Slashdot Mirror

← Back to Stories (view on slashdot.org)

Lavabit Is Relaunching (theintercept.com)

Posted by BeauHD on from the blast-from-the-past dept.

The encrypted email service once used by whistleblower Edward Snowden is relaunching today. Ladar Levison, the founder of the encrypted email service Lavabit, announced on Friday that he's relaunching the service with a new architecture that fixes the SSL problem and includes other privacy-enhancing features as well, such as one that obscures the metadata on emails to prevent government agencies like the NSA and FBI from being able to find out with whom Lavabit users communicate. In addition, he's also announcing plans to roll out end-to-end encryption later this year. The Intercept provides some backstory in its report: In 2013, [Levison] took the defiant step of shutting down the company's service rather than comply with a federal law enforcement request that could compromise its customers' communications. The FBI had sought access to the email account of one of Lavabit's most prominent users -- Edward Snowden. Levison had custody of his service's SSL encryption key that could help the government obtain Snowden's password. And though the feds insisted they were only after Snowden's account, the key would have helped them obtain the credentials for other users as well. Lavabit had 410,000 user accounts at the time. Rather than undermine the trust and privacy of his users, Levison ended the company's email service entirely, preventing the feds from getting access to emails stored on his servers. But the company's users lost access to their accounts as well. Levison, who became a hero of the privacy community for his tough stance, has spent the last three years trying to ensure he'll never have to help the feds break into customer accounts again. "The SSL key was our biggest threat," he says.

33 of 54 comments (clear)

  1. Might be wise to still use PGP still... by ctilsie242 · · Score: 1

    It is nice to have a good transport layer for E-mail, but no matter how well secure it is, it is wise to have your final message/file encryption be separate, just in case something happens. The same reason people put stuff in a physical, sealed envelope before it goes into the courier's hands, even though the courier is 100% trustworthy.

    1. Re:Might be wise to still use PGP still... by sims+2 · · Score: 1

      I seem to remember that you aren't supposed to send cash in the mail because letters with cash tend to get lost in the mail at a higher rate than letters without cash.

      --
      Minimum threshold fixed. Thanks!
  2. Problem is - He's a US citizen by Indy1 · · Score: 4, Interesting

    so even if 100% of the service is hosted overseas, the gestapo errr FBI and NSA, will still put pressure on him to compromise the service.

    Any more, you want fed proof email, 100% of the solution has to be fed proof.

    That means non US citizens as employees working in a fed proof country, and servers hosted in a fed proof country.

    I think proton mail fits this need well.

    --
    Lawyers, MBA's, RIAA? A jedi fears not these things!
    1. Re:Problem is - He's a US citizen by Anonymous Coward · · Score: 1

      The way the FEDS bitch and whine about having to do the legwork of actual police work, I have my doubts about the amount of effort they're willing to put into actually hacking an alleged miscreant. They want to play on easy mode all the time.

    2. Re:Problem is - He's a US citizen by networkBoy · · Score: 4, Interesting

      While I think we all agree that nothing is invincible, you want it to be a very hard problem to break, and one that the site owner can't facilitate. Further you want tamper evidence, thus even if he's served an NSL with gag any action on it will betray that something's up.

      In other news, I'll be a customer again :)

      --
      whois gawk date unzip strip find touch finger mount join nice man top fsck grep eject more yes exit umount sleep dump
    3. Re:Problem is - He's a US citizen by Anonymous Coward · · Score: 2, Interesting

      Be careful, Protonmail sounds like "security charade" and nothing else.

      They claim their webclient is open source, except that on their github page you can only find the source code of older versions, not the current one. That's basically equivalent to using closed source software.

      They claim their protocol is OpenPGP-compliant, but for some strange reason they don't want to let users access their mail with third-party OpenPGP-compliant clients. After a lot of complaints, now they are releasing a beta, closed-source client to access the mailbox. Long story short: it's impossible to know for sure if they use the OpenPGP protocol or something else.

      They claim they are protected by "swiss privacy laws", that have just been heavily watered down, and weren't particularly strict before either, contrary to popular legends: for example, Greece has far stricter privacy legislation than Switzerland, according to Privacy International.

      And obviously they have an "underground facility" for their servers, which is really useful from an IT security standpoint, and surely isn't just marketing crap.

      It doesn't look good to me.

    4. Re:Problem is - He's a US citizen by F.Ultra · · Score: 2

      yes, where the service is hosted is unimportant since the US government always can put you into troubles since you are a resident citizen of the US. Because it's not the servers that are thrown into jail for not complying with the warrant.

    5. Re:Problem is - He's a US citizen by Aighearach · · Score: 1

      so even if 100% of the service is hosted overseas, the gestapo errr FBI and NSA, will still put pressure on him to compromise the service.

      Any more, you want fed proof email, 100% of the solution has to be fed proof.

      The problem has to be 100% fed-proof, too. For example as an American no such solution can exist because I am not physically "fed-proof" myself!

      If the sender and recipient are both not in the US, they can probably avoid this problem by other means, assuming they can prevent unauthorized access.

