.

U.S. Wants Broader Internet Wiretap Authority

<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Mon Sep 27, 2010 1:50 pm

U.S. Wants Broader Internet Wiretap Authority

And I thought it was bad enough when Saudi Arabia and India were pressing Research in Motion hard about making their technology available to be able to spy on people, now this is an issue in the US? WTF?

Their encryption is a good thing and used as a compettive advantage over other service providers. Now governments around the world including our own are once again messing with the free market under the guise of freedom from terror. It was bad enough when the Bush Admin did it. Now the Obama Admin is not only continuing those freedom eroding policies but expanding them.

I could go on about all the privacy implications, net neutrality, and more, but I'll spare all of you my rants... for now. Maybe I should turn this into a talk/article. This kind of stuff really gets me.


The Obama administration is developing plans that would require all Internet-based communication services -- such as encrypted BlackBerry e-mail, Facebook, and Skype -- to be capable of complying with federal wiretap orders, according to a report published Monday.

National security officials and federal law enforcement argue their ability to eavesdrop on terror suspects is increasingly "going dark," The New York Times reported, as more communication takes place via Internet services, rather than by traditional telephone.

The bill, which the White House plans to deliver to Congress next year, would require communication service providers be technically capable of intercepting and decrypting messages, raising serious privacy concerns, the Times said.

The proposal has "huge implications" and poses a test to the "fundamental elements of the Internet revolution," vice president of the Center for Democracy and Technology, James Dempsey, told the Times.

"They basically want to turn back the clock and make Internet services function the way that the telephone system used to function," he was quoted as saying.

Officials contend, however, that without new regulations their ability to prevent attacks could be hindered.

"We're not talking expanding authority," FBI general counsel Valerie Caproni told the Times. "We're talking about preserving our ability to execute our existing authority in order to protect the public safety and national security."

Internet and phone networks are already required to have eavesdropping abilities thanks to a 1994 law called the Communications Assistance to Law Enforcement Act, but the mandate does not apply to communication service providers -- like Research in Motion, maker of BlackBerry devices.

RIM has recently been working to resolve disputes with India, the United Arab Emirates and other countries to avert threats to ban BlackBerry services. The countries complained that BlackBerry e-mail encryption posed a national-security risk. India postponed a ban for at least two months after RIM agreed to give security officials "lawful access" to data.

"We've made it clear that we are respectful of government needs and fully cooperating to comply with lawful requirements on an industry standard basis, but we cannot compromise the security architecture of the BlackBerry enterprise solution," RIM co-CEO Jim Balsillie said Thursday, reiterating the company's previous stance.

Balsillie said RIM "simply has no ability to read the encrypted information and that it has no master key or back door key to allow access."



For original story:
http://www.foxnews.com/politics/2010/09 ... -wiretaps/

Don
CISSP, MCSE, CSTA, Security+ SME
<<

hayabusa

User avatar

Hero Member
Hero Member

Posts: 1662

Joined: Mon Jan 29, 2007 2:59 pm

Post Mon Sep 27, 2010 3:31 pm

Re: U.S. Wants Broader Internet Wiretap Authority

I'd just read that, myself...  I'm not going to go into all my thoughts on this, just yet, except to say that I think I agree with your feelings, don.
~ hayabusa ~ 

"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'


OSCE, OSCP , GPEN, C|EH
<<

COm_BOY

User avatar

Full Member
Full Member

Posts: 129

Joined: Tue Feb 03, 2009 10:40 am

Post Mon Sep 27, 2010 4:00 pm

Re: U.S. Wants Broader Internet Wiretap Authority

There is nothing new in this seriously , the government of USA always think that they are superior to everyone in everything .

I just saw the following link which is quite a bit related about their policies .

hxxp://www.youtube.com/watch?v=lPXAkFdn9sY
It has become appallingly obvious that our technology has exceeded our humanity.
<<

Root_compromise

User avatar

Newbie
Newbie

Posts: 10

Joined: Thu Aug 09, 2007 5:58 pm

Location: alternate reality

Post Fri Dec 10, 2010 10:27 am

Re: U.S. Wants Broader Internet Wiretap Authority

Encryption should be standard. Email should automatically encrypt itself with Public/Private keys that are transparent to the user and decrypt on the receiver side if the keys are known. This would cut down on the spam that is received because after everyone is doing it any unencrypted email is automatically bounced or trashed by the email server. Doing this universally would save money (less email virus' and spam - less overhead and bandwidth for the servers to deal with) and be easier for the users if it was transparent and just part of the sending process.

