personal indemnity to cops who are not abusing the system, but simply make an honest mistake.

    It is not good to make innocent people suffer the consequences of these mistakes. If we as society decide to authorize our law enforcement to damage, destroy or take property in the course of their investigation, then we as society have a responsibility to compensate those we have harmed to make ourselves feel safe. The fact that we don't and instead treat these as paramilitary operations with acceptable collateral damage, shows how far we are from realizing the genuinely free society that our founders envisioned.