background preloader

Encryption

Facebook Twitter

Tech pioneer Phil Zimmermann calls Cameron's anti-encryption plans 'absurd' David Cameron’s proposals to limit the use of end-to-end encryption technology in the UK are “absurd” according to Phil Zimmermann, creator of the email encryption software, PGP, and now president of secure communications firm Silent Circle.

Tech pioneer Phil Zimmermann calls Cameron's anti-encryption plans 'absurd'

Zimmermann also says intelligence agencies have “never had it so good” and are living in “a golden age of surveillance” in comments highly critical of the prime minister’s call for more powers. In a January speech, Cameron announced plans for new anti-terror laws, including plans to crack down on anti-surveillance techniques: “Are we going to allow a means of communications where it simply is not possible to do that? My answer to that question is: no, we must not,” he said. In an interview with the Guardian, Zimmermann suggested that any such proposals would be unworkable, given the reliance on encryption by a range of online businesses in 2015. “It’s absurd. “Now, if you aren’t using strong encryption, you have to justify it,” he said. Chaffing-980701. Tyrants will find the key to the internet’s back door. Harvard vs Cameron: Professors defend encryption.

With Gideon Rachman Welcome to the World blog.

Harvard vs Cameron: Professors defend encryption

Gideon Rachman and colleagues offer commentary on international affairs. Follow @ftworldnews Gideon became chief foreign affairs columnist for the Financial Times in July 2006. He joined the FT after a 15-year career at The Economist, which included spells as a foreign correspondent in Brussels, Washington and Bangkok. His particular interests include American foreign policy, the European Union and globalisation To comment, please register for free with FT.com and read our policy on submitting comments. Encrypted communications and real-world security: finding a balance. The latest debate that followed David Cameron’s proposal to ban encrypted personal communications in the UK has raised several very important issues.

Encrypted communications and real-world security: finding a balance

The proposal would include a ban on messaging services like WhatsApp, iMessage or Snapchat in the UK. Technically this is possible to do, however such a ban on using all encrypted communication channels is not easy to enforce. And I doubt that it will actually bring significantly more security to offline UK. Google discloses vulnerability in SSL Web encryption technology. Statement on Internet Confidentiality. 13 November 2014 In 1996, the IAB and IESG recognized that the growth of the Internet depended on users having confidence that the network would protect their private information.

Statement on Internet Confidentiality

RFC 1984 documented this need. Since that time, we have seen evidence that the capabilities and activities of attackers are greater and more pervasive than previously known. The IAB now believes it is important for protocol designers, developers, and operators to make encryption the norm for Internet traffic. Encryption should be authenticated where possible, but even protocols providing confidentiality without authentication are useful in the face of pervasive surveillance as described in RFC 7258. Newly designed protocols should prefer encryption to cleartext operation. Where Congress fails, encryption delivers on privacy. On Tuesday night, Senate Republicans killed the USA Freedom Act, Congress’ flagship effort to reform some of the most invasive surveillance programs revealed by National Security Agency whistleblower Edward Snowden.

Where Congress fails, encryption delivers on privacy

The bill would have ended the NSA’s bulk collection of Americans’ phone records and metadata under Section 215 of the Patriot Act — a goal backed by major tech companies and civil liberties groups as well as by multiple independent panels that concluded such collection is unconstitutional and hasn’t stopped any terrorist attacks. But even after being watered down and endorsed by the director of national intelligence, the Department of Justice and the White House, the bill fell two votes shy of the 60 needed to proceed to the Senate floor. That day, the popular messaging service WhatsApp announced it enabled end-to-end encrypted messages by default on Android devices, using software developed by Open Whisper Systems. Private companies and citizens know this. People Want Safe Communications, Not Usable Cryptography. Security and privacy expert Micah Lee recently described how he helped set up cryptographically protected communications between whistleblower Edward Snowden and the journalists Glenn Greenwald and Laura Poitras, who would share what he had learned about the NSA’s surveillance programs with the world.

People Want Safe Communications, Not Usable Cryptography

Lee’s tale of how the three struggled to master the technology was an urgent reminder of a problem that has bugged me for a while and has implications for anyone who wants to ensure the privacy of personal or professional matters. The cryptographic software we have today hobbles those who try to use it with Rube Goldberg-machine complexity and academic language as dated as a pair of Jordache jeans. Encryption and the Faustian Bargain. In his seminal book Code 2.0, Harvard professor Lawrence Lessig explains that law alone will not solve problems related to privacy in the digital age.

