Should Cloud Vendors Decrypt Data For The Government?

An anonymous Slashdot reader quotes an article by Help Net Security's editor-in-chief: More than one in three IT pros believe cloud providers should turn over encrypted data to the government when asked, according to Bitglass and the Cloud Security Alliance (CSA). 35 percent believe cloud app vendors should be forced to provide government access to encrypted data while 55 percent are opposed. 64 percent of US-based infosec professionals are opposed to government cooperation, compared to only 42 percent of EMEA respondents.
Raj Samani, CTO EMEA at Intel Security, told Help Net Security the answers ranged from "no way, to help yourself, and even to I don't care..." But since vendors can't satisfy both camps, he believes the situation "demands some form of open debate on the best approach to take..."

Turn over: yes. Decrypt: no

[sciengin]

If they receive a legal and correct warrant, meaning one that has issued by a proper court, not a secret, shady, pseudo-military one, where the accused can challenge it, then yes, the cloud provider should turn over the data.

A smart provider however will have implemented its data management software in such a way that only his client has the key to decrypt the data it just turned over to the government. That way it cannot even be forced to decrypt it without violating the rules of mathematics and complexity theory.

If that is not the case, meaning that the cloud provider is able to decrypt the data themselves, then a warrant might be only the least problem a client will have with such a company. Most likely their biggest problem will be that the cloud provider uses that data to directly or indirectly harm them, either by selling it to advertisers or by being unable to protect it during hacking attacks.

Re:Turn over: yes. Decrypt: no

[Ormy]

This. Mod parent up.

Re:Turn over: yes. Decrypt: no

[Z00L00K]

As an user I wouldn't store my data with any kind of encryption that the provider offers, I would turn to only store it in Veracrypt archives or similar.

Re:Turn over: yes. Decrypt: no

Take your shitty "this" back to reddit you fucking millenial cocksucker.

Re:Turn over: yes. Decrypt: no

So ... My guess is ... you have absolutely no fucking clue how encryption works, do you?

No, our guess is that you and the original poster have no clue. In fact this isn't a guess. I will spell it out for you, since unlike the first AC I believe our humanities brothers given the chance to come along rather than just insulting them.

A smart provider however will have implemented its data management software in such a way that only his client has the key to decrypt the data it just turned over to the government.

This part is fine and sensible.

That way it cannot even be forced to decrypt it without violating the rules of mathematics and complexity theory.

This part is gobbledygook. There are lots of ways it could be decrypted.

• 
     
• there could be a weakness in the crypto algorithm which the government takes advantage of

•    

• the government could send code from the cloud provider to the client which sends them the decryption key

•    

• there could be a leak of the key from the the client side due to mistakes

•    

• the government could install a trojan onto the clients computer separately

None of these mean that client side encryption is a bad idea, but all of them can happen and none of them violate "the rules of mathematics and complexity theory" It's just not a panacea and if you fail to explain that you are likely to make the situation worse for people who trust the crypto without doing extra work to protect themselves which they would have done without it. Look at what Telegram has done in Iran.

The original AC is a bit crotchety, but he's right and even justified in being annoyed given that people are "literally" dying in countries such as Syria and Iran due to trusting crypto which isn't properly secured.

Re:Turn over: yes. Decrypt: no

Guess what? Law enforcement officials still caught bad-guys when all the data about whatever they were planning was in their heads or on papers the police never got to see during their investigations. Police being lazy is no excuse for insecure data storage.

Re:Turn over: yes. Decrypt: no

[cryptizard]

Besides simple cloud storage, a lot of applications require the provider to be able to decrypt a client's data. Gmail for instance: without being able to decrypt your emails you wouldn't be able to search through your inbox. There are ways to support encrypted searching but they currently impose a substantial overhead on the server, such that "free" cloud services wouldn't be feasible. If you were willing to pay $30 a month for your email, then maybe it could be done, but that is out of the question for most people.

Re:Turn over: yes. Decrypt: no

They also MUST report that information was 'handed over' with reasonable metrics.
Like HMA VPN watch market valuation suffer. Say no to behind your back betrayals.
The frequency of leaks is increasing.

Re:Turn over: yes. Decrypt: no

Learn to read.
All your examples involve the government unlocking it, which has nothing to do with what the OP said.
> That way it cannot even be forced
> it
As in the company holding the encrypted data.
The OP said that the company can hand over the encrypted data, and then the government can figure it out.
The company should not be able to decrypt the data.
That bit about mathematics and complexity theory was clearly just hyperbole.

Re:Turn over: yes. Decrypt: no

[BarbaraHudson]

Would you say the same for anyone who, instead of writing "THIS", would mod the comment up (at +5 right now)?

The original comment is 100% right - if you're storing sensitive data unencrypted on someone else's server, you're doing it wrong. Now I'm far from a millennial, but I would say THIS deserves to be modded to +10.

Re:Turn over: yes. Decrypt: no

[BarbaraHudson]

the government could send code from the cloud provider to the client which sends them the decryption key

The stuff should be encrypted locally, and the decryption key never made accessible to the remote computers. So, how are you going to do that if you can't exploit a hole in the client?

Re:Turn over: yes. Decrypt: no

[BarbaraHudson]

Not only that, but there are plenty of ways of hiding encrypted data so that you don't even know it exists. The oldest is a code book held by both sides, and keywords in the plain text. The germans got caught out on that one when one of their operatives sent the message "mother is dead". They messaged back "is mother dead or deceased?"

Re:Turn over: yes. Decrypt: no

[postbigbang]

No sane entity stores unencrypted ASSETS anywhere. No network is safe from anything, let alone the bunglers in government. Unless you want the world to know and therefore own your assets, encrypt it. AES-256 with extra hashes at minimum is good, but there are others that are just as painful to decrypt.

Cloud providers may have their own encryption schemes, but one presumes they're vulnerable, which is why you used your own-- and let the cloud vendor's scheme scramble it more.

