{"id":1863,"date":"2016-02-07T12:58:55","date_gmt":"2016-02-07T11:58:55","guid":{"rendered":"https:\/\/www.ofcourseimright.com\/?p=1863"},"modified":"2016-02-12T07:56:41","modified_gmt":"2016-02-12T06:56:41","slug":"cryptowars-continued-harvard-paper-makes-for-scary-reading","status":"publish","type":"post","link":"https:\/\/ofcourseimright.com\/?p=1863","title":{"rendered":"Cryptowars continued: Harvard paper gives us a state of the net (and it’s not all good)"},"content":{"rendered":"

\"Cybercrime\"In November, I opined<\/a> that a nuanced approach was needed when addressing encryption.\u00a0 I wrote that there are different forms of cryptographic protection, and that each side on this issue needs to consult and not confront one another.\u00a0 Last month, Harvard University’s Berkman Center for Internet and Security released a white paper<\/a> that attempts to address many of the issues I and others raised.\u00a0 Entitled, Don\u2019t Panic: Making Progress on the \u201cGoing Dark\u201d Debate<\/span>, the the paper points out that governments have many avenues to access unencrypted information.\u00a0 They also have access to so-called \u201cmetadata\u201d, and they claim that because of this, the Internet hasn’t really gone dark.<\/p>\n

They\u2019re right.\u00a0 For now.<\/p>\n

Many of the points the authors made addressed the state of the Internet as they saw it in January of 2016.\u00a0 That is- Google has had difficulty encrypting platforms, Apple has backup recovery keys that governments can subpoena, and the security of the Internet of Things is nothing short of a crying shame, that governments can take advantage of.\u00a0 All three of those points may well change over time.\u00a0 Apple could easily move to a system (if they have not already done so) where recovery keys themselves are encrypted in information that only the owner of a device has, be that a password or one of those questions like, \u201cWhat was your first pet?\u201d\u00a0 If Apple can accomplish such a feat, the only matter that would hold Google up is lining up those that actually sell their devices to support whatever system they put in place.<\/p>\n

Even metadata is likely to dry up.\u00a0 Efforts such as the IETF\u2019<\/a>s DPRIVE<\/a> working group attempt to keep private queries your computer makes to convert domain names like ofcourseimright.com <\/a>to IP addresses that the network understands.\u00a0 At the same time, those who really want to hide are able to do so through ToR networks.<\/p>\n

Even the security of Things on the Internet is likely to improve over time, albeit slowly.\u00a0 That will require a concerted effort between Thing manufacturers, network vendors, service providers, and users.<\/p>\n

And so the question: do policy makers need to actually do anything today<\/strong> to insure access to law enforcement officials?\u00a0 My answer is a firm not yet.\u00a0\u00a0 <\/strong>That\u2019s very good news because it gives us time to have the dialog necessary to deal with the many facets of this issue.\u00a0 However, all sides still have come to terms with each other.<\/p>\n","protected":false},"excerpt":{"rendered":"

In November, I opined that a nuanced approach was needed when addressing encryption.\u00a0 I wrote that there are different forms of cryptographic protection, and that each side on this issue needs to consult and not confront one another.\u00a0 Last month, Harvard University’s Berkman Center for Internet and Security released a white paper that attempts to … Continue reading “Cryptowars continued: Harvard paper gives us a state of the net (and it’s not all good)”<\/span><\/a><\/p>\n","protected":false},"author":172,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[87,9],"tags":[362,172,511,81,512,496],"class_list":["post-1863","post","type-post","status-publish","format-standard","hentry","category-internet","category-security","tag-cybersecurity","tag-encryption","tag-iot","tag-law-enforcement","tag-metadata","tag-security"],"_links":{"self":[{"href":"https:\/\/ofcourseimright.com\/index.php?rest_route=\/wp\/v2\/posts\/1863","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ofcourseimright.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ofcourseimright.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ofcourseimright.com\/index.php?rest_route=\/wp\/v2\/users\/172"}],"replies":[{"embeddable":true,"href":"https:\/\/ofcourseimright.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1863"}],"version-history":[{"count":4,"href":"https:\/\/ofcourseimright.com\/index.php?rest_route=\/wp\/v2\/posts\/1863\/revisions"}],"predecessor-version":[{"id":1868,"href":"https:\/\/ofcourseimright.com\/index.php?rest_route=\/wp\/v2\/posts\/1863\/revisions\/1868"}],"wp:attachment":[{"href":"https:\/\/ofcourseimright.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1863"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ofcourseimright.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1863"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ofcourseimright.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1863"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}