Slashdot Mirror
Brazil Announces Plans To Move Away From US-Centric Internet
trbdavies writes "The Associated Press reports: 'President Dilma Rousseff ordered a series of measures aimed at greater Brazilian online independence and security following revelations that the U.S. National Security Agency intercepted her communications, hacked into the state-owned Petrobras oil company's network and spied on Brazilians who entrusted their personal data to U.S. tech companies such as Facebook and Google. The leader is so angered by the espionage that on Tuesday she postponed next month's scheduled trip to Washington, where she was to be honored with a state dinner.' Among Brazil's plans are a domestic encrypted email service, laying its own fiber optic cable to Europe, requiring services like Facebook and Google to store data generated by Brazilians on servers located in Brazil, and pushing for 'international rules on privacy and security in hardware and software during the U.N. General Assembly meeting later this month.'"
If this sticks, it will be awesome, not for the security but for the statement it makes. Way to go, Brazil!
-------
1. Enjoy your job
2. Make lots of money
3. Work within the law
Choose any two.
It makes it much easier to spy on your own citizens when you do that. They are just mad they don't have a piece of the action.
Regardless of their ability to spy on their own people I think this is a good thing and I say that as a red, white and blue American citizen. I don't like that we control the whole ball of wax. Its time other countries stepped things up and built on what the US started. The internet is supposed to be bigger than any one country.
And they're going to do all that with Cisco routers, right? LOL
Seven puppies were harmed during the making of this post.
At any point in that chain, the US can still snoop or put US-friendly people/technology in place.
Twitter supports and protects racists - by smearing their critics with the "Hate Speech" label.
are outside Brazil, such as the United States, because beside a small collection of servers you want to call secure and local (Brazil's own webmail server, for instance) everything else is "out there". Including most of the "Brazillian content" such as info about the Rio '16 Olympics and all those hot photos of women at Carnivale.
Laughter is the Spackle of the Soul.
It makes it much easier to spy on your own citizens when you do that. They are just mad they don't have a piece of the action.
Well, they could just be trying to imply that they didn't have a piece of the action. Like the Canada, UK, France, Spain, Germany, Italy, etc.. all acted shocked and appalled until it came out that their people were cooperating and collaborating with the US Agencies.
At least Brazil in this case appears to have some intestinal fortitude. The others I listed are just praying the stories all go away and maintaining business as usual.
-The wise argue that there are few absolutes, the fool argues that there are no probabilities.
I'll build my own internet! With blackjack! And hookers!
Our Global Suction strategy is blowing up in our face. We were perceived as an honest broker, now we're going to find our control increasingly challenged and marginalized. I've been reading more and more about everyone from individual users to companies to now nations basically giving us the finger. Any tactic we're employing with geopolitical repercussions that can be blown out of the water by one disgruntled contractor was woefully conceived.
I don't know what annoys me more; the dragnetting or the fact that they did such a crappy job of keeping it under wraps.
I swear to God...I swear to God! That is NOT how you treat your human!
> "Leave It To Beaver"
The didn't call them Brazilians for nothing.
I should use this sig to advertise my book ISBN-13 : 978-1501515132.
Funny thing is, that's how the internet is supposed to be. The only things that are common are the protocols used to communicate between networks. The idea that everything should be consolidated into one system is not in the spirit of the internet. It is the centralized systems that are ripe for abuse by large organizations. As an aside, terrorists operate in cells rather than with a strong command hierarchy for the same reason.
Now, if the Brazilians can design their own microprocessors and switch to a flavor of Linux, they might have a shot at being secure.
"If a nation expects to be ignorant and free in a state of civilization, it expects what never was and never will be."
Because if current rates of adoption are any indication, an ipv6 internet won't be US-centric for years to come.
