The total loss of anonymity and privacy counters strong crypto use.
Thats why spies used number stations and other methods to ensure anonymity and privacy. https://en.wikipedia.org/wiki/...
The tracking is of every communication. That removes most anonymity over years.
People looking for or who use crypto that works will be found and their messages will be collected.
XKeyscore https://en.wikipedia.org/wiki/...
"Detect people who use encryption.. "
"Showing the usage of virtual private networks (VPNs) and machines that can potentially be hacked via TAO."
So even if the one time pad trade craft is always good, the device creating the message might not stay secure.
Education has value. The schools teach. People want to learn.
Exams are passed on merit to get into a really great university.
So the math skills are created.
Also consider a long history of maths and science. Computer access and later faster network access.
Other nations tried to do the same over the years. What did Russia get right and so many other nations totally fail at?
The UK had its BBC Micro https://en.wikipedia.org/wiki/... for education and a lot of very poor people all around the UK got so see and use a computer.
Given the funding and early access to computers the UK should have been a very advanced computer nation?
If it was only about hardware the early attempts at computer education would have allowed the UK to advance.
The USA educated generations in science after the 1950's with more funding. That provided a good selection of very good US teachers for the next generations.
The USA filled some of its schools with new computer labs, books, networks, educational software, robot kits and teachers who could teach. A lot of equipment and books got offered to different schools all over the USA.
Some parts of the USA got vast amounts of new funding for very poor students, per student. Did any of it help or change results? Not as much as expected per generation per student when tested given all the new spending.
If it was only about computer access, the best teachers and funding the USA on average would be very advanced given the amount of funding per student in some US states and cities..
What was the difference?
Passing exams, staying with real merit advancement. In Russia getting good grades and knowing things is seen as a good thing.
A culture of math, science, art, languages, music, sport, faith and education is encouraged and supported.
A pride in culture, art, engineering, maths, Russia is passed to each generation who want to learn and study.
For people in the USA trying to get a wide picture of history try Gymnasium (school) https://en.wikipedia.org/wiki/...
Not much on Russia but it shows a different way of approaching education that has shaped different nations.
On Russia https://en.wikipedia.org/wiki/...
The key is the exams and the need to pass on merit. The USA and UK selected very different educational systems over the last decades and per student funding.
The results of such very different failed methods show decades later over entire nations.
Too much social promotion https://en.wikipedia.org/wiki/... in some nations and not enough low cost passing tests only on merit.
Re The government has no legal way to.....
Germany to pour cash into mass surveillance (08.09.2016) http://www.dw.com/en/germany-t...
"particularly decrypting what the report calls "non-standardized telecommunications," meaning widely-used messaging services"
Wait for the blasphemy rulings over cartoons.
Extra crimes are listed if the blasphemous material is animated and has any music or songs.
Every faith and cult will pour funds into their legal teams to get specific accounts or identifiers.
Comment on a communist party, its history or leaders?
Have to show up for mentioning the Tiananmen Square protests of 1989?
Have to respond to some SJW in the USA over liking an author, movie or book on social media?
Some US celebrity has an issue with a negative movie or song review?
Link to a newspaper about German policy on illegal immigration and face questions in Germany?
Big Pharma or punishing whistleblowers with US ag gag laws? (ag gag https://en.wikipedia.org/wiki/...)
US gov or US mil stopping publication of whistleblower material in other nations?
Recall Soviet history and now have to face a US court for supporting Russia?
A US hosting service was just doing what it always has to when they receive a legally binding order or subpoena.
What can a US brand sell as data hosting or cloud services?
All data will be encrypted and 100% kept in the nation of origin?
That removes the profit from the scale of really cheap hosting in the USA.
Why would any person, lawyer, company or nation risk any US brand that will just give any/all data to any open US court setting?
For the US security services?
US Special crimes?
Drug crimes?
Any US crimes?
US SJW want to report or ban something?
Civil claims in the US?
Consider hosting in your own nation, with your own local brands and their much stronger data protection.
A risk with some freedom of speech issues but good lawyers can a least keep your data safe from other nations random global judicial activism.
Germans have been reporting on each other since the 1920's.
Before WW2, during WW2.
After WW2 the Stasi had files on a lot of people. In the West the groups like the Federal Office for the Protection of the Constitution https://en.wikipedia.org/wiki/... ensured the new West German democracy stayed really safe.
Germany kept its powerful laws and political comments start interviews and investigations.
