omnibus PRISM/NSA/free Edward Snowden/encryption tutorial thread

mural altered

http://i.imgur.com/DVGxjhy.jpg

Barack Obama is, as he pointed out in Selma, an heir to the civil-rights movement. What he decides to do with that legacy is another matter

oh, he's decided.

http://www.spiegel.de/international/world/nsa-spied-on-al-jazeera-communications-snowden-document-a-919681.html

I watched Sneakers last night (don't ask) and it was kind of a hoot. Love the parts discussing how the NSA doesn't have the authority to spy domestically. Oh the 90s

http://www.washingtonpost.com/world/national-security/black-budget-summary-details-us-spy-networks-successes-failures-and-objectives/2013/08/29/7e57bb78-10ab-11e3-8cdd-bcdc09410972_story.html

So Snowden gave Gellman of the W. Post the Spy agencies budgets

sneakers is great. Lawrence Lasker is like one of the only h-wood guys capable of not being excruciatingly dumb about computers onscreen. that 'can you guarantee my safety' bit is still loads of fun, along with a few other moments.

I always have a hard time remembering which one is Sneakers and which one is Hackers.

When spies are denied authority to eavesdrop, then only unauthorized eavesdroppers will spy on us.

the DEA: underrated!

AT&T, in return for payment by the government, has employees sit with government drug units and sift through company (not government) stored data reaching as far back as 1987....

Unlike controversial NSA programs like PRISM, Hemisphere does not see the DEA itself hoarding communications data; AT&T stores the data. Nonetheless, with only an administrative subpoena (not a warrant) drug agents can hone in on an individual’s communications data within an hour. As such Hempisphere is yet another example of how government agencies and corporations work in tandem to create and uphold the surveillance dragnets from which almost no communications within or going out of the U.S. escape....

“I’d speculate that one reason for the secrecy of the program is that it would be very hard to justify it to the public or the courts,” said the ACLU’s Jamil Jaffer.

http://www.salon.com/2013/09/03/dea_can_access_all_att_records/

Small lol at 'hempisphere'

Some good news today

https://www.eff.org/deeplinks/2013/09/hundreds-pages-nsa-spying-documents-be-released-result-eff-lawsuit

http://www.theguardian.com/world/2013/sep/05/nsa-gchq-encryption-codes-security

As long as they haven't cracked rot13 I'm still nfsr.

fnsr! Duh. :-(

Dubious headline, there. The article makes clear that the NSA hasn't broken RSA or anything.

Independent security experts have long suspected that the NSA has been introducing weaknesses into security standards, a fact confirmed for the first time by another secret document. It shows the agency worked covertly to get its own version of a draft security standard issued by the US National Institute of Standards and Technology approved for worldwide use in 2006.

SSH 2.0?

The NSA has worked closely with its British counterpart, the GCHQ, in the effort to break or get around the codes that protect the data that billions of people send across the Internet each day — including e-mails, bank transactions, Web searches, phone calls and chats, the newspapers reported on their Web sites Thursday.

http://www.washingtonpost.com/world/national-security/nsa-has-made-strides-in-thwarting-encryption-used-to-protect-internet-communication/2013/09/05/0ec08efc-1669-11e3-a2ec-b47e45e6f8ef_story.html

Phil Zimmermann is founder of Pretty Good Privacy (PGP) encryption and battled the U.S. government in the 1990s over his effort to establish strong Internet encryption for consumers. He said he is confident that the NSA has not cracked PGP encryption, which is now owned by Symantec. “The fact that they use PGP for government users indicates that they haven’t broken it,” he said. “Otherwise they’d have stopped using it.”

Still hoping for some opinions on this thread: VPN providers S/D

(obv. VPN isn't NSA-proof, but am interested in slowing things down at least)

― Elvis Telecom, Friday, August 23, 2013 Bookmark Flag Post Permalink

I guess it's still in the works and they'll be publishing the source code soon.

http://www.popehat.com/2013/09/06/nsa-codebreaking-i-am-the-other/

The is the one thing i recall related to potential NSA backdoors in encryption standards: http://www.schneier.com/essay-198.html

I'm sure there's other stuff too that we don't even know about.

this article is vaguely relevant to the thread too: http://www.rollingstone.com/culture/news/barrett-brown-faces-105-years-in-jail-20130905?print=true

I watched Sneakers last night (don't ask) and it was kind of a hoot. Love the parts discussing how the NSA doesn't have the authority to spy domestically. Oh the 90s

― Z S, Monday, September 2, 2013 8:42 AM (5 days ago) Bookmark Flag Post Permalink

watched an episode of bored to death made in 2008 or 2009 that was all about surveillance and how stuff on email could never been found etc. and it was really disorienting.

excellent article on what likely is and isn't secure: http://www.theguardian.com/world/2013/sep/05/nsa-how-to-remain-secure-surveillance

The crazy thing is that this program's budget is about 800 million, while the PRISM budget was a mere 40 million.

Bruce Schneier is the security expert and his recommendations are likely right on. I'm personally not interested in Tor, since I worry it'll leak stuff to people even less scrupulous than the NSA, but I could revisit that issue. I wish PGP were actually easy to use so I could start rejecting unencrypted email, but that's not gonna work out.

everybody should revert back to one-time pads for the next few months

We need to start encrypting ILX.

