Slashdot Mirror

← Back to Stories (view on slashdot.org)

Use of Encryption Foiled the Cops a Record 9 Times In 2013

Posted by timothy on from the achievement-unlocked dept.

realized (2472730) writes "In nine cases in 2013, state police were unable to break the encryption used by criminal suspects they were investigating, according to an annual report on law enforcement eavesdropping released by the U.S. court system on Wednesday. That's more than twice as many cases as in 2012, when police said that they'd been stymied by crypto in four cases—and that was the first year they'd ever reported encryption preventing them from successfully surveilling a criminal suspect. Before then, the number stood at zero."

10 of 115 comments (clear)

  1. First post! by GameboyRMH · · Score: 4, Funny

    Rapelcgvba SGJ!

    --
    "When information is power, privacy is freedom" - Jah-Wren Ryel
  2. I smell a rat. by Anonymous Coward · · Score: 5, Insightful

    There are obviously thousands of people using encryption because they have a legitimate reason to hide something, and criminals also have something to hide, so it stands to reason that they'd also use encryption.

    So why aren't there more cases of encryption impeding an investigation? Possibilities:

    1) Only stupid people (who don't use encryption) are caught - yeah, not with numbers /that/ low;

    2) The numbers are being deliberately under-reported;

    3) A lot of encryption is breakable or has backdoors;

    4) Most people under investigation have software planted on computers or hardware keyloggers.

    1. Re:I smell a rat. by JimFive · · Score: 5, Insightful

      You forgot:

      5) Most crimes leave evidence that is not on the criminal's computer.

      --
      Please stop using the word theory when you mean hypothesis.
    2. Re:I smell a rat. by rogoshen1 · · Score: 5, Insightful

      that oblig xkcd comic about a heavy wrench defeating encryption is more likely.
      "we'll drop the sentence to 1 year in prison if you give us the keys, or you can fight us, and we'll go for 25 to life."

      (protip: the wrench can be a metaphor)

    3. Re:I smell a rat. by Shakrai · · Score: 4, Informative

      There are obviously thousands of people using encryption because they have a legitimate reason to hide something

      My hard drives are encrypted simply because my entire life is on them and I'd rather not have everything you need to steal my identity fall into the hands of whomever broke into my house and stole my PC. I take similar precautions with physical documents that could be used to the same end. My SSA card and Passport are kept in the Safe Deposit Box except when needed, other forms of ID are always kept on or near my person, so they're not apt to be stolen in a burglary.

      I don't know or care if LUKS and Truecrypt are secure enough to resist access by a well resourced and competent government agency. They provide ample security for the threat vectors that I care about.

      Most people under investigation have software planted on computers or hardware keyloggers.

      This, along with other side channel attacks (social engineering, or even simply guessing the password, remembering that most people use easily guessable passwords) is the most likely explanation. If the United States Federal Government has ways of breaking modern ciphers they're not going to throw it away to secure mundane criminal convictions.

      --
      I want peace on earth and goodwill toward man.
      We are the United States Government! We don't do that sort of thing.
    4. Re:I smell a rat. by davydagger · · Score: 4, Informative

      that is somewhat bullshit.

      9 times out of 10, someone trying to crack your encryption is not going to be someone who is able to use that amount of leverage. Most likely they are going to subversively copy your data, or

      As far as I am concerned, I don't need my encryption to completely uncrackable. If all encryption does is provide tamper evidence, and doesn't allow undetectable snooping I am OK.

      Also, ability to crack encryption in an investigation/forced to decrypt for trial, is not the same as undetectable mass survailence. If all encryption does is force cops to go back to needing warrants and subopeanas, and due proccess, I think its done its job quite well.

    5. Re:I smell a rat. by Anonymous Coward · · Score: 5, Insightful

      >
      > have a legitimate reason to hide something
      >

      A person does not ever require a "legitimate reason" to use encryption. A person can transmit information in any way he may see fit or in any way he may simply desire without needing a reason or explanation.

      If I want to strongly encrypt a cooking recipe that I email to my grandmother, then it is my business and my business alone.

      The point is that criminal intent or any other intent cannot/should not be inferred solely from the act of encryption.

    6. Re:I smell a rat. by roc97007 · · Score: 4, Insightful

      > 6) The encrypted cellphone is thrown into the evidence bag and never looked at again because the arresting officer couldn't get it open.

      Beat me to it. I'd put it more generally as "the police were stymied by encryption 2,316 times last year, but only recognized the fact nine times".

      --
      Oliver's law of assumed responsibility: If you're seen fixing it, you will be blamed for breaking it.
  3. Scare tactics by fustakrakich · · Score: 5, Insightful

    Public opinion needs to be turned against anything (such as the bill of rights) that could hinder the authorities.

    --
    “He’s not deformed, he’s just drunk!”
  4. They'd be stumped more often by l0ungeb0y · · Score: 4, Interesting

    But so far, the only criminals using encryption are the smart ones who take precautions not to even become suspects in the first place. And just because the authorities were stymied by encryption, or that the suspects used encryption does not mean that the suspects were actually guilty of any crime. Personally, I'd much rather a few crimes go unsolved than live in an authoritarian Police State.