Slashdot Mirror

← Back to Stories (view on slashdot.org)

Ask Slashdot: How To Bypass Gov't Spying On Cellphones?

Posted by timothy on from the excuse-me-while-I-snap-this-glove dept.

First time accepted submitter jarle.aase writes "It's doable today to use a mix of virtual machines, VPN, TOR, encryption (and staying away from certain places; like Google Plus, Facebook, and friends), in order to retain a reasonable degree of privacy. In recent days, even major mainstream on-line magazines have published such information. (Aftenposten, one of the largest newspapers in Norway, had an article yesterday about VPN, Tor and Freenet!) But what about the cell-phone? Technically it's not hard to design a phone that can switch off the GSM transmitter, and use VoIP for calls. VoIP could then go from the device through Wi-Fi and VPN. Some calls may be routed trough PSTN gateways — allowing the agencies to track the other party. But they will not track your location. And they will not track pure, encrypted VoIP calls that traverse trough VPN and use anonymous SIP or XMPP accounts. Android may not be the best software for such a device, as it very eagerly phones home. The same is true for iOS and Windows 8. Actually, I would prefer a non cloud-based mobile OS from a vendor that is not in the PRISM gallery. Does such a device exist yet? Something that runs a relatively safe OS, where GSM can be switched totally off? Something that will only make an outgoing network connection when I ask it to do so?" And in the absence of a perfect solution, what do you do instead? (It's still Android and using the cell network, but Red Phone — open sourced last year — seems like a good start.)

25 of 364 comments (clear)

  1. Don't play.... by bobbied · · Score: 5, Informative

    The only way to win is not to play...

    Or, buy a new handset and phone number for every call and only pay cash.

    --
    "File to fit, pound to insert, paint to match" - Aircraft Maintenance 101
    1. Re:Don't play.... by Anonymous Coward · · Score: 4, Funny

      NSA: "We'll have to be able to attach our own piece of string to yours if you wanna keep using that, sir"

    2. Re:Don't play.... by TWX · · Score: 5, Funny

      I've got a particular gesture for them right here...

      --
      Do not look into laser with remaining eye.
    3. Re:Don't play.... by ArcadeMan · · Score: 5, Funny

      I see that you're pointing to the sky, friend. Are you trying to tell me something?

      I want to believe.

      --
      Get free satoshi (Bitcoin) and Dogecoins
  2. Disposable cell phone by Skewray · · Score: 4, Interesting

    I buy a $15 cell phone at Staples. It comes with $10 in minutes. Then I chuck it.

    1. Re:Disposable cell phone by amiga3D · · Score: 4, Insightful

      Hell in the US they can't even keep non-insured non-licensed drivers off the road. Registering phones? Hah!

    2. Re:Disposable cell phone by HWguy · · Score: 5, Insightful

      Brian, I assume you paid in cash.

      Do you know how much information the Staples inventory system has? Does it store things like the phone's Mobile Identification Number? It certainly logged the time the phone was sold and the location, perhaps flagging your cash transaction. Hopefully you smiled at the various cameras in-store and in the parking lot that recorded you driving up and buying the phone. ;-)

    3. Re:Disposable cell phone by tnk1 · · Score: 5, Insightful

      Yes. The idea of a burn phone is a very old one now. If you think that the NSA doesn't have contingencies to deal with that, you are mistaken.

      Honestly, unless you really do expect to be doing something illegal, the NSA doesn't have the resources to actually analyze the material they get from everyone for all possible illegal permutations. Unless you have reason to believe you are being targeted, the very fact that you use a burn phone regularly is probably more likely to set off red flags than just your normal use of a possibly monitored phone.

      Think about it this way. The use of burn phones is an inconvenience that most people won't bother with. If you are willing to put up with that inconvenience, you are in a relatively small group of people who are either refusers, or people doing illegal stuff. If I were the NSA, I'd be more interested in you as an evader, rather than less. And if they do happen to be able to track burn phones, you've just promoted yourself from Potential Terrorist, Second Class to Potential Terrorist, First Class.