This moots the initial question, which is should cloud vendors deliver the goods to $government. The answer is: you don't care. Go ahead, cough up whatever, it's useless without the keys and hashes/hashing algorithms used.

This is what CASB schemes are all about: control your own assets.

Re:Turn over: yes. Decrypt: no

[BarbaraHudson]

There's no reason you can't encrypt an attachment, then search for it using the plain text message. Example: Here's the plans for the power substation. Predictive analysis shows that the part outlined in red will fail by March 15th.

Translation: Here's the plans for the power substation. Sabotage the part outlined in red on March 15th. They decrypt the attachment, and proceed with their mission.

Re:Turn over: yes. Decrypt: no

[cryptizard]

True, but then you leave the burden of deciding which information should be secret on the sender, which is not always obvious.

Re: Turn over: yes. Decrypt: no

[gerf]

^^ mod parent up.

Re:Turn over: yes. Decrypt: no

[roman_mir]

Turn over: no. Decrypt: no. Fixed that for you. Nobody should turn anything over to any government. Government is the enemy of the people, you all should learn this simple fact.

Re: Turn over: yes. Decrypt: no

Agreed 1000%! However, I believe soon cloud operators will face regulation on this issue and will be forced to provide a means to decrypt for the gov or not be able to operate in the country.

And don't be surprised if a cloud provider that does only provide encrypted data get hit with an obstruction of justice or aiding and abetting charge.

Re:Turn over: yes. Decrypt: no

So that comment assumes you aren't supporting a totalitarian regime and won't get shot if you don't hand over the keys but anyway.

Encryption comes down a 1st and 4th amendment issue in the states. We used Navajo in WW2 to encrypt communications successfully; telling the Navajo they can't speak their language because it's encryption and the police could never understand what they are saying is ridiculous. It's also there to ensure whatever personal data you have is secure from someone getting into it when they are not supposed to.

One of the biggest issues with data security in a hosted environment is that unless you are performing the encryption and decryption operations at a location you own, meaning the cloud is used for 100% pure storage and you are not running applications where the filesystem is aware of file-based encryption, the encryption key is going to be resident in memory somewhere which means the host running the hyper-visor has access to your, and everyone else's, keys. You need to be running a cryptography mechanism that the government or vendor is not familiar with which generally means publicly available software or commercial software cannot be used. Mechanisms such as generating a new key every few hours either from a remote site or a special black box chip onsite are still prone to MITM and backdoor attacks; Intel for example has been offering AES256 acceleration and security, and TPM Modules have offered offer secure key storage for awhile now. Yet, databases are still being liberated from their owners lifted. No way you'd ever code software to use a special instruction to load the key into a register in the processor that someone else might be able to snoop.

This all goes back to a major lesson in information security that's about 40 years old, still relevant, and a lesson young infosec kids aspiring to be cloud wranglers and wire watchers still learn today, that everyone in the Venture Capital and MBA fields love to invent new and absolutely ridiculous pomp and circumstance to forget.

If you have Physical Access, it's all over but the cryin'.

Re:Turn over: yes. Decrypt: no

[fahrbot-bot]

That way it cannot even be forced to decrypt it without violating the rules of mathematics and complexity theory.

As though stuff like that has ever stopped the government (aka: politicians) to date. The only rule to remember is: You can't argue with stupid.

Re:Turn over: yes. Decrypt: no

[SvnLyrBrto]

Yes, But that's a known limitation of gmail. And if you're using the service, you've accepted that limitation.

Besides, it's a limitation that can be mitigated. Gmail allows access by standalone IMAP clients. So you can use whatever GPG-enabled client you like, on a computer running with full-disk encryption, and go ahead and use gmail. Google will know who you're talking to, but not what you're saying. And you would still be able to search your mailboxes locally.

Re:Turn over: yes. Decrypt: no

[AchilleTalon]

Upon reception of a valid warrant, the cloud provider should comply, provide the data and decrypt the data if it was encrypted by itself. Why a cloud provider should take side and decide to protect a party against another without legal binding to do so? There is no ground for such an insane behavior from a cloud provider. The cloud provider is providing services. If the client wish to protect his own data, it is up to him to protect it and encrypt it or not put it in the cloud in first place. Why should a cloud provider transform itself into a privacy activist?

However, if the provider is bound by contract to protect the data for its customers, in this case it is up to it to do so. But I don't know any sane person who would bind himself with such legal terms.

Re:Turn over: yes. Decrypt: no

[SvnLyrBrto]

I'd like to add:

Search for evidence, or assist in doing so: No. The government should not be able to conscript you into actual and unwilling service. With a proper warrant, as you describe, sure: "Turn over the 12 emails between party $x and party $y, sent on 2015-09-14." is okay. "Search for and provide us with every email in the last three years where person $x discussed topic $y with persons $a, $b, or $c, or anyone residing in country $foo." is not acceptable. That requires affirmative work, not just turning over specific (virtual) items they ask for. It steals productivity from the person and the employer. And, frankly, if I liked government work, I could have stayed in the one government contractor job I had; or actually gone to work for the government. "Build custom software, that otherwise would not exist, to insert a backdoor and destroy your product's security for us." is obviously entirely unacceptable as well.

and:

Force you to break the laws you're subject to in your business: no, No, NO! If our government wants access to data stored in the EU, that is nominally illegal to export out of the EU thanks to their data privacy laws; it should go through proper international channels to get access to it within the EU. It should not do an end-run around the law, and force some admin from Microsoft (Yes, this is a specific and, I think, still-ongoing case.) to open himself up to liability, and perhaps criminal charges; should he ever go there for vacation.

Re: Turn over: yes. Decrypt: no

Honestly its spam. Its the equivalent of replying with "lol".

Re: Turn over: yes. Decrypt: no

"...but Facebook is a business and Snapchat etc. can be regulated or taxed out of existence."

I won't mind.

Re: Turn over: yes. Decrypt: no

lol

Re:Turn over: yes. Decrypt: no

[MurryVonSok]

You should obey magic paper, the same way your government obeys its magical constitution.

