Paris Attacks Would Not Have Happened Without Crypto

An anonymous reader writes with a story at Ars Technica, citing a Yahoo News interview, that National Security Agency Director Michael Rogers has explicitly blamed the terrorist attacks which struck Paris last November on communications backed by strong crypto. From the article: Because of encrypted communications, he said, "we did not generate the insights ahead of time. Clearly, had we known, Paris would not have happened." Rogers did not explicitly re-launch the campaign waged by FBI director James Comey to force technology companies to provide a "golden key" to encrypted communications. Rogers called encryption "foundational to our future" and added that arguing over encryption backdoors was "a waste of time." But he did say that encryption was making the job of the NSA and law enforcement more difficult. The interview comes shortly after the FBI won an order requiring Apple to provide technical means to bypass the security measures preventing them from unlocking the iPhone 5C belonging to Syed Rizwan Farook. Farook, along with his wife, are responsible for the December mass shooting in San Bernardino, California."

Not this old info again

They keep trying, however the true fact remains no encryption was used by these terrorists.

Re: Not this old info again

[Jason+Levine]

They used the incidious ROT-26 encryption. How are police expected to bypass that?!!!

Re:Not this old info again

[alphatel]

They keep trying, however the true fact remains no encryption was used by these terrorists.

Nor would it have helped prevent 9/11. Encryption is nothing. Intelligence and cooperation are everything.

Re:Not this old info again

[Thud457]

liar caught lying again.

Hey NSA, &other FED LEOs - don't destroy the infrastructure of the world economy with your abject incompetence. You can't even effectively make use of the encrypted data you already collect.

Re:Not this old info again

That's beside the point anyway. It doesn't fucking matter. If they had used encryption, would we start falling over ourselves to give the government back doors? No. The discussion shouldn't be about whether or not they used encryption. Part of me thinks that they keep repeating this shit over and over so that when we do get an attack in which the attackers use encryption (yeah, I'm intentionally avoiding all forms of the word "terror"), that will already be the frame of the discussion and we'll have to backpedal to get back to the "it doesn't fucking matter" that we should have been stressing in the first place.

Re:Not this old info again

[d4fseeker]

While I do agree with you, it's basically the same point underneath. Proving that attacks without encryption could not be stopped shows that encryption does not really matter in the first place. And as such we've landed on your standpoint. What some political dimwits are not getting is that no trained attacker would be stupid enough to make the information publicly available. Be it through encryption, obscurity or just by having the plans drain in the sea of useless information surrounding it... there are always methods of getting something done in secrecy.

Re: Not this old info again

[ichthus]

Well, ultimately, he was Brute forced to die.

Re:Not this old info again

[Vlad_the_Inhaler]

Actually, their lies go far deeper than that. The terrorist group involved have a glossy color magazine called Dabiq. Apparently that magazine carried an interview with the leader of the Brussels / Paris cell where he announced that he was planning to hit Paris. Several months before the attacks. I wonder if any of the secret services read the thing, it is in English.

Re: Not this old info again

[Victor_0x53h]

Terrible. I've never wanted mod someone down for a joke before.

Re: Not this old info again

Caesar's assassins used the ET-2 scheme.

Re:Not this old info again

[Solandri]

It's not quite that simple. There's an apocryphal story that right after the Cold War ended, senior officials from the KGB and CIA met one night for drinks and got to talking about their espionage exploits. The CIA people said how easy it must've been for the KGB to infiltrate an open society like the U.S. Able to blend in with the population, travel freely, and get access to documents while posing as regular citizens. The KGB people said on the contrary it was extraordinarily difficult. While the U.S. secrets were mostly all out there, they were mixed in with an ocean of tabloid and conspiracy publications an open society produces. They had to waste tremendous resources trying to figure out of that National Enquirer story about the U.S. having captured aliens and their UFO was made up, or if there really was some truth behind it.

That's what you have to deal with with open publications. Yeah western inellignece can read Dabiq. But ISIS also knows that they can read it. Thus it becomes a perfect platform for feeding western intelligence agencies disinformation. Anything that's openly published that way has to be taken with a huge grain of salt unless it's corroborated by other intelligence. The reason why intelligence agencies are so desperate to break crypto is because if you're encrypting something, you're presumably doing so because it contains information you don't want foreign intelligence agencies to read. Thus it is precisely the type of stuff intelligence agencies want to be able to read.