Encryption and the Faustian Bargain

Rather, to ensure privacy we'll need a combination of improved coding, law, and policy. Each measure by itself will only bring partial results. Lessig's prescient advice rings true today. As advocates—including PEN American Center—rally for improved legislation that will thwart the spying of the NSA under various legal authorities, other groups have pressed for improved encryption measures by default. In 2014, Access launched a campaign called Encrypt All the Things, which PEN has joined. Thankfully a number of rights groups and coders have been thinking about this need for some time. Jacob Appelbaum: Reconstructing narratives - transparency in the service of j... Privacy Groups Pan Cameron’s Encryption Proposals as Unworkable. Encryption. Security. The US government has betrayed the internet. We need to take it. Call for civil desobedience. Cloud and security.

Email encryption. Cameron wants to ban encryption – he can say goodbye to digital Britain. On Monday David Cameron managed a rare political treble: he proposed a policy that is draconian, stupid and economically destructive.

Cameron wants to ban encryption – he can say goodbye to digital Britain

The prime minister made comments widely interpreted as proposing a ban on end-to-end encryption in messages – the technology that protects online communications, shopping, banking, personal data and more. “[I]n our country, do we want to allow a means of communication between people which we cannot read?” , the prime minister asked rhetorically. Secret US cybersecurity report: encryption vital to protect private data. A secret US cybersecurity report warned that government and private computers were being left vulnerable to online attacks from Russia, China and criminal gangs because encryption technologies were not being implemented fast enough.

Secret US cybersecurity report: encryption vital to protect private data

The advice, in a newly uncovered five-year forecast written in 2009, contrasts with the pledge made by David Cameron this week to crack down on encryption use by technology companies. In the wake of the Paris terror attacks, the prime minister said there should be no “safe spaces for terrorists to communicate” or that British authorites could not access.

Cameron, who landed in the US on Thursday night, is expected to urge Barack Obama to apply more pressure to tech giants, such as Apple, Google and Facebook, which have been expanding encrypted messaging for their millions of users since the revelations of mass NSA surveillance by the whistleblower Edward Snowden. President Obama and Prime Minister Cameron of the United Kingdom Hold a Joint... David Cameron is "technologically illiterate" on encryption ban. The Prime Minister's plans to ban encryption technology are "technologically illiterate", Liberal Democrat MP Julian Huppert has said today (Friday 16 January).

David Cameron is "technologically illiterate" on encryption ban

Strong encryption technology is used by a number of major websites but under Cameron's plans websites would be required to store data and hand that over to the intelligence agencies. Responding to David Cameron's proposals to allow British intelligence agencies to have the power to break the encryption technology Julian said: “Cameron’s plan to ban encryption technology means he is either cynically trying to sound tough on terror, or he simply doesn’t have a clue what he’s talking about. I wonder if the Prime Minister realises his ludicrous proposal is technologically illiterate? “We all know online shopping, online banking and private messaging all use encryption, so it is crazy to suggest we should ditch it. Was Times ‘Disgusting’ to Grant Anonymity to Al Qaeda Source? Everybody’s the public editor these days – even the director of the F.B.I. James B. Comey has smacked The Times for using information from an anonymous Al Qaeda member in a news story about the deadly attacks in Paris.

The full text of Mr. David Cameron is "technologically illiterate" on encryption ban. Call for submission of Information. The Special Rapporteur on the protection and promotion of the right to freedom of opinion and expression, David Kaye, is currently preparing a report on the legal framework governing the relationship between freedom of expression and the use of encryption to secure transactions and communications, and other technologies to transact and communicate anonymously online.

This report will be presented to the Human Rights Council in June, 2015. To prepare his study, Mr. Kaye is gathering information on national laws, regulations, policies or practices that permit or limit, directly or indirectly, the use of encryption technologies and services or the ability of individuals to communicate anonymously online. All States are being asked called to submit information on their relevant national norms and policies.

Yahoo-price-list-letter.pdf. Explicit cookie consent. OVER the past decade Western security agencies have been remarkably successful in keeping jihadist terrorists at bay. Put it down to diligence, surveillance technology, financial resources, the manageable numbers of potential terrorists and, often, good luck. MP Julian Huppert Questions Proposed Ban on Encryption. Andrew Bower: The encryption ban makes us look like the Thick Party. Andrew Bower works in the ‘Silicon Fen’, graduated in Computer Science from Cambridge University and has served as an Conservative Association officer. This week the Prime Minister introduced a policy of banning strong encryption in the UK in order to deny terrorists ‘safe spaces’ in which to operate. Sounds robust, doesn’t it?

In practice such a policy is impossible to implement and so would never yield any security benefit. Open WhisperSystems >> Blog >> Signal to Noise. A guest post from Corbett, Winter Break Of Code Day 4 I’m not sure those attending their first break of code know what they are getting into. David Cameron in 'cloud cuckoo land' over encrypted messaging apps ban. David Cameron is “living in cloud cuckoo land” when he suggests a new Tory government would ban messaging apps that use encryption, security experts have told the Guardian. Showthread.