Finally, Yahoo’s possible betrayal of its users is another example of why whistleblowers and leaks to the press are so important. The US government considers this type of surveillance “legal” even though it shocks the conscience of many ordinary Americans and dozens of civil liberties groups have been attempting to have courts rule it illegal for years.
The new feature is just the latest move towards more widespread encryption in consumer technology products following Apple’s standoff with the FBI earlier in 2016, in which it refused to help the agency weaken its own security processes to access information on an iPhone belonging to a terrorist. Facebook and Google both pledged support for Apple during the fight, and both are subsequently reported to be planning encrypted versions of their messaging apps.
Encryption is finally mainstream.Government officials and technologists have been debating since the early 1990s whether to limit the strength of encryption to help the law-enforcement and intelligence communities monitor suspects’ communications. But until early 2016, this was a mostly esoteric fight, relegated to academic conferences, security agencies’ C-suites, and the back rooms of Capitol Hill.Everything changed in mid-February, when President Barack Obama’s Justice Department, investigating the terrorists who carried out the San Bernardino, California, shooting, asked a federal judge to force Apple to help the Federal Bureau of Investigation unlock one attacker’s iPhone.What followed was an unexpectedly rancorous and unprecedentedly public fight over how far the government should go to pierce and degrade commercial security technology in its quest to protect Americans from terrorism.
What happens when the wave of encryption rippling through the personal technology world washes up against the realities of the data economy?Most of the recent debate over the spread of encryption has centred on the implications for personal privacy and national security. Less has been said about business: in particular, what a greater use of encryption will mean for the usability of tech products and services, and for the business models that rely on capturing and extracting value from data.
ft.com > Companies >TechnologySubscribe Sign in Home World Companies Energy Financials Health Industrials Luxury 360 Media Retail & Consumer Tech Telecoms Transport By Region Tools Markets Global Economy Lex Comment Management Life & Arts March 4, 2016 2:25 amApple gains support from tech rivals in FBI caseTim Bradshaw in San Francisco Share Print Clip CommentsFBI and Apple logos©FBI/AppleAmerica’s largest technology companies have joined Apple’s fight against the government over data protection and security, in an unusual display of unity by the Silicon Valley rivals.More than a dozen motions filed on Thursday sided with Apple as it tries to resist a demand to write software that would help the FBI unlock the San Bernardino shooter’s iPhone. Civil liberties groups and IT trade associations lined up alongside dozens of law professors and cryptography experts, after Apple filed its own motion for the judicial order to be withdrawn last week.
hack against Sony Pictures is likely to have made companies of all sizes consider upping their cybersecurity measures. Perhaps, though, it’s also a different kind of wake-up call: a reason to think less about security, and more about privacy.he recent
That’s the belief of Phil Zimmermann – the creator of email encryption software Pretty Good Privacy (PGP), and now president and co-founder of secure communications company Silent Circle – initially expressed in a blog post, and expanded on in an interview with the Guardian.
“Sony had all kinds of things: intrusion detection, firewalls, antivirus … But they got hacked anyway. The security measures that enterprises do frequently get breached. People break in anyway: they overcome them,” says Zimmermann.
“A lot of this stuff could have been encrypted. If those emails had been encrypted with PGP or GnuPG, the hackers wouldn’t have gotten very far. Those movie scripts that they stole? They could have been encrypted too.”
Zimmermann hopes that companies will look at what happened to Sony, and use it as a spur to explore encryption as a way to protect their employees’ privacy, rather than ramping up their spending on security measures to protect their data.
“People don’t think of privacy much when they think about enterprises, but enterprise privacy is a real thing: it’s the collective privacy of everybody in the company, and the privacy of the company assets as well,” he says.
“In Sony’s case, there were emails about Hollywood actresses that got breached. That’s connected with personal privacy. I think companies retain too much information.”
If more businesses shift their thinking from security to privacy, it’ll be good news for Silent Circle, which offers technology for encrypted voice calls, video chat and messaging, as well as being a key part of the privacy-focused Blackphonesmartphone.
El fundador de la mayor red social rusa, VKontakte, y de la mensajería instántanea Telegram, huyó de Rusia el pasado mes de abril
Una nube de admiradores sigue a Pável Durov para hacerse una foto con él. El trato que le dan es parecido al que tendría una estrella emergente del rock. Pero el Mark Zuckerberg ruso no tiene tatuajes, ni piercings. Y viste siempre de negro, “por comodidad y para ir siempre conjuntado”, se justifica.
