Slashdot Mirror

← Back to Stories (view on slashdot.org)

Encryption Rights Community: Protecting Our Rights To Strongly Encrypt

Posted by samzenpus on from the of-a-like-mind dept.

Lauren Weinstein writes: Around the world, dictatorships and democracies alike are attempting to restrict access to strong encryption that governments cannot decrypt or bypass on demand. Firms providing strong encryption to protect their users — such as Google and Apple — are now being accused by government spokesmen of "aiding" terrorism by not making their users' communications available to law enforcement on demand. Increasingly, governments that have proven incapable of protecting their own systems from data thefts are calling for easily abused, technologically impractical government "backdoors" in commercial encryption that would put all private communications at extreme risk of attacks. This new G+ community will discuss means and methods to protect our rights related to encrypted communications, unfettered by government efforts to undermine our privacy in this context.

140 comments

  1. Don't worry about it by Sigvatr · · Score: 3, Insightful

    I can't imagine any scenarios where any government could practically restrict encryption at all.

    1. Re:Don't worry about it by w1zz4 · · Score: 4, Informative

      You cannot restrict it, but you can make it "Illegal to use", like in Cuba.

    2. Re:Don't worry about it by Anonymous Coward · · Score: 1

      I can't imagine any scenarios where any government could practically restrict encryption at all.

      Oh? What about the British philosophy? If you don't divulge your encryption keys when law enforcement demands, you go to prison for five years. You will be sent to prison for refusing to give up encryption keys, regardless of whether you have them or not and regardless of if the data is actually encrypted, instead of just random data.

    3. Re:Don't worry about it by gweihir · · Score: 2

      Or like France. Turns out private use of strong encryption is politely ignored by the authorities in France, possibly because they would have a riot on their hands if they did enforce the ban. And commercial users can get a license.

      --
      Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
    4. Re:Don't worry about it by Anonymous Coward · · Score: 0

      They can make it illegal, and then track encrypted packets passing through your ISP, then send law enforcement to seize your hard drives. Or we can fight it and let them know this is not okay to do.

    5. Re:Don't worry about it by AHuxley · · Score: 2

      The ability of the UK and US to track any networked message removes all anonymity and then allows privacy be worked on.
      A person, brand, company, project can create, compile, sell, offer, use all the encryption it wants.
      A US or UK telco or network interconnect will always be able to track the message from its origin to the destination.
      With a loss of anonymity, privacy is then very easy remove per user or site.
      US and UK network ready devices, networks, tame computer systems are all law enforcement friendly so the layer the user encryption was created on will always be obtainable as designed and sold.
      Plain text, voice, images, a log of network use are just waiting on most big brand US computer systems as designed and sold.
      The ability of law enforcement to collect plain text as entered or when decrypted on a normal user system ensures privacy is never a problem once tasked.
      How a user opts to use a network between two computer systems compromised by design is not really an issue.
      The other plus for a lot of popularized encryption is that it stands out for a US/UK collect it all system.
      Encryption is just the easy way to find a user and then use a waiting trap door or back door in the office, home, network or commercial system or hardware.
      The US and UK will not restrict encryption. The more users feeling they need to find and turn on junk encryption just makes the task of finding people of interest on networks more easy.
      Thats why number stations and one time pads worked well in the past. Its kind of hard to find who listened to an international broadcast.
      But with the direct use of any encryption between two sites that task is now very easy.
      With anonymity gone, plain text is just a network request to a law enforcement friendly OS.
      Wise Western governments should fund, offer grants to all encryption products, experts they can find. Create front companies and fund tame academics.
      It makes finding interesting people so much more easy on all networks when they use known encryption everytime.
      Restricted encryption historically was a tool to drive people onto the tame encryption over generations.

      --
      Domestic spying is now "Benign Information Gathering"
    6. Re:Don't worry about it by currently_awake · · Score: 1

      They could simply reprogram the internet to block encrypted trafic. You do realize they control the internet, right? Yes of course the people would get upset if they lose their social media, but big corporations know how to be "team players" so that's not a risk.

    7. Re:Don't worry about it by AHuxley · · Score: 1

      Strong encryption use just makes a message stand out. All French networks can collect it all thanks to "free" help from the US and UK going back to the early 1970's.
      Who is sending any messages and where makes for easy traditional police work at a local level. France has a lot of police and funding so long term undercover work is not a problem. Any regional or local groups can be turned or watched as they form and communicate using any encryption.
      The only problem for France is that its vastly improved network tracking let the US and UK deep into its secure French gov networks again.
      A collect it all system from the US/UK has helped decode the French gov.
      France got to collect it all but so did the US and UK.

      --
      Domestic spying is now "Benign Information Gathering"
    8. Re:Don't worry about it by K.+S.+Kyosuke · · Score: 2

      Strong encryption use just makes a message stand out.

      Unless it's also steganographically encoded in a fashionable selfie. (Finally, a meaningful use for selfies!)

      --
      Ezekiel 23:20
    9. Re:Don't worry about it by K.+S.+Kyosuke · · Score: 1

      A US or UK telco or network interconnect will always be able to track the message from its origin to the destination.

      Unless some kind of oniony or multi-hop routing is involved, I presume.

      Thats why number stations and one time pads worked well in the past. Its kind of hard to find who listened to an international broadcast. But with the direct use of any encryption between two sites that task is now very easy.

      In a way, I picture that a limited form of this should also be possible. (But probably less efficient then some kind of a store-and-forward system? Or maybe the two could get combined?)

      --
      Ezekiel 23:20
    10. Re:Don't worry about it by K.+S.+Kyosuke · · Score: 2

      You can't really do that, unless you remove the very ability of the communication channel to transfer some information.

      --
      Ezekiel 23:20
    11. Re:Don't worry about it by Anonymous Coward · · Score: 5, Insightful

      They could simply reprogram the internet to block encrypted trafic.

      Good idea - those "e-commerce" and "online banking" fads were just about done anyway.

    12. Re:Don't worry about it by Anonymous Coward · · Score: 0

      For the love of FSM, please learn to use paragraphs.

    13. Re:Don't worry about it by Anonymous Coward · · Score: 0

      Oh you, still so young and naive. Blocking encrypted traffic isn't like saying, "is this a valid email address?" (which is already a pain in the ass). Distinguishing between codes & ciphers (especially further hidden with steganography) and plaintext is not a trivial problem.

      One obvious first approach would be to flag any messages containing a high percentage of non-<insert language here&gt words and have a human look at it. That requires people, but it's doable. But what about content that's primarily data? Do you have an automated parser and validator for every file/data exchange format in existence?

      Okay, that's probably a doomed approach. So, now we look for data which has a very flat random distribution (or other similar criteria). Of course, you still don't know if it's legitimate data or not, so you're back to parsers, validators, and humans. Best of luck.

    14. Re: Don't worry about it by Anonymous Coward · · Score: 0

      My strongly encrypted messages are steganographically hidden in photos of gaping assholes, so the assholes decoding them have an opportunity to better understand their own nature.

    15. Re:Don't worry about it by AHuxley · · Score: 2

      Think of the work that went into detecting the use of virtual encrypted disks over time. All that matters is the detection or wider public understanding that the message cannot be detected over a network.
      With detection comes the origin of the message, destination, method used and ability to trap door, back door to get the message before any steganography.

      --
      Domestic spying is now "Benign Information Gathering"
    16. Re: Don't worry about it by mattwarden · · Score: 1

      So everyone using SSL goes to jail? And if not, could I not simply transfer my encrypted file over SSL and you'd never be able to tell its not just normal SSL traffic?