People report comments. Social media report people. Freedom after speech is a legal matter.
Germany is now stuck with very powerful laws that should have only been used to protect democracy from communists or fascists taking over.
Laws that should have protected from communist and fascist parties, their meetings, fund raising and publishing.
Such laws are now been used to stop any and all comments on the policies of todays German political policy.
Report on local issues, how local services are been used, what governments are doing, the results of illegal immigration and risk a police interview.
Social media hands over the ip so the brand can keep selling in Germany.
All the skilled telco workers then had to select sides after 1945.
Protect East Germany from the West.
Help protect West Germany from the communists.
Report to Moscow or the CIA, GCHQ or NSA over the decades.
Generations of German staff enjoying overtime and the most advanced telco tech.
Now a new generation gets to watch over all communication in Germany.
Say or write anything wrong and the police get a report.
No freedom of speech. No freedom after speech.
The threat model is gov/mil/security services. https://en.wikipedia.org/wiki/... will find a VPN user.
"Showing the usage of virtual private networks (VPNs) and machines that can potentially be hacked via TAO."
Thats why most governments have few or no laws or comments about the about encrypted VPN use.
Revealed: how US and UK spy agencies defeat internet privacy and security (September 2013) https://www.theguardian.com/wo...
"... Edge hill's initial aim was to decode the encrypted traffic certified by three major (unnamed) internet companies and 30 types of Virtual Private Network (VPN)..."
The US bands and US clouds are a huge legal risk wrt any US federal court.
A nation has data, trusts a US cloud to store and encrypt their data. The US brand states it will store and fully protect the data in that nation and only for that nation.
A US court then produces US court documents for the USA brand and that nations cloud data is presented in full an US open court setting?
A big, cheap, fast US cloud product is a big legal risk.
A lot of nations now have to pay in full for their own in-house options just to avoid US brands and their legal global obligations to the US gov.
Code might exist for x86 that is useful. Code has to be created or found and re created just for non x86 systems.
Thats the difference. A lot of code that exists or a person has to learn to write code or to hope a nice person has the time to make code for a very different non x86 system.
It would have been better to use x86 for hobby use and then to desktop and smaller networks.
Lots of good code exists for the x86, skills can scale to different existing systems. Now people have to learn a new set of skills or find a skilled person to code for them.
The reason for such ideas in the USA is it creates large new data sets that are not kept or funded by the state, city or federally.
As the state, city or federal gov is not "keeping" or "collecting" data on people that are not criminals they can respond to any FOIA, media, political questions with the standard truthful no databases, only ever have existing criminals on their own state/federal file.
The private database are then accessed the US gov. The US gov did not create, sort or keep a database but has access to private sector product.
Its communications to the world. Imagine owners of a nations city telco networks and regional cell spectrum looking up and seeing real competition for the first time.
People who need voice, the cloud, data all the time in very isolated areas. A device might have to log data all day until its finally connected to a network later.
Now services can communicate in real time, all day.
Very restricted and expensive remote telco services will face competition. The days of changing a lot for speed and not much data could finally change.
Networks that have bad quality or no voice solutions due to not been able to work on very isolated voice services.
From the story presented in the links.
"The intelligence captured... specific instructions on the operation’s audacious objectives"
Why would anyone interesting risk talking over any insecure network?
Who talks on the phone or sends interesting orders down a network the USA sold another nation? Or any network that is at risk by the GCHQ, NSA or CIA?
"Hackers with ties to.... intelligence services"?
What ties? The data walked out thanks to a domestic staff member.
"To guard against leaks, subsequent meetings in the Situation Room followed the same protocols as planning sessions for the..."
We are really reading about this secret online so soon?
"that... was working to elect... "
People all over the USA went to free elections and voted for a candidate they wanted and who could give great speeches in their states.
Want to win a US election? Find a presentable candidate who has the energy and charm to win in more states.
Re ' It was a case that took almost no time to solve, traced to the... through cyber-forensics"
Nations that have such easy to find malware code litter issues don't hack.
An ip range, time of day, malware thats been in the wild for years and is in use by many people is not "cyber-forensics".
Any language use can be left as a fake trail for private sector "cyber-forensics" to find.
The US efforts showed "Marble" libraries include code used to obfuscate " with the add foreign languages option(4/3/2017) https://arstechnica.com/securi...
Re "... is a remarkably elusive target." "extreme precautions to guard against surveillance" but we just had " specific instructions on the operation’s audacious objectives"?