      When it comes to panopticons, what you really need to do is learn how to hide in plain sight. The U.S. government is more like Sauron than God. They see everything, but only if they're looking at it.

    4. Re:Disposable cell phone by ub3r+n3u7r4l1st · · Score: 3, Informative

      and how do you know if a warrant has been issued and executed? You have basically don't have a right to protest a warrant because you don't know it even existed.

      And all mail are scanned and the image is taken and stored into a database (presumably the NSA):

      http://www.thesmokinggun.com/documents/woman-arrested-for-obama-bloomberg-ricin-letters-687435

      --
      New Economic Perspectives
    5. Re:Disposable cell phone by Charliemopps · · Score: 4, Insightful

      they have an $80 billion per year budget. That's $255 for every Man woman and child living in this country. They certainly can track every single one of us. Especially considering the Majority of US Citizens aren't even old enough to use a phone or the internet yet.

    6. Re:Disposable cell phone by Hatta · · Score: 3, Interesting

      The last place you want to be is where you are only caught by the traps they set up for the really dangerous people

      You assume that this is only about really dangerous people. We just had weeks of controversy about the IRS targeting people for political motives. Are you so naive to think that won't happen at the NSA?

      --
      Give me Classic Slashdot or give me death!
  3. And talk to who? by ugen · · Score: 3

    Once you jump through all those loops, who will you be talking to? And if such a person exists, he probably already knows what you are going to say, so why bother calling? :)

  4. Flooding by Phoenix666 · · Score: 4, Interesting

    The NSA needs to be flooded with false positives. They need to have so many false positives generated that their illegal, unconstitutional spying is rendered moot.

    On the other side, we need to surveille every member of Congress and the Executive and have their every move published on a publicly available site. After all, if they have nothing to hide then they shouldn't worry, right?

    In a perfect world the President and every member of Congress who signed off on this unconstitutional behavior would be impeached. But I know this is not a perfect world. So instead I will advocate a world where we turn the panopticon on itself and make them suffer three times for what they make us suffer.

    Tyrants must always be hoisted on their own petards.

    --
    Do what you can, with what you have, where you are.
    1. Re:Flooding by onyxruby · · Score: 3, Insightful

      Wonderful idea, you and a few thousand buddies are all going to crapflood the NSA. The NSA, an organization that is arguably the best in the world at sorting noise from signal. Check your ego at the door and realize your an amateur pretending to play in the big leagues.

      Want real change instead of feel good crap that doesn't do a damn thing? Call, or better yet, write your congress critter and demand change.

  5. Umm by wbr1 · · Score: 3, Interesting

    How about Ubuntu Touch? Linux core, can run VPN, TOR all the other goodies, and being OSS and linux you are free to investigate code and roll you own solutions on top of it.

    --
    Silence is a state of mime.
  6. Not a god damned thing by onyxruby · · Score: 4, Insightful

    There is absolutely nothing you can do because the government has root for any given phone (if nothing else through a warrant). Own the network and you own anything going through it. Your encryption means jack when their are appliances that do nothing but decrypt and re-encrypt traffic at very high rates of speed. You could get a separate phone just for having private conversations (ala drug dealer). You would quickly find out that they can determine that number (doesn't matter how you got that phone). Once they know that number they can just tap that through the same phone system.

    Want some level of privacy and to ensure that the government at least has to get a warrant to read your supposed to be private conversations? Go old school, visit this antique shop called a Post Office and buy a roll of stamps and envelopes. There is well established legal doctrine that says snooping on your mail can only be done with a warrant.

    Don't like my answer? Call your congress critter and demand change.

  7. Re:Being "spied" on, or drawing attention, choose. by amiga3D · · Score: 4, Insightful

    The trick is to hide in plain sight. Most of the time if you seem legit and do nothing obvious you're flying below the radar.

  8. HAM Radio? by littlewink · · Score: 3, Funny

    It's waiting for you.

