Slashdot Mirror

← Back to Stories (view on slashdot.org)

Ask Slashdot: How To Bypass Gov't Spying On Cellphones?

Posted by timothy on from the excuse-me-while-I-snap-this-glove dept.

First time accepted submitter jarle.aase writes "It's doable today to use a mix of virtual machines, VPN, TOR, encryption (and staying away from certain places; like Google Plus, Facebook, and friends), in order to retain a reasonable degree of privacy. In recent days, even major mainstream on-line magazines have published such information. (Aftenposten, one of the largest newspapers in Norway, had an article yesterday about VPN, Tor and Freenet!) But what about the cell-phone? Technically it's not hard to design a phone that can switch off the GSM transmitter, and use VoIP for calls. VoIP could then go from the device through Wi-Fi and VPN. Some calls may be routed trough PSTN gateways — allowing the agencies to track the other party. But they will not track your location. And they will not track pure, encrypted VoIP calls that traverse trough VPN and use anonymous SIP or XMPP accounts. Android may not be the best software for such a device, as it very eagerly phones home. The same is true for iOS and Windows 8. Actually, I would prefer a non cloud-based mobile OS from a vendor that is not in the PRISM gallery. Does such a device exist yet? Something that runs a relatively safe OS, where GSM can be switched totally off? Something that will only make an outgoing network connection when I ask it to do so?" And in the absence of a perfect solution, what do you do instead? (It's still Android and using the cell network, but Red Phone — open sourced last year — seems like a good start.)

17 of 364 comments (clear)

  1. Don't play.... by bobbied · · Score: 5, Informative

    The only way to win is not to play...

    Or, buy a new handset and phone number for every call and only pay cash.

    --
    "File to fit, pound to insert, paint to match" - Aircraft Maintenance 101
    1. Re:Don't play.... by Anonymous Coward · · Score: 4, Funny

      NSA: "We'll have to be able to attach our own piece of string to yours if you wanna keep using that, sir"

    2. Re:Don't play.... by TWX · · Score: 5, Funny

      I've got a particular gesture for them right here...

      --
      Do not look into laser with remaining eye.
    3. Re:Don't play.... by ArcadeMan · · Score: 5, Funny

      I see that you're pointing to the sky, friend. Are you trying to tell me something?

      I want to believe.

      --
      Get free satoshi (Bitcoin) and Dogecoins
  2. Disposable cell phone by Skewray · · Score: 4, Interesting

    I buy a $15 cell phone at Staples. It comes with $10 in minutes. Then I chuck it.

    1. Re:Disposable cell phone by amiga3D · · Score: 4, Insightful

      Hell in the US they can't even keep non-insured non-licensed drivers off the road. Registering phones? Hah!

    2. Re:Disposable cell phone by HWguy · · Score: 5, Insightful

      Brian, I assume you paid in cash.

      Do you know how much information the Staples inventory system has? Does it store things like the phone's Mobile Identification Number? It certainly logged the time the phone was sold and the location, perhaps flagging your cash transaction. Hopefully you smiled at the various cameras in-store and in the parking lot that recorded you driving up and buying the phone. ;-)

    3. Re:Disposable cell phone by tnk1 · · Score: 5, Insightful

      Yes. The idea of a burn phone is a very old one now. If you think that the NSA doesn't have contingencies to deal with that, you are mistaken.

      Honestly, unless you really do expect to be doing something illegal, the NSA doesn't have the resources to actually analyze the material they get from everyone for all possible illegal permutations. Unless you have reason to believe you are being targeted, the very fact that you use a burn phone regularly is probably more likely to set off red flags than just your normal use of a possibly monitored phone.

      Think about it this way. The use of burn phones is an inconvenience that most people won't bother with. If you are willing to put up with that inconvenience, you are in a relatively small group of people who are either refusers, or people doing illegal stuff. If I were the NSA, I'd be more interested in you as an evader, rather than less. And if they do happen to be able to track burn phones, you've just promoted yourself from Potential Terrorist, Second Class to Potential Terrorist, First Class.