    17. Re:Don't worry about it by Anonymous Coward · · Score: 0

      I honestly scanned down the first character of each line, thinking that maybe something was encoded there, and that was why it was written so.

    18. Re:Don't worry about it by AHuxley · · Score: 1

      re "Unless some kind of oniony or multi-hop routing is involved, I presume."
      What is the first hop from an average home computer, out of an office network, a cafe with wifi?
      The everyday, average real time use of a destination or origin is trackable on most national networks.
      A public telco, private network or telco? The layers of communications can request oniony or multi-hop but that physical network entry and exit point is a bit more fixed in most nations.

      --
      Domestic spying is now "Benign Information Gathering"
    19. Re: Don't worry about it by bigfinger76 · · Score: 1

      I'm certain ssh would fall under any ban; RSA and the others would be specifically targeted.

    20. Re: Don't worry about it by bigfinger76 · · Score: 1

      Sorry, misread SSL!

    21. Re:Don't worry about it by Jason+Levine · · Score: 3, Insightful

      If there's one thing the government fears most of all (and no, it's not a group of citizens upset with their actions) it's a riot from companies that lobby them. Block all encrypted traffic and every online retailer (including lots of big name, big lobbying companies) would find themselves unable to conduct business online. Block encryption and banks wouldn't be able to fulfill transactions online. Block encryption and health care companies couldn't show you medical information online. All of these sectors would send lobbyists on a "Seek and Destroy" mission should any such bill ever be seriously considered.

      --
      My sci-fi novel, Ghost Thief, is now available from Amazon.com.
    22. Re:Don't worry about it by Anonymous Coward · · Score: 1

      It can be easily done, and is done in big companies all the time:

      1: Demand ISPs put in meta firewalls in place and MITM SSL. If the traffic can't be decrypted, it is blocked, the originating machine yanked from the net and the police notified.

      2: Demand every Internet connected machine run DRM software that scans and looks for encryption software, with definitions updated in real time. Like an AV scanner, except for encryption programs. If the software sees it is tampered with, shut machine down, call cops. With windows 8.1 and newer, any Windows certified machine has to have a TPM chip, so this can be easily made part of the Trusted Boot process.

      3: Only devices with a proper phone ROM be allowed on cellular networks. This is easily done... look at consoles. Latest gen doesn't have even a single lead for a break, previous gen gets pulled from XBL the second someone decides to stick a new ROM on them. Samsung KNOX took a $50,000 bounty just for root on the S5, much less an actual bootloader break.

      4: Arrest and throw violaters in prison for a long time.

      All this is quite easily done. 20 years ago, people said the Great Firewall of China was an impossibility. Blocking encryption would be trivial.

    23. Re:Don't worry about it by penguinoid · · Score: 1

      Sorry, all the corporations will ask for with regards to encryption is an exemption for themselves, plus an incredibly onerous process for any new competitors to go through if they want to get an exemption. The corporations will not protect you.

      --
      Don't waste your vote! Vote for whoever you want, unless you live in a swing state it won't matter anyways
    24. Re:Don't worry about it by camg188 · · Score: 1

      Seems easy enough to work around. For example, hiding an encrypted message in a photo posted on reddit.

    25. Re:Don't worry about it by Anonymous Coward · · Score: 0

      Those works perfectly fine without encryption in most of the cases.
      If you are at home and trust your ISP (That you already trust with knowing everything about your porn habits.) and communicate with the bank that trusts their ISP then there isn't really a need for encryption.
      You only need encryption when there is a man in the middle that you don't trust, like if you are doing banking from a restaurant or whatever.

    26. Re:Don't worry about it by Anonymous Coward · · Score: 0

      Good idea - those "e-commerce" and "online banking" fads were just about done anyway.

      Those use keys signed by a smallish set of certificate authorities. The US government, at least, could suborn most of the certificate authorities and man-in-the-middle this traffic, and block traffic encrypted with keys signed by unsuborned authorities (or self-signed).

    27. Re:Don't worry about it by johanw · · Score: 1

      End to end encryption where keys are disposed when the message is decrypted at the endpoint. Like TextSecure and SMSSecure use. Even if they start torturing me I just can't help them decrypt any messages they intercepted, and access to my phone is useless as well after the messages are deleted.

    28. Re:Don't worry about it by Anonymous Coward · · Score: 1

      You are thinking like an engineer, you want a foolproof system with no false positives or negatives.

      The government can just make it illegal to use cryptography and put a deterring punishment on it. Then a person can work full time (On taxpayers money) and look at traffic at random. If he finds someone using encryption they make an example out of it to deter others.

    29. Re:Don't worry about it by Anonymous Coward · · Score: 0

      Wrong. Of course they could still use e-commerce. They'd just put up the big green lock icon and call it a day regardless if the data was actually encrypted, backdoor-ed for the government, or completely non-existent. Most people would go right ahead and still enter every bit of personal info they can find, blissfully.

      In the end, what really matters isn't whether nor not the data is protected, what matters is does the company in question who winds up with a data breach because of bad government crypto policy, have to foot the bill for said breach? (Both the financial and social (blame) ones.)

      Captcha: insulate

    30. Re:Don't worry about it by AmiMoJo · · Score: 4, Insightful

      Strong encryption use just makes a message stand out.

      Years ago when Bittorrent first started encrypting traffic there were loud complaints from GCHQ and MI5 about how it was making their lives much more difficult. Previously encrypted traffic stood out and helped them, but suddenly the (bit)torrent of encrypted data was making it difficult to separate interesting traffic from pirated music and TV shows.

      I'm sure they have upped their game since then, but the basic principal is sound. If everyone starts to encrypt everything all the time it becomes much harder to figure out what is interesting. It also makes them waste resources trying to store or decrypt data that turns out to be worthless. Fortunately for us more and more apps implement encryption by default.

      --
      const int one = 65536; (Silvermoon, Texture.cs)
      SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
    31. Re:Don't worry about it by Anonymous Coward · · Score: 0

      The problem is that you don't *know* what's encrypted, random, or what's merely a data format you don't recognize.

    32. Re:Don't worry about it by Anonymous Coward · · Score: 0

      Except at that point it becomes obvious to the general public who their true enemy is. Not only would that completely violate the first amendment in every single honest interpretation of it, but it would also give a strong "We DON'T care about any damage or suffering you suffer as a result of this policy, and we will not be held responsible for it." message to the people. Those people would be in a much better position to demand real change, and make no mistake they would get it.

      The US government is not in a position to go all out officially rip up it's Constitution and implement a new form of governance. Any attempt to do so right now would fail miserably, due to former states wanting more control for themselves, or independence from whatever form of governance is chosen; debt repayment (or a continued gravy train) in the ensuing destruction of the USD, and possible economy collapses due to non or under productivity in the various former states. The other possibility is the citizens themselves would not go for it as the patriotic drumbeat in their heads would not permit it.

      Basically the only way for the US to implement total information awareness easily, is to do it in such a way that Joe and Jane Public does not find out about or understand it. With computers and the subject of encryption this is ridiculously easy to do in the US because of the general public's ignorance and intolerance of the damn things.

      The general public in the US has long bought into Steve Job's idea of "Computers should just work.", and has willingly given up control of the damn things at every possible turn for even the slightest fraction of convenience. Hence the issues we have now with the various Identity / Medical / Credit / Data theft, despite long fought constant ranting, seminars, and instruction on the most basic of safe computer use policies. (Don't use the same password for EVERY SINGLE SITE, don't open random email attachments you were not expecting, etc.) Every single aspect of computer security nowadays is either handled automagicly (automatic updates, remote software installations, and maintenance, horrendous password reset methods with hardly any real verification, AV included with the OS, cloud "backups", push button setups (think Wifi Protected Setup, or the various auto config services like UPnP.), etc.) or it does not get setup correctly AT ALL.

