NSA-resistant Android App 'Burns' Sensitive Messages 183
angry tapir writes "Phil Zimmermann's Silent Circle, which halted its secure mail service shortly after Lavabit, has released a messaging application for Android devices that encrypts and securely erases messages and files. The application, called Silent Text, lets users specify a time period for which the receiver can view a message before it is erased. It also keeps the keys used to encrypt and decrypt content on the user's device, which protects the company from law enforcement requests for the keys."
Seems similar to pieces of the Guardian Project.
Very little utility here (Score:2, Interesting)
Re:Very little utility here (Score:5, Interesting)
Re: (Score:3)
yeah it's the recipient who can copy the message.
he can read it, he can copy it.
this is just copying a feature from a popular teens chat program..
Re:Very little utility here (Score:5, Insightful)
It isn't useless. A careful person could remove the keys every time they finish with the application. The application is simply a way to guarantee that your communication will not be intercepted, limiting what you need to worry about to the endpoints.
Re: (Score:3)
Put two and two together. Presumably the erasing aspect is less for erasing the encrypted message than it is for erasing the private key. That way the NSA can get a copy of the encrypted message and a copy of the public key, but they can't get the private key unless they happen to nab you and apply phone books and rubber hoses before your phone erases it.
Zimmerman is a pretty s
Re: (Score:3)
Er, what? We just learned this summer that governments are sucking up EVERYTHING and storing it for god knows how long, and you think it's useless because you would need to obtain the device to read the content?
No way! At this point any kind of crypto, even the unauthenticated kind, is a good step forward.
Re: (Score:2)
I'm no expert though; I just read TFA.I'm no expert though; I just read TFA.
FAIL!!!!
First off, everyone that posts here is an expert. Sometimes self proclaimed but expert none the less. Secondly, reading TFA is strictly /forbidden.
Would you please go play in traffic? Thanks.
Re:Very little utility here (Score:5, Informative)
Came here to say this. Without using shared secret encryption it either requires a (potentially coercible) central authority or is vulnerable to MITM attacks. And any kind of "time deletion" is only good for security on the receiver's device, not security of the message sent - the important thing to remember with computers is that if you can see it on your screen or hear it through your speakers, you can own it forever. No exceptions.
Re: (Score:2)
Or public key encryption.
Private key on your phone, public key on that key server network that's used for encrypting and authenticating emails.
Re: (Score:2)
Nope this can't work. Unless you physically control the server it could be accessed through coercion. If you send the public key to the server through the Internet using anything less than symmetric key encryption with a key that only you have, and have never sent through the Internet, that's at risk of being snooped by the NSA.
For a while I thought high-level ECDH SSL, if self-generated, might work as NSA-proof encryption but after reading this article [wired.com] I'm not so sure.
Re: (Score:2)
Re: (Score:2)
Well you're right that I got the two sides messed up...but it doesn't solve the physical access problem.
Re: (Score:3)
Who cares if the NSA gets the public key?
I want to send you a message so I ask you for a key. You generate a public/private key pair and send me the public one. NSA gets it. I then encrypt my message with the public key and send it to you. NSA gets it. You then receive the message and read it. The NSA is SOL because they've got the public key, not the private one. They COULD still impersonate me though, so to avoid that we do a key exchange in the opposite direction and I sign my message with my priv
Re: (Score:3)
I want to send you a message so I ask you for a key. You generate a public/private key pair and send me the public one. NSA gets it.
And generates their own public/private key pair. They then forward their public key to you instead of mine. You encrypt a message using it and the NSA gets it, decrypts it, and recrypts it using the public key I sent you, then forwards it to me.
MITM works for public keys too if you can't trust the public key exchange. That is why before you sign a 3rd party key (outside of your
Re: (Score:2)
OK, so assuming the intelligence agencies have the power to secretly coerce all of those public key servers to do their bidding.
Which they probably do.
Is the only solution out of band?
What about authentication?
A way to encrypt a message in a way that the recipient know that you encrypted it.
Which probably doesn't work because they have that guy's public keys too.
There's got to be *some* trusted 3rd party they can leverage.
Wait a minute.
Why can't you just check the public key on the server is equal to your o
Re: (Score:2)
So much for updating the decor of my secret volcano lair. I dont want my arch nemesis stealing my interior designer's plans. Guess we'll just paint the walls beige.
