US Gov't To Scan More Civilian Infrastructure Traffic

helix2301 writes with this snippet from NBC News: "The U.S. government is expanding a cybersecurity program that scans Internet traffic headed into and out of defense contractors to include far more of the country's private, civilian-run infrastructure. As a result, more private sector employees than ever before, including those at big banks, utilities and key transportation companies, will have their emails and Web surfing scanned as a precaution against cyber attacks." Further on, the story notes that "By using DHS as the middleman, the Obama administration hopes to bring the formidable overseas intelligence-gathering of the NSA closer to ordinary U.S. residents without triggering an outcry from privacy advocates who have long been leery of the spy agency's eavesdropping."

yeah, makes perfect sense

[new+death+barbie]

'cause everybody trusts the DHS.

Re:yeah, makes perfect sense

'cause everybody trusts the DHS.

and scanning other people's email isn't a violation of privacy or a "cyber attack"

More sarcasm fodder to come from Washington.

Re:yeah, makes perfect sense

'cause everybody trusts the DHS.

While it would be nice to believe that this is sarcasm, and while most slashdotters don't trust the DHS, most nongeeks do trust the DHS. And there's whole, "If you don't have anything to hide then who cares..." that most people believe in.

Re:yeah, makes perfect sense

"more private sector employees than ever before, including those at big banks, utilities and key transportation companies, will have their emails and Web surfing scanned as a precaution against cyber attacks"

I don't follow the logic of this. Scanning our people's stuff is going to protect us from outside attacks, or attacks by outside agencies done by their people here? How so?

"The Department of Homeland Security will gather the secret data and pass it to a small group of telecommunication companies and cyber security providers that have employees holding security clearances, government and industry officials said. Those companies will then offer to process email and other Internet transmissions for critical infrastructure customers that choose to participate in the program."

So we, that is, our own government agencies, don't have the manpower, equipment, or expertise, or some combination, so the secret info from the various intel folks will be used to determine the scans mentioned in first quote, then the scans' results will pass to a private group that's going to offer to do - what, exactly? - for those who might be affected, if, that is, they join up somehow, somewhere?

All I can make of it is a foot in the door kind of thing, scan hell out of biz/personal e-stuff, pass it through a clearinghouse of interested parties, and use it for something something. Oh, yeah, to protect us from some cyber. This whole thing seems inside-out and backwards. Then it's "you're with us or against us (nice cyber you got there, hate to see some cyber done to it)" all done by selling one thing, calling it another, and actually doing a third thing. I think.

Can someone clarify this shit?

Re:yeah, makes perfect sense

'cause everybody trusts the DHS.

...and they truly love the Obama administration too, but they really do.

Re:yeah, makes perfect sense

'cause everybody trusts the DHS.

While it would be nice to believe that this is sarcasm, and while most slashdotters don't trust the DHS, most nongeeks do trust the DHS. And there's whole, "If you don't have anything to hide then who cares..." that most people believe in.

Is it not a tauntingly ironic remark? Does sarcasm not often sail over the heads of the members of its target audience? As you pointed out as well, it was said here. If they truly have nothing to hide, then the brilliant and gorgeous exhibitionists should show up for the next local High School pep rally meeting in the nude and pass out copies of your bank statements etc on the way.

Re:yeah, makes perfect sense

[ixuzus]

Now if the DHS is a trusted system to banking, infrastructure, utilities, etc then all your enemies have to do is compromise the DHS and they get the keys to everything.

Re:yeah, makes perfect sense

What are you hiding in the bathroom? Remove the doors and install clear see through windows. We've all seen what private parts look like.

Why don't all women walk around with clear see-through purses? What are they hiding? Surely you won't mind all the thugs at the local mall seeing your prized possessions in your purse.... privacy? Bah, that's hiding something! As someone completely out of the target scope (I'm a male) I'll happily vote away your non-clear-purse rights. Just like senators who live lives nothing like ours, vote away our liberties.

See how it works?

Re:yeah, makes perfect sense

[davester666]

"I'm from the government and I'm here to keep you safe."

Re:yeah, makes perfect sense

Can someone clarify this shit?

The cyberwar boogie man is prompting Very Serious People to act. They need to do be seen doing something and they stick to what used to work in the 70's: more surveillance, more spying of your own people for their own benefit. Never mind that wont make any difference whatsoever and certainly leads to a full blown surveillance state. They only have the surveillance hammer and are looking around for nails.

Some alternate suggestions that would make indeed a difference:
1. Make credit card companies liable for fraud, instead of passing the loss to businesses as chargebacks; this will motivate them to secure their infrastructure and cut a major source of funding for the criminal underworld, thus lowering demand on black market vulnerabilities.
2. Make companies liable for the data they leak as a result of failing to properly secure their infrastructure
3. Decriminalize unauthorized penetration testing, as long as no data is stolen and the whole reported to the affected company or the authorities. Imagine that: you are not only liable for any data breach, but there are thousands of skidies all trying to get it for fun and fame. It's like antibodies fighting disease.
3. Hold public vulnerability finding contests in popular software and reward exploit writers. The best and brightest will work for us instead of against us.
4. Demand a high level of security in government acquired software and financially penalize vendor for holes. 'No warranty, no liability' my ass.

