Linked by Thom Holwerda on Fri 21st Jun 2013 19:08 UTC
Legal "Britain's spy agency GCHQ has secretly gained access to the network of cables which carry the world's phone calls and internet traffic and has started to process vast streams of sensitive personal information which it is sharing with its American partner, the National Security Agency. The sheer scale of the agency's ambition is reflected in the titles of its two principal components: Mastering the Internet and Global Telecoms Exploitation, aimed at scooping up as much online and telephone traffic as possible. This is all being carried out without any form of public acknowledgement or debate." Woah.
Thread beginning with comment 565411
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE[5]: Enough already
by Alfman on Mon 24th Jun 2013 03:22 UTC in reply to "RE[4]: Enough already"
Alfman
Member since:
2011-01-28

Lennie,

I didn't have enough time to respond with a more rounded response earlier (I don't mean to be a naysayer on every post of yours). My opinion is that while centralized crypto models are "good enough" for typical banking and commercial uses, they are inherently incapable of providing (mathematical) confidence that they will not be abused by those at the helm.

Privacy is hard, but by changing our conventions for interpersonal communications, through education and wider deployment of available crypto technology, we can make more foolproof systems. For example, every time we meet someone in person, we could exchange keys via NFC on smartphones. From that point forward we could authenticate & encrypt all communications with that person. The technology could be made seemless across email/telephony/video chat/etc. It's not really the crypto theory holding us back so much as it is the social norms, and I think we agree on this point.

Steganography is an interesting idea to hide the fact that communication is even taking place, but even there you'd need to communicate the parameters some how ahead of time.

Edited 2013-06-24 03:36 UTC

Reply Parent Score: 3

RE[6]: Enough already
by Lennie on Mon 24th Jun 2013 09:01 in reply to "RE[5]: Enough already"
Lennie Member since:
2007-09-22

A head of time, is the whole problem with websites and people you've never met. I did mention in wide-spread use.

A web of trust is the only solution we have and it is isn't a great solution.

Just a simple example: Do you think the general public would ever be using something like CAcert ?

Reply Parent Score: 2