Re: (Score:2)
I think what you're forgetting is that the content of the message is really only useful (from a big brother standpoint) if you can definitively pin the message on someone.
Sure, if a message appears on my phone, I can write it down and SAY it's from you, but without that transaction log, it's just your word against mine. There's no paper trail except a message you claim I sent you. A picture of the message or anything else that doesn't include that signature is meaningless.
So the REAL question is whether or
Re: (Score:3, Insightful)
I think this gives a false sense of security.
All senses of security are false.
Re:Very little utility here (Score:4, Insightful)
this got modded insightful?
Hint, the more broad and absolute a statement is ("all" and "false") the less likely there is to be any truth to it.
I could see it being interpreted as "funny", but it doesn't really get past the joke stage.
Re: (Score:2)
All absolute statements about security are false
If the above is a statement about security, it is false.Hence it is true.
Re: (Score:2)
Nice try. I never made the broad and absolute statement that you seem to be implying. "the more it is..." leads to "...the less likely". But I'm guessing you knew that.
Re: (Score:2)
It IS funny. It's not quite as funny as saying "who says?" to an anarchist wearing a question authority t-shirt, but it's not horrible. It says something about the average Slashdotter that it's modded insightful though.
Re: (Score:3)
I am still trying to figure out what everybody is texting and messaging that is so private?
I kind of work on the idea that anything that private I say face to face.
I wonder just how much of this worry about the NSA is some form of narcissism. Frankly I am not important enough or interesting enough for the NSA to spy on me.
Re: (Score:3)
Less likely, but even if you do not belong to one of the above groups then the government might be out to get you for any personal or political reason,they just need to mine your m
Re: (Score:2)
With the power NSLs have, why is is so hard to conclude that television and papers can be gagged IN ADVANCE just as readily as your friendly beighborhood ISP?
It is not like disappearing and poisoning of persona non-gratta needs to be done every day, and they can precision-target the Snowdens we haven't heard from yet
Re: (Score:2)
Re: (Score:2)
In lots of places in the world you can be arrested for saying or writing things that most of us would consider perfectly harmless, never mind saying things that are unflattering to a government that would do things like that to it's citizens. In those places unsnoopable communications are extremely valuable.
In places that currently aren't in such a situation, the existence of secure communications are essential to keeping it that way. Assuming you're American, your constitution has an amendment that makes
Re: (Score:2)
Re:Very little utility here (Score:5, Interesting)
There's a button on my Ubuntu PC for creating private/public key pairs and uploading the public key to a ring of public key servers.
Then, people can encrypt emails that only I can read because only I have the private key.
I've always wondered why this isn't better integrated/more automatic when it comes to email systems (gmail?)
Why not just leverage that type of mechanism?
1) Install app
2) it creates a key pair for your phone number
3) It uploads the public key to one of these servers
4) Anybody who texts you using a compatible app, it looks up your private key and encrypts the message only for you.
Job done.
If you can't fit the encrypted message in 120chars, it uploads the encrypted data to a 3rd party and all it sends is a message ID.
Or it uses IP only (like imessage/whatsapp)
Or is uses email as the bulk carrier
All those IP messaging systems must use a 3rd party anyway as you're always NAT'ed behind a real IP address anyway on a mobile connection.
I'm always on a 10.x.x.x address.
Re: (Score:2)
I've always wondered why this isn't better integrated/more automatic when it comes to email systems
The extra step needed (entering passphrase to use private key) are too cumbersome for most people. Implementing a work-around to make it "easier" negates the whole point of protecting the key in the first place.
It can't get much easier than Enigmail in Thunderbird yet still nobody will use it. We live in the times of patheticosis.
Re: (Score:3)
I've always wondered why this isn't better integrated/more automatic when it comes to email systems (gmail?)
3 reasons
1) Technical - gmail needs to have your private key to decrypt messages sent to you with your public key. Or to sign messages sent by you with your private key. They absolutely cannot offer a webmail service, if they can't descrypt your mail to show it to you over the web. If gmail has your private key, its not a very private key. The NSA can just quietly ask google for the key.
2) Business -
Re:Very little utility here (Score:5, Insightful)
1.) This is not true. You can design a mail system to store the private key on the client (html5 local storage).
Until I have some sort of assurance that the key stored in local storage, can't be sent up to the server by javascript then this gets me no where.