Re:yeah, makes perfect sense

If you go out and by an adaptive firewall that updates its blocking lists based upon input from a vendor, the vendor is actually generating those lists via listening posts located all over the US installed in data centers, honeypots, small companies, et-cetra. When an attacker, for example, begins port scanning a large range addresses at different companies methodically the listening posts notice, and the vendor automatically updates your firewall block list with the ip range. Hence the reason when your mail server gets compromised and you start sending spam to thousands of people, you're blacklisted in short order and it lasts a few hours, days or weeks.

The idea here is to pass all the critical infrastructure traffic through a single device to make correlating attacks easier to see and detect. Some attacks are a single packet in size and there's no easy way to see exactly what's going on. Employee's of these organizations are being targeted.

For example your previous break-in allowed you to get a list of employee's, job titles, work locations, et-cetra. From there you can target a group of retired/currently working people. You break into the retiree's e-mail accounts and send e-mails to current employee's that look OK, but have a 1x1 tracking jpg embedded in it that gives you their IP Address. You then target the current employee's personal system either by directly attacking it, or paying your russian partners whom are in doubleclick or adclicks systems to infect it with a rootkit when said employee's kid goes to CNN.com and loads a banner ad. After a few weeks you've got root on that machine, and when they bring their laptop home and attach it to the local wireless network, you infect it with a virus that simultaniously trashes your updating software, disables the most recent version of the antivirus, and makes everything look normal to your scanning utilities until the user complains to your helpdesk about "well this button worked before but now it's broken". Now you have penetration into the corporate network, and you begin sending normal-looking http requests out and normal-looking http responses in to control your rootkit. From there you perform the network recon and attempt to remain persistent.

What they're doing is getting several companies to corroborate traffic on a consistent platform so your firewall people can flag machines sending said normal-looking http traffic; once it's flagged, the help desk people nuke the box.

With that said, all the government is doing here is getting all the utilities onto one security vendor. The concept of multiple security vendors offering services is flawed as not everyone is able to adjust to every problem, as is the concept of a single vendor providing the service for critical partners. But, if you want to spot the traffic before it becomes a real nuisance, everyone needs to pool resources.

I, of course, trust the Chinese government more than I trust the US government at this point; at least with them you know they're going to act like self-serving bastards. Seriously, most governments don't have credibility left and with the kind of black-flag BS we've seen the US govt participate in for the last few years, in addition failing to but bankers in jail, gives me the gut feeling this is a bad thing more than good.

Re:yeah, makes perfect sense

"more private sector employees than ever before, including those at big banks, utilities and key transportation companies, will have their emails and Web surfing scanned as a precaution against cyber attacks"

I don't follow the logic of this. Scanning our people's stuff is going to protect us from outside attacks, or attacks by outside agencies done by their people here? How so?

"The Department of Homeland Security will gather the secret data and pass it to a small group of telecommunication companies and cyber security providers that have employees holding security clearances, government and industry officials said. Those companies will then offer to process email and other Internet transmissions for critical infrastructure customers that choose to participate in the program."

So we, that is, our own government agencies, don't have the manpower, equipment, or expertise, or some combination, so the secret info from the various intel folks will be used to determine the scans mentioned in first quote, then the scans' results will pass to a private group that's going to offer to do - what, exactly? - for those who might be affected, if, that is, they join up somehow, somewhere?

All I can make of it is a foot in the door kind of thing, scan hell out of biz/personal e-stuff, pass it through a clearinghouse of interested parties, and use it for something something. Oh, yeah, to protect us from some cyber. This whole thing seems inside-out and backwards. Then it's "you're with us or against us (nice cyber you got there, hate to see some cyber done to it)" all done by selling one thing, calling it another, and actually doing a third thing. I think.

Can someone clarify this shit?

Why even bother.

FACT: The government is going to do whatever the fuck they want to do. Constitution? That's a nice tourist attraction.

FACT: The government is going to tell you whatever they want to tell you. That doesn't mean shit, and information is still classified that we will never know.

Good luck trying to figure out what the fuck they're really going to monitor and do. By the time you find out, the drone will have vaporized the issue anyway, along with any rights you thought you had to do anything about it.

Re:yeah, makes perfect sense

So now we know Obama IS the anti-Christ.

Re:yeah, makes perfect sense

Highly rational, reasonable, and specific suggestions all pulled together in cogent, coherent manner. Wonderful, thank you.

Only one in Congress who I can feature using this might be Al Franken.

Unfortunately, or maybe because, your suggestions make good sense, I fear none of them will never happen.

Re:yeah, makes perfect sense

Thanks to all who tried to make sense of this stuff for me. I appreciate the thoughts and thoughtful suggestions about what is involved and what _ought_ to be done to truly do something useful without endangering or penalizing the we the people.

Re:yeah, makes perfect sense

[RougeFemme]

Plus, how many private sector employees expect privacy, anyway? Yes, I know the "slippery slope" argument, but I know that my emails and websurfing are being monitored at work anyway - by INTERNAL security. The fact that DHS is stepping in is not a huge deal. Monitoring me at home? Problem. At work? I don't care. It's my employer's equipment, infrastructure, etc.