Re: Turn over: yes. Decrypt: no

We need to end this ridiculous third party doctrine before cloud computing is ever trustworthy for anything except public, non secret data. Any business with secrets that runs all their stuff in the cloud is run by idiots.

Re:Turn over: yes. Decrypt: no

[jopsen]

A smart provider however will have implemented its data management software in such a way that only his client has the key to decrypt the data it just turned over to the government. That way it cannot even be forced to decrypt it without violating the rules of mathematics and complexity theory.

The problem is that sometimes the key is temporarily present on the providers machines, either sent with API requests for server-side encryption, or present on a VM running client software in provider cloud.

And as of recent stories it seems US govt believes it can't force the cloud provider to record the key when temporarily present. To me that is the equivalent for forcing the provider to spy on your behalf because the provider isn't merely providing stuff it has on file. Curious what is your take on this?

Re:Turn over: yes. Decrypt: no

I both agree and disagree.

If they receive a legal and correct warrant, meaning one that has issued by a proper court, not a secret, shady, pseudo-military one, where the accused can challenge it, then yes, the cloud provider should turn over the data.

It all depends on where the server containing the data is physically located. If it is within US jurisdiction, then yes, of course. If it is not within US jurisdiction, then the US should be required to acquire a legal warrant from the country where the data is actually located. Face it, 99.99% of all US government demands for data is just "we wants it, we wants it, my precious" and is not part of any actual investigation. Most countries would not release any data because the US government would be unable to provide any legal reasons for wanting it.

A smart provider however will have implemented its data management software in such a way that only his client has the key to decrypt the data it just turned over to the government. That way it cannot even be forced to decrypt it without violating the rules of mathematics and complexity theory.

The storage providing company should not provide any encryption at all, that should be the responsibility of the customer. Most companies are still using the elliptical-curve math libraries known to be hacked by the NSA to provide near worthless levels of encryption. If the customer decides his data is worth protection, it should be his responsibility to find an uncorrupted math library (that way he knows for sure). Otherwise the customer could believe the storage companies "we provide high levels of encryption" advertising and possibly be lulled into a false sense of security. This has the added benefit of keeping things above boards. If the government has to issue a warrant directly against the customer, they know they are being targeted and can counter in court. If the storage provider is hit with a gag order, the customer would have no idea his data is under attack. In most of these cases the government never releases this info to the customer because then they might have to justify their actions in court.

Re:Turn over: yes. Decrypt: no

A user.

The rule is based on whether the antecedent word starts with a vowel or consonant sound. User is pronounced yoozer, which starts with a consonant sound. This is a real tricky word for non-native speakers for several reasons. Your comment was perfectly understandable.

Re:Turn over: yes. Decrypt: no

[JohnFen]

The problem is that sometimes the key is temporarily present on the providers machines, either sent with API requests for server-side encryption, or present on a VM running client software in provider cloud.

If your key is ever present, even temporarily, on a third party server then your security model is broken, period. You should not be relying on server-side encryption, nor should you be running client software that needs to decrypt sensitive stuff in a VM in the cloud.

Re:Turn over: yes. Decrypt: no

[JohnFen]

The storage providing company should not provide any encryption at all, that should be the responsibility of the customer.

Well, I don't know as I'd go that far -- I can think of perfectly fine use cases where that would be handy.

However, nobody should consider such encryption to be secure enough for really sensitive information. It's more like a lock on a screen door.

Re: Turn over: yes. Decrypt: no

And my axe!

Re:Turn over: yes. Decrypt: no

I believe that no one except the actual owner of the data should be able to decrypt it. Therefore the question should be moot at this point. And no, the data owner should not be able to be forced to decrypt the data. Not by any government agency, judge, not even GOD!

Only when these conditions are met, can we say that data might be close to being secure!

Re:Turn over: yes. Decrypt: no

This is also why I watch the improvements in homomorphic encryption. That would allow you to not only upload your data already encrypted, but also process it in encrypted form with no danger of losing control of it. Depending on your use-case, it is the best of both worlds.

Re:Turn over: yes. Decrypt: no

It's bitztream, the autism-hating Slashdot troll!

Re:Turn over: yes. Decrypt: no

[Rexdude]

The biggest problem with client side encryption anywhere is the requirement that everyone have a set of keys so you can encrypt data for the recipient. Outside of a business set up, no private citizen ever bothers to use public keys so even if you want to use it, you're forced to send unencrypted mail because not everyone (hardly anyone, actually) will have keys of their own. GPG and other solutions only work if you can convince your friends/family to also use encryption for communication. Since everyone isn't at Edward Snowden level of risk of being snooped on, nobody cares.

Re:Turn over: yes. Decrypt: no

[Ormy]

Take your shitty "this" back to reddit you fucking millenial cocksucker.

I'm not a millenial and I don't use reddit. I strongly agreed with GP's statement but I'd run out of mod points so I gave my approval in written form. If this is a problem for you, no need to cry about it, just ignore it. Simple.

If they have a warrant

[cjonslashdot]

A warrant is supposed to provide independent (non-executive) oversight. No warrant - no data. That was the theory. Warrants exist to prevent abuse by the executive government, which would eventually tend to use unchecked surveillance powers to protect itself and to stay in power.

Re:If they have a warrant

[msauve]

Warrants are also supposed to supported by probable cause and be specific ("particular") about what's being sought and where. Not "phone records of all calls made in the US," which is exactly what's NOT supposed to be allowed.

Re:If they have a warrant

It's wishful thinking about warrants.

If China demands Microsoft hand over data for Diebold corp, which contains their US election machine data, it's fine as long as they have a warrant? You seem to assume your own countries warrant.
Or USA demands cloud data for Gemalto (the Dutch SIM card maker they hacked to get the handset keys) with one of their special warrants? OK for Dutch people?
Or UK demands US citizens cloud data in secret (Snoopers Charter warrants permits this), then hands it over to US agency (info sharing treaty permits this)? A legal but dodgy workaround of US rights. OK? Even allies have abused such a system.