      I'm still not sure what a legit use case even is; it seems like it would be more effective to just use an email provider that hires a staff attorney and promises to defend customers if their email speech is illegally encroached upon by the government. Keep in mind that lavabit was shut down because he didn't want to assist what was a legit investigation, not any sort of government abuse.

    6. Re:Problem is - He's a US citizen by Aighearach · · Score: 1

      gmail doesn't sell data, why do people still not understand this? Google only sells targeted advertising services, they do NOT sell data about users like most internet companies do.

      If you don't even know what the different threat vectors are, how can you decide which ones to avoid, or succeed at avoiding whatever you decided to avoid?

    7. Re:Problem is - He's a US citizen by AmiMoJo · · Score: 1

      I scanned their site and saw you can pay $15 or $30, but it doesn't really explain for what. Is that monthly or yearly and what do you get for it?

      --
      const int one = 65536; (Silvermoon, Texture.cs)
      SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
    8. Re:Problem is - He's a US citizen by networkBoy · · Score: 1

      $15 annually...
      so, yeah, that's a year of service for $15

      --
      whois gawk date unzip strip find touch finger mount join nice man top fsck grep eject more yes exit umount sleep dump
    9. Re:Problem is - He's a US citizen by AmiMoJo · · Score: 1

      That's actually very cheap for a quality email service. I'm impressed.

      --
      const int one = 65536; (Silvermoon, Texture.cs)
      SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
  3. ProtonMail already exists by rainwalker · · Score: 4, Informative

    ProtonMail already exists, has 2 million users, excellent security and architectural design, zero knowledge on the part of the provider, 2 factor authentication, optional two password setup (one for the account, another to decrypt the inbox), is located in Switzerland instead of the US, etc. It's also trivial to use, the importance of which can't be overstated.

    In contrast, the new LavaBit is promising end-to-end encryption "later this year", as opposed to PM, which has always had it. It's concerning that a single SSL certificate was the only barrier between the users and total decryption. More competition is always good, but this looks like a significant step down from an existing service.

    1. Re:ProtonMail already exists by chill · · Score: 2

      And they just added Tor support, with their own .onion address.

      https://protonirockerxow.onion/

      For when you absolutely, positively want your e-mail to be slower than traditional post service.

      --
      Learning HOW to think is more important than learning WHAT to think.
    2. Re:ProtonMail already exists by allo · · Score: 2

      Have a look at mailbox.org. The people there are really competent for mail. posteo is another good option, they e.g. published their dovecot plugin to decrypt mails on access to store them safely.

    3. Re:ProtonMail already exists by Anonymous Coward · · Score: 5, Insightful

      Protonmail is just security charade.

      They claim their webclient is open source, except that on their github page you can only find the source code of older versions, not the current one. That's basically equivalent to using closed source software.

      They claim their protocol is OpenPGP-compliant, but for some strange reason they don't want to let users access their mail with third-party OpenPGP-compliant clients. After a lot of complaints, now they are releasing a beta, closed-source client to access the mailbox. Long story short: it's impossible to know for sure if they use the OpenPGP protocol or something else.

      They claim they are protected by "swiss privacy laws", that have just been heavily watered down, and weren't particularly strict before either, contrary to popular legends: for example, Greece has far stricter privacy legislation than Switzerland, according to Privacy International.

      And obviously they have an "underground bunker" for their servers, which is really useful from an IT security standpoint, and surely isn't just marketing crap.

      I would definitely trust Lavabit far more: their current source code is public, they use standard encryption protocols, and their founder already proved to be ready to stand up to the FBI.

    4. Re:ProtonMail already exists by Aighearach · · Score: 1

      For when you absolutely, positively want your email to be stored by the NSA to await improvements in decryption technology. ;)

      If you have no secrets, then you can encrypt safely. If you have actual secrets, then it is very dangerous to encrypt and transmit them because you're guaranteeing that your communication will be archived. If it is unencrypted then somebody might read it, but if they don't it will at least be archived in less places and perhaps eventually purged.

      A more sure way to keep a secret secret is to not write it down, not encrypt it, and not transmit it.

      Most legal things that people want to keep private are not actually secrets but merely confidential information, and then encryption works great; even if the government needs to review it, they will keep that as confidential as they can for both legal and operational security reasons.

      Secrecy is not a viable online goal, nor is perfect privacy, but significant confidentiality can be achieved.

      Whistleblowers though basically need to be willing to stand up and "face the music" of their whistle. Otherwise, they're not blowing hard enough to matter anyways.

    5. Re:ProtonMail already exists by John.Banister · · Score: 1

      90% of everything isn't secrets. If I encrypt everything, then I just have to make the 10% look like the other 90% before it's encrypted. By the time stored messages are decrypted, odds are good that either they'll lack the context to tell the difference, or that they'll know so much about that particular topic that the additional knowledge about the 10% won't be helpful. Plus, they'll have to put equal effort into getting nowhere with the 90% that's garbage.