      For the US government to setup a total information awareness system, all they have to do is leverage the completely broken systems that are already out there, and the complete apathy of the US general public to do or learn anything with the machines themselves, and they are golden. This is much cheaper and less troublesome than declaring their intent to the general public. Look at how they constantly ask for "debate" about government access to encrypted data, and how they spread disinformation about the idea that compromising encryption for the government's "lawful access" is somehow NOT compromising it for everyone. That "patriots in Silicon Valley will step up to help their country." All of this serves to put on a show for the general public, because although they worry about their security, they know jack and shit about computers, and because of that they assume the figure head authority knows more than the people objecting and therefore sides with the government.

      TL:DR, it will happen, just not in a way that the general public will be able to recognize it for what it truly is.

    33. Re:Don't worry about it by K.+S.+Kyosuke · · Score: 1

      Could you elaborate on that? That seemed a bit incomprehensible to me.

      --
      Ezekiel 23:20
    34. Re:Don't worry about it by cfalcon · · Score: 2

      This would fail for technical reasons. You could transform any piece of encrypted text into a larger piece of text that appears unencrypted, and this would happen just about immediately.

    35. Re:Don't worry about it by K.+S.+Kyosuke · · Score: 1

      What is the first hop from an average home computer, out of an office network, a cafe with wifi? The everyday, average real time use of a destination or origin is trackable on most national networks.

      I wasn't talking as of real-time communication as much as of some kind of mail service. If the hops are uncorrelated in time and transfer different data, tracking anything in a meshed network of nodes (I was even thinking of a hypercube) should be extremely difficult.

      --
      Ezekiel 23:20
    36. Re:Don't worry about it by Anonymous Coward · · Score: 0

      Many believe we should fight it, peacefully if we can, but violently if you must.

    37. Re:Don't worry about it by Anonymous Coward · · Score: 0

      Corporations don't care about any of that stuff... unless they are held liable (as they are for health care info).

    38. Re:Don't worry about it by Cajun+Hell · · Score: 1

      It's too late. I think we already won this one.

      --
      "Believe me!" -- Donald Trump
    39. Re:Don't worry about it by Anonymous Coward · · Score: 0

      End to end encryption where keys are disposed when the message is decrypted at the endpoint. Like TextSecure and SMSSecure use. Even if they start torturing me I just can't help them decrypt any messages they intercepted, and access to my phone is useless as well after the messages are deleted.

      Won't do any good. If the police SUSPECT the information is encrypted, it does not matter if it is or not and it does not matter if you have the key or not. If you don't produce an incriminating text file you go to prison for five years. http://falkvinge.net/2012/07/12/in-the-uk-you-will-go-to-jail-not-just-for-encryption-but-for-astronomical-noise-too/

    40. Re:Don't worry about it by Anonymous Coward · · Score: 0

      The government has many heads. FBI, NSA, and a few others may want no encryption and may attempt to pass laws outlawing it, but there are many other laws that explicitly require it, or else you face fines or prison time. In order to pass laws to outlaw encryption, you first need to repeal the laws that require it.

    41. Re:Don't worry about it by Anonymous Coward · · Score: 0

      And as soon as someone's credit card info is leaked and no encryption was involved to protect it, the online retailer gets sued into oblivion. As much as you believe corps would whole-sale drop encryption without a fight, I believe that the USA legal system, in which SOMEONE IS ALWAYS AT FAULT and can be sued for any damn reason, will bend over those companies and rape them until they're gone.

    42. Re:Don't worry about it by Anonymous Coward · · Score: 0

      Do you think government care about wasting resources aka taxpayer money? Of course not. They have historically had a complete and reckless disregard for the proper use and spending of such monies. All this will do is give them even more excuses to spend even more money that isn't theirs.

    43. Re:Don't worry about it by MakerDusk · · Score: 1

      Basically, it's a fallacy of software level encryption. Even if a message is encrypted, you can still see where it's going and where it came from. If you hack into one of the two computers, you can read the message same as the user can. It's the same issue with encrypted drives: if you break into the computer while the person is using it, the encryption isn't in effect. If it was, the user couldn't access their own computer.

    44. Re:Don't worry about it by Anonymous Coward · · Score: 0

      congratulations, you prevented them from reading that raunchy message to your gf. You'll still go to jail for 5 years for refusing or being unable to provide the encryption key.

  2. You Gotta Fight For Your Right To by Anonymous Coward · · Score: 1

    Parrrrrtaaaay!

  3. on the internet by turkeydance · · Score: 1

    it's on its own.

  4. Slight correction by reboot246 · · Score: 5, Insightful

    The first sentence in the summary needs a slight correction.

    It reads, "Around the world, dictatorships and democracies alike are attempting to restrict access to strong encryption that governments cannot decrypt or bypass on demand."

    It should say, "Around the world, dictatorships and democracies with governments wanting to become dictatorships are attempting to restrict access to strong encryption that governments cannot decrypt or bypass on demand."

    1. Re:Slight correction by Anonymous Coward · · Score: 1

      FUCK the Government.
      If you sit down and think hard about it, I mean really hard, outside your lame little sheeple box, Government is totally unnecessary.

      Anyway, fuck em, bring the terrists on, i don't give a fuck, any chumpass terrist wanna come try and start shit up in my hood, bring it on bitches, i got a niner full of justice right here. So does just about every other American.
      Flattened buildings? Fuck it, rebuild that shit.
      Dead people? Fuck it, make babies :)

      Least you don't have my privacy and i aint yo suckass sheeple slave.

    2. Re:Slight correction by K.+S.+Kyosuke · · Score: 0

      Islam is merely horribly misunderstood. The part that says that people should be stoned for adultery? You're actually supposed to pat them on the back and share some pot.

      --
      Ezekiel 23:20
    3. Re:Slight correction by lkcl · · Score: 3, Interesting

      It should say, "Around the world, dictatorships and democracies with governments wanting to become dictatorships are attempting to restrict access to strong encryption that governments cannot decrypt or bypass on demand."

      about six or seven years ago i used to go a lot further than that, but at the time people disregarded what i said as being completely outrageous. times change.... let me reiterate it by way of parallel example.

      this sentence "Firms providing strong encryption to protect their users — such as Google and Apple — are now being accused by government spokesmen of "aiding" terrorism"

      should read "Firms providing strong encryption to protect their users — such as Google and Apple — are now being accused by terrorist spokesmen...."

      i believe it was joseph goebbels, hitler's right-hand man, who said that the way for a government to get what it wanted was to terrorise people by making them think that they were no longer safe in their own homes. that if they didn't cecede power to the goverment then someone who was beyond the ability of the government to control would possibly kill them in their own beds, or on their way to work, or would kill their children on the way to school.

      this strategy is one that governments today are fully aware of (they saw how effective it was for stalin and hitler and mussolini after all), and they are quite happy to copy it. unfortunately, when people fully trust their governments and cecede all power to them, historically we've seen how quickly things can flip to become very very dangerous. the problem is that i don't see how, when power is ever so slowly eroded in small incremental steps, it is possible to reverse that situation for people's benefit, without a very large event occurring (such as a bloody riot or a civil war). maybe it's possible now, peacefully, with the internet the way it is, and with organisations like avaaz, al jazeera, 38degrees and more: i don't really know. should we have faith in people and the way the internet works, now?

