Re: [perpass] Cops hate encryption but the NSA loves it when you use PGP

Dave Crocker <dhc@dcrocker.net> Sun, 31 January 2016 19:03 UTC

Return-Path: <dhc@dcrocker.net>
X-Original-To: perpass@ietfa.amsl.com
Delivered-To: perpass@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3CA821B2BE4 for <perpass@ietfa.amsl.com>; Sun, 31 Jan 2016 11:03:46 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.2
X-Spam-Level:
X-Spam-Status: No, score=-4.2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fUGwGX-BnmWu for <perpass@ietfa.amsl.com>; Sun, 31 Jan 2016 11:03:45 -0800 (PST)
Received: from sbh17.songbird.com (sbh17.songbird.com [72.52.113.17]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5DAFC1B2BE3 for <perpass@ietf.org>; Sun, 31 Jan 2016 11:03:45 -0800 (PST)
Received: from [192.168.1.87] (76-218-10-206.lightspeed.sntcca.sbcglobal.net [76.218.10.206]) (authenticated bits=0) by sbh17.songbird.com (8.13.8/8.13.8) with ESMTP id u0VJ3Z0V024906 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=NOT); Sun, 31 Jan 2016 11:03:35 -0800
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>, Nicholas Weaver <nweaver@icsi.berkeley.edu>, "Matthijs R. Koot" <matthijs@koot.biz>
References: <56ACE9FF.3080606@dcrocker.net> <56ACFFE5.5000506@cs.tcd.ie> <5295c0797c43debce5367771cd87fdfb.w00t@mrkoot.com> <394C9C42-5E56-4271-A90B-8486D4A16011@icsi.berkeley.edu> <56AE581B.7050507@cs.tcd.ie>
From: Dave Crocker <dhc@dcrocker.net>
Organization: Brandenburg InternetWorking
Message-ID: <56AE5A81.4040805@dcrocker.net>
Date: Sun, 31 Jan 2016 11:03:29 -0800
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:38.0) Gecko/20100101 Thunderbird/38.5.1
MIME-Version: 1.0
In-Reply-To: <56AE581B.7050507@cs.tcd.ie>
Content-Type: text/plain; charset="windows-1252"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.0 (sbh17.songbird.com [72.52.113.17]); Sun, 31 Jan 2016 11:03:36 -0800 (PST)
Archived-At: <http://mailarchive.ietf.org/arch/msg/perpass/RbawtKpf4P-NWA6plk_kZef_iDU>
Cc: perpass@ietf.org
Subject: Re: [perpass] Cops hate encryption but the NSA loves it when you use PGP
X-BeenThere: perpass@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: dcrocker@bbiw.net
List-Id: "The perpass list is for IETF discussion of pervasive monitoring. " <perpass.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/perpass>, <mailto:perpass-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/perpass/>
List-Post: <mailto:perpass@ietf.org>
List-Help: <mailto:perpass-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/perpass>, <mailto:perpass-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 31 Jan 2016 19:03:46 -0000

On 1/31/2016 10:53 AM, Stephen Farrell wrote:
> Given that much
> SMTP is now transmitted over TLS, I think the opportunity
> for the likes of NSA to record all the PGP ciphertext has
> to be have been significantly diminished.


This depends on the degree of cooperation they get from operators, since 
TLS is only for one hop and the messages is in the clear at any 
SMTP-level transit points.

d/