Open source encryption (PGP) has been around a long time. Everyone (but the governments) loves the ability to send mom's secret apple pie recipes and other things to each other without anyone reading the mail (or hearing the conversation). If the spies are so inept that they need a back door and a vacuum cleaner to scoop up the data, it is time to get better spies.
spaces_are_evil
<<

sil

User avatar

Hero Member
Hero Member

Posts: 551

Joined: Thu Mar 20, 2008 8:01 am

Location: ::1

Post Fri Dec 10, 2010 11:09 am

Re: U.S. Wants Broader Internet Wiretap Authority

"The Obama administration is developing plans that would require all Internet-based communication services -- such as encrypted BlackBerry e-mail, Facebook, and Skype -- to be capable of complying with federal wiretap orders, according to a report published Monday."

So what. Honestly, if one has nothing to hide, one need not worry really. The reality of this is that no matter WHAT is said via government, how do they propose to enforce this. They'd have to outright ban encryption. Let's look at what's said: The Obama administration is developing plans that would require all Internet-based communication services -- such as encrypted BlackBerry e-mail, Facebook, and Skype -- to be capable of complying with federal wiretap orders, according to a report published Monday.

So my provider can tap my phone. Doesn't stop me from inventing my own language or slang. The communications provider did their job. I modified my needs to fit what I needed to do, communicate securely.

This is where government will always fail. They can pass this law and unbeknownst to many, most communications providers have to meet this anyway via way of CALEA, so its nothing new. I wonder what the administration intends on doing when the following occurs:

Evil person using cash goes to Times Square NYC and purchases a cellular with cash. While en-route to Chicago, evil person stops in Jersey and picks up three calling cards. He uses those calling cards to call a VoIP provider number from a VoIP shop in Poland. Places threatening calls and makes rogue plans...

So - the government can hear the call sure. Who cares?

Week one
1) The government needs to get all the paperwork in order and hopes that when delivered to their attaches in Canada, the Canadian government complies.

Weeks one through two
2) After getting the records from the Canadian provider, they trace the call as coming from a calling card. They need to discover who owns the DID and who sells the calling card. Investigation + More subpoenas

Weeks two through three
3) After discovering the Acme Payphone Card distributed the PIN code and numbers, they trace the call as originating from a phone that was sold in batches to a NYC store. Investigation + more subpoenas

Weeks three through four
4) After getting subpoenas for sales records at this NYC store, they determine that the buyer paid in cash and there is no record available. No cameras at the store so they can't identify the person(s)

Four weeks is peanuts. The reality is, situations like this lead to dead ends. Consider the following, I compromise a host in Germany. I use the German machine to compromise a host in China. I use the Chinese machine to compromise a VoIP account in the US. I use the compromised VoIP account to forward calls. I buy a few calling cards and daisy chain them through a cellular I bought off say Craigslist. The cellular was stolen, I needed it for one task.

--- Not going to stop criminals intent on doing something.

Might find cheaters, might find people who've made mistakes, but the people they're targeting this towards (terrorists, really evil people) are oblivious to this and won't care at the end of the day. It's easier to skate around with other technology (crypto + stego) than it is to say: "I think I'll use my Blackberry for Jihad!" Terrorist and truly evil/wicked individuals aren't dumb shmoes.
<<

caissyd

User avatar

Hero Member
Hero Member

Posts: 894

Joined: Thu Dec 31, 2009 11:20 am

Location: Ottawa, Canada

Post Fri Dec 10, 2010 1:34 pm

Re: U.S. Wants Broader Internet Wiretap Authority

So my provider can tap my phone. Doesn't stop me from inventing my own language or slang.


You are right sil. And if people start saying sentenses, like in France during WWII: "The bus will pass at 10:25am", "There are three birds in the sky" or "The sun is warm today". This form of ofuscation can't be detected...

Terrorist and truly evil/wicked individuals aren't dumb shmoes.