Re:yeah, makes perfect sense

[RougeFemme]

Government doesn't have the manpower because legislators think 1 of 3 things: 1)should it be done? no; starve the budget 2)should it be done? no, but if it's going to be done, someone should make huge profits so let's privatize it. 3)should it be done? I don't know/care, but if it's going to be done, someone should make huge profits so let's privatize it. 4)should it be done? yes, and someone should make huge profits so let's privatize it.

Re:yeah, makes perfect sense

[slick7]

"I'm from the government and I'm here to keep you safe."

Wh-wh-what? You mean it's not for the children or national security?

Re:yeah, makes perfect sense

[slick7]

Now if the DHS is a trusted system to banking, infrastructure, utilities, etc then all your enemies have to do is compromise the DHS and they get the keys to everything.

DHS is the compromise, they have access to all your records, the question is, how do they get the children to spy on their parents?

Re:yeah, makes perfect sense

I don't claim to know what most people think. I know that I think, if I have nothing to hide, I should not have to prove that to a government I pay for. It's that simple. If you have found something I have done that is illegal then by all means investigate until you can prove it. If you don't have any evidence of a crime having been committed then you do not have my permission to troll the ether until you can invent something.

Fascists rule by making people scared to step out of line. They are characterized by the line "you should have no problems if you have nothing to hide". I really hate to think about what is coming our way if the US continues down this path. There will be blood and extreme violence and it feels like it is getting much closer every day.

God help us all when it starts.

Re:yeah, makes perfect sense

[rtfa-troll]

I love the way you neatly sidestepped the Spanish inquisition trap there :-)

Encrypt everything

If you aren't browsing over a VPN with HTTPS / SSL and transmitting all your data encrypted by this point you ought to be.

Re:Encrypt everything

[c0lo]

If you aren't browsing over a VPN with HTTPS / SSL and transmitting all your data encrypted by this point you ought to be.

Why? After all, if you have nothing to hide and you set your evil bit to zero, the DHS won't intercept your traffic.

I mean: nobody is so crazy to waste citizens' money on intercepting and storing everyone's communication, the investment and maintenance cost will be everly increasing.
And for what? After all it is only the traffic caused by hackers that would be interesting, not honest citizens' traffic. And the institutions/companies have already organized their own defense, as any good citizen does (e.g. installing locks and buying riffles); this along with paying their taxes (for supporting the infrastructure development and research and whatnot), behaving responsibly (e.g. avoiding the externalization of their cost of environment protection or defending their infrastructure), etc.

(grin)

Re:Encrypt everything

Yes, so you won't stand out of the crowd. Wouldn't want to become a person of interest.

What's that guy's sig, about the 2nd law of thermodynamics? Something like, "you can't win, you can't even break even, and you can't quit."? Good luck to you, sir. I wish you the best. It's not that you're wrong, not at all; just too late, I think.

Re:Encrypt everything

Defining entropy as disorder's not complete,
'cause disorder as a definition doesn't cover heat.
So my first definition I would now like to withdraw,
and offer one that fits thermodynamics second law.
First we need to understand that entropy is energy,
energy that can't be used to state it more specifically.
In a closed system entropy always goes up,
that's the second law, now you know what's up.

You can't win, you can't break even, you can't leave the game,
'cause entropy will take it all 'though it seems a shame.
The second law, as we now know, is quite clear to state,
that entropy must increase and not dissipate.

Creationists always try to use the second law,
to disprove evolution, but their theory has a flaw.
The second law is quite precise about where it applies,
only in a closed system must the entropy count rise.
The earth's not a closed system' it's powered by the sun,
so fuck the damn creationists, Doomsday get my gun!
That, in a nutshell, is what entropy's about,
you're now down with a discount.

You down with entropy?
Yeah, you know me!
Who's down with entropy?
Every last homey!

Re:Encrypt everything

And, minus the sarcasm, that is the argument for government takeover. :(

You have nothing to hide, right?

Re:Encrypt everything

[Cosgrach]

I mean: nobody is so crazy to waste citizens' money on intercepting and storing everyone's communication, the investment and maintenance cost will be everly increasing.

Wanna bet? They will simply take the money from some 'unimportant' department that actually provides some sort of public service. Sorry guys, you can't have money for cancer research, because we are going to snoop through your e-mails. You had better believe it.

Re:Encrypt everything

[TheSeatOfMyPants]

Just using a VPN isn't enough -- most of them hand over user data to the US government without question when asked, regardless of whether the VPN account was free or paid and even if the VPN company and all of its servers are located in other parts of the world. (Yes, the article was focused on the use of VPNs for file-sharing, but the lesson remains the same: don't trust them to protect your personal data from your government.)

Re:Encrypt everything

[Seumas]

Agreed. The government is all about fiscal accountability and doesn't waste money or spend money it doesn't have.

Re:Encrypt everything

Um, I read your link, some (Private Internet Access for example) will share everything they log - which is nothing - whenever asked (via a court order, not like that is hard to get), am I missing something? Shared IPs + no logs == share all the (nonexistant) data you want.

Re:Encrypt everything

I mean: nobody is so crazy to waste citizens' money on intercepting and storing everyone's communication, the investment and maintenance cost will be everly increasing.

Wanna bet? They will simply ... etc

(whooosh??? Of course I'm not that naive to bet on it, you really thought I was serious??)

Re:Encrypt everything

[Cosgrach]

Sometimes it is difficult to tell.