A warrant only works if there is an interest party to oppose excesses. That's the person or company whose data they're trying to grab. That's the party with the interest in defending the data. A cloud provider just wants an easy life with decent profit.

In many cases a warrant has become just a letter or phone call with no opposing voice to challenge. It often has no judicial or independent check. e.g. a RIPA warrant in the UK, has no check, is not revealed to you, is just a letter from a policeman, is never challenged in court, and millions of these are issued.

Re:If they have a warrant

The problem is that first off a vast majority of information requests from the government these days are not in the form of a warrant, they area subpoena, which have little if any judicial oversight. Businesses can challenge them in court but often don't as this is a time and cost intensive process that can result in "unfortunate" side effects (see Qwest). Secondly warrants are a joke these days, for example the FISA court approves 99.97% of requests. And even in the rare cases where there has been enough evidence to prove beyond all doubt that a warrant (which can't be challenged until after the fact) was illegally obtained court cases have held that any evidence resulting from that search can be used anyways.

Re:If they have a warrant

[Beezlebub33]

FWIW, the argument that 'metadata is not data', and so who you called does not require a warrant, based on Smith v Maryland. The Supreme Court ruled that gathering metadata does not constitute a search.

However, that was 1979, pre-internet. In light of the ability to collect massive amounts of metadata, from almost all aspects of a persons life, combined with the ability to computer analyze that information, I would argue that Smith v Maryland should be re-considered. In that case, it was decided on the idea that the gathering of metadata provided limited insight to a persons life, and that is no longer the case.

Re:If they have a warrant

[ATMAvatar]

In that case, it was decided on the idea that the gathering of metadata provided limited insight to a persons life, and that is no longer the case.

It was never the case, or law enforcement would never have started collecting it in the first place. It was merely a bullshit argument to get around that pesky 4th amendment.

Re:If they have a warrant

[wvmarle]

While the amount of insight a piece of metadata provides maybe hasn't changed, the sheer amount of available metadata (and the capacity of analysing it) has increased drastically.

Re:If they have a warrant

[msauve]

The "metadata" in Smith v Maryland was limited to what a pen recorder could provide, which was called party number, time and duration. Contrast that to cell phone records which also contain caller number (so now data is specific to actions made by the target), location, voice/data/SMS information, and a stronger association with an individual (a landline of S v M vintage wouldn't be as closely associated with an individual as a cell phone).

Additionally, the decision in S v M depended upon a user's lack of an expectation of privacy - that was the days of Ma Bell, where you took what they offered (which included no assurance of privacy) or nothing. Modern cell companies are competitive, and most if not all offer specific privacy policies as part of their ToS, so there _is_ a reasonable expectation of privacy.

None of that has been addressed in subsequent cases, law enforcement has simply taken the attitude that anything other than the actual voice content is OK.

Re:If they have a warrant

How can you "gather metadata"? Metadata is the specification of what the columns in the packet/database/whatever are. It's the statement that bytes 0-24 are the destination or whatever. The destination itself is part of the data.

We are using the term metadata inappropriately and in a way that has legal implications and I think that it has been deliberate.

Re:If they have a warrant

[cjonslashdot]

Most definitely. Metadata is highly sensitive. Indeed, who you talk to is information in its own right - imagine an oppressive regime collecting a list of who the regime's opponents associate with: that list can be used to round up those who are opposed to the regime.

Re:If they have a warrant

[JohnFen]

I would argue that Smith v Maryland should be re-considered.

Me too, since the ruling made no sense to begin with.

"more than one in three IT pros"

1) Is it legal in the US to ask the question of job candidates, "Do you believe that the government should be required to hand over cloud data to the government without a warrant targetted to a particular individual?" I would ask this and reject anyone who said 'yes'.

2) Which immediately shows that the question is annoyingly ambiguous because it doesn't specify whether this is fishing expedition type access or targetted warranted access, so the survey results are meaningless.

In particular, it might be that e.g. German respondents with their strong privacy laws assumed it was only referring to access with a warrant.

Re:"more than one in three IT pros"

[Anne+Thwacks]

Correct -

• 9/10 Slashdot abusers believe that asking ill-defined questions lead to ill-defined results.
• 9/10 pollsters are paid to ask ill-defined questions.
• 9/10 "journalists" have some difficulty spotting a question, and when they do, they report on the spots, and not the question... I blame alcohol.

Re:"more than one in three IT pros"

"I blame alcohol."

Not enough?

Re:"more than one in three IT pros"

"Do you believe that the government should be required to hand over cloud data to the government "

At which point I thank you for your time and walk out of your silly interview. If you're so set on asking a sudden-death question without checking the question first, you're a worthless employer and quite possibly an idiot.

Re: "more than one in three IT pros"

Thanks, Obama.

Re:"more than one in three IT pros"

[JohnFen]

1) Is it legal in the US to ask the question of job candidates, "Do you believe that the government should be required to hand over cloud data to the government without a warrant targetted to a particular individual?" I would ask this and reject anyone who said 'yes'.

This would be perfectly legal in the US.

Nope

No. Governments get hacked on such a regular basis that they can't be trusted with keeping the information secure, as proliferation of locations holding information increases chances of it being accessed.
Also the governments themselves can't be trusted not to misuse information.
Also, information should never be decrypted under circumstances that the specific information is being asked for, directly or indirectly, by a foreign government. Globalism can go take a break in the bottom of the toilet.

Re: Nope

If you encrypt your own stuff, before storing it "in the cloud" -- you don't have to worry if the cloud provider hands your data over to the government, or whether they get hacked. Encrypt your own stuff, and you don't have to worry about any other actors.

if necessary

[Meight]

if it is necessary to provide data to the government

The real question should be

[johanw]

Do you think that cloud services should be setup in such a way that the provider is even capable of decrypting user data? IMO, the answer should be no.

Of course, for some kinds of publicly available data like websites this does not hold. If anyone on the world can see them and is supposed to be able to see them, the government can too, even without a warrant.