Is it me or most people/organization think that their ennemies/opponents are very dumb? The evil masterminds most have a lot of fun!
OSCP, GPEN, GWAPT, GSEC, CEH, CISSP
(aka H1t.M0nk3y)
<<

rattis

User avatar

Hero Member
Hero Member

Posts: 1172

Joined: Mon Jul 27, 2009 1:25 pm

Post Fri Dec 10, 2010 4:45 pm

Re: U.S. Wants Broader Internet Wiretap Authority

H1t M0nk3y wrote:
Terrorist and truly evil/wicked individuals aren't dumb shmoes.

Is it me or most people/organization think that their ennemies/opponents are very dumb? The evil masterminds most have a lot of fun!


We've been lulled into a false sense of superiority by the bad plots they've been doing. Shoes, underwear, fluid, car bombers, printer cartridges, etc that haven't worked.

Then there are the easy to dupe / entrap kids they've been hitting up. Like the Jihad Fitness guru (Mohamed Osman Mohamud).

There are low hanging fruit on every side. :)
OSWP, Sec+
<<

mallaigh

User avatar

Jr. Member
Jr. Member

Posts: 65

Joined: Fri Jul 16, 2010 12:36 am

Post Fri Dec 10, 2010 5:15 pm

Re: U.S. Wants Broader Internet Wiretap Authority

In my opinion, it seems like this is really bad policy that will do little in tracking down major threats to National Security.  Sure, the Feds will intercept a few a few solid pieces of intelligence, but I doubt the policy will have a lasting impact on National Security.
If you ask me, I think potential National Security threats would communicate via stenography, book ciphers, and possibly number stations (no, I don't wear a foil hat).  Methods might be improved or modified, and new technology or methods would emerge.  Also, I wouldn't be surprised to see new email providers pop up that provide confidential and privacy protected email communication (much like PRQ's "refugee hosting").  

H1t M0nk3y wrote:
So my provider can tap my phone. Doesn't stop me from inventing my own language or slang.


You are right sil. And if people start saying sentenses, like in France during WWII: "The bus will pass at 10:25am", "There are three birds in the sky" or "The sun is warm today". This form of ofuscation can't be detected...

Terrorist and truly evil/wicked individuals aren't dumb shmoes.

Is it me or most people/organization think that their ennemies/opponents are very dumb? The evil masterminds most have a lot of fun!


It is said that Rhyming Cockney was developed for similar reasons.  I'm sure there are other examples, but I'm with sil and H1t on this.  The Feds will see the same old tricks again.
Last edited by mallaigh on Fri Dec 10, 2010 5:19 pm, edited 1 time in total.
<<

SephStorm

User avatar

Hero Member
Hero Member

Posts: 569

Joined: Sat Apr 17, 2010 12:12 pm

Post Sat Dec 11, 2010 11:31 am

Re: U.S. Wants Broader Internet Wiretap Authority

I want to note that the government cannot even be trusted to use the powers that in already has, within the scope of the law. It has been repeated been found to abuse the powers given to it. Therefore, it would be difficult for me to support such an action without significant public interaction of this issue.

I for one forsee the second that law passes, that terror networks go deeper underground. We are making it more difficult for ourselves.
sectestanalysis.blogspot.com/‎
<<

manoj9372

Jr. Member
Jr. Member

Posts: 72

Joined: Mon Oct 05, 2009 8:54 am

Post Sun Dec 12, 2010 5:24 pm

Re: U.S. Wants Broader Internet Wiretap Authority

I personally feel,
These govt peoples are pulling the rights of the people in the name of terrorism and some other things,which is unacceptable,Also how can we trust
that they wont misuse the powers?
<<

SephStorm

User avatar

Hero Member
Hero Member

Posts: 569

Joined: Sat Apr 17, 2010 12:12 pm

Post Sat Dec 18, 2010 5:06 am

Re: U.S. Wants Broader Internet Wiretap Authority

We cant, and they will. But until people are willing to get more involved in the daily political process, and demand action on our will, we will continue to see fear ruining our society.
sectestanalysis.blogspot.com/‎
<<

g00d_4sh

User avatar

Sr. Member
Sr. Member

Posts: 394

Joined: Tue Sep 18, 2007 1:50 pm

Location: Guayaquil, Ecuador

Post Mon Jan 10, 2011 11:15 am

Re: U.S. Wants Broader Internet Wiretap Authority

I am unable to really post on this currently, but look forward to giving my input later... a very interesting topic Don. 
"Bad.. Good?  I'm the guy with the gun"

Return to Ethical Hacktivism

Who is online

Users browsing this forum: No registered users and 0 guests

cron
.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software