    6. Re:ProtonMail already exists by Anonymous Coward · · Score: 2, Interesting

      ANY service that requires your browser to download and execute the crypto code from THE SERVICE... is a flawed service.
      You should be able to get the executed code from a third party coder. Otherwise the service can be ordered or backdoored or twisted into serving your browser defective crypto and other code.
      You're a fucking fool to use browsers in the way proton or lava does.

      Furthermore, SMTP is plain fucking broken in regards to cleartext headers, in particular to/from/cc/subject.
      And SMTP is plain fucking broken regarding the mail provider having knowledge.

      If you want SECURE messaging, you MUST move OFF SMTP and ON to a true end-to-end p2p messaging system, or AT LEAST a zero knowledge system.
      Ricochet over tor qualifies, as does pond and blockchain style broadcast networks.

  4. we need a GNU jurisdiction overseas by Anonymous Coward · · Score: 1

    to move viable commercial amd government computer equipment overseas where no local host may tamper with nuisamce physical facility take-over messages: a place where overseas the Crown of England and the Shah of Iran cant colonize or co-habit because the natives will be opinionated and armed without infringing regulations and are all able-bodied since rejecting GMO foods: ladies and gentlemen, im talking about America.

  5. Re:It's nice of NSA to put this honeypot back onli by Anonymous Coward · · Score: 1

    This guy went through some moderate crap to get where he is, including cancelling his service rather than surrendering his principles. Additionally, he went through the hassle of getting the ability to discuss what happened, which involved some court work. Why would you assume this is a honeypot all of a sudden?

  6. Groklaw to return? by Anonymous Coward · · Score: 1

    Please, please, can we have groklaw back? http://groklaw.net/ Pamela?

    1. Re:Groklaw to return? by Flexagon · · Score: 1

      This was my first thought also. Hope so, but it's been a long time.

  7. Spam? by ilsaloving · · Score: 1

    Question... With all the various contortions that the metadata takes, how well do they handle spam? I guess all the checks are done prior to storing the email on their servers?

    1. Re:Spam? by Aighearach · · Score: 1

      Any time you're using a small non-mainstream email host you have to expect to get spam and to have to handle the filtering client-side, with all the imperfections involved.

      However, if you're using secure email you can probably just trash anything that isn't encrypted anyways. And if spammers encrypt, just start adding their public keys to a filter. People paranoid enough to use this type of service, and non-technical enough to trust a service that purports to have these features, probably also have a "normal" email address for regular use if they actually accept normal email.

  8. PJ! Groklaw! Come back? by Anonymous Coward · · Score: 1

    Wasn't Lavabit's experience what caused the wonderful Pamela Jones to shut down Groklaw?

    Lord, how I miss that website. God bless you, PJ, wherever you are.

  9. SSL by manu0601 · · Score: 1

    SSL problem fixed: the key is now in a Hardware Security Module and cannot be seized by police.

    That fixes communication, but what about stored data. And why the FBI couldn't seize the hardware security module itself?

  10. SKIP THIS. Instead.... by WindBourne · · Score: 2

    what is needed is to require emails to be encrypted at the client side.
    With each new client set-up, any new users should be required to get their encryption key, or enter in their current ones.
    Then on the emails, by default, encrypt. If the user wants, they can turn it off on an individual one.

    --
    I prefer the "u" in honour as it seems to be missing these days.
  11. Re:It's nice of NSA to put this honeypot back onli by Aighearach · · Score: 1

    "All of a sudden?" Look how much time they've had to find his weaknesses.

    That's the tricky thing about trust on the internet; you can't trust. That is the only correct answer. If you have trust in technology, that trust is misplaced. If you have trust in people, that is probably misplaced too; and even if it isn't, you can't know for sure!

    I highly recommend adopting technology strategies that do not rely on trust. When I click on some perverted anime video with cat women, I have to accept that somebody might find out. If such perversions were illegal in my location, I'd have to assume I might get in trouble. If I ever ran for office, some jerk is going to pull out an old access log that proves I'm either a pervert or a prevert. That is just the nature of technology! Increased communication provides more information, not less. As some have said, "information wants to be free!" Information technology can't reduce information, it can only add to the available information.

  12. Re:VMWare is safe! by CronoCloud · · Score: 1

    As a former WebTV user, I know that WebTV's can't do telnet. Besides, you should be logging in via SSH on your PS2 Linux kit.

  13. Excellent by gweihir · · Score: 1

    We know that Levison is both capable with regards to technology and has excellent personal integrity. Add to that that he now also understand the legal angle better and this is one of the most secure offerings available.

    --
    Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
  14. Re:FBI by gweihir · · Score: 1, Informative

    Most of the law is not about right or wrong, but about keeping the population under control. As long as people keep confusing "legal" and "moral", this scam will continue.

    --
    Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
  15. Collateral Damage by sconeu · · Score: 1

    Collateral damage from the shutdown of Lavabit was the closure of Groklaw.

    --
    General Relativity: Space-time tells matter where to go; Matter tells space-time what shape to be.