Re:The real question should be

[Antique+Geekmeister]

> Do you think that cloud services should be setup in such a way that the provider is even capable of decrypting user data? IMO, the answer should be no.

Encryption, and robust encryption, puts the data at the risk of losing the keys. Even securing the keys in a reliable escrow service leaves them vulnerable both to loss, and to theft. And if you test the performance of encrypted disks, encrypted SSD access, and encrypted network communications, all have significant performance costs and even electrical costs for supporting the additional processing needed. It also makes backups vulnerable to bitrot, where bitrot will break the decryption process where it might have been previously a recoverable error with unencrypted data.

This would mean very real performance losses and rate increases for even the simplest of cloud services. Few businesses are wiling to spend that much even on genuinely increased security.

Re:The real question should be

[wvmarle]

Why rate increases for the cloud service? The data ought to be encrypted before it even leaves the trusted host and is uploaded onto the cloud.

The problem with having your encryption done by the cloud service, is that the cloud service must have full access to your keys (not just store them with password protection). That in itself negates a large part of the reason you want to encrypt in the first place.

Encrypting everything before it leaves your own network may however cause a big headache when sharing the data with other people, which together with off-line backups is the only reason I can think of one would want to use a cloud service to store data. So anyway it's not all that easy.

Re: The real question should be

Please go educate yourself before posting things like this...

Encryption adds miniscule overhead in terms of cpu and power usage. If done in dedicated hw it adds even less..

Re:The real question should be

[cryptizard]

This kind of naive approach only works for simple storage services like Dropbox. Anything more complicated and the server has to be able to decrypt the data in order to do its job. Gmail has to be able to search through your inbox. AWS has to be able to run code over your data. There are some cutting-edge crypto solutions to do searching or computing over encrypted data, but they add substantial overhead on the server side. It would increase the cost of cloud services by 100x or more.

Re: The real question should be

Um. So at line rates, you're telling me that the increase of the cost of goods for encryption by the cloud provider is at zero? Cool! I'll write it into all of my requirements in the future 'aes 256 for all data at zero performance overhead and cost.'

Re:The real question should be

[Antique+Geekmeister]

> Why rate increases for the cloud service? The data ought to be encrypted before it even leaves the trusted host and is uploaded onto the cloud.

In that case, you'll wind up paying in the short or longer term in resources. Investing some of your VM's computational resources in local encryption means resources not available for the tasks that the server actually provides, and may require larger instances or longer run time. The encryption winds up costing electricity, if nothing else, and someone will wind up paying extra for that unless your servers are notably overpowered for their task.

I agree that full access to any keys for the cloud provider is a problem. It's why some people encrypt attached storage, and provide the keys manually at boot time. It's also why Java based keystores support manual unlocking of the keys when a Tomcat or similar server is started. That still leaves that startup session requiring manual intervention or a sophisticated "phone home" tool. Unfortunately, the work to provide and support _that_ is not free.

Re: The real question should be

Just another nail in the coffin of this 'cloue computing' nonsense which, let's face it, has two objectives:

- put IT people out of work

- make spying easier

Any other perceived benefit is secondary or, in most cases, imaginary.

Re: The real question should be

You should start with learning how to read... Nothing that was written there mentioned zero cost or zero overhead... What was said was that it adds a miniscule amount of overhead if done in SW and even less if done in HW.

On a 2Ghz single-core system:
In software it will cost around 15-25 clock-cycles per byte. Ie >70-130Mb/s
On a Intel cpu with AES-NI we can do it in HW at around 3.5 clock-cycles per byte. Ie >500Mb/s

If we take the overhead that google reported when switching to SSL.
https://www.maxcdn.com/blog/ss...

That impact is 2% on network overhead and 1% on CPU load for Google by the way

But this is for HTTPS not writing data to disk...

What will happen with data to/from disk is that the decrypted data will end up in the block-cache of the OS. The main requirements on encryption speed here would be when flushing data to disk.....

So next time you are looking for a hosting-company do:
- Add a requirement for AES-NI to see the increase in cost and do a test on what performance-drop you may get.
- Do a performance test to see what drop in amounts of clients/requests/whatever you get with encryption turned on if doing it in pure SW..

Take the values and calculate the cost per client/request/whatever and choose the one that has the lowest cost... Now also calculate the cost you had for everything without encryption and compare those prices....... it's a miniscule amount compared to the total cost..

Re:The real question should be

[JohnFen]

If operating in a secure manner means that cloud services become uneconomical, that is a strong argument that cloud services aren't yet at the point where they should be widely deployed.

Re:The real question should be

[JohnFen]

Which is a big part of why cloud services should be generally avoided.

Re:The real question should be

Anything more complicated and the server has to be able to decrypt the data in order to do its job.

If the server can decrypt it, then it wasn't a proper application of encryption to begin with.

If the server can decrypt it, then it's nothing more than security theater that uses encryption incorrectly to deliberately fool the user into a false sense of security -- all for financial gain, of course.

The "job" (as you put it) must be redefined so that encryption is used properly. If that ends up making some business models obsolete, or if that reduces the services that cloud providers can offer, then that is the price we must pay to use encryption technology correctly.

The only proper design is when the encryption is performed on the client side, using end-to-end encryption. Server-side encryption is an inherently faulty design that inserts a severe vulnerability into the system, always rendering it insecure.

Re:The real question should be

[cryptizard]

How is it different from any other contractual arrangement though? You might as well say "avoid banks" because money is only safe hidden under your mattress.

Re:The real question should be

There are work arounds for doing search on encrypted data but it requires a different and slightly more complicated approach.

Here's a simple example:

A user has a text file with 100 words. They upload the encrypted text file, and they also encrypt each of the 100 words (perhaps after portman stemming etc) and upload those as the search index.

Then when a user wants to do a search they encrypt each of their search terms and compare them to the encrypted search index.

So the server only has encrypted data of the text file, and the 100 encrypted words. Yet the user can search through them without the server having access to unencrypted data.