Funny how the story has the order that really needed to be kept more secret been transmitted down the not very secure US export grade hardware network?
Someone in the USA walked out with some documents and gave it to the waiting media.
The US saw another Pentagon Papers. https://en.wikipedia.org/wiki/...
"Julian Assange: 'A lot more material' coming on US elections" (July 27, 2016) http://edition.cnn.com/2016/07...
""Perhaps one day the source or sources will step forward and that might be an interesting moment some people may have egg on their faces."
" a clandestine hand-off in a wooded area near American University with one of the email sources " http://www.dailymail.co.uk/new...
"The leakers' motivation was 'disgust at the corruption..."
Hacked how AC?
Lots of new staff drive out all over the USA and apply for election work?
The FBI would have noticed all the new people of interest.
Strangers counting votes next to existing workers and observers?
In the USA AC votes still get added up with some oversight before they get presented all over the USA.
Hacking an election from outside the USA is not going to work AC.
Then just build a series of wireless towers to the site.
At some location with good optical and a selection of providers, build a tower.
Build more towers as needed to get some network to the off grid site.
Think of security and power needs too.
Once the CIA, MI6, GCHQ and NSA get interested they will find out what consumer grade OS the interesting site is using.
The question is then to risk a network detecting the data moment and blame "malware" with another nations code litter.
Or to walk, post the USB stick using some cover story.
Ex staff, former staff, contractors, other nations staff, other random people in other trusted governments. Cults and faiths placing their staff deep into gov/mil.
The politics of trusted staff.
The staging servers that interesting people finally noticed..
The use of plain text and no crypto so contractors can make profits working on gov networks.
Too many secrets is now too many contractors.
The security services usually have some story about been from head office, another department, security or a contractor.
A short conversation with management and staff will allow any stranger to use usb sticks as needed.
The other method is to place usb sticks to be found or swap the usb sticks of trusted staff.
If a company or government orders a lot of office supplies online from a trusted US brand? That shipment might be a be altered on the way.
The total loss of anonymity and privacy counters strong crypto use.
Thats why spies used number stations and other methods to ensure anonymity and privacy. https://en.wikipedia.org/wiki/...
The tracking is of every communication. That removes most anonymity over years.
People looking for or who use crypto that works will be found and their messages will be collected.
XKeyscore https://en.wikipedia.org/wiki/...
"Detect people who use encryption.. " "Showing the usage of virtual private networks (VPNs) and machines that can potentially be hacked via TAO."
So even if the one time pad trade craft is always good, the device creating the message might not stay secure.
Education has value. The schools teach. People want to learn.
Exams are passed on merit to get into a really great university.
So the math skills are created.
Also consider a long history of maths and science. Computer access and later faster network access.
Other nations tried to do the same over the years. What did Russia get right and so many other nations totally fail at?
The UK had its BBC Micro https://en.wikipedia.org/wiki/... for education and a lot of very poor people all around the UK got so see and use a computer.
Given the funding and early access to computers the UK should have been a very advanced computer nation?
If it was only about hardware the early attempts at computer education would have allowed the UK to advance.
The USA educated generations in science after the 1950's with more funding. That provided a good selection of very good US teachers for the next generations.
The USA filled some of its schools with new computer labs, books, networks, educational software, robot kits and teachers who could teach. A lot of equipment and books got offered to different schools all over the USA.
Some parts of the USA got vast amounts of new funding for very poor students, per student. Did any of it help or change results? Not as much as expected per generation per student when tested given all the new spending.
If it was only about computer access, the best teachers and funding the USA on average would be very advanced given the amount of funding per student in some US states and cities..
What was the difference?
Passing exams, staying with real merit advancement. In Russia getting good grades and knowing things is seen as a good thing.
A culture of math, science, art, languages, music, sport, faith and education is encouraged and supported.
A pride in culture, art, engineering, maths, Russia is passed to each generation who want to learn and study.
For people in the USA trying to get a wide picture of history try Gymnasium (school) https://en.wikipedia.org/wiki/...
Not much on Russia but it shows a different way of approaching education that has shaped different nations.
On Russia https://en.wikipedia.org/wiki/...
The key is the exams and the need to pass on merit. The USA and UK selected very different educational systems over the last decades and per student funding.
The results of such very different failed methods show decades later over entire nations.
Too much social promotion https://en.wikipedia.org/wiki/... in some nations and not enough low cost passing tests only on merit.
