Re: [saag] CNN Says: Encryption a growing threat to security
Yoav Nir <ynir.ietf@gmail.com> Tue, 04 August 2015 08:54 UTC
Return-Path: <ynir.ietf@gmail.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6396F1B3735 for <saag@ietfa.amsl.com>; Tue, 4 Aug 2015 01:54:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id J8zKpwY-Qtcn for <saag@ietfa.amsl.com>; Tue, 4 Aug 2015 01:54:22 -0700 (PDT)
Received: from mail-wi0-x232.google.com (mail-wi0-x232.google.com [IPv6:2a00:1450:400c:c05::232]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D36BC1A0248 for <saag@ietf.org>; Tue, 4 Aug 2015 01:54:21 -0700 (PDT)
Received: by wibud3 with SMTP id ud3so167322633wib.1 for <saag@ietf.org>; Tue, 04 Aug 2015 01:54:20 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=content-type:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=Yoa014W7Zxnj5mdbw6A5dj45ODP+3cQ+48v7tq9WEMI=; b=iDp/LBKOXD0iKrxJME1nx0wYmdkeE/4IfYHCNf7glcFWmkUkzAvV7aeIeY7mlYgJrP 1ltzOfr82J++QZDf5f/VPnM99nDmK6saKSaIJXmJeVL0fA318eZ6xZv9Lus3yqnUhInT PPTiJ/Pr6Nfe5meV4sjRTPADLEQc/pbG+71dK0KLgtrxZ0zQ5/Gok1KVm6K82jLtVYCF GYAbIRxJRBRAodC6D5jH/8FCa7fIGbQhJ17WN/vFuqrJtcO6EnpPSeENu+n5Gm1qRKTu fXjirAXr6acRfxA9TKSIKszIbiJ+qji1QLIjweNTsfBhAsw08WIWXQI6SHQP/Q4xthmM ljUw==
X-Received: by 10.180.12.148 with SMTP id y20mr40450345wib.80.1438678460616; Tue, 04 Aug 2015 01:54:20 -0700 (PDT)
Received: from [192.168.1.15] ([46.120.13.132]) by smtp.gmail.com with ESMTPSA id mc4sm1200984wic.6.2015.08.04.01.54.19 (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Tue, 04 Aug 2015 01:54:19 -0700 (PDT)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2102\))
From: Yoav Nir <ynir.ietf@gmail.com>
In-Reply-To: <BLU406-EAS35078047FB794D725DA4A9093760@phx.gbl>
Date: Tue, 04 Aug 2015 11:54:17 +0300
Content-Transfer-Encoding: quoted-printable
Message-Id: <A075299C-9E98-4754-8840-2A02FA259E32@gmail.com>
References: <29B747CA-4723-47B4-9588-A81A89DCEB07@gmail.com> <BLU406-EAS35078047FB794D725DA4A9093760@phx.gbl>
To: Bernard Aboba <bernard_aboba@hotmail.com>
X-Mailer: Apple Mail (2.2102)
Archived-At: <http://mailarchive.ietf.org/arch/msg/saag/gx0kumv3D5Rb3lT-zD5nTehTg0U>
Cc: Security Area Advisory Group <saag@ietf.org>
Subject: Re: [saag] CNN Says: Encryption a growing threat to security
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/saag/>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 04 Aug 2015 08:54:23 -0000
> On Aug 4, 2015, at 10:56 AM, Bernard Aboba <bernard_aboba@hotmail.com> wrote: > > It is important to read between the lines of these statements, which concern data at rest, not in transit. Encryption of data at rest is simultaneously not widely deployed enough and at the same time, difficult to overcome for law enforcement agencies lacking the funding and sophistication of military and surveillance agencies. > > Those agencies, who understand the technology and trade offs much better, have either been silent on the subject, or have alumni who now openly oppose the proposals from > Law enforcement. > > We have seen this movie before. It matters little if CNN pretends it is a new release rather than a remake. The movie is not new but the text is. It specifically talks about communications, giving email and messaging apps as examples. While the encryption of messages in transit is not widely deployed on the Internet, setting up even S/MIME or PGP among a small group is fairly easy and overcoming it is hard. Who are the agencies who are silent or opposed? I haven’t heard many in either the US or the UK. Yoav
- [saag] CNN Says: Encryption a growing threat to s… Yoav Nir
- Re: [saag] CNN Says: Encryption a growing threat … Bernard Aboba
- Re: [saag] CNN Says: Encryption a growing threat … Yoav Nir
- Re: [saag] CNN Says: Encryption a growing threat … Bernard Aboba
- Re: [saag] CNN Says: Encryption a growing threat … Nico Williams