There are some problems with frequency analysis etc, but there are ways of stuffing the search index with gibberish to work around that.

Re:The real question should be

[cryptizard]

Yes you can do this but the leakage is actually quite significant. There is a paper from CCS last year that shows with medical records, for instance, a large fraction of the secret data is leaked when encrypted with deterministic encryption (necessary for your index). There are more advanced searchable encryption schemes that have better leakage, but at the end of the day you either settle for lesser security or have huge server overhead.

Re:The real question should be

[cryptizard]

If the server can decrypt it, then it wasn't a proper application of encryption to begin with.

https://www.youtube.com/watch?...

It's always good to encrypt data at rest. Even if the cloud provider has the key, it makes it less likely that attackers will get access to your data because they need both the ciphertext and the key, which are hopefully in different locations.

Re:The real question should be

[JohnFen]

How is it different from any other contractual arrangement though? You might as well say "avoid banks" because money is only safe hidden under your mattress.

The nature of the contract doesn't really enter into it, as neither the two primary sources of attacks (criminals and the government) are restricted by a contract.

Your analogy isn't quite on point, in part because there are special banking laws that somewhat mitigate the risk. Cloud providers are not subject to such special regulation.

The analogy would be better if you said "pay only with cash because other payment systems enlarge your attack surface". Which isn't incorrect.

If it's available for them to do so....

[Heebie]

If the information is available to the cloud provider to do so, then they should.... however... the cloud customer should be encrypting the data in a fashion where the cloud provider has no access, so the cloud provider then just hands over a big lump of encrypted data... then they are not in violation of anything, and are not "interfering with an investigation" etc.., but they also haven't compromised their customer's security... because they aren't capable.

Depends

[alzoron]

Are we talking just friendly requests or court orders that went through the full legal process? If it's just a request the response should be "Screw off, go get a warrant." I'm of the opinion that anyone that stores data for you in a professional capacity is acting as an agent on your behalf and should enjoy the same legal protections that you yourself would have if you had the data yourself.

Re:Depends

The response should be "Please make a written request on department letterhead and I'll forward it to legal." Then inform legal if they decline to make a written request and may try to con someone else. Legal can tell them, their supervisor and the district attorney to go fuck themselves and direct all further requests to the legal department.

Re:Depends

Brave words. I dare you to repeat them to a bunch of scary-looking men with guns who are doing the State's bidding and are fully backed by its unassailable might. Yes, you might be right and in the end you might be aquitted... But who will give you the lost decades of your life back? If you ever come out of prison alive... Scary things happen to those who say "no" to the State.

Useless question

In the end, they will be forced to. The move towards the Age of Total Surveillance is irreversible. The populace will have to adapt to being watched 24/7, everywhere. There's no turning back.

Re:Useless question

[Z00L00K]

Which is why Windows 10 was pushed so hard.

Re:Useless question

[arth1]

Which is why Windows 10 was pushed so hard.

The harder the push, the more inevitable the fall.

People can take a lot of abuse, as long as the abuse is added gradually. But when it becomes clear that they've been backed into a corner, they will react - violently.

Re:Useless question

Wanna bet? People will NOT react. Not at all. They will huff, puff and act all outraged but in the end, food on the table and a roof over the head are the priorities. There will be grumbling, there will hand-wringing, but in the end there will be meek and resigned acceptance. As always. The few dissenters will be ignored, demonized and should they ever try to act the state WILL react - violently. Are you willing to die for a long lost cause? Are you willing to see your family suffer? Think well.

Should they? No. Will they? Probably.

[darthsilun]

Then the government can come to me – with a warrant – if they want me to decrypt my data for them.

I don't store my encryption key on the server with the data.

Cloud providers

Why are they even in the business of encrypting their customer's data. Let the customer encrypt their own shit then the problem is shifted from the provider to them.

They wont do it for the users...

If they will do it for the Govt, then they should legally be forced to send me a unencrypted tarball DB dump of my own data.

Give me my data you scumbags.

Which government?

So which government are we talking about? Because each company has multiple jurisdictions, and can be forced in ANY of those jurisdictions to hand over data for ALL those jurisdictions.

In the UK, Theresa May made it legal for UK to demand any data from any company 'cos Terrorist-might-eat-your-babies. She didn't restrict it to the UK. She even added a clause requiring they decrypt any data they encrypted. As soon as she did that, she opened the doors to Putin who promptly demanded keys from every business in Russia 'cos Terrorists-might-eat-your-babies.

By requiring they have a way to remove any encryption they add, it means they also can remove it for Putin too.

Putin's law, likewise doesn't restrict itself to the keys only for Russia, once he's got them trained into handing the FSA live feeds for their data, he'll demand more and more access abroad. So will Theresa's lot. So will the Chinese soon. Thus they've created a race to zero-privacy for countries that require decryption.

EMEA is basically middle east. Are Israelis cool with Saudi Arabia getting their data? Are Saudi's cool with Israeli's getting their data? I'm pretty sure they're not, yet Microsoft, Drop Box, Google, etc. is in both places and subject to both sets of demands.

Re:Which government?

"Are Israelis cool with Saudi Arabia getting their data? Are Saudi's cool with Israeli's getting their data?"

Sometimes I wonder if random apostrophe plurals aren't really a kind of steganography ...

Redneck Rampage

Boy that is sure a fun game. I started with the demo and moved on to the full version.

You people who are for it need to think it through

The government is incompetent. They go in and get your data and guess what? There is nothing that will prevent them from accidentally or intentionally releasing it. Our government is hardly trustworthy. And they are constantly being hacked. And you people think they can be trusted with your data?!

And just think, someone with enough political connections could get a look at that data and maybe get some business ideas or a look into a company's strategic plan or technology.

Working on a manuscript for a Tom Clancy type of book that has terrorists and a fictional plan about blowing something up? And some grunt with a badge and gun sees it? Guess what?! Off to jail without trial.

