IETF Logo Mail Archive

Re: [perpass] Cops hate encryption but the NSA loves it when you use PGP

"Matthijs R. Koot" <matthijs@koot.biz> Sat, 30 January 2016 19:32 UTC

Return-Path: <matthijs@koot.biz>
X-Original-To: perpass@ietfa.amsl.com
Delivered-To: perpass@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D1F2F1A8833 for <perpass@ietfa.amsl.com>; Sat, 30 Jan 2016 11:32:35 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.196
X-Spam-Level:
X-Spam-Status: No, score=0.196 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HELO_EQ_NL=0.55, HOST_EQ_NL=1.545, UNPARSEABLE_RELAY=0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Z-L4KlcslIaq for <perpass@ietfa.amsl.com>; Sat, 30 Jan 2016 11:32:34 -0800 (PST)
Received: from ns.cyberwar.nl (ns.cyberwar.nl [37.97.145.35]) by ietfa.amsl.com (Postfix) with ESMTP id 146361A882B for <perpass@ietf.org>; Sat, 30 Jan 2016 11:32:33 -0800 (PST)
Received: from mrkoot.com (localhost [127.0.0.1]) by ns.cyberwar.nl (Postfix) with ESMTP id 09986527E5; Sat, 30 Jan 2016 20:32:30 +0100 (CET)
Received: from (totally.not.spoofed [0.-1.-2.-3]) by numberstation with Gopher; Sat, 30 Jan 2016 19:32:30 -0000
X-Proposal: Your Ad Here? Better Call Saul!
Message-ID: <5295c0797c43debce5367771cd87fdfb.w00t@mrkoot.com>
In-Reply-To: <56ACFFE5.5000506@cs.tcd.ie>
References: <56ACE9FF.3080606@dcrocker.net> <56ACFFE5.5000506@cs.tcd.ie>
Date: Sat, 30 Jan 2016 19:32:30 -0000
From: "Matthijs R. Koot" <matthijs@koot.biz>
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>
User-Agent: SquirrelMail/1.4.22
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 8bit
X-Priority: 3 (Normal)
Importance: Normal
X-milter-spamd: ham (-1.9/5.0 BAYES_00,UNPARSEABLE_RELAY,URIBL_BLOCKED)
Archived-At: <http://mailarchive.ietf.org/arch/msg/perpass/g-4RxwMapkaEXcCAgZNOZfshdYc>
X-Mailman-Approved-At: Sat, 30 Jan 2016 11:51:48 -0800
Cc: perpass@ietf.org, dcrocker@bbiw.net
Subject: Re: [perpass] Cops hate encryption but the NSA loves it when you use PGP
X-BeenThere: perpass@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "The perpass list is for IETF discussion of pervasive monitoring. " <perpass.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/perpass>, <mailto:perpass-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/perpass/>
List-Post: <mailto:perpass@ietf.org>
List-Help: <mailto:perpass-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/perpass>, <mailto:perpass-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 30 Jan 2016 19:34:00 -0000

Hi Stephen,

> Anyone got a link to Nick's slides/paper?

Slides (38MB .pdf):
http://www1.icsi.berkeley.edu/~nweaver/enigma_weaver.key.pdf

Paper: does not exist (
https://twitter.com/ncweaver/status/693516094003281920 ).

Video (20 min): https://www.youtube.com/watch?v=zqnKdGnzoh0

Regards,
Matthijs


>
> S.
>
> On 30/01/16 16:51, Dave Crocker wrote:
>> Cops hate encryption but the NSA loves it when you use PGP
>> It lights you up like a Vegas casino, says compsci boffin
>>
>> By Iain Thomson
>> Jan 27 2016
>> <http://www.theregister.co.uk/2016/01/27/nsa_loves_it_when_you_use_pgp/>
>>
>> Although the cops and Feds wont stop banging on and on about encryption
>> – the spies have a different take on the use of crypto.
>>
>> To be brutally blunt, they love it. Why? Because using detectable
>> encryption technology like PGP, Tor, VPNs and so on, lights you up on
>> the intelligence agencies' dashboards. Agents and analysts don't even
>> have to see the contents of the communications – the metadata is
>> enough
>> for g-men to start making your life difficult.
>>
>> "To be honest, the spooks love PGP," Nicholas Weaver, a researcher at
>> the International Computer Science Institute, told the Usenix Enigma
>> conference in San Francisco on Wednesdy. "It's really chatty and it
>> gives them a lot of metadata and communication records. PGP is the NSA's
>> friend."
>>
>> Weaver, who has spent much of the last decade investigating NSA
>> techniques, said that all PGP traffic, including who sent it and to
>> whom, is automatically stored and backed up onto tape. This can then be
>> searched as needed when matched with other surveillance data.
>>
>> Given that the NSA has taps on almost all of the internet's major trunk
>> routes, the PGP records can be incredibly useful. It's a simple matter
>> to build a script that can identify one PGP user and then track all
>> their contacts to build a journal of their activities.
>>
>> Even better is the Mujahedeen Secrets encryption system, which was
>> released by the Global Islamic Media Front to allow Al Qaeda supporters
>> to communicate in private. Weaver said that not only was it even harder
>> to use than PGP, but it was a boon for metadata – since almost anyone
>> using it identified themselves as a potential terrorist.
>>
>> "It's brilliant!" enthused Weaver. "Whoever it was at the NSA or GCHQ
>> who invented it give them a big Christmas bonus.”
>>
>> <snip>
>>
>> _______________________________________________
>> perpass mailing list
>> perpass@ietf.org
>> https://www.ietf.org/mailman/listinfo/perpass
>
> _______________________________________________
> perpass mailing list
> perpass@ietf.org
> https://www.ietf.org/mailman/listinfo/perpass
>

v2.23.0 | Report a Bug | By Email