File under 'M' for 'Manic ranting'
did it say in the story that they would move the datacenters into europe?
besides, unless they got shadow cabling they're not going to send all the data over to usa from europe.. which is what usa gets now when the data is routed through them.
another article said vladivostok for cable end, too.
and heh, this does accomplish money into brazil. by forcing facebook, google etc. to store the data in brazil they have to build datacenters into brazil.
world was created 5 seconds before this post as it is.
Trust in anything connected with the US is done. Other governments and other people are VERY aware of what the US influence has been doing. They are also very aware that Brazil's financial systems didn't crash because they didn't do what the rest of the world did. A lot of things aren't being talked about but the leaders know what's what but they don't know how to escape the net which the powers behind the US have put over everyone else. BRIC will make the changes the rest of the world will be inclined to follow.
I never thought there would be a year of Linux on the desktop, but something like it is becoming more and more possible in other nations.
Things are changing and they're going to change a lot more before it's done.
Our government deserves to get slapped in the face at every turn by every other country over the heavy handed and far overreaching actions of the NSA. I hope the condemnations with actions keep rolling in.
Thanks again Snowden. You woke up the world and it's changing for the better because of you.
Brought to you by Carl's Junior.
BRAZIL: Dear Facebook, please store your data about our citizens on a server that is located in our Country.
Facebook: No.
BRAZIL: Well, then we will just prevent all our citizens from accessing your website...
Facebook: Darn.
The internet is supposed to be bigger than any one country.
The Internet isn't supposed to be tied to country at all.
Oddly, I agree with Eric Schmidt on this - the big risk is if every country starts making their own internet fiefdom and it becomes harder to operate and connect internationally. Of course Eric Schmidt said this, as one of the companies responsible for helping with the spying he's worried about the ripple effects from.
And how that is worse than being spied, controlled, and manipulated by a foreing country, one that had no problem supporting the overthrow of a democratically elected president in Brazil in 1963, and that don't have clear hands on the recent revolutions in the middle east. Remember, they are reacting to what US is doing, place the fault where really is.
It makes it much easier to spy on your own citizens when you do that. They are just mad they don't have a piece of the action.
You are an idiot and you don't realize that NSA has been intercepting SMS messages (by means of breaking into mobile operator network(s) in Brazil) of Brazilian president. And probably much more (other targets were not named).
Where does that fit into?
War on terror? War on child pornography, perhaps?
Intercepting Brazilian oil company mails/traffic is required in order to fight... terrorism?
Americans still do not understand the consequences of their actions (well, NSA's and government actions). People have given their trust to US government and their agencies, and USA has betrayed them at all possible levels.
USA has now publicy said that they are ok with what NSA has been doing - things that USA themselves consider to be 'acts of war'.
I presume now everyone else will consider it to be okay too.
Don't think of it as a fiefdom, think of it as a jobs program for Brazil's tech sector. If the big players want a piece of the Brazilian market, and I think they probably do, then they have to have a physical presence there. Ditto the fiber connections to Europe. That has the added effect of making the Internet itself more robust. More transatlantic bandwidth is better, period.
The internet is supposed to be bigger than any one country.
The Internet isn't supposed to be tied to country at all.
Oddly, I agree with Eric Schmidt on this - the big risk is if every country starts making their own internet fiefdom and it becomes harder to operate and connect internationally. Of course Eric Schmidt said this, as one of the companies responsible for helping with the spying he's worried about the ripple effects from.
What Brazil is doing is creating more direct links to other countries instead of having to route through the US. This increases Brazilian privacy, and helps make the the 'net more resilient (and possible faster) for everyone.
It's not about fiefdoms, but about each country being properly connected through their own resources instead of relying on others. It's just in this case there are other benefits to all the extra fibre as well.
TFA showed a "BRIC" fiber (Brazil, Russia, India, China) which would take a Southern route from Brazil to South Africa, India, China and Russia.
It will be good to have more connectivity and alternative routes. It also avoids Miami and the NSA where all of Brazil's data goes now.
I don't read your sig. Why are you reading mine?