Duty to Protect Privacy

[Roger+W+Moore]

I'm of the opinion that anyone that stores data for you in a professional capacity is acting as an agent on your behalf and should enjoy the same legal protections that you yourself would have if you had the data yourself.

That's not what I want since it leaves the provider the option to voluntarily share my data. What we have in Canada is far better: the holder of the data has a legal duty to protect your privacy and cannot share you data with anyone unless required to do so by law.

Probably have to with a warrant

[swb]

With a warrant and the ability (the keys), cloud vendors would probably have to decrypt it.

The rubber hits the road when it comes to "without a warrant" -- that tests how flexible their morality is. Are they willing to turn down only the requests where a legitimate court order wasn't present?

It seems obvious to me that if you want encrypted data, you probably want to encrypt it yourself. The cloud is just storage, you can create your own trust model for encrypted data that doesn't include them.

That being said, there may be practical advantages to cloud-provider managed encryption where the risk:reward makes provider encryption worthwhile. What would be nice would be an encryption system with an access log of some kind to verify key usage. This would allow for a canary in the coal mine warning that your data had been decrypted by someone else. It's imperfect, but it's better than just silent loss of access control.

Re:Probably have to with a warrant

[arth1]

With a warrant and the ability (the keys), cloud vendors would probably have to decrypt it.

A warrant can force them to hand over the data and any keys they may have, but demanding that they decrypt it (in the US) requires invoking the all writs act, and that will require more than a rubberstamp warrant. It cannot be used for more convenience - it can only be used when there are no other judicial or practical means.

Data

()*&C*Y_@()#+_(D_(++_*()&(*&#_&*DFEWJI@+*+)(*#$_()&FE{FOPI#@$+()*

There, take that you chowderheads.

Re:Data

[Opportunist]

What? My mother was a saint!

Re:Data

That's not what she said last night. :)

Correct answer is: they cant

If they were running things properly, they wouldn't be able to decrypt the data. If they can, it means anyone can and they cant be trusted.

wrong question

A legal company will eventually do everything a(*) government requires, or stop doing business in that country. The latter only if the country is insignificant or the expected negative PR effect is huge (eg doxing queers for the Iranian government).
The question should be, should they be able to? Should they ever hold the key? Of course not. If you trust some random "cloud vendor" (**), why encrypt at all?

(*) funny how these questions always assume there is only one government
(**) mental image: balloon guy at fun fair

Re:Wrong Question

[jopsen]

Most of the time you don't just store data.. Often you need to process it too, and doing so in the cloud is easy and cheap, thus you need the decrypted data in the cloud.

Re:Wrong Question

[JohnFen]

That's actually OK as long as everyone who has an interest in the data is aware that their security is being sacrificed to save a few bucks.

Now you have to convince me

[Opportunist]

Why should I store my data with you if you will hand it over to someone with as much as a "gimme" as an order? Moreover, why YOUR government. I fully cooperate with mine. No questions about this. Yours? Piss off!

No.

No.

Encrypted data? Sure.

[fahrbot-bot]

More than one in three IT pros believe cloud providers should turn over encrypted data to the government when asked, ...

Have all the encrypted data you want. The keys and/or forced decryption are another matter.

TL;DR Yes, with a non secret warrant.

There was a terrorist thwarted earlier this week near where I live. The police tracked him on the internet, knew of his sympathy for ISIS, and were able to act just before he was going to set off his bombs. That ability saved lives. There are big concerns about the abuse of this ability, and there should be an absolute requirement of a warrant that is publicly available after the danger has passed or after a limited period of time, possibly with some names and details censored to protect ongoing investigations.

Freedom comes with responsibility.

TL;DR Yes, with a non secret warrant.

Re: TL;DR Yes, with a non secret warrant.

Mod parent up... Oh, oops, this is /., where thoughtful balanced posts like the parent are molded down as trolls (like I ought to be ;)

Re:TL;DR Yes, with a non secret warrant.

So where was this?? Should be in the news by now..

Re:TL;DR Yes, with a non secret warrant.

[TigerPlish]

There was a terrorist thwarted earlier this week near where I live. The police tracked him on the internet, knew of his sympathy for ISIS, and were able to act just before he was going to set off his bombs. That ability saved lives.

Can you tell us if the police just saw his incoherent allahu ackbar noise on Facetwat, or did the police actually got a warrant, and broke into his.. what.. email? SMS?

You see, AC, I doubt most crims have their plans squirreled away on a secur-ish machine encrypted on hardware and locked in a safe. I think most crims brag their intentions openly, be it Facetwat, or the local pub or burger joint.

Re: TL;DR Yes, with a non secret warrant.

Or mods are not wasting their points on an AC... I've been using my mod points on this thread so had to post AC. I have a simple policy of never moderating an AC up but it is sometimes necessary to mod them down...

CSA is all racketeering and money laudering

Explore their business model, origins, and executives. It has nothing to do with security.

More than 1 in 3?

More than 1 in 3? Pretty sure we can understand percentages or god forbid decimal places. More importantly wouldn't that look better as 65% SAY NO to decryption for the government. What kind of spin are you trying to put on that data. 1/3 say yes... get the hell out of here with that nonsense.

No.

No. Absolutely not. Why is this even a question? Next!

Phrased this way you're asking about rule of law.

[hey!]

If you're in a situation where the government has proper legal authority to demand decryption, and you believe in the rule of law, then you must decrypt.

That much is simple. But there are two complicated angles to this: (1) What to do when the government doesn't have the legal power to compel you to decrypt and (2) when the government should have the power to compel you to decryupt.

As a private citizen one often does things one is not required to out of public-spiritedness. But as a provider of IT services you're not being public spirited with your own resources, you're volunteering stuff that belongs to other people -- in fact stuff those people have entrusted to you. So I'd say the decision boils down to this: as a provider of IT services you should decrypt your customers' data if -- and only if -- the law compels you to.

There are exceptions, e.g. if the Gestapo are looking for Anne Frank's family you'd be justified in not decrypting a document that will lead them to the attic where they're hiding. In other words situations where civil disobedience is justified. But then you'd better be prepared for the consequences.