Re:Encrypt everything

[slick7]

I mean: nobody is so crazy to waste citizens' money....

(grin)

Brought to you by the people who supported the banksters and their gambling addicted wallstreeters. Get a clue, please.

Re:Encrypt everything

[slick7]

Agreed. The government is all about fiscal accountability and doesn't waste money or spend money it doesn't have.

What planet are you from? Was your flight long? Would you like to rest a spell before we tour the city?

Re:Encrypt everything

(whooosh)

Re:Encrypt everything

[rtfa-troll]

am I missing something?

the fact that they already have all your traffic from outside the VPN logged elsewhere and that the court order they give says something like

from this day forward log all connections incoming from this customer and tell nobody you did this ever or you will be disappeared

they get the new log of traffic correlate various IDs in it with the old (browser IDs ; crypto secrets derived from your device MAC address, processor IDs embedded in message padding by software maintained by placemen etc.) and then they have everything.

Just think about the fact you don't know when they started monitoring. They ask you a series of questions like: did you, on the fifth of November, connect to dodgysite.com you of course say "no". Now they show you a video from your own bedroom with you at the keyboard and remind you that lying to an officer is a crime. Now you are basically forced to confess to each of the series which gives them a link across the time when their official monitoring started.

The only way to deal with this is open political. There really are needs for proper security against spies from Totalitarian regimes. It needs to be a serious criminal offence (order of 20 years in prison) to use those mechanisms against civilians of democratic countries. And if you think it's okay to just protect Americans then remember that their were definite rumors that the UK was charged by your own government with spying on you in order to work around such protections in the old days when they used to exist.

Americans paying for big biz cheapness

So, big business implements half ass computer security for its infrastructure, at a lower cost. This could have been the logical business decision, especially with constantly changing computer technology. However, China, and increasingly other nations, are now going after security holes, and changes in computer technology have slowed down.

However, for the American People to pay for the incompetance of half ass measures of big business is something else. Just, like the bank bailouts of 2008. This country has been going downhill since Bush jr. got elected.

Re:Americans paying for big biz cheapness

[Opportunist]

The run for the bottom started way earlier, you can't blame the chimp for everything. Looking at the US for the past decades, I dare say the whole mess started with Reagan or no later than Bush Sr.

What this country, or any country, could well need is the kind of politicians we had after WW2. Say what you want, I still think Eisenhower was the best since 45.

Re:Americans paying for big biz cheapness

[jafac]

It started with the Lewis Powell Memo, in 1972. (Powell was the head of the US Chamber of Commerce - then was a Nixon appointee to SCOTUS).

Re:Americans paying for big biz cheapness

[kermidge]

Thanks for having excellent memory - I'd clean forgotten this. Long time back, man. Yeah, that was a good trigger.

Re:Americans paying for big biz cheapness

[SuricouRaven]

You assume the US invented the abusive government-corporate partnership. Ever hear of the East India Company? This type of practice is as old as civilisation: Those with power need money, and those with money expect certain favours in return.

And how is this 'more' invasive than now?

The NSA has taps on the fiber backbones already - the telcos have legal immunity and so are letting them mirror all traffic going through the major peering points. I don't see how a minor adjustment in the location of said tapping changes things. All traffic is already monitored, and relationship graphs are already generated for most US residents.

Re:And how is this 'more' invasive than now?

[Opportunist]

It's a matter of magnitude. Think of it as the difference between being stuck in cold weather without a coat and sitting butt naked in a frozen pond. Neither is really pleasant, but the latter sure as hell kills you faster.

I can see positives, but

[ALeader71]

I still don't trust the government. If this was to track malware, botnets, or attempts to attack vital parts of our infrastructure, I'd be all for it. However I also know this will be used to clandestinely monitor everyone's communication. While I fall into the "nothing to hide" category, the definition of "nothing to hide" is flexible and ever changing. The truth is, in a way, I do hide. A lot. I don't mouth off on social media sites. I don't put my political opinions into forums. I limit confrontation to in-person or via telephone communication. We already live in an age of online surveillance. This new level of government surveillance is just the next step.

I look forward to the rise of the DarkNets!

Re:I can see positives, but

[__aaltlg1547]

Yes, ALeader71. You DO mouth of on social media sites. This one, for instance.

Re:I can see positives, but

[Opportunist]

They're already here. They are just not globally announced and touted as the next best thing because "people who know" got wary after what happened to "their" Internet. Once the unwashed masses got in, things went downhill. For reference, see file sharing. You know, in the good ol' days, nobody gave a damn. Sure, the RIAA wasn't too excited about it, but the damage was low, so why bother? More and more people came and once it became trivially easy, the lobbying started and we have the mess we have today.

Can you imagine what an issue blueboxing would have been if it wasn't limited to a handful of phreaking enthusiasts? AT&T would have wanted their heads. And we're certainly not talking about the probation sentence Draper got, this would have reached insane heights akin to what we see today with punishments for copyright infringement. So, it was ... well, basically just a little nuisance.

Can you imagine what happens if Darknets go the way of torrents? Everyone using them, essentially rendering the whole shiny surveillance technology a matter for the recycle bin? If you think then we'd win, think again and ponder who your "enemy" is in this game. Hint: He makes the rules.

Re:I can see positives, but

The truth is, in a way, I do hide. A lot. I don't mouth off on social media sites.

