Monday, October 23, 2017

Cry Me a River; FBI Edition

Agents at the US Federal Bureau of Investigation (FBI) have been unable to extract data from nearly 7,000 mobile devices they have tried to access, the agency's director has said.

Christopher Wray said encryption on devices was "a huge, huge problem" for FBI investigations.
Let's be honest about this: There is no way to build in a secure "back door" into any encryption product. If one were built in, then it would either be exploited by hackers or the FBI's hacking tool would leak, just like the NSA's did.

To assume, as the FBI apparently does, that they could design a back-door into encryption that nobody else would be able to figure out is the height of arrogance. But let's call it what it is: They are openly lying if they even hint that they could do it.

Do you want the FBI having the ability to remotely snoop around inside your phone, which probably holds more personal data about you than any other device that you have?
on or about

4 comments:

  1. CenterPuke8810/23/2017 8:00 PM

    Exactly why I will never put my Proof of Insurance card on my phone...

    "Sure Officer, you can take my unlocked phone with you back to your car to check this Proof of Insurance..."

    ReplyDelete
  2. dinthebeast10/24/2017 1:02 AM

    Read that: they don't care if we have effective, workable encryption, and would rather we didn't.

    -Doug in Oakland

    ReplyDelete
  3. BadTux10/24/2017 4:31 AM

    They're going to have to drag an encryption back door out of Apple and Google's radioactive corpses, because back doors are bad for business. Any back door that lets the FBI in also lets in everybody else, including business competitors. That's what thus far has held back the forces who want back doors.

    I never even thought of putting a Proof of Insurance card on my phone. I guess that's one advantage of being old -- you don't cater to new-fangled (but stupid) ideas.

    ReplyDelete
  4. Borepatch10/24/2017 9:55 AM

    It's hard to overstate just how angry the computer security community was over PRISM and the rest. These are smart people, and they felt betrayed. And then they got to work, and here we are. I wrote about this some time back:

    https://borepatch.blogspot.com/2013/11/google-security-engineer-on-nsa-spying.html

    For a long time a bunch of us in the security community thought that while the NSA was a big bureaucracy, they were the Good Guys. Then we found out what they were doing to us. I guess I'm a little surprised that the FBI d00d doesn't know this.

    ReplyDelete

House Rules #1, #2 and #6 apply to all comments. Rule #3 also applies to political comments.

In short, don't be a jackass. THIS MEANS YOU!
If you never see your comments posted, see Rule #7.

All comments must be on point and address either the points raised in the blog post or points raised by commenters in response.
Any comments that drift off onto other topics are subject to deletion.

(Please don't feed the trolls.)

中國詞不評論,冒抹除的風險。僅英語。

COMMENT MODERATION IS IN EFFECT UFN. This means that if you are an insulting dick, nobody will ever see it.