That's not to say we should roll over and let NSA put backdoors in everything. If they get that, then ISIS knows and can start poisoning their encrypted communications with disinformation, while pulling their real communication behind a higher level of encryption. No, in order for what the NSA wants to work, they would have to insert backdoors but also keep those backdoors secret from the public. My best guess is the western intelligence agencies are raising the spectre of backdoors in encryption software they know they can't break, in the hopes it scares groups like ISIS into using different encryption tools. Perhaps ones they can already break. Or maybe ISIS will try to write their own encryption software, which is notoriously difficult and can easily result in flaws which can be exploited by intelligence agencies to help them crack it.

Re:Not this old info again

[pregister]

They should be signing their comments and press releases with a PGP key to avoid confusion.

Wait...

[93+Escort+Wagon]

I thought the reason the French police were able to find the attacker's apartments, accomplices, and so on very quickly was because the attackers used regular unencrypted methods of communication, such as SMS?

Re:Wait...

[Feral+Nerd]

Yes, and indeed the referenced article says that we had two months of warning and did a drone strike to take out the command and control operation (or, more likely, some goat herders). And that wasn't enough to prevent the attack. If there's a lesson here, it's that this is an asymmetrical problem, and fixing it is going to require addressing underlying causes, not throwing cash and civil liberties on the bonfire in a futile attempt to even things up.

But it's so much easier to throw cash, guns and draconian prison sentences at a problem than tackling the root cause? I mean, just take one look at how successful the war on drugs has been!!!

Bollocks

[some+old+guy]

Mohammed Atta et al weren't using encrypted communications, just AOL and flip phones. Yet the TLA's totally screwed the pooch on 9/11.

A .125 batter can't keep blaming the bat forever.

[Citation Needed]

[thomas.galvin]

Bullshit. The Paris attackers did not use encrypted communications.

Was this an intelligence failure? Possibly. Was it an intelligence failure due to a lack of backdoors and/or laws against cryptography? Absolutely not.

I blame the Automotive Industry

[bigdady92]

because how else could the attackers have been in so many places at once. Magic? Jet Packs?!?!? Why it's the Car's that they drove to those locations that enabled them to murderate all those people. If we would just get rid of all cars in Paris this would never happen again.

Headline

[wonkey_monkey]

Paris Attacks Would Not Have Happened Without Crypto

That should really have been put in quotes to make it clear that this is what some guy is saying, and not anything remotely approaching a fact.

And even if technically true, the implications behind the making of the statement should probably be taken with a pinch of salt.

Re:Crypto?

The Paris attacks wouldn't have happened wihtout fanatism, extremist religions, guns, cars, street, stupidity, breathing, reproduction, the big bang and maybe good wine.

Re:Crypto?

[ganjadude]

pretty sure it was islam in this case.... lets stop pretending that christians, buddists and hindus are out there blowing up buildings and mass shooting people (in the name of their religion) on a literal daily basis

Re:Crypto?

[TigerNut]

Your goggles are on too tight... you don't have to look very far back in time to find the IRA and other Christian groups doing their thing. Remember also the Tokyo ricin attacks? That was some local cult. How about David Koresh and Jim Jones?

It will happen

[Sloppy]

It will happen someday, though.

A terrorist will buy a set of Star Trek steak knives over eBay and they'll use HTTPS to transmit their eBay password. A future terrorist will lock the door of their house (why are these people even allowed to have locks, anyway?) and his wife will plaintext email him, "Did you lock the house? Remember, we're going to that party right after work tonight," and he'll say "quit telling all the snoops on the Internet which days our house has no one home," and they'll start encrypting their personal conversations. And that'll be that: they'll be encryption users too, just like the rest of us.

Some day, a terrorist is going to use a motor vehicle to travel from their home to the site of their terror.

Some day, a terrorist will use an alarm clock, instead of the sun, to get up at the correct time.

We need to face the facts: technology is bad. Anything that empowers humanity, can be used by humanity in the service of bad things. Power is bad. Capability is bad. Failing to starve when the gods wants you to starve is bad, and being immune to smallpox is bad and is why the gods have to invent new ones, like AIDS. It's time to end this nonsense of technology, and go back up into the trees. Because the apes in the trees never do anything bad to one another.

The reason I know that apes never try to harm one another, is because I carefully cultivate shocking ignorance about anthro-- er I mean -- zoology -- no, wait -- I mean biology since plants also do ev-- no wait: game theory. Well, I mean, statistics. I try to remain ignorance of mathematics and everything which stands upon or can be modelled by mathematics.

And you can too. Join me in giving a fuck about whether or not bad people use the same technology as good people.