The sarcasm is strong!

I limit confrontation to in-person or via telephone communication.

Really? Seriously? Even in-person is not private. Did you know that it is now possible to record *every* "private" conversation that happens at a football game with 50,000 or 100,000 people with just a few hundred microphones? You can then reconstruct what anyone is (or was) saying by reconstructing sound waves as they appear at each of the detectors. Just say where you would to localize the sound and you have sound. (the mics are omnidirectional).

I look forward to the rise of the DarkNets!

:S The solution to political problems is not technical. It is always political. Pass laws that protect you from these actions. Nothing else will protect you. Not Tor or anything (how will it protect you if you have to have spyware on your computer to connect to the network in the first place? Or ring 0 hardware sniffers?).

Re:I can see positives, but

If you think then we'd win, think again and ponder who your "enemy" is in this game.

It's easy to win when your opponent is a submissive pussy.

Re:I can see positives, but

[Seumas]

Hm. . . This isn't a social media site any more than FIDOnet, Usenet, or any discussion forum since the beginning of the web has been a "social media site".

Re:I can see positives, but

A true darknet is safe to its users, so having everyone on there would only be a good thing in the long run. More content, more distributed storage space, more speed.

Re:I can see positives, but

[ALeader71]

One big difference between torrents and a Darknet -- torrents, like social media, are meant to be open and easily shared. Darknets are designed to deny by default, allow only if invited. The total opposite of the open Internet we have today. So no, I'd not worry if I primarily operated on a properly run and maintained Darknet.

Employers

[the+eric+conspiracy]

Employers already have the right to scan everything coming in and leaving, and AFAIK defense contractors count as employers.

I don't particularly see this as a loss of Internet privacy since I don't expect any at a place of employment.

Re:Employers

I don't trust my employer, why should I trust the government?

Re:Employers

shhhh stop making sense. it isn't popular around here.

Re:Employers

No, in the civilized world (that doesn't include the USA), they don't.

Privacy laws make that illegal. (Yes, privacy includes your company's e-mail address or phone calls with e.g. your loved ones.)

Re:Employers

[the+eric+conspiracy]

Do you have a problem with reading comprehension? This story is US specific.

Europe has its own civil rights problems starting with free speech, discrimination against ethnic groups (for example the Roma), no protection against age discrimination in hiring and so on.

People living in glass houses shouldn't be so quick to throw bricks.

You know what?

Fuck of USA. I'm not going to buy anything more from you.
And if I find an american I'm going to kick his ass plain and simple.

Re:You know what?

What the fuck did you just fucking say about me, you little bitch? I'll have you know I graduated top of my class in the Navy Seals, and I've been involved in numerous secret raids on Al-Quaeda, and I have over 300 confirmed kills. I am trained in gorilla warfare and I'm the top sniper in the entire US armed forces. You are nothing to me but just another target. I will wipe you the fuck out with precision the likes of which has never been seen before on this Earth, mark my fucking words. You think you can get away with saying that shit to me over the Internet? Think again, fucker. As we speak I am contacting my secret network of spies across the USA and your IP is being traced right now so you better prepare for the storm, maggot. The storm that wipes out the pathetic little thing you call your life. You're fucking dead, kid. I can be anywhere, anytime, and I can kill you in over seven hundred ways, and that's just with my bare hands. Not only am I extensively trained in unarmed combat, but I have access to the entire arsenal of the United States Marine Corps and I will use it to its full extent to wipe your miserable ass off the face of the continent, you little shit. If only you could have known what unholy retribution your little "clever" comment was about to bring down upon you, maybe you would have held your fucking tongue. But you couldn't, you didn't, and now you're paying the price, you goddamn idiot. I will shit fury all over you and you will drown in it. You're fucking dead, kiddo.

Re:You know what?

I don't give a fuck who you are or where you live, you can count on me to be there to bring your fucking life to a hellish end. I'll put you in so much fucking pain that it'll make Jesus being nailed to a cross in the desert look like a fucking back massage on a tropical island. I don't give a fuck how tough you are, how well you can fight, or how many fucking guns you own to protect yourself. I'll fucking show up at your house when you aren't at home. I'll turn all the lights on in your house, leave all the water running, open your fridge door and not close it, and turn on your gas stove burners on and let them waste gas. You're going to start stressing the fuck out, your blood pressure will triple, and you'll have a fucking heart attack. You'll go to the hospital for heart operation, and the last thing you'll see when you're being put under in the operating room is me hovering above you, dressed as a doctor. When you wake up after the operation, you'll be scared for your fucking life, wondering what I did to you while you were being operated on, wondering what ticking time bomb is in your chest waiting to go off. You'll recover fully from your heart surgery. And when you walk out the front door of that hospital to go home, I'll run you over with my fucking car out of nowhere and kill you. I just want you to know how easily I could fucking destroy your pathetic excuse of a life, but how I'd rather go to a great fucking length to make sure your last remaining days are spent in a living, breathing fucking hell. It's too fucking late to save yourself, but don' bother committing suicide either... I'll fucking resuscitate you and kill you again myself you bitchfaced faggot. Welcome to hell, population: you.

Re:You know what?

HAHA, It's funny because we all know you had to grab your inhaler by the end. Go back to your Twinkies and Mountain Dew, tubby.

