Ross Anderson gave a talk on the history of the Crypto Wars in the UK. I am intimately familiar with the US story, but didn’t know as much about Britain’s verson.
Hour-long video. Summary.
Powered by WPeMatico
infossl
August 29, 2017
cryptography, cryptowars, encryption, Security technology, uk, videos
Read more >
Really good article about the women who worked at Bletchley Park during World War II, breaking German Enigma-encrypted messages.
Powered by WPeMatico
infossl
June 29, 2017
enigma, historyofcomputing, historyofcryptography, Security technology, uk, war
Read more >
This article argues that Britain’s counterterrorism problem isn’t lack of data, it’s lack of analysis.
Powered by WPeMatico
infossl
June 14, 2017
datacollection, intelligence, Security technology, terrorism, uk
Read more >
Someone just registered their company name as ; DROP TABLE “COMPANIES”;– LTD.
Reddit thread. Obligatory xkcd comic.
Powered by WPeMatico
infossl
January 4, 2017
humor, loopholes, Security technology, sqlinjection, uk
Read more >
Le Monde and the Intercept are reporting about NSA spying in Africa, and NSA spying on in-flight mobile phone calls — both from the Snowden documents.
Powered by WPeMatico
infossl
December 8, 2016
airtravel, cellphones, edwardsnowden, espionage, gchq, nsa, Security technology, uk
Read more >
Susan Landau has an excellent essay on why it’s more important than ever to have backdoor-free encryption on our computer and communications systems.
Protecting the privacy of speech is crucial for preserving our democracy. We live at a time when tracking an individual — a journalist, a member of the political opposition, a citizen engaged in peaceful protest — or listening to their communications is far easier than at any time in human history. Political leaders on both sides now have a responsibility to work for securing communications and devices. This means supporting not only the laws protecting free speech and the accompanying communications, but also the technologies to do so: end-to-end encryption and secured devices; it also means soundly rejecting all proposals for front-door exceptional access. Prior to the election there were strong, sound security arguments for rejecting such proposals. The privacy arguments have now, suddenly, become critically important as well. Threatened authoritarianism means that we need technological protections for our private communications every bit as much as we need the legal ones we presently have.
Unfortunately, the trend is moving in the other direction. The UK just passed the Investigatory Powers Act, giving police and intelligence agencies incredibly broad surveillance powers with very little oversight. And Bits of Freedom just reported that “Croatia, Italy, Latvia, Poland and Hungary all want an EU law to be created to help their law enforcement authorities access encrypted information and share data with investigators in other countries.”
Powered by WPeMatico
infossl
November 23, 2016
backdoors, computersecurity, encryption, lawenforcement, nationalsecuritypolicy, privacy, Security technology, surveillance, uk
Read more >
I think this might be the first time it has been openly acknowledged:
Sir Michael Fallon, the defence secretary, has said Britain is using cyber warfare in the bid to retake Mosul from Islamic State. Speaking at an international conference on waging war through advanced technology, Fallon made it clear Britain was unleashing its cyber capability on IS, also known as Daesh. Asked if the UK was launching cyber attacks in the bid to take the northern Iraqi city from IS, he replied:
I’m not going into operational specifics, but yes, you know we are conducting military operations against Daesh as part of the international coalition, and I can confirm that we are using offensive cyber for the first time in this campaign.
Powered by WPeMatico
infossl
October 24, 2016
cyberattack, cyberwar, iraq, isis, Security technology, uk
Read more >
In the wake of the Paris terrorist shootings, David Cameron has said that he wants to ban encryption in the UK. Here’s the quote: “If I am prime minister I will make sure that it is a comprehensive piece of legislation that does not allow terrorists safe space to communicate with each other.”
This is similar to FBI director James Comey’s remarks from last year. And it’s equally stupid.
Cory Doctorow has a good essay on Cameron’s proposal:
For David Cameron’s proposal to work, he will need to stop Britons from installing software that comes from software creators who are out of his jurisdiction. The very best in secure communications are already free/open source projects, maintained by thousands of independent programmers around the world. They are widely available, and thanks to things like cryptographic signing, it is possible to download these packages from any server in the world (not just big ones like Github) and verify, with a very high degree of confidence, that the software you’ve downloaded hasn’t been tampered with.
Cameron is not alone here. The regime he proposes is already in place in countries like Syria, Russia, and Iran (for the record, none of these countries have had much luck with it). There are two means by which authoritarian governments have attempted to restrict the use of secure technology: by network filtering and by technology mandates.
Powered by WPeMatico
infossl
January 13, 2015
cryptography, cryptowars, encryption, nationalsecuritypolicy, Security technology, securitytheater, terrorism, uk
Read more >