Este emprendedor y programador nacido en San Petersburgo en 1984 abandonó su país natal el pasado mes de abril y se encuentra ahora en San Francisco, donde se celebra esta entrevista. Se fue tras haber resistido durante meses la creciente presión de los servicios de seguridad del Kremlin para que revelara información sobre grupos de la oposición que se comunican a través de la red social VKontakte, que fundó junto a su hermano Nikolai en 2006. Le pidieron perfiles de personas implicadas en las protestas de Ucrania y no quiso colaborar. Vendió su empresa y dejó el país.
Durov, que puso en pie la mayor red social de su país, con 270 millones de usuarios, es también el creador de la mensajería instantánea Telegram, un servicio similar al de WhatsApp al que muchos usuarios migraron cuando la empresa fundada por Jan Koum y Brian Acton fue adquirida por Facebook.
High quality global journalism requires investment. Please share this article with others using the link below, do not cut & paste the article. See our Ts&Cs and Copyright Policy for more detail. Email email@example.com to buy additional rights. http://www.ft.com/cms/s/0/f970d000-0291-11e4-a68d-00144feab7de.html#ixzz36Vcdb6PE
Encrypted Gmail. Transparency from mobile providers. Maybe even a legal ‘revolt’ against ‘Orwellian’ surveillance. But until we get real reform, NSA and Co may survive in the shadows
Thursday marks one year since the Guardian published the first in a series of eye-opening stories about surveillance based on documents provided by Edward Snowden. The events in the 52 weeks since have proven him to be the most significant whistleblower in American history – and have reverberated throughout the world.
But along with the changes Snowden sparked, vital questions remain about how and if the National Security Agency and its global spy apparatus will truly be reformed. Many wheels are finally in motion, but will the US Congress and the courts actually respond in a meaningful way? In truth, the second year of Snowden may be more important than the first. It’s when we’ll see if global privacy rights get protected for the better – or if mass surveillance becomes more entrenched in our laws than ever before. For now, it’s important to take stock in looking ahead to the next chapter.
(Reuters) – As a key part of a campaign to embed encryption software that it could crack into widely used computer products, the U.S. National Security Agency arranged a secret $10 million contract with RSA, one of the most influential firms in the computer security industry, Reuters has learned.
Documents leaked by former NSA contractor Edward Snowden show that the NSA created and promulgated a flawed formula for generating random numbers to create a “back door” in encryption products, the New York Times reported in September. Reuters later reported that RSA became the most important distributor of that formula by rolling it into a software tool called Bsafe that is used to enhance security in personal computers and many other products.
Undisclosed until now was that RSA received $10 million in a deal that set the NSA formula as the preferred, or default, method for number generation in the BSafe software, according to two sources familiar with the contract. Although that sum might seem paltry, it represented more than a third of the revenue that the relevant division at RSA had taken in during the entire previous year, securities filings show.
Edward Snowden: ‘Google, Facebook, Microsoft, Yahoo, Apple, and the rest of our internet titans must ask themselves why they aren’t fighting for our interests the same way’
A Texas-based encrypted email service recently revealed to be used by Edward Snowden – Lavabit – announced yesterday it was shutting itself down in order to avoid complying with what it perceives as unjust secret US court orders to provide government access to its users’ content. “After significant soul searching, I have decided to suspend operations,” the company’s founder, Ladar Levinson, wrote in a statement to users posted on the front page of its website. He said the US directive forced on his company “a difficult decision: to become complicit in crimes against the American people or walk away from nearly ten years of hard work by shutting down Lavabit.” He chose the latter.
CNET’s Declan McCullagh smartly speculates that Lavabit was served “with [a] federal court order to intercept users’ (Snowden?) passwords” to allow ongoing monitoring of emails; specifically: “the order can also be to install FedGov-created malware.” After challenging the order in district court and losing – all in a secret court proceeding, naturally – Lavabit shut itself down to avoid compliance while it appeals to the Fourth Circuit.
Withdrawal comes after apparent pressure on Lavabit to allow US government access to encrypted messages on its servers
Two American companies which provided encrypted email services – one to the NSA fugitive Edward Snowden – have abruptly shut down the service, apparently following US government pressure to let it read users’ messages.
Lavabit, which is believed to have been used by Snowden and which claimed to have 350,000 customers, closed after apparently rejecting a US government court order to cooperate in surveillance on its customers by allowing some form of access to the encrypted messages on its servers.
Its founder Ladar Levison wrote on the company’s website: “I have been forced to make a difficult decision: to become complicit in crimes against the American people or walk away from nearly ten years of hard work by shutting down Lavabit.”
Dos servicios de mensajería cifrados cierran en menos de 24 horas
Dos empresas que ofrecen a sus clientes servicios cifrados de correo electrónico —que permiten la transferencia de información de forma segura —han dejado de operar voluntariamente en menos de 24 horas. El motivo ofrecido a los clientes es el mismo: el miedo a que la onda expansiva de las filtraciones de Edward Snowden las alcance de lleno.