Re:You know what?

apk, take your meds and go to bed for a good sleep.

How naive do you have to be?

[russotto]

After the AT&T revelation, why would you believe they aren't ALREADY scanning pretty much everything they can?

Freedom, once lost, is never returned

[dontfearthereaper]

This is your privacy being slowly but surely encroached on..... once everyone is used to this... next it'll be just a bit closer to your home.... and a bit more.... eventually everyone's home is bugged...

Next thing you know, you're being black bagged by some government goon and being hauled off as a usurper or something.

Don't believe this shit is coming? Take a good read of Orwell's 1984, the movie Demolition Man or V for Vendetta and then compare the similarities to the likes of Europe or China, or the "Smart City" in South Korea where everyone is chipped and every. single. action. is tracked.

Does not make it any better

Dear Mr.Obama,

Just because you move the shady / possibly-abuse-filled surveillance project to another department does not make us "like" the program anymore.

Also if you think the whole issue was the department handling the program, you have no clue why people are upset and outraged. That or you are intenionally ignoring the real reason.

Please take the critical systems off the public internet if you are that worried about a "cyber" attack against public infastructure.

Signed,
- The People of the USA

Signature based scanning?

[schwit1]

Hasn't signature based scanning been debunked as a successful method for detecting modern malware?

Re: Signature based scanning?

[Aryeh+Goretsky]

Hello, Actually, it's one of the few technologies which was adapted and worked quite well over the past couple of decades. Regards, Aryeh Goretsky

Re:Signature based scanning?

[SuricouRaven]

Only against the very best, the APT-class attackers, who have the skill and the time to write and test their own tools. Against your common script kiddie or for-profit botnet operator, it'll still work fine.

This is not their job...

This is not their job, please get busy and get a balanced budget out! Then maybe think about things you shouldn't be doing.

Encrypt everything and hide intent

Not only do we need to encrypt everything going over the network we need to develop systems which defeat infererence of useful envelope information by adding noise in space and time and via the use of indirect reflections.

Aggregation of power into the hands of the government regardless of the justification will only incite internal corruption and bring out the same human failings that lead to oppression. Technology will corrupt our society if we don't take steps to prevent it.

Cyber attack against utilities?

[PPH]

My power company won't even trim the stinkin' trees. When the lights go out, how will we differentiate between an attack and normal operations?

Re:Cyber attack against utilities?

[jameshofo]

Maybe if you put a wifi antenna on those branches they'ed be more willing to get out and tend to them!

Re:Cyber attack against utilities?

[ArsonSmith]

You are lucky, the power company butchered my pecan trees which were not even close to causing issues due to some "possible interference any time in the next 10 years" rule they have.

Re:Cyber attack against utilities?

LOL. In a first-World country your trees would be fine - power lines are underground.

Re:Cyber attack against utilities?

[drinkypoo]

LOL. In a first-World country your trees would be fine - power lines are underground.

How cute, someone from a small country thinks that they know what's good for a large developed nation with the least population density.

Re:Cyber attack against utilities?

[PPH]

More likely if the tree was a nesting site for an endangered species.

Re:Cyber attack against utilities?

[Bacon+Bits]

If you call them and actually get to speak with a human being, it was probably an attack.

Re:Cyber attack against utilities?

ArsonSmith is from the US. Pecan trees? Surely not the nation with the least population density.

Re:Cyber attack against utilities?

The fact that your power lines still run above the ground, is ludicrous in itself.

This is 2013! Get your shit together, USA. You're not some underdeveloped backwards... oh, wait!

Don't you feel safer?

[HangingChad]

Finally something progressives and conservatives can team up to fight.

The last briefing I heard there were something like 200 Chinese front companies operating in the U.S. gathering data on Americans, particularly those with security clearances.

Maybe we stop the obvious stuff and the cloud databases being stored all over the world before we go all 1984 on our own citizens.

In the same briefing I found out the French are also spying on our defense related industries. And the Israelis. Some allies we have. The ones not spying on us think we're idiots.

Re:Don't you feel safer?

[TheSeatOfMyPants]

Finally something progressives and conservatives can team up to fight.

I wish... Based on recent years, the political reaction will be more like:
-- Most of the party that's clearly not in charge will condemn the latest overreach, declare that this sort of thing wouldn't happen on their watch, and that if given power again they'll be certain to reverse it.
-- Most of the party in power will either remain silent or make vague supportive comments about doing what we must for security. The rare over-enthusiastic sort will say it's a great step forward blah blah blah.
-- A few from both sides will "reluctantly" support it, saying that they're outnumbered by the majority but that if enough people like *them* are given power, things will change.
-- Once an election takes place, some or most of the individuals involved will swap places.

Re:Don't you feel safer?

[Redmancometh]

Strong start weak finish. ... still funny

Re:Don't you feel safer?

[RougeFemme]

Allies have always spied on each other - we do it, too.

Translation...

[Macdude]

"By using DHS as the middleman, the Obama administration hopes to bring the formidable overseas intelligence-gathering of the NSA closer to ordinary U.S. residents without triggering an outcry from privacy advocates who have long been leery of the spy agency's eavesdropping."

Translation: People don't fear the DHS as much as they fear the NSA, this should fix that.

Re:Translation...