Who knows who can read what we write here!!!

I'm gonna use the freedom of information act to get all the 77 info I can. Finally I will know what you monsters are up to back there!

Request Access to 77 Borad

another good article on the crypto topic: http://www.scottaaronson.com/blog/?p=1517

p=1517, okay. Then what?

into BlackBerrys

http://www.spiegel.de/international/world/how-the-nsa-spies-on-smartphones-including-the-blackberry-a-921161.html

The National Security Agency routinely shares raw intelligence data with Israel without first sifting it to remove information about US citizens, a top-secret document provided to the Guardian by whistleblower Edward Snowden reveals.

Details of the intelligence-sharing agreement are laid out in a memorandum of understanding between the NSA and its Israeli counterpart that shows the US government handed over intercepted communications likely to contain phone calls and emails of American citizens. The agreement places no legally binding limits on the use of the data by the Israelis.

http://www.theguardian.com/world/2013/sep/11/nsa-americans-personal-data-israel-documents

whoa

i love how this neverending series of revelations is prompting swift and robust action on the part of legislators

...they're pretty much just going to avoid talking about it and hope it goes away, right? what's sad is that that's probably a pretty good strategy for them, it'll probably work.

The National Security Agency for almost three years searched a massive database of Americans’ phone call records attempting to identify potential terrorists in violation of court-approved privacy rules, and the problem went unfixed because no one at the agency had a full technical understanding of how its system worked, according to new documents and senior government officials.

Moreover, it was Justice Department officials who discovered the problem and reported it to the court that oversees surveillance programs, the documents show, undermining assertions by the NSA that self-reporting is part of its culture.

http://www.washingtonpost.com/world/national-security/declassified-court-documents-highlight-nsa-violations/2013/09/10/60b5822c-1a4b-11e3-a628-7e6dde8f889d_story.html

http://www.motherjones.com/kevin-drum/2013/09/fisa-judge-reggie-walton-skeptical-nsa-phone-record

NSA chief may be an insane Trekkie!

"When he was running the Army's Intelligence and Security Command, Alexander brought many of his future allies down to Fort Belvoir for a tour of his base of operations, a facility known as the Information Dominance Center. It had been designed by a Hollywood set designer to mimic the bridge of the starship Enterprise from Star Trek, complete with chrome panels, computer stations, a huge TV monitor on the forward wall, and doors that made a 'whoosh' sound when they slid open and closed. Lawmakers and other important officials took turns sitting in a leather 'captain's chair' in the center of the room and watched as Alexander, a lover of science-fiction movies, showed off his data tools on the big screen.

'Everybody wanted to sit in the chair at least once to pretend he was Jean-Luc Picard,' says a retired officer in charge of VIP visits."

http://www.pbs.org/newshour/rundown/2013/09/nsa-director-modeled-war-room-after-star-treks-enterprise.html

http://www.theguardian.com/commentisfree/2013/sep/15/nsa-mind-keith-alexander-star-trek

Wow.

In more mundane news:

http://www.washingtonpost.com/blogs/the-switch/wp/2013/09/13/the-fisa-court-will-release-more-opinions-because-of-snowden/

How airline reservations are used to target illegal searches

http://dissenter.firedoglake.com/2013/09/27/the-other-questions-senator-ron-wyden-wants-answered-on-nsa-surveillance/

Dianne Feinstein had other ideas though

http://www.nytimes.com/2013/09/29/us/nsa-examines-social-networks-of-us-citizens.html?_r=0

By JAMES RISEN and LAURA POITRAS
Published: September 28, 2013 WASHINGTON — Since 2010, the National Security Agency has been exploiting its huge collections of data to create sophisticated graphs of some Americans’ social connections that can identify their associates, their locations at certain times, their traveling companions and other personal information, according to newly disclosed documents and interviews with officials.

shit -- they know I downloaded the Holy Ghost! album :/

And Drake's latest too

create sophisticated graphs of some Americans’ social connections

If this were approved under the ordinary safeguards against unreasonable search and seizure, with warrants obtained specific to a particular criminal investigation for which probable cause has been established linking the American to the crime, then it would be a good tool. Chances of that being true for NSA data collecting on Americans atm seem close to nil.

The policy shift was intended to help the agency “discover and track” connections between intelligence targets overseas and people in the United States…The agency was authorized to conduct “large-scale graph analysis on very large sets of communications metadata without having to check foreignness” of every e-mail address, phone number or other identifier.

kind of like the idea of Clusterfuck Summary Corner being a crucial NSA task

don't know where else to put this

http://abclocal.go.com/wabc/story?section=news%2Finvestigators&id=9270668

I got into an argument with a friend about a year ago, him claiming that I was insane to worry about camera footage from a small drone because those small planes simply weren't capable of coherent, steadicam imaging. here's some fascinating footage from a smartcard reclaimed from a drone that crashlanded a few feet from him on the streets of manhattan and nearly took him out.

(reclaimed from a different guy, not the friend who was complaining - sorry for unclear pronouns)

also not implying that's a government drone by putting it on this thread -- footage seems to start with the drone taking off from a nondescript civilian patio. still interesting.