    4. Re:Slight correction by Anonymous Coward · · Score: 0

      No. Islam is fucked. Read the Quran... it's all in there. That's not counting all the interpretations and fatwahs. It's a private tribal clique of stupid. Can't marry their daughters, Oh, but their men are priviledged and can marry whoever they want. Can't eat pig, can't drink, but can smoke all fucking day. Yes, there's a fuckton of stoning and shunning going on. And a lot of murder.
      If you're not muslim, go tell a muslim you're not and then try to talk with them about anything... especially during muzlim crazy month... they can't talk to you... you're unclean, they can't even shake your hand. and if they do, they're lying through their teeth called taqiyya, or they're blasphemers. WHICH by the way, their penalty for INNOCENT APOSTASY is death.

    5. Re:Slight correction by Anonymous Coward · · Score: 0

      A source would be nice. Since you are using these big names.

    6. Re:Slight correction by Anonymous Coward · · Score: 1

      You seem to have run out of uppercase letters. Here, have some of mine:

      THE QUICK BROWN FOX JUMPS OVER THE LAZY DOG.

    7. Re:Slight correction by argStyopa · · Score: 1

      "...and democracies with governments wanting to become dictatorships..."

      I know you feel you're being cleverly cynical, but name a democracy (or really ANY government) that doesn't have dictatorial tendencies?

      That was the brilliance of the US Constitution; the framers assumed that government - as much as we need it in practical terms - was always looking to grow both in scope and power, and that the individuals attracted to that were likely themselves dangerous to the public good.

      --
      -Styopa
    8. Re:Slight correction by Anonymous Coward · · Score: 1

      Exactly, there is none of that stoning for adultery or rapists being in the clear if they marry their victim or slavery being ok in the "good book." I mean Christians are all upstanding and extremely moral people that are not in the least bit hypocritical, they also don't use their big-book-o-morality to influence any decisions or try to force their skewed world view onto others.

      Oh, wait a minute...

    9. Re:Slight correction by Anonymous Coward · · Score: 0

      You can trust your government, but you can't trust those that RUN your government.

  5. If no secrets should be kept from the gov't.... by mark-t · · Score: 4, Insightful
    ... And one who has done nothing wrong should have nothing to hide, then why do government workers wear clothing while working? After all, clothes cover up the body, and if you wear them then you are keeping something hidden fom those around you. Is there something wrong with their bodies that they feel they should cover them up?

    The question is, of course, rhetorical. One generally wears clothes around other people not because there anything (necessarily) wrong with what is underneath the clothing, but because they cover something that most people consider private.

    --
    File under 'M' for 'Manic ranting'
    1. Re:If no secrets should be kept from the gov't.... by Anonymous Coward · · Score: 3, Insightful

      Within the physical world there are always ways to bypass locks if you have enough time, resources and lawyers. The government doesn't need lawyers and their time and resources are quite substantial. In this case no matter how much you want to lock something up they have a blowtorch, dynamite, nitroglycerin, or nukes to make sure they can bust it open.

      Encryption is different because they don't have enough force to break the lock. These are sociopaths that are used to getting their way and having the upper-hand in every situation so it scares them that they can't beat this. They've been handed an impossible problem and now they're throwing a hissy-fit demanding that impossible problems are illegal.

      Watching the gymnastics going on right now is quite revealing. They're going to quite some lengths to make sure they can have access. Ask yourself one question: They're throwing so much at this one lock, so how many locks have they already broken? All the things we thought were safe from prying eyes probably aren't.

      I just hope their uber spy center doesn't get hacked or the whole world is hosed.

    2. Re:If no secrets should be kept from the gov't.... by Anonymous Coward · · Score: 2, Insightful

      > And one who has done nothing wrong should have nothing to hide,

      Privacy is essential for creativity, otherwise a chilling effect of self censure takes place. Take a look at the old Soviet block in Eastern Europe - generations of broken people, stunted to the emotional level of development of children that expect the state to care for them. They have no political ideas, no activism.

    3. Re:If no secrets should be kept from the gov't.... by Anonymous Coward · · Score: 0

      Many other states and companies are already engaged in spying, too. It's not just a NSA thing. In the future this will only spread more as more money is invested by everyone with an interest to spy.

    4. Re:If no secrets should be kept from the gov't.... by Anonymous Coward · · Score: 0

      The idea is not binary (done nothing wrong should have nothing to hide / done something wrong so something to hide) also known as innocent and guilty. Actually US is trinary, innocent, guilty and none of your damn business. Any police or lawyer can make anything you do is a guilty act. It is why you never just let them look.

    5. Re:If no secrets should be kept from the gov't.... by Jason+Levine · · Score: 1

      There are things in this world that we want to hide even if we've done nothing wrong. I like responding to the "If you've got nothing to hide..." folks like this:

      If you've got nothing to fear then you've got nothing to hide? Great. What's your bank account number, balance, and PIN? What's your real name, social security number, date of birth, and home address? Why won't you tell me this information? Do you have something to hide?!!!

      --
      My sci-fi novel, Ghost Thief, is now available from Amazon.com.
    6. Re:If no secrets should be kept from the gov't.... by Anonymous Coward · · Score: 0

      Take a look at the old Soviet block in Eastern Europe - generations of broken people, stunted to the emotional level of development of children that expect the state to care for them. They have no political ideas, no activism.

      Of course, on the other hand, western Europeans and Americans - especially the younger generations - are broken people, stunted by being way overly sheltered and emotionally developed, that expect the state to care for them, and their political ideas and activism revolves solely around this.

    7. Re:If no secrets should be kept from the gov't.... by MrKaos · · Score: 1

      There are things in this world that we want to hide even if we've done nothing wrong. I like responding to the "If you've got nothing to hide..." folks like this:

      I generally reframe the statement to if you've got nothing to loose. People seem oblivious to the fact that these sorts of laws are a boon for organised crime and committing fraud on a massive scale.

      Encryption represents the front line of the fight for maintaining freedom and the net is the battlefield.

      --
      My ism, it's full of beliefs.
    8. Re:If no secrets should be kept from the gov't.... by mark-t · · Score: 1
      That's kind of my point... we hide some things from other people not because we have done anything wrong, but simply because they are private....

      Of course, even *IF* the government's claim of benevolent intention were completely trustworthy, giving them the keys to an otherwise secure encryption scheme is still a bad idea because if such a government government can read it, then so can somebody else with less benevolent intentions who doesn't care about breaking the law and is simply hoping they will not be caught (because a computer does not and actually cannot know if some random person who has done sufficient research and is claiming to be from the government, and otherwise provides what appears to be legitimate credentials for their claim is lying) . Even if the perpetrator is later caught and punished appropriately, as the law would ordinarily demand in such circumstances, the damage will have still been done, damage that can oftentimes be completely irreparable, regardless of the punishment, damage that would otherwise have been completely preventable in the first place if such a government were not insisting that law abiding citizens are forbidden from utilizing the most basic precautions to protect themselves from the bad guys in the first place.

      --
      File under 'M' for 'Manic ranting'
    9. Re:If no secrets should be kept from the gov't.... by Anonymous Coward · · Score: 0

      >I generally reframe the statement to if you've got nothing to loose.

      You should re-frame it so 'lose' is spelled correctly.

  6. Baffling.... by Dega704 · · Score: 4, Insightful

    Lets pretend for a moment that government-mandated backdoors don't violate our 4 amendment rights eight ways till Friday and really will be only accessible to government agencies. (Background sniggering) Stay with me guys. Let's say their birthday wish is granted and all of the big tech companies implement backdoor decryption that only they can access.

    Do they really think a single @#$%ing terrorist or criminal with half a brain is actually going to use those services instead of other alternatives? Maybe the next part of their amazingly forward-thinking plan is to convince Richard Stallman to bend a knee and put a backdoor in GnuPG.