Translation: People don't fear the DHS as much as they fear the NSA, this should fix that.

I disagree. You presume to compare two things.
One of which logically has to be a winner as they both can't be in charge. You lied about people fearing the DHS. Even the fucking senate is starting to ask questions about those fucking rounds now. They ought to ask about the nsa fios splitters too!

There's no oversight when you can't even tell me what the fucking LAW is anymore.

That's what letting oath breakers hold office does. Better fucking pray we aren't nazi germany v 2.0

Re:Translation...

[Cosgrach]

Better fucking pray we aren't Nazi Germany v 2.0

Sadly, we are already on the way to that.

Re:Translation...

[Redmancometh]

I see us in more of a "brave new world." The ultimate nanny state predicated on false contentedness.

entropy

[wbr1]

Erode away rights, waste away privacy. You will succumb to the second law of thermodynamics like everything else.

Naturally

Obama's most hated of enemies are the citizens of the United States of America.

And Obama vows to kill them all.

You know it occurs to me...

[tlambert]

You know it occurs to me...

All the major telecommunications carriers are defense contractors, as are the people running MAE East and MAE West.

So what exactly isn't going to be scanned under this proposal?

Re:You know it occurs to me...

You're a decade or two behind. MAE East and West haven't been important for a while. Providers have needed to interconnect in many more, closer places. But don't worry, I'm sure they'll all be monitored.

Re:A good hosts file will usually block their atte

[bmk67]

Seek. Professional. Help.

Umm yeah.. they are listening to everybody...

https://www.youtube.com/watch?v=zq3fgwV7doY

William Binney, served in the NSA for over 30 years, including a time as director of the NSA's World Geopolitical and Military Analysis Reporting Group. Since retiring from the NSA in 2001, he has warned that the NSA's data-mining program has become so vast that it could "create an Orwellian state."

In his first television interview since he resigned from the National Security Agency over its domestic surveillance program, William Binney discusses the NSA's massive power to spy on Americans and why the FBI raided his home after he became a whistleblower. Binney was a key source for investigative journalist James Bamford's recent exposé in Wired Magazine about how the NSA is quietly building the largest spy center in the country in Bluffdale, Utah. The Utah spy center will contain near-bottomless databases to store all forms of communication collected by the agency, including private emails, cell phone calls, Google searches and other personal data.

Binney served in the NSA for over 30 years, including a time as technical director of the NSA's World Geopolitical and Military Analysis Reporting Group. Since retiring from the NSA in 2001, he has warned that the NSA's data-mining program has become so vast that it could "create an Orwellian state." Today marks the first time Binney has spoken on national television about NSA surveillance. This interview is part of a 4-part special.

http://www.democracynow.org/2012/4/20...

http://www.wired.com/threatlevel/2012...

http://www.democracynow.org/2012/4/20...

The original content of this program is licensed under a Creative Commons Attribution-Noncommercial-No Derivative Works 3.0 United States License. Please attribute legal copies of this work to democracynow.org.

- - -

FAIR USE: The provision in the copyright law that YouTube pays no attention to...

Creative Commons license: Attribution-Noncommercial-No Derivative Works 3.0 (CC BY-NC-ND 3.0)

http://creativecommons.org/licenses/b...

You are free: to Share — to copy, distribute and transmit the work
Under the following conditions: Attribution — You must attribute the work in the manner specified by the author or licensor (but not in any way that suggests that they endorse you or your use of the work).
Noncommercial — You may not use this work for commercial purposes.
No Derivative Works — You may not alter, transform, or build upon this work.

"Jill Scott-Watching Me", sound recording administered by:
AbsoluteAMD
IODA

        Buy "Watching Me" on

Fix it.

[SuricouRaven]

This is Slashdot. We're a bunch of nerds. So let us do what it is that nerds do: Find a technological solution. Let us get every website using HTTPS, every email and IM conversation encrypted. It doesn't have to be perfectly secure against an attacker who can plant their own certificates on client devices, it just has to make interception difficult enough to prevent governmental fishing expeditions.

Re:Fix it.

[dkleinsc]

Let us get every website using HTTPS, every email and IM conversation encrypted.

What makes you so certain the NSA hasn't cracked SSL? Because I'm reasonably certain that if they had broken SSL, they wouldn't tell anyone about that capability.

Re:Fix it.

[SuricouRaven]

Of course they have - or rather, they wouldn't need to. I'm in no doubt at all that the NSA has access to a few root certs. Even so, it limits interception targets only to those the NSA considers enough of a concern to risk revealing their capabilities over: No more trawling billions of emails to build profiles or so anyone who jokes about blowing up the whitehouse can be flagged as a potential terrorist, and no more private-sector monitors at the ISP sneakily monitoring web traffic to better target advertisments.

clarifying that shit

The idea is really not to prevent law breaking but instead provide justification after the fact.

Say or do something that offends officialdom? Now your past actions can be used against you.

If you were watching TV and some plot point about exposives happen and you decide to go search on that plot point - now officialdom can claim you are a wannabe terrorist and place you under lock and key and THEN state how wonderful the new system is, because it prevented you from getting the explosives you expressed an interest in.

Officialdom is scared and is adding to the framework to attempt to control challengers to their authority. You may not due the time but you'll ride the ride is the buzzphrase of the day.