Re The government has no legal way to .....
Germany to pour cash into mass surveillance (08.09.2016)
http://www.dw.com/en/germany-t...
"particularly decrypting what the report calls "non-standardized telecommunications," meaning widely-used messaging services"
Wait for the blasphemy rulings over cartoons.
Extra crimes are listed if the blasphemous material is animated and has any music or songs.
Every faith and cult will pour funds into their legal teams to get specific accounts or identifiers.
Comment on a communist party, its history or leaders?
Have to show up for mentioning the Tiananmen Square protests of 1989?
Have to respond to some SJW in the USA over liking an author, movie or book on social media?
Some US celebrity has an issue with a negative movie or song review?
Link to a newspaper about German policy on illegal immigration and face questions in Germany?
Big Pharma or punishing whistleblowers with US ag gag laws? (ag gag https://en.wikipedia.org/wiki/...)
US gov or US mil stopping publication of whistleblower material in other nations?
Recall Soviet history and now have to face a US court for supporting Russia?
A US hosting service was just doing what it always has to when they receive a legally binding order or subpoena.
What can a US brand sell as data hosting or cloud services?
All data will be encrypted and 100% kept in the nation of origin?
That removes the profit from the scale of really cheap hosting in the USA.
Why would any person, lawyer, company or nation risk any US brand that will just give any/all data to any open US court setting?
For the US security services?
US Special crimes?
Drug crimes?
Any US crimes?
US SJW want to report or ban something?
Civil claims in the US?
Consider hosting in your own nation, with your own local brands and their much stronger data protection.
A risk with some freedom of speech issues but good lawyers can a least keep your data safe from other nations random global judicial activism.
Germans have been reporting on each other since the 1920's.
Before WW2, during WW2.
After WW2 the Stasi had files on a lot of people. In the West the groups like the Federal Office for the Protection of the Constitution https://en.wikipedia.org/wiki/... ensured the new West German democracy stayed really safe.
Germany kept its powerful laws and political comments start interviews and investigations.
People report comments. Social media report people. Freedom after speech is a legal matter.
SJW like reporting users. SJW see it as a positive.
Germany is now stuck with very powerful laws that should have only been used to protect democracy from communists or fascists taking over.
Laws that should have protected from communist and fascist parties, their meetings, fund raising and publishing.
Such laws are now been used to stop any and all comments on the policies of todays German political policy.
Report on local issues, how local services are been used, what governments are doing, the results of illegal immigration and risk a police interview.
Social media hands over the ip so the brand can keep selling in Germany.
The SJW are working hard on that in the USA.
All the skilled telco workers then had to select sides after 1945.
Protect East Germany from the West.
Help protect West Germany from the communists.
Report to Moscow or the CIA, GCHQ or NSA over the decades.
Generations of German staff enjoying overtime and the most advanced telco tech.
Now a new generation gets to watch over all communication in Germany.
Say or write anything wrong and the police get a report.
No freedom of speech. No freedom after speech.
The threat model is gov/mil/security services. ..."
https://en.wikipedia.org/wiki/... will find a VPN user.
"Showing the usage of virtual private networks (VPNs) and machines that can potentially be hacked via TAO."
Thats why most governments have few or no laws or comments about the about encrypted VPN use. Revealed: how US and UK spy agencies defeat internet privacy and security (September 2013)
https://www.theguardian.com/wo...
"... Edge hill's initial aim was to decode the encrypted traffic certified by three major (unnamed) internet companies and 30 types of Virtual Private Network (VPN)
The tools exist or find a very, very smart person.
The US bands and US clouds are a huge legal risk wrt any US federal court.
A nation has data, trusts a US cloud to store and encrypt their data. The US brand states it will store and fully protect the data in that nation and only for that nation.
A US court then produces US court documents for the USA brand and that nations cloud data is presented in full an US open court setting?
A big, cheap, fast US cloud product is a big legal risk.
A lot of nations now have to pay in full for their own in-house options just to avoid US brands and their legal global obligations to the US gov.
Code might exist for x86 that is useful. Code has to be created or found and re created just for non x86 systems.
Thats the difference. A lot of code that exists or a person has to learn to write code or to hope a nice person has the time to make code for a very different non x86 system.
It would have been better to use x86 for hobby use and then to desktop and smaller networks.
Lots of good code exists for the x86, skills can scale to different existing systems. Now people have to learn a new set of skills or find a skilled person to code for them.