    1. Re:Baffling.... by Anonymous Coward · · Score: 1

      stallman doesn't have anything to do with gnupg.

    2. Re:Baffling.... by Obfuscant · · Score: 2

      Let's say their birthday wish is granted and all of the big tech companies implement backdoor decryption that only they can access.

      (Outright laughter.) You haven't been paying attention. There is no wish left to grant. It's already done.

      One of those two major corporations listed in the summary provides system encryption for their users to protect their data. They also can undo that encryption whenever they want to. A friend's Mac Book was set up to encrypt his data, and to make a long story short, when his employer needed access to it the local Mac store was able to turn off the encryption for them. Whatever safeguards they currently have now to limit who can get the encryption removed are just policy writ on paper. The technical fact is that users of those products who think their data is safe because it is encrypted are living a pipe dream.

      Maybe the next part of their amazingly forward-thinking plan is to convince Richard Stallman to bend a knee and put a backdoor in GnuPG.

      I have discovered an algorithm which can be used to decrypt any content protected by assymetrical key encryption, but the margins of this posting not large enough to record it here.

    3. Re:Baffling.... by Anonymous Coward · · Score: 0

      > A friend's Mac Book was set up to encrypt his data, and to make a long story short, when his employer needed access to it the local Mac store was able to turn off the encryption for them.

      WOW, that is beyond shocking to me. Now that I think about it, it's probably something as simple as having two passphrases that protect the encryption key. In a corporate environment that would be the user's passphrase and the network admin's passphrase in case the user forgets or leaves. In this case, Apple could have a passphrase used on every OSX install so if they ever need to turn off encryption they can just use that passphrase instead to unlock the drive and then disable the encryption or change the passphrase to something like password123.

      I know someone in the police who told me that they can access anyone's phone, even BlackBerry and Android... EXCEPT Apple's iOS. For Apple phones they have to ship it to Apple and have them do it. I guess it works the same way. An second "administrator passphrase" to protect the key.

      I wonder if Microsoft have the same sort of thing on their BitLocker. I wouldn't doubt it.

    4. Re:Baffling.... by Anonymous Coward · · Score: 0

      Not just using alternative encryption software, but also using stenography can help them communicate undetected. Unless you know where the data is, you can't read it. One time pads have been invented long ago - there is already unbreakable crypto, all they need is to share the initial secret in a safe way.

    5. Re:Baffling.... by Anonymous Coward · · Score: 0

      https://en.wikipedia.org/wiki/Fermat%27s_Last_Theorem

      Nice reference BTW. That made me smile.

    6. Re:Baffling.... by Anonymous Coward · · Score: 0

      This does not in fact call for yellow and green rings and an RTG does it?

    7. Re:Baffling.... by Anonymous Coward · · Score: 0

      No, it will be backdoored remotely, they wouldn't trust each and every local shop staffer with the magic passwords.

    8. Re:Baffling.... by AHuxley · · Score: 1

      Re "I know someone in the .... who told me that they can access anyone's phone, ... EXCEPT"
      Every connected device sold in the US has to be "wiretap" friendly by design over every generation of product.
      Thats full logs, voice prints, plain text, images, voice, gps, call details, unique camera details per image, remote mic/camera on, network power on.
      A city, state, county might have some well understood new private sector software packages that they show all their "cleared" staff.
      The staff having seen that experiment then consider some brands safer and buy it, recommend it, whisper and chat about it.
      Word gets around that a few top, easy to find US brands are still safe to communicate fully and freely on over every decade.
      A few different branded phones are then used. A normal work phone, a private phone, a phone for ...
      Great to keep everyone of interest talking on digital networks that can collect it all.

      --
      Domestic spying is now "Benign Information Gathering"
    9. Re:Baffling.... by Gavagai80 · · Score: 1

      Most terrorists and criminals don't have half a brain, so yes I fully believe they'd be able to spy on more of them. Doesn't mean they should be allowed to.

      --
      This space intentionally left blank
    10. Re:Baffling.... by mlts · · Score: 2

      It may not be much assurance, but one of the head devs of BitLocker did state that there are no backdoors in it. Does that mean there are? Game theory might apply:

      If there are none, life goes on.
      If there is one, it will get discovered, BitLocker tossed out the window by every company in the world, replaced with something that is vetted like TrueCrypt or its descendants.

      Plus there are levels of law enforcement. Interpol/FBI is one thing. The local HOA trying to be nosy and use a civil action to get into someone's machine because they think someone had five guests when the limit is four... not so much. If there were a backdoor, the hand wouldn't be tipped unless it was a high value target.

      As for a recovering a MacBook's data, there are a number of variables involved. If someone (the previous employer) had access to an admin user, they could easily slip in a recovery key. Then, even though the key can't be used at boot time, the MacBook can be booted via target mode and the drive mounted on another Mac using diskutil.

      If the MacBook was completely independent and wasn't compromised via the network, it seems quite dubious that someone's employer could seize their computer, take it to a local Mac store, and a magic button be pressed to decrypt it. If this were so, there would be a hue and cry from MacRumors to CNN about this.

      Not to say this impossible, but it falls along the lines of improbable.

    11. Re:Baffling.... by Anonymous Coward · · Score: 0

      Regarding the MacBook, it is possible that the user chose to store a copy of the encryption key in the Apple cloud. When you enable disk encryption it gives you the option to do that and "yes" is selected by default. Does Microsoft have a similar convenience feature?

    12. Re:Baffling.... by MrKaos · · Score: 1

      I have discovered an algorithm which can be used to decrypt any content protected by assymetrical key encryption, but the margins of this posting not large enough to record it here.

      Have you implemented it yet?

      --
      My ism, it's full of beliefs.
    13. Re:Baffling.... by Anonymous Coward · · Score: 0

      BTW when I said the police can access anyone's phone, I meant once they have physical possession of it. Even if full disk encryption is enabled, unless it is iOS. For iOS, they have to ship it to Apple and they can decrypt it.

      What is the difference between a smartphone and a computer with Skype? The smartphone has a cellular modem. Does that mean if I attach a cellular modem to my laptop then suddenly that changes it into a cellphone and grants the police unlimited access to all data? For this reason I think it is stupid to use a smartphone as a laptop/desktop replacement as some people have been doing.

    14. Re:Baffling.... by sribe · · Score: 1

      One of those two major corporations listed in the summary provides system encryption for their users to protect their data. They also can undo that encryption whenever they want to. A friend's Mac Book was set up to encrypt his data, and to make a long story short, when his employer needed access to it the local Mac store was able to turn off the encryption for them.

      It works this way only if when you set up the encryption, you explicitly accept the option to generate a recovery key, and the option to store it with Apple.

    15. Re:Baffling.... by mlts · · Score: 1

      IIRC, Windows 8 and newer have this as a feature. However, I wind up using WS 2012 R2, where if one uses the MMC panel, BitLocker will ask you to store or print a recovery key. You can turn on BitLocker manually with "manage-bde -on x: -free" so it encrypts, then add protectors (passwords, recovery keys) later on.

      Best recovery protection I've found is to copy the recovery key text, toss it in an offline PW manager, check to see if you can unlock the volume with the key, and go from there.

      Of course, in an enterprise setting, this is moot -- just have BitLocker stash the recovery keys in AD, or push a data recovery agent.

    16. Re:Baffling.... by cfalcon · · Score: 1

      Didn't you read the post? Margin too small. That's an unambiguous and accepted reason in mathematics.

    17. Re:Baffling.... by Bob+the+Super+Hamste · · Score: 1

      Maybe but the GP has too small of a screen. I hear a 1'-2' length of rubber host is what is needed. It even works on symmetric key encryption.

