RandomSequence

  • Subscribe to our RSS feed.
  • Twitter
  • StumbleUpon
  • Reddit
  • Facebook
  • Digg

Thursday, July 10, 2008

Encrypt the Entire Internet?

Posted on 6:57 AM by Unknown
I saw an article on Reddit about members of The Pirate Bay wanting to encrypt all traffic on the Internet, end-to-end. This is an interesting idea on a number of levels that I'd like to explore: the practical, the legal, and the information security.

From a practical perspective, such an endeavor would require hurculean effort, to say the least. At a minimum, you're talking about adding a layer to every IP stack on every server and workstation on the planet (or at least those that "need" to participate in the encrypted Interweb.) This poses a number of challenges, to say the least. Not the least significant of which is how many other applications shim into the IP stack already, e.g. antivirus, intrusion detection, spyware, performance monitoring tools, etc. Interacting with all of these pre-existing shims will likely be hideously problematic. Supposing these obstacles can be navigated successfully, there remains the performance overhead that such a shim would invariably introduce and in turn the end-user satisfaction issue. This, of course, says nothing about the additional hurdles that Vista represents, but that's another matter altogether.

From a legal perspective, there are two-sides: those who want to protect their privacy and those who have a legal RIGHT to infringe on a persons privacy. Now, let me be clear: I'm in the camp of Believers who think that the right to infringe on a persons privacy is both necessary but HORRIBLY abused on a ROUTINE basis... so, my ramblings on this matter may need to be taken with a block of salt. That said, as for those who wish to protect their privacy I have two thoughts: if what you're doing is secretive there are already mechanisms in place to protect you, but if your secretive because what you're doing is illegal (e.g. kiddie pr0n) then you don't deserve privacy. Long-story short, encrypting the transport of data across the interweb will set law enforcement back a DECADE (and its already lagging horribly behind criminals.) I foresee any technology that prohibits law enforcement like this would as being legislated into oblivion, around the globe.

The perspectives from the information security world are slightly different, but they overlap somewhat with those of the perspective from the legal world. The basic issue is parallel to that of the LE world -- we can't do packet captures anymore. That makes our job harder. More than that though, it adds an element to the mix: non-repudiation. That is, if we DO get a capture (i.e. through a backdoor on the host from which we're trying to sniff traffic from), we can prove, with a high degree of certainty, that the traffic did come from the targeted host and that it could not ahve come from any other host -- because the cryptographic private keys would be unique (this is, mathematically, a misnomer, but it plays out in practical terms because of probability. I.e. if you take an infinite set -- all numbers -- and try to represent them in a finite set -- a cryptographic key -- you will have collisions, or instances of duplicate keys.) There is also the matter of "trust", i.e. can you trust a network shim conceived- and implemented-by people who's primary livelihood is on the "other side"? "Nay nay," as the great Jimmy Pardo would say.
Email ThisBlogThis!Share to XShare to Facebook
Posted in geekery, soapbox | No comments
Newer Post Older Post Home

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Popular Posts

  • 110GB+ worth of photos/videos on a microSD memory card #2
    In my previous post, I talked about wanting to write a script to see how far I can squeeze 110GB worth of media (photos and videos). I wrote...
  • Ubuntu: WebDAV + DAVfs2 + FUSE == Thunar Goodness
    One of the corner-stones of any *nix utility is that it should do a simple job and do it well. Every piece of software that I can think of ...
  • Fast Diet - Incredible Body Hack
    In terms of body hacks, the Fast Diet probably ranks all the way at the top for me. I first read about it in the papers and found the techn...
  • Fast Diet - Hunger Pangs
    When I am doing the Fast Diet , I frequently experience long periods of calm after a brief period of hunger pangs. It is as if the body has ...
  • Children - The ultimate test in anger management
    Having just spent two full holiday weeks with my kids, it occurred to me this morning that raising young children is the ultimate test in an...
  • Looking for the perfect car MP3 player/FM transmitter
    I have bought quite a number of car MP3 player/FM transmitters from DealExtreme and other similar websites. A car MP3 player/FM transmitter...
  • 110GB+ worth of photos/videos on a microSD memory card #1
    We have a family NAS where we keep all kinds of stuff. Well, actually it's an old laptop that functions as a server, with 3 x 3TB extern...
  • Adding "Stereo Mixer" to Windows 7 with Conexant sound card
    This procedure worked for my laptop (Thinkpad E530) with a Conexant 20671 sound card, but I suspect it will work for other sound cards in th...
  • Coding the Liturgical Calendar
    For a long time, I've wanted to integrate the Roman Breviary into a couple of projects (nothing public) but have never been able to find...
  • Booting to DOS from a USB memory stick
    Now that the floppy disk is ancient history and optical media is not far away, it seems we still have to boot to DOS from time-to-time to pe...

Categories

  • a2dp
  • administrata
  • android
  • antivirus
  • avi
  • bluetooth
  • chrome
  • coding
  • culture
  • dos
  • eee
  • faith
  • family
  • fastdiet
  • firefox
  • gadgets
  • geeekry
  • geekery
  • hardware
  • homeschooling
  • howto
  • java
  • laptop
  • life and the universe
  • linguistics
  • link2sd
  • linux
  • migration
  • mp4
  • pdf
  • politics
  • printer
  • roomba
  • security
  • soapbox
  • software
  • transcode
  • travel
  • ubuntu
  • video
  • virtualization
  • webapps
  • windows

Blog Archive

  • ►  2013 (11)
    • ►  August (3)
    • ►  July (6)
    • ►  June (2)
  • ►  2012 (25)
    • ►  December (2)
    • ►  November (4)
    • ►  October (4)
    • ►  September (1)
    • ►  June (11)
    • ►  May (3)
  • ►  2011 (11)
    • ►  December (1)
    • ►  September (2)
    • ►  August (1)
    • ►  July (3)
    • ►  April (1)
    • ►  March (1)
    • ►  February (1)
    • ►  January (1)
  • ►  2010 (10)
    • ►  December (2)
    • ►  October (1)
    • ►  September (1)
    • ►  August (2)
    • ►  July (1)
    • ►  May (1)
    • ►  March (1)
    • ►  February (1)
  • ►  2009 (29)
    • ►  December (2)
    • ►  November (2)
    • ►  September (1)
    • ►  August (3)
    • ►  July (2)
    • ►  June (5)
    • ►  May (2)
    • ►  April (2)
    • ►  March (6)
    • ►  February (3)
    • ►  January (1)
  • ▼  2008 (57)
    • ►  November (2)
    • ►  October (4)
    • ►  September (1)
    • ▼  July (8)
      • Wachovia Posts $8.9 Billion Loss - NYTimes.com
      • 12 Babies die during vaccine trials in Argentina
      • Encrypt the Entire Internet?
      • Baseball
      • Kids Rock!
      • Flock Media Plugins
      • Man found in WI basement covered in BBQ sauce
      • Flock
    • ►  June (3)
    • ►  May (8)
    • ►  April (12)
    • ►  March (6)
    • ►  February (8)
    • ►  January (5)
Powered by Blogger.

About Me

Unknown
View my complete profile