Requiring foreign companies to host data on servers inside brazil isn't going to achieve anything... They are still foreign corporations, and will be able to access those servers and/or copy data off them at any time they want.
What's really needed, is instead of large centrally controlled services like facebook there should be a large number of distributed but openly interoperable services.
This is how the internet has always worked, and how core services like web and email work - anyone can run their own servers, and anyone's servers can talk to anyone else's. If you are worried about foreign spies, you can ensure that you use services operated in countries you trust.
http://spamdecoy.net - free throwaway anonymous email - avoid spam!
Maybe Mr. Schmidt should encourage the US government to stop forcing people into fiefdoms just to have some security.
There are two types of people in the world: Those who crave closure
It makes it much easier to spy on your own citizens when you do that.
Well, yes and no. The main thing to worry about is typified by this comment:
Among Brazil's plans are a domestic encrypted email service
It's possible that what this means is that Brazil's domestic email service will do the encryption. This would be no security at all, since it would mean that the email service has everyone's keys and can decrypt everyone's email. And possibly sell it to interested customers, such as the US government.
If they're serious about local security, what they'll do is study various end-to-end email encryption packages, and recommend the best ones to their citizens. End-to-end encryption is the only way to get actual security in email. And they'll want a public education campaign to teach people about the "gotchas". For example, you don't ever store your keys in "the cloud".
There have been proposals in the US that email encryption be done by the low-level IP software. This was rejected back in the 1960s by the ARPAnet folks (the military predecessor to the Internet), on the grounds that low-level encryption is inherently secure, since it's typically installed in a way that the user can't control or even see into. It could easily be sending your keys and/or decrypted email to arbitrary third parties, and most users would have no way of knowing about it.
Anyway, it could be interesting to know what the Brazilian planners are planning. Are they really aiming for a domestic email service that "handles" the encryption (i.e., no security at all)? Or are they planning to actually do it right?
Here in the US, we know the answer to that question as applied to our own government (and telecom companies ;-). Is the Brazilian government any better?
Those who do study history are doomed to stand helplessly by while everyone else repeats it.
Per NPR this morning, she cancelled it because she was pissed. As in not rescheduling it. That's about as big a slap in the face as a diplomat can get.
There are two types of people in the world: Those who crave closure
Hmm. A physical presence? No, they just need a VPN service in country so it LOOKS like they are there. Isn't that what all the users do so that it looks like they are in Canada and can watch all the curling events that aren't allowed outside of Canada? Or maybe that was TV shows that aren't allowed outside of the US. But anyway, Google and Facebook can just rent a nice, fast, VPN service in country and they will have a presence there as far as these politicians will ever know.
This is Brazil we're talking about -- the politicians might not know, but their tech advisors will -- it's trivial to trace where the bulk traffic to sites like Google and Facebook is being routed. They'll actually need to set up a datacenter there. Management has no need to be in the country, but the data sure does. If that data goes to a VPN and then is routed out of the country to the US, that'll show up in the routing logs (traffic in = encrypted traffic out, and vice versa).
That kind of thing would likely work in many countries, but Brazil has been intentionally beefing up their tech sector over the last decade, and now they generally know what they're doing (and what their citizens are doing).
Interestingly, Facebook Brazil is based out of Ireland, not the US; where the actual data is stored, I have no idea -- but I bet Brazil does.
Except that, because of the NSA's clusterfuck idiocy, now we have each country building it's own internet, which may or may not actually be part of a larger global network. Expect more of this in the future. It is the state's version of a 'walled garden' platform.
Thanks for shitting in the pool, NSA.
HA! I just wasted some of your bandwidth with a frivolous sig!
Wow, you're 1/3 native amerindian, 1/3 european, and 1/3 smurf? That's quite a mix.
What happens is that the internet gets fractured - you'll have the "US Intenret", the "Brazil Internet" just like we have the "Iran Internet", and to a lesser extent, the "China Internet". All little networks running separate and independent.