      --
      Time to offend someone
    18. Re:Baffling.... by Anonymous Coward · · Score: 0

      That's a dangerous assumption to make. You're a fool if you don't treat the enemy as smarter and more capable, even if you're fairly certain they're not.

  7. It's not about strength, it's about Free Speech by Anonymous Coward · · Score: 2, Interesting

    This isn't about strong encryption. This is about encryption. This is about talking in code. This is about art that is too subtle for anyone but those who hold sufficient intellectual keys to understand. This is about telling twins that the weird childhood language they developed is criminal because the feds don't have a decoder ring for it yet. This is about Holmes zone of lawlessness in his handwritten journals stored in his some, leveraging fourth ammendment protections to more efficiently kill more people. This is about liberty having a price. This is about the good aspects of democracy requiring an unfettered conversation of free speech to achieve the best ends for its constituents.

    Jesus Christ, they can fscking implant passive radar reflecting bugs in usb ports and cables, and cut through buggy ass closed source firmwares like a hot knife through butter. This is Orwellian theatre. This is a bad joke. This is about entrapment, temptation, sin, and religious blackmail throughout the ages past and the ages to come. Wake up folks, read between the lines. The new normal is colorblind gender-neutral corruption. But who knows, maybe with a few more decades of progress towards eradicating widespread casual spousal abuse, maybe we can get to work on sane understandings of cybersecurity for the masses. But they aren't ready to understand yet.

    1. Re:It's not about strength, it's about Free Speech by Sowelu · · Score: 1

      Man, you weren't kidding about talking in code.

    2. Re:It's not about strength, it's about Free Speech by weilawei · · Score: 1

      Made perfect sense over here. Not sure what your issue with English is. It's a bit flowery, but it's coherent.

  8. Let's discuss privacy on ... by CaptainDork · · Score: 2

    ... fucking G+.

    --
    It little behooves the best of us to comment on the rest of us.
    1. Re:Let's discuss privacy on ... by Anonymous Coward · · Score: 0

      Well...we don't want anyone to listen in!

    2. Re:Let's discuss privacy on ... by 93+Escort+Wagon · · Score: 2

      It's security through obscurity!

      --
      #DeleteChrome
    3. Re:Let's discuss privacy on ... by AHuxley · · Score: 1

      A person has the freedom to develop, talk about, attract interested people, fix, code, test, compile, run and release any crypto they like on mainstream OS and networks.
      The security works as tested by a few or many experts who found each other on the same mainstream networks and sites...
      The obscurity part is entering the plain text, tracking the message and decoding.
      Do that on a tame OS and tracked network and all that freedom for security jus makes the message stand out.
      Decade in decade out, enjoy the "free" crypto community hosted by ...

      --
      Domestic spying is now "Benign Information Gathering"
    4. Re:Let's discuss privacy on ... by Anonymous Coward · · Score: 0

      ... fucking G+.

      What's wrong with G+ as a place for public discussion of privacy policy? Of all the options these days I find it has the highest signal to noise ratio and tends to have the most interesting and insightful discussion (even after the YouTube integration, which really pulled it down). Obviously you're trying to imply that your concerns about Google and privacy have some relevance here but what, exactly? If you have a point to make, spit it out.

    5. Re:Let's discuss privacy on ... by AmiMoJo · · Score: 1

      It's an open discussion group that anyone can join. Presumably a few NSA/GCHQ monitoring accounts have already signed up. It's not supposed to be secure or secret.

      --
      const int one = 65536; (Silvermoon, Texture.cs)
      SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
  9. A privacy oriented group hosted at Google! by chihowa · · Score: 2, Insightful

    The last sentence of the summary was awesomely qualified:

    This new G+ community will discuss means and methods to protect our rights related to encrypted communications, unfettered by government efforts to undermine our privacy in this context.

    They had to really stretch that sentence to get around the irony of hosting a privacy advocacy group on Google's servers!

    --
    If you want a vision of the future, imagine a youtube comments section scrolling - forever.
  10. Re: by Anonymous Coward · · Score: 0

    Its the best way to take a poll for the G-men.

  11. The right to NOT encrypt by Anonymous Coward · · Score: 3, Insightful

    What about the right to NOT ENCRYPT everything and still have privacy? The right to expect your spook agency to work to protect your privacy right from spying by foreign countries?

    No just foreign countries too. Why should the existing government be able to spy on every up coming politician, political campaign group, journalist, MP, congressman? How is it any of the governments business to watch the communications of its citizens and opponents?

    This "you are all terrorists" ergo we spy on you, and "we are all good" ergo we spy in secret with secret laws and secret interpretations of words, how is this defendable?

    1. Re:The right to NOT encrypt by Anonymous Coward · · Score: 0

      What about the right to NOT ENCRYPT everything and still have privacy?

      You're not ever going to gain that radical new right. Your grandparents didn't have it, your parents didn't have it, and your grandkids won't have it. The Internet is a cesspool..

      The right to expect your spook agency to work to protect your privacy right from spying by foreign countries?

      ..and countries are just a tiny part of that.

      As long as you send your love letters on the back of postcards, you're always going to have valid suspicions that various people might have read them. Either be ok with that, or start using envelopes.

  12. Ironic by Anonymous Coward · · Score: 0

    Talking about privacy on a Google service...

  13. G+? No. by Foresto · · Score: 5, Insightful

    You had me until you said you plan to use Google+. Bye bye.

  14. synonymous with control over computing devices by Anonymous Coward · · Score: 0

    If a big company has control over everyone's devices, and it takes extreme measures to transfer that control to their owners which few people are capable of taking, then in effect there are a few central places to control the software everybody can run. If something disappears from that vendor's app store, it might as well not exist for 99.99% of the population.

    It is CRITICAL to fight against this trend of yanking control of computing devices away from people and placing it with a few companies that, no matter how well intentioned, can be leaned on so hard by major governments that they are unable to resist.

    The only safety and guarantee of always being able to use strong encryption lies in decentralization of power.

  15. Same old same old.... by erp_consultant · · Score: 5, Insightful

    This is the same tired argument used by the government to "protect us" against "terrorists". And thus the birth of the TSA and Homeland Security. Another bloated bureaucracy that has been an abject failure by every measure. Billions of taxpayer dollars wasted every year and the "war on terror" is no closer to being won than the day it started. Kind of like the war on poverty, but that's another topic for another day.

    I don't trust the government having this information and I sure don't trust them to secure it. Just ask the 21.5 million people that had their personal information stolen from government servers recently at the Office of Personnel Management (OPM). Vulnerabilities on those systems were known since 2007 and yet nothing was done to fix it. As usual, the initial breach was downplayed and otherwise covered up.

    So by my count the government:

    a) ignored reports that the data was vulnerable
    b) did nothing to protect it
    c) lied about the true scope of the attack and
    d) tried to cover it up after the fact.

    And I'm supposed to trust these clowns to have encryption back doors so they can snoop around with my private data? Not bloody likely.

    1. Re:Same old same old.... by kamapuaa · · Score: 1

      And thus the birth of the TSA and Homeland Security. Another bloated bureaucracy that has been an abject failure by every measure.

      Well, the US hasn't had another 9/11...were you hoping for a worldwide end to people using terror as a weapon?

      --
      Slashdot: providing anti-social weirdos a soapbox, since 1997.
    2. Re:Same old same old.... by Anonymous Coward · · Score: 0

      The goal or the terrorists was to make their attacks a a relevant point in these discussions. You are basing your decisions on their actions, despite the fact that before that there is no evidence the the TSA has helped in any way. If you try to form our national policy based on your irrational fear of terrorists, they have won.