As for how much legal power the government should have to compel, I've watched these things for many years and thought about that, and the conclusion I've come to is there is no one single, simple answer. There are good arguments on both sides, but the danger is in the assumptions behind the arguments. My belief is that the amount of power the government should have to compel should depend upon the degree to which that power is constrained by oversight and transparency. The harder it is for a government to abuse a power the more it safe to give it power; or equivalently: the easier it is for a government to abuse power the less it should have.

Let's put this in another way...

[Z80a]

Should the postal service decrypt any mail before delivering it to the government, even if they don't even have the means to do so?

Wrong Question

[CanadianMacFan]

Why is anyone putting anything on the cloud that they haven't encrypted themselves?

Of there there are some things that you can't encrypt beforehand like the pictures and contacts that go into iCloud. But if you are just throwing files up onto storage on some file server then you should never be depending on the providers encryption. Encrypt all files yourself and then let the provider encrypt it again. That way even if they do happen to hand it over to some government with the ability to decrypt it all that government will get is some encrypted files.

On my Mac I created an encrypted disk image and I use BitTorrent Sync as cloud software. I put all of my important stuff that I want to work on there when I'm away. The transmission is encrypted and the data is encrypted too. Underneath the disk image is stored as a series of blocks so only those blocks that are changed are transferred instead of the whole disk image. It works very well.

should

[MurryVonSok]

Should the government...?
No, it should not.

What financial incentive do I have to do anything for your government? Are you my customer? Did you sign a contract? Oh, you didn't do any of those things? Then fuck the hell off. I have no reason to waste time or money on you.

Re: You people who are for it need to think it thr

Do not assume incompetence. That's just right wing fox news propaganda that too many people buy into.

Even things that look like failures are engineered by people who know exactly what they're doing. I'll say especially things that look like failures.

The question is irrelevant.

Should Cloud Vendors Decrypt Data For The Government?

The question is irrelevant. If the vendor can decrypt the data, then it wasn't properly encrypted to begin with.

Encrypting data on the server is essentially a "Alice-gives-the-message-to-Bob-who-then-encrypts-it-for-Charlie" situation. The vulnerability is built right into the design -- therefore, it's not a proper application of encryption. It's security theater that uses encryption incorrectly to deliberately fool the user into a false sense of security -- all for financial gain, of course.

The only acceptable place to do encryption/decryption is on the client side, using end-to-end encryption. Period. End of discussion.

I am aware that E2E encryption reduces the types of services that can be provided by cloud vendors. But that reduction in service is a necessary price we must pay in order to actually implement encryption correctly.

NOPE NOPE NOPE %FBI SLASHDOT% NOPE NOPE NOPE

The public pay the salaries of the FBI and CIA. Of course nobody is going to pay taxes so you can be a fucking gestapo state.

Fucking nitwits. Fuck your kids too.

Re:NOPE NOPE NOPE %FBI SLASHDOT% NOPE NOPE NOPE

Getting stories straight from FBI reading material sites.

https://www. helpnetsecurity.com /2016/08/12/cloud-vendors-cooperate-government/

Fucking feds go learn a skill besides stealing lying and honypots.

http://thenextweb.com/insider/2016/01/28/how-the-fbi-became-the-worlds-largest-distributor-of-child-sex-abuse-imagery/
http://arstechnica.com/information-technology/2015/12/ian-murdock-father-of-debian-dead-at-42/

https://yro.slashdot.org/story/16/08/05/0329246/popular-bittorrent-search-engine-site-torrentzeu-mysteriously-disappears

Re:Phrased this way you're asking about rule of la

[JohnFen]

If you're in a situation where the government has proper legal authority to demand decryption, and you believe in the rule of law, then you must decrypt.

Yes, and it's unfair and unrealistic to expect companies to violate the law to protect your data (even if the law is abusive). This is why the services themselves should not have the decryption keys. That allows them to comply with all laws without endangering their clients.

Should they or WILL they?

[p51d007]

Only under a court order, should they do this. And by court order, I mean an open court of law, not these so called hush hush courts that no one knows about. But, what will happen, is these businesses will be forced to decrypt the data "or else" their access to the internet will be disrupted, the IRS will magically investigate them, justice department will investigate them, labor law will investigate them and on and on. The government, has unlimited resources to get anything they want.

Well I thought it was funny

[Bruce66423]

but then being introduced to Monty Python at the age of 12 is liable to do interesting things to one's sense of humour

Likewise the UK data protection act

[Bruce66423]

To release data without a legal justification would constitute an offence. The fact that it happens routinely and is seldom prosecuted is disappointing, but the potential is there.

Turn over ciphertext and a onetime pad key...

Form the key by XORing the ciphertext with something you like...perhaps text of the Bible or some favorite book...
Then turn over the ciphertext and this key.
Don't do, or offer to do, anything else. And only turn in anything if your system has been logging it, which is not
really a good idea.

"asked"

[Tom]

When they are asked? Hell no! You do that even once, you will be on my list of vendors I will never, ever work with, and recommend every client I consult to not touch with a ten foot pole, either.

When served with a proper court order? That's a different story.

American Business Espionage

[treczoks]

One important aspect of all the primarily American underwear sniffing is that the US services also do business espionage as part of their mission, as they see an strategic asset in this. And they supply American companies with results from these actions, like Boeing, who got information on Airbus contracts to undermine bids.

So with some cloud providers willingly spreading their legs to be raped by the TLAs, for a non-US company to put business to put data in a cloud system could be considered gross neglect or even willful damaging.

They don't ask - National Security Letter

[treczoks]

They don't need a proper court order to force the cloud providers turning over the data. All they need is a "National Security Letter", then the cloud provider has to drop its pants and bend over. No nasty court order necessary. Forget "Due Cause" and "Fourth Amendment", that's a thing of a past long gone.

Support Fees!

[tmjva]

Sure! If the government pays the vendor for support.