      When it comes to panopticons, what you really need to do is learn how to hide in plain sight. The U.S. government is more like Sauron than God. They see everything, but only if they're looking at it.

    4. Re:Disposable cell phone by Charliemopps · · Score: 4, Insightful

      they have an $80 billion per year budget. That's $255 for every Man woman and child living in this country. They certainly can track every single one of us. Especially considering the Majority of US Citizens aren't even old enough to use a phone or the internet yet.

  3. Flooding by Phoenix666 · · Score: 4, Interesting

    The NSA needs to be flooded with false positives. They need to have so many false positives generated that their illegal, unconstitutional spying is rendered moot.

    On the other side, we need to surveille every member of Congress and the Executive and have their every move published on a publicly available site. After all, if they have nothing to hide then they shouldn't worry, right?

    In a perfect world the President and every member of Congress who signed off on this unconstitutional behavior would be impeached. But I know this is not a perfect world. So instead I will advocate a world where we turn the panopticon on itself and make them suffer three times for what they make us suffer.

    Tyrants must always be hoisted on their own petards.

    --
    Do what you can, with what you have, where you are.
  4. Not a god damned thing by onyxruby · · Score: 4, Insightful

    There is absolutely nothing you can do because the government has root for any given phone (if nothing else through a warrant). Own the network and you own anything going through it. Your encryption means jack when their are appliances that do nothing but decrypt and re-encrypt traffic at very high rates of speed. You could get a separate phone just for having private conversations (ala drug dealer). You would quickly find out that they can determine that number (doesn't matter how you got that phone). Once they know that number they can just tap that through the same phone system.

    Want some level of privacy and to ensure that the government at least has to get a warrant to read your supposed to be private conversations? Go old school, visit this antique shop called a Post Office and buy a roll of stamps and envelopes. There is well established legal doctrine that says snooping on your mail can only be done with a warrant.

    Don't like my answer? Call your congress critter and demand change.

  5. Re:Being "spied" on, or drawing attention, choose. by amiga3D · · Score: 4, Insightful

    The trick is to hide in plain sight. Most of the time if you seem legit and do nothing obvious you're flying below the radar.

  6. Re:what makes you worth tracking? by Qzukk · · Score: 4, Insightful

    "What makes you worth tracking?"

    As the cost of this approaches $0, it's pretty easy to make tracking any given person's life worth more than it costs to do it.

    --
    If I have been able to see further than others, it is because I bought a pair of binoculars.
  7. Did Lindsay Mills think she was important? by ZeroPly · · Score: 4, Insightful

    I mean, come on, she was just a ballerina/dancer in Hawaii, what did she have to hide from the NSA? Sure, her boyfriend Edward Snowden was involved in government affairs, but just one of a gazillion contractors.

    --
    Support microSD: in a post 9/11 world, it is unwise to carry your data on media that you cannot comfortably swallow.
  8. Re:what makes you worth tracking? by immaterial · · Score: 5, Informative

    its like the idiots who think the supermarkets are tracking them personally with the loyalty cards. stores want aggregate data and purchase bundles to do loss leader promotions. they really couldn't care what you buy personally

    Bullshit. Careful who you call idiot, lest you look even more the fool.

  9. Encrypted phones by Animats · · Score: 4, Informative

    There are encrypted GSM phones with end-to-end encryption when talking to a similar phone. They're overpriced and hard to buy, but available. The source code is available so you can see how it works. It's classic Diffie-Hellman 4096-bit key exchange to establish a session key, followed by 256-bit AES encryption for the data.

    It's too bad OpenMoko tanked. That was a totally open source phone down to the hardware level. That plus Cryptophone-compatible code would have been trustworthy.

  10. Redphone, huh? by geminidomino · · Score: 4, Informative

    Funny how a privacy-oriented app like TextSecure (text app from the makers of Red Phone, mentioned in TFS) wants to access my Device ID, SIM serial number, and Subscriber ID...