(note how Aaron didn't do the time and in the end wanted off the ride the DOJ put him on)

Re:clarifying that shit

[reboot246]

I have no mod points right this minute, but that was one of the most truthful things I've ever seen posted here.

One sure way to control a population is to make everybody guilty of something, even if it's a made up crime. We're all terrorists in the eyes of government. They're broadening the term every day. So, citizen, go along with what we say or suffer the consequences.

And notice how the evil is not so much the politicians who are elected, but the bureaucrats who are not.

Re:clarifying that shit

[ZosX]

Too bad you posted this anonymously. We need more people that will stand up to this tyranny. Who's watching the watchers?

Re:clarifying that shit

Indeed. I've watched a Judge hold an ex-parte hearing to re-open a case and then when a Class H felony on an sworn response to a Discovery was to be challenged the Judge refused to support that motion calling the lie how he "considered it a truthful response". When 500 more pages were submitted to show the lie the Judge then complained that the case was too big and taking up too much of his time.

No political party is willing to orginize Court Watchers to oversee the Courts and the people who "run" the system.

And the reason why?

[XB-70]

The DHS deserves to ... because they've done such a fine job scanning us at airports.

Re:A good hosts file will usually block their atte

[XB-70]

Mental health is not a joke. The above is a classic case where an individual, probably extremely bright, is likely off their meds and suffering terribly. For the huge cost of the DHS, they should be doing something positive: track down the originating IP of the above missive, dispatch an emergency mental health team and give this individual the compassionate care and attention that they need instead of flagging every grandmother's email to her children back home that says "Allah be praised.".

.

We do do that, don't we?

DHS middleman cuddlities

By using DHS as the middleman, the Obama administration hopes to bring the formidable overseas intelligence-gathering of the NSA closer to ordinary U.S. residents without triggering an outcry from privacy advocates who have long been leery of the spy agency's eavesdropping."

So DHS who is already in charge makes one of it's agencies more cute and cuddly for the public, enabling the agency doing what it has already been doing since the Patriot Act. Apparently now NSA can send their recruiting people to the local middle schools to improve those community ties and factorize some more closeness.

I trust NSA more than I do DHS.

[John+Hasler]

NSA doesn't have any cops.

Re:I trust NSA more than I do DHS.

They most certainly do...

Re:A good hosts file will usually block their atte

Actually I'd prefer if he'd just kill himself.

into and out of *defense contractors*

I don't see a problem with it. Its not like we are talking traffic between 2 private citizens. Being a defense contractor, you voluntarily lose your right to privacy.

What could possibly go wrong?

[Impy+the+Impiuos+Imp]

If the banks request it, good.

If they don't, bad. As in Hitler bad.

Re:A good hosts file will usually block their atte

You provide many references, which is good. But the problem is that your post is unintelligible. It's wordy, has no structure....... frankly, I don't know what the hell you're saying.

Re:A good hosts file will usually block their atte

Obviously very passionate, but hasn't found a way to communicate the message without alienating people.

Clarification needed? Cyberlaw to the rescue!

[cemulli]

1. Critical infrastructure is defined by the Homeland Security Act as "systems and assets, whether physical or virtual, so vital to the United States that the incapacity or destruction of such systems and assets would have a debilitating impact on security, national economic security, national public health or safety, or any combination of those matters." 42 USC 5195c(e).

2. To protect national cybersecurity concerns, the government thinks that it has to protect critical infrastructure.
3. Most owners and operators of entities that would be considered critical infrastructure as per the above are in the private sector.
4. Under 47 USC 606(d), the President has the authority to take over communications infrastructure when there is a state of war or a threat of war. They're not claiming that's the case right now.

QED, the government wants to protect critical infrastructure, but it can't just send the military in to private companies to make sure protections are implemented (unless things get worse and we get into something that the President declares to be a "state of war" or "threat of war"), so it's doing some application of existing legal precedent to the current issue and figuring out how some level of government intervention in the interest of national security could be justified. Currently, from my understanding of the recent executive order (which we won't see anything real from until at least October when the first draft of the Cybersecurity Framework must be published), the government will be relying on a voluntary compliance program. That is the type of thing that's authorized by the Homeland Security Act of 2002, and any mandatory compliance program would require congressional action. But congress has been retreating from any kind of mandatory program. CISPA, for example, would create a voluntary information sharing program, and has nothing to do with requiring specific protections, but it's probably going to be dead in the water this congressional term as well.

The emphasis on critical infrastructure needs to be understood here. This is not the government spying on everyone at work, only people working at critical infrastructure providers, many of whom are arguably in a position where malicious software compromising THEIR work computers could then get passed along through a very sensitive network. The important thing is figuring out how to keep malicious code that originates from outside the network from entering these sensitive networks. This is the reasoning being applied by the lawyers and government officials who are focusing on this issue.

DHS as the middleman

The article says:

By using DHS as the middleman, the Obama administration hopes to bring the formidable overseas intelligence-gathering of the NSA closer to ordinary U.S. residents without triggering an outcry from privacy advocates who have long been leery of the spy agency's eavesdropping.

But the NSA has had Narrus boxes in data centers all over the US for years eavesdropping on the communications of US Citizens. I've seen them. Got Yahoo or ATT email? I know for a fact the NSA is reading your mail.