    3. Re:Same old same old.... by Anonymous Coward · · Score: 0

      And I haven't been attacked by any tigers so my tiger-repelling rock must be working.

    4. Re:Same old same old.... by AHuxley · · Score: 1

      Anything found on servers facing outside networks is usually altered to make tracking very, very easy. Anything interesting is changed to help track internal cleared staff "looking up" data.
      A unique term found or created by internal security is very trackable and would be on a lot of powerful watch lists at much more higher security levels.
      Vast accessible databases contain vast numbers of extra projects, terms, locations, ranks, support requests that might have existed in some form or never existed, sound amazing but are left in, updated as a trap.
      Tracking all internal and later external searches from such interesting databases is more easy if the data is readable and staff dont have to ask and have a reason in person.
      Its a honeypot for all internal staff cleared to have access at that level and points to any signs of external leaks or staff issues.
      That is why governments will do what they do. Constant internal and external tests to see who does what, why, how, when, where and can then act on the results with no risk to any real projects.
      Do the number of network look ups match the given paper work, paper trail? What else was been search for?
      The cleared staff, other governments, external groups looking in, the media have to understand the entire data set is very much 'real', 'vital' and 'active'.
      In decades past other governments would pay big, expose their own spy networks and believe they had something rare.
      Over the decades open network database finds are more carefully considered by most smart nations.
      Collect it all is not just for external public networks or public encryption use.

      --
      Domestic spying is now "Benign Information Gathering"
    5. Re:Same old same old.... by Anonymous Coward · · Score: 0

      If there was a previous history of tiger attacks, and if tigers were around you & ready to strike...

    6. Re:Same old same old.... by Anonymous Coward · · Score: 0

      And I haven't been attacked by any tigers so my tiger-repelling rock must be working.

      You can than Charlie Sheen. ;-)

    7. Re:Same old same old.... by david_thornley · · Score: 1

      Do you have any actual evidence that any post-9/11 security change prevented anything on the scale of the 9/11 attack? The Boston Marathon bombing suggests that having a lot of information doesn't prevent terrorism; Russia warned us specifically about those two, and they went ahead and bombed the end of the race.

      --
      "When you have eliminated the unacceptable, whatever is left, however improbable, must be the truthiness" - Holmes
    8. Re:Same old same old.... by erp_consultant · · Score: 1

      If anyone wanted to launch a terror type attack there is bugger all the TSA or Homeland Security or anyone else could do to stop it. That is the nature of Guerrilla type tactics and one of the reasons they are so effective. The only way you could stop it is to screen every single person that came into the USA every day. Not to mention everyone that is already living here. It is an impossible task.

      The fact that it has not happened does not provide evidence that one has been stopped. It may make you feel better to think that all of these government agencies are preventing attacks but the facts do not bear that out.

      Just take a look at Israel. They have been dealing with suicide bombers since the 70's. Their security is much, much tighter than ours in the USA but still people blow themselves up in crowded shopping areas and kill innocent people. All they can do is try to minimize the damage.

    9. Re:Same old same old.... by Anonymous Coward · · Score: 0

      You can't trust Google, you really can't. They keep inventing new ways to capture more and more of what we hold dear, and yet we remain complicit. Check out their new app..
      http://www.raniwrites.com/smooth-operator

  16. All For America, Fuck The Government by Anonymous Coward · · Score: 0

    Ima get snuffed 'cause I aint said enough to pipe down
    I pipe down when the White House is whipped out
    When I see that lil' Cheney dike get snipped out
    Lights out, bitch, adios, goodnight

    Now put that in your lil' pipe and bite down
    Think for a minute 'cause the hype has died down
    That I wont go up in the Oval Office right now
    And flip whatever aint tied down upside down

    Im all for America, fuck the Government
    Tell that C. Doloris Tucker slut to suck a dick
    Motherfucker, duck, what the fuck, son of a bitch
    Take away my gun, I'm gonna tuck some other shit

  17. Merely attempting to control it is madness by Karmashock · · Score: 1

    First, suggesting that encryption is too strong merely says that it is "strong enough to be a problem"... thus advertises its potential effectiveness.

    Second, the business community will not and cannot tolerate losing the ability to encrypt while also using the public internet synchronize their databases and handle communications.

    Third, who are they actually trying to stop from using encryption? The corps respond to court orders quite readily so a bypass is not required. They're doing this because criminals, terrorists, and other people that are either more overtly hostile or who have nothing to lose by refusing to cooperate are using the technology. The idea thus is to compromise the technology of the enemy by compromising the technology in general. However they have failed to grasp the first rule of criminals... THEY DON"T FOLLOW THE LAW. Which means they'll use an illegal version of the encryption to encrypt. And... sure you could cite them for using banned technology but you won't get the data. Which means this ENTIRE anti encryption campaign is little more than an admission of stupidity.

    I want to know who personally is pushing this... because whomever they are... they are fools.

    The complaint advertises for the effectiveness of the encryption, the power interests in the West that ultimately make everything work will not permit their encryption to be compromised, and the fucking people they want to actually compromise with this policy will be completely uneffected because they don't follow the fucking rules in the first place.

    Thus... whomever is pushing this... is an idiot or a fool... or both.

    --
    I've decided to stop wasting my time responding to AC trolls/sockpuppets... so if you want a response from me... login.
    1. Re:Merely attempting to control it is madness by AHuxley · · Score: 1

      Re "Third, who are they actually trying to stop from using encryption?"
      All governments have understood since the 1950's that any US or UK network, hardware is a trap.
      Longer, safer more traditional methods work just fine unless a one way message is needed and is worth the risk or everything related has been uncovered.
      Cults, faiths and other groups have their own person to person methods and years of complex internal vetting.
      Top corporate companies, private interests usually have contacts in their own governments and should be aware of what their competitors and other nations can do to their complex internal networks.
      Sleeper, deep penetration agents, gov fronts for international humanitarian work, expat workers with direct links to other nations are usually very careful too.
      A face to face holiday meeting back home or a one way message "broadcast" for all is low risk. Entire lives on social media hold up to most complex private sector and other gov scrutiny.

      The list of interesting people to watch is short, considering the new political message that all networks will be watching all users all the time.
      The only win is the sale of more collect it all hardware, software, upgrades and maintenance contracts.
      The traditional watch and listen as to keep the collect it all networks open and in use would have still worked. Parallel construction with wide press coverage as to the fake methods used was still working for many.
      The budgets for contractors "collect it all" systems might be so huge soon that they will have to be public by default?
      The UK had to work too hard to hide its emerging SIGINT spy satellites options. The change of funding to much cheaper US systems was a huge loss to US and UK contractors.

      With mil funding been more in the open, the growth for contractors is no longer limited by the ability to hide project funding every year. Whomever is pushing this will collect it all in terms of public funding over decades.

      --
      Domestic spying is now "Benign Information Gathering"
    2. Re:Merely attempting to control it is madness by Karmashock · · Score: 1

      ... the banks aren't going to agree. So the entire thing is moot.

      --
      I've decided to stop wasting my time responding to AC trolls/sockpuppets... so if you want a response from me... login.
    3. Re:Merely attempting to control it is madness by AHuxley · · Score: 1

      re "Second, the business community will not and cannot tolerate losing the ability to encrypt while also using the public internet synchronize their databases and handle communications."
      Most banks have everyday, normal accounts tracked federally down to the 100's of $ over time on any normal account.
      Thats all been reported and fully accounted for as it has been for years. Other issues are usually never public as the banks talk of the confidence of investors.
      More federal oversight on the same type of accounts would not be an issue.