  9. Re:what makes you worth tracking? by Qzukk · · Score: 4, Insightful

    "What makes you worth tracking?"

    As the cost of this approaches $0, it's pretty easy to make tracking any given person's life worth more than it costs to do it.

    --
    If I have been able to see further than others, it is because I bought a pair of binoculars.
  10. Did Lindsay Mills think she was important? by ZeroPly · · Score: 4, Insightful

    I mean, come on, she was just a ballerina/dancer in Hawaii, what did she have to hide from the NSA? Sure, her boyfriend Edward Snowden was involved in government affairs, but just one of a gazillion contractors.

    --
    Support microSD: in a post 9/11 world, it is unwise to carry your data on media that you cannot comfortably swallow.
  11. Re:what makes you worth tracking? by immaterial · · Score: 5, Informative

    its like the idiots who think the supermarkets are tracking them personally with the loyalty cards. stores want aggregate data and purchase bundles to do loss leader promotions. they really couldn't care what you buy personally

    Bullshit. Careful who you call idiot, lest you look even more the fool.

  12. Encrypted phones by Animats · · Score: 4, Informative

    There are encrypted GSM phones with end-to-end encryption when talking to a similar phone. They're overpriced and hard to buy, but available. The source code is available so you can see how it works. It's classic Diffie-Hellman 4096-bit key exchange to establish a session key, followed by 256-bit AES encryption for the data.

    It's too bad OpenMoko tanked. That was a totally open source phone down to the hardware level. That plus Cryptophone-compatible code would have been trustworthy.

    1. Re:Encrypted phones by Anonymous Coward · · Score: 3, Informative

      Openmoko is not tanked.

      OpenPhoenux project, coming from Openmoko community, may be the answer for all those needs. It has less resources than Openmoko had, as it's done by a small german company Golden Delicious, but thanks to that it makes small moves rather than big and crazy that Openmoko did, so it's less likely that it'll completely fail like Openmoko did.

      Old Openmoko Neo Freerunner already was perfect for such purpose, but it's a bit unusable for anyone who's not hardcore geek always being ready to use terminal on his phone to do simple tasks in case something breaks. Fortunately, new GTA04, together with QtMoko or SHR systems, should be quite good choice.

      http://www.openphoenux.org/

      "What OpenPhoenux stands for:
      * participation by everyone
      * extensible hard- and software - DIY
      * allows to inspect what the system is doing (as far as achievable)
      * can be repaired using standard parts (as good as possible)
      * long-term support (e.g. software upgrades for an 2007 Neo 1973)
      * no planned obsolescence through open hard- and software
      * no central, intransparent, stock exchange listed instance that gives directions
      * hardware development and production near to users (Europe) under fair labour conditions
      * independent from the "modern mainframe" and back to the networked, decentralized web
      * everybody plays client and server roles and keeps control over his/her participation
      * makes the technical system transparent, not the user"

  13. Re:Windows mobile 6.5 by Anonymous Coward · · Score: 3, Insightful

    It sounds like you want a phone with

    No, it sounds like he doesn't know what the fuck he's talking about at all.

    Example:
    " Technically it's not hard to design a phone that can switch off the GSM transmitter, and use VoIP for calls"
    I've never seen a phone that wouldn't let you shut off the GSM transmitter, nobody needs to "design" this it's already there.
    I can't speak for iPhones or Windows devices, but with Android you can shut off everything associated with cell phone carrier use any time you want, and install any kind of VOIP client you feel like using.

    "Android may not be the best software for such a device, as it very eagerly phones home."

    Bullshit. There's nothing in the Android OS which phones home or anywhere else. Yes, there are some applications which do it, but you can shut those off. And if you're extra paranoid just go install a custom ROM and don't run the spyware applications.

  14. Redphone, huh? by geminidomino · · Score: 4, Informative

    Funny how a privacy-oriented app like TextSecure (text app from the makers of Red Phone, mentioned in TFS) wants to access my Device ID, SIM serial number, and Subscriber ID...