Or not. TFA says:
A connection from Brazil to Europe, or connections from Brazil to other South American nations, don't constitute a "Brazil internet"; for one thing, the other ends of those connections aren't located in Brazil. If that were sufficient to create a "Brazil internet", there would already be a "US internet" given that the US has an undersea connection to Europe or connections to Canada and Mexico.
It also says:
That wouldn't, in and of itself, mean that Brazilians can't find non-Brazilian sites with Google or that non-Brazilians can't find Brazilian sites with Google; it would mean that Google would have to add one or more data centers in Brazil and, for Google searches from within Brazil (presumably meaning "from IP addresses that are located in Brazil"), any information saved about the search would have to be stored on the Brazilian servers (and, presumably, not sent to non-Brazilian servers). It would also mean that Google+ posts from Brazilian users would have to be stored on the Brazilian servers, GMail messages for Brazilian users' accounts would have to be stored on the Brazilian servers, etc. (and, presumably, not sent to non-Brazilian servers).
Today the internet is bigger than any one country - even the NSA can't tap all of it, and it's likely the stuff they tapped they did things like running TOR exit nodes and monitored the data that way.
But tomorrow, the internet will shrivel up (hey, we don't need IPv6 anymore!) as every country runs its own version of the internet, and wanting to connect to the bigger part around it well, you're a terrorist.
I haven't seen anything to indicate that Brazil doesn't want to allow packets to enter or leave Brazil - quite the contrary, in fact, if they want additional connections to countries outside Brazil. That's what would be involved in "each country [running] its own version of the internet".
Brazilian here. It has to do with censoring what people post on facebook.
Recently, there have been waves of protests in Brazil, where all the traditional media companies - newspapers, magazines, radio, and TV - barely took notice even though at some instances there were almost one million people screaming outside. The reason they are so biased is because they are being bought by the government, in a monthly basis, where Rede Globo, the Brazilian equivalent of BBC, takes half the money and the rest is distributed to the other smaller media outlets. That's taxpayer money we are talking about - rampant corruption is one of the main points of these protests.
The only way that these protests gained wide support was through facebook events. Since Dilma has no control over facebook, she could not censor it. Hence, the excuse to store all brazilian data in brazilian servers: so that she and her government can put a stop to the riots.
Brazil has a policy of absolute reciprocity when it comes to immigration. Brazil requires the same of US Residents applying for a Brazilian visa as the US requires of Brazilian Residents applying for a US Visa.
Any requirement imposed upon Brazilian citizens by any other country is reciprocated toward that country's citizens. It makes perfect sense to do it that way.
So Brazil will tap and decrypt all internet traffic to enforce this rule?
As I said, they have no need to tap and decrypt all internet traffic. All they have to do is get the inbound and outbound router data summaries. If all the country's traffic going TO those servers matches the encrypted data going FROM those servers to some location in the US, and all encrypted traffic FROM those servers in the US matches the traffic coming out from the server, it's pretty obvious that nothing's being stored there. Brazil owns the upstream and downstream routers, so this is trivial to check.
The reason for this is that unlike the US, Brazil has limited backbone connects to the rest of the world. This is part of what they're trying to fix.
Here's a picture that explains it fairly well:
http://www.gigaomnimedia.com/images/cable-capacity.jpg
As you can see, other than one small line via Argentina to Spain, all of Brazil's international traffic goes through the New York or California trunks.
They're still better off than Australia though, on all things Internet-related.
There's no need to even count the data. If you're actually putting the servers on in the USA instead of Brazil the speed of light will rat you out. Put the servers too far away and the increase in latency becomes noticeable.
:).
So just require certain servers to respond within X milliseconds. The side effect is it'll make some users and gamers happy
You could still be shipping the data elsewhere for the NSA, but the "transactional" servers would still have to be in Brazil. Detecting the data shipping and spying in this case would be harder since the latencies will be low and the byte counts could be a lot less due to filtering, summarization and compression.