      --
      Domestic spying is now "Benign Information Gathering"
    4. Re:Merely attempting to control it is madness by Karmashock · · Score: 1

      yes, and their encryption isn't backdoored. Their datacenters are backdoored. their encryption is not.

      --
      I've decided to stop wasting my time responding to AC trolls/sockpuppets... so if you want a response from me... login.
  18. Re: Nike Free Run Pas Cher Nike Air Max 2015 by dr.newton · · Score: 1

    I'm assuming this is a steganographic tour de force, meant to illustrate a method to hide even the existence of a message from our unwelcome network-snooping overlords, using either missing words or grammatical errors to cue the clued-in reader to the real message.

    However, either:

    a) I just can't crack the code, or
    b) I'm giving you too much credit. :)

    Anyone else want to take a crack at this?

    --
    Just another proletarian malcontent.
  19. Stand and fight for the right by Anonymous Coward · · Score: 0

    The boogie monster of rap,
    Yeah the man's back
    With a plan to ambush this Bush administration,
    Mush the Senate's face in and push this generation,
    Of kids to stand and fight for the right to say something you might not like.

  20. Comment removed by account_deleted · · Score: 1

    Comment removed based on user account deletion

  21. Re: Nike Free Run Pas Cher Nike Air Max 2015 by weilawei · · Score: 1

    I done me best when I was let. Thinking always if I go all goes. A hundred cares, a tithe of troubles and is there one who understands me? One in a thousand of years of the nights? All me life I have been lived among them but now they are becoming lothed to me. And I am lothing their little warm tricks. And lothing their mean cosy turns. And all the greedy gushes out through their small souls. And all the lazy leaks down over their brash bodies. How small it's all! And me letting on to meself always. And lilting on all the time. I sprang with the quickness like lightning, disappeared. I whistled for a cab and when it came near, the license plate said, "fresh", and it had dice in the mirror. If anything, I could say that this cab was rare. But I thought, "Nah, forget it"--"Never gonna give you up. Never gonna let you down. Never gonna run around and desert you, yo home to Bel-Air."

    Sniffer of carrion, premature gravedigger, seeker of the nest of evil in the bosom of a good word, you, who sleep at our vigil and fast for our feast, you with your dislocated reason, have cutely foretold, a jophet in your own absence, by blind poring upon your many scalds and burns and blisters, impetiginous sore and pustules, by the auspices of that raven cloud, your shade, and by the auguries of rooks in parlament, death with every disaster, the dynamatisation of colleagues, the reducing of records to ashes, the levelling of all customs by blazes, the return of a lot of sweetempered gunpowdered didst unto dudst but it never stphruck your mudhead's obtundity (O hell, here comes our funeral! O pest, I'll miss the post!) that the more carrots you chop, the more turnips you slit, the more murphies you peel, the more onions you cry over, the more bullbeef you butch, the more mutton you crackerhack, the more potherbs you pound, the fiercer the fire and the longer your spoon and the harder you gruel with more grease to your elbow the merrier fumes your new Irish stew

    Solved in approximately 42 seconds.

  22. What happens when wetware becomes feasible? by mark-t · · Score: 1

    ... And a computer can identify you strictly by your brainwaves?

    Further, such a system could theoretically be programmed to determine if you are under duress, and not permit access in such circumstances.

    Even threatening to throw a person in jail if they don't surrender their password wouldn't help in such a case... all that they would accomplish is putting a person in jail and still not having access to whatever information they thought was worth putting someone in jail for, and keeping someone in jail isn't free, by the way, and at some point it will cross the threshold of making even the slightest economic sense to do so, even if they tried to increase taxation levels to pay for it.

    --
    File under 'M' for 'Manic ranting'
  23. My comment is encrypted by Anonymous Coward · · Score: 0

    The secret content within never will be revealed.

  24. Chickens discussing their rights in fox's lair by Anonymous Coward · · Score: 0

    The metaphor would be funny if it weren't so sad.

    Serious message to that G+ community. If you're serious about privacy, then hold your meetings elsewhere. Not only does it send the wrong message to be doing this at Google, but what's worse, it shows that you are in denial of the very premise that user privacy deserves protection.

    Only the blindest of Google fanbois refuse to see the company as a major advocate of privacy denial when Eric Schmidt makes it so plain that he is devoted to ending privacy. The conflict of interest couldn't be greater.

  25. Re: If no secrets should be kept from the gov't... by Anonymous Coward · · Score: 0

    Good statement!

  26. Libertarianism vs. Statism again by mi · · Score: 0

    The attempted limits on encryption are of a kind with (unconstitutional) attempts to restrict citizens from keeping and bearing weapons.

    The very same loving, caring, and benevolent government, that provides our children with "free" public schools, is also the one with a Federal Department of Education having its own SWAT team.

    Other examples abound. You can not claim consistency in your thoughts, if you approve of one, but not the other...

    --
    In Soviet Washington the swamp drains you.
    1. Re:Libertarianism vs. Statism again by BlueStrat · · Score: 1

      The very same loving, caring, and benevolent government, that provides our children with "free" public schools, is also the one with a Federal Department of Education having its own SWAT team.

      Well, all those home-schoolers and private charter schools aren't gonna be assaulted by a military breach & clear team on their own!

      SWAT - For The Children

      Strat

      --
      Progressivism (aka US 'Liberalism'): Ideas so good they need a police/surveillance-state to enforce.
    2. Re:Libertarianism vs. Statism again by Anonymous Coward · · Score: 0

      It's like approving of an organization that sells a product manipulating the supply of their product to maximize profit. For a Libertarian it's OK as long as your product isn't labor and your organization isn't a union.

  27. Self incrimination by Anonymous Coward · · Score: 0

    Aren't we protected against self incrimination?

    Assuming they don't outlaw random messages.

    So if the government asks us whether this was random data or an encrypted message. Aren't we allowed to respond with: "I refuse to respond to this question on the grounds it might incriminate me."

  28. now it's worth it to... by Skapare · · Score: 1

    ...buy an Enigma.

    --
    now we need to go OSS in diesel cars
  29. n/a by Anonymous Coward · · Score: 0

    ENCRYPTION IS RACIST!!!11!!

    There, now the campaign to ban it will gain unstoppable momentum.

    Now where can I get my six figure policy consultant gig??????

    1. Re:n/a by Anonymous Coward · · Score: 0

      You forgot to mention that encryption is also sexist and misogynist. Lets erase it from the history books like the confederate flag. Yes we can!

  30. May I? by Anonymous Coward · · Score: 0

    Whooooooosh!

  31. A Tumultous Time by Anonymous Coward · · Score: 0

    "... these initiatives try to ensure the government's ability to conduct electronic surveillance. Some dangerously Orwellian assumptions are at work here: that the government has the right to listen to private communications, and that there is something wrong with a private citizen trying to keep a secret from the government. Law enforcement has always been able to conduct court-authorized surveillance if possible, but this is the first time people have been forced to take active measures to make themselves available for surveillance." - Bruce Schneier (1994)

  32. Constitution: Amendment IV by Anonymous Coward · · Score: 0

    "Amendment IV
    The right of the people to be secure in their persons, houses, papers, and effects, against unreasonable searches and seizures14 , shall not be violated, and no Warrants shall issue15 , but upon probable cause, supported by Oath or affirmation, and particularly describing the place to be searched, and the persons or things to be seized."

    I strongly feel that "secure in their...papers" means strong encryption. In the US. The end.

  33. really, I mean really?? by Anonymous Coward · · Score: 0

    What a bunch-a-punks

  34. That particular cat is out of the bag by eric_harris_76 · · Score: 1

    If they could, they'd ban opaque envelopes and envelopes with adhesive seals.

    --
    There's no time like the present. Well, the past used to be.