The reason for such ideas in the USA is it creates large new data sets that are not kept or funded by the state, city or federally.
As the state, city or federal gov is not "keeping" or "collecting" data on people that are not criminals they can respond to any FOIA, media, political questions with the standard truthful no databases, only ever have existing criminals on their own state/federal file.
The private database are then accessed the US gov. The US gov did not create, sort or keep a database but has access to private sector product.
Good enough for voice services.
Its communications to the world. Imagine owners of a nations city telco networks and regional cell spectrum looking up and seeing real competition for the first time.
People who need voice, the cloud, data all the time in very isolated areas. A device might have to log data all day until its finally connected to a network later.
Now services can communicate in real time, all day.
Very restricted and expensive remote telco services will face competition. The days of changing a lot for speed and not much data could finally change.
Networks that have bad quality or no voice solutions due to not been able to work on very isolated voice services.
From the story presented in the links. ... specific instructions on the operation’s audacious objectives" .... intelligence services"? ..." ... was working to elect ... " ... through cyber-forensics"
"The intelligence captured
Why would anyone interesting risk talking over any insecure network?
Who talks on the phone or sends interesting orders down a network the USA sold another nation? Or any network that is at risk by the GCHQ, NSA or CIA?
"Hackers with ties to
What ties? The data walked out thanks to a domestic staff member.
"To guard against leaks, subsequent meetings in the Situation Room followed the same protocols as planning sessions for the
We are really reading about this secret online so soon?
"that
People all over the USA went to free elections and voted for a candidate they wanted and who could give great speeches in their states.
Want to win a US election? Find a presentable candidate who has the energy and charm to win in more states.
Re ' It was a case that took almost no time to solve, traced to the
Nations that have such easy to find malware code litter issues don't hack.
An ip range, time of day, malware thats been in the wild for years and is in use by many people is not "cyber-forensics".
Any language use can be left as a fake trail for private sector "cyber-forensics" to find.
The US efforts showed "Marble" libraries include code used to obfuscate " with the add foreign languages option(4/3/2017)
https://arstechnica.com/securi...
Re "... is a remarkably elusive target." "extreme precautions to guard against surveillance" but we just had " specific instructions on the operation’s audacious objectives"?
Funny how the story has the order that really needed to be kept more secret been transmitted down the not very secure US export grade hardware network?
Someone in the USA walked out with some documents and gave it to the waiting media.
The US saw another Pentagon Papers. https://en.wikipedia.org/wiki/...
"Julian Assange: 'A lot more material' coming on US elections" (July 27, 2016)
http://edition.cnn.com/2016/07...
""Perhaps one day the source or sources will step forward and that might be an interesting moment some people may have egg on their faces."
" a clandestine hand-off in a wooded area near American University with one of the email sources "
http://www.dailymail.co.uk/new...
"The leakers' motivation was 'disgust at the corruption..."
Hacked how AC?
Lots of new staff drive out all over the USA and apply for election work?
The FBI would have noticed all the new people of interest.
Strangers counting votes next to existing workers and observers?
In the USA AC votes still get added up with some oversight before they get presented all over the USA.
Hacking an election from outside the USA is not going to work AC.
Companies that wanted to sell to the US gov often show their code in full too.
Then just build a series of wireless towers to the site. At some location with good optical and a selection of providers, build a tower.
Build more towers as needed to get some network to the off grid site.
Think of security and power needs too.
"How a group of neighbors created their own Internet service" (11/2/2015,)
https://arstechnica.com/inform...
If an interesting Mac, Linux or Unix user is found in the wild, new code will be requested.
Once the CIA, MI6, GCHQ and NSA get interested they will find out what consumer grade OS the interesting site is using.
The question is then to risk a network detecting the data moment and blame "malware" with another nations code litter.
Or to walk, post the USB stick using some cover story.
Ex staff, former staff, contractors, other nations staff, other random people in other trusted governments. Cults and faiths placing their staff deep into gov/mil.
The politics of trusted staff.
The staging servers that interesting people finally noticed..
The use of plain text and no crypto so contractors can make profits working on gov networks.
Too many secrets is now too many contractors.
The security services usually have some story about been from head office, another department, security or a contractor.
A short conversation with management and staff will allow any stranger to use usb sticks as needed.
The other method is to place usb sticks to be found or swap the usb sticks of trusted staff.
If a company or government orders a lot of office supplies online from a trusted US brand? That shipment might be a be altered on the way.