The NSA asks your mail service for the keys. The mail service says we don't have them... html5 local storage. NSA says ... add this line of javascript to your site. Next time I log in they have my key, and everyone else who accessed the site during that interval.
And even if we build a whole new spec with a wall of protection around the key, so the javascript just sends the encrypted text in and gets the decrypted key out and never gets its hand on the keys only then will the key be safe.
But any messages I access still are not. Because as long as I'm relying on javascript downloaded from the service to display the messages, I am vulnerable to that javascript being updated and sending that message back up to the server.
The client cannot be provided on demand by the server to have a hope in hell of being safe. Really it needs to be 3rd party, open source, audited by more 3rd parties, and the binaries I install.. well I don't... I download the source and compile it myself after checking that the hashes match the original and the 3rd party auditors. And even then, I have to trust that the NSA didn't get to everyone and conspire to publish malicious source. So to be truly safe, I have to audit it myself.
Real security from the likes of the NSA is HARD.
3.) Not true. See 1. If you authenticate using a private key you only need the password to decrypt the key and no username anymore.
True but you underestimate how little tolerance the average person has for passwords. An awful large number of people don't have login passwords to their computers and fewer still on their phones. And their mail passwords are remembered by the software so they don't have to enter them.
Re: (Score:2)
One solution to quite a few of these problems is a USB dongle that holds the keys and handles the actual encryption. This would be perfectly feasible with PKCS #11, if it didn't suck so very much. HSM and smart cards are so incredibly disappointing in that the potential is squandered by a poorly designed API, massive fragmentation, and the overabundance of not-interoperable devices.
Fixing that mess would go a long way toward making key management simpler and more secure.
Re: (Score:2)
One solution to quite a few of these problems is a USB dongle that holds the keys and handles the actual encryption.
aka... TPM / Trusted Computing. you don't even need the usb device.
That would indeed go a long way towards solving the problem, provided we get to control the keys. Alas TPM / TC is subverted by the content creation industry... so they "own" the platform instead of us for the most part. But in terms of the tech itself, its a solution that already exists if we just had the willpower to take con
Re: (Score:2)
Well, I was thinking more about smart cards, USB tokens, and generally what is covered by PKCS #11 than TPM. There's no reason to use TPM for this, and it has the additional downside of being tied to a single computer and not a single user.
PKCS is implemented in the browser and/or the OS, so you wouldn't need to rely on some sites's javascript to render the decoded text. The idea behind it is good, but the implementation is horrible. The fact that it's been around for 20 years and nobody really uses it or k
Re: (Score:2)
It does not get you the whole way there. But I sure makes it harder for the NSA.
For a service outside the jurisdiction of the NSA or other opressive govt agency yes, I agree, but its not just the NSA.
At the end of the day, client side keys manipulated by javascript via local storage require trusting the service provider not to slurp them from me. I want a solution that doesn't require that trust.
So on a technological level you can simply increase the time the javscript files are cached and have some extern
Re: (Score:2)
Job done.
Except it's not even close to done. This protocol is far more secure than no security at all, but is vulnerable to a number of different attacks. If you think the solution is simple, it's because you don't really understand the scope of the problem.
1) How do you trust that the keys posted on the public key servers? Say I wanted to send you a message, How do I know that the key posted on the key server is in fact, from you? (See Certificate Authority) If a malicious party could intercept messages to you and
Re: (Score:2)
How do you trust that the keys posted on the public key servers? Say I wanted to send you a message, How do I know that the key posted on the key server is in fact, from you? (See Certificate Authority) If a malicious party could intercept messages to you and decrypt them (using the bogus public/private key pair) and then re-encrypt the message to you using your formerly available public key, you'd receive the message and have no knowledge of the MITM attack.
You are, of course correct, but that is what key
Re: (Score:2)
I've always wondered why this isn't better integrated/more automatic when it comes to email systems (gmail?)
If you encrypt your email it will prevent Google from parsing the text and shovelling targeted ads at you.
Re: (Score:2)
Because I can grab you and torture you until you give me your private key. Then I've got all the messages you've sent or received.
With this system, each message gets it's own private key that's deleted after a specified time period. If that time period is short enough I won't have time to grab and torture you. Even if I do, I'll only get the most recent messages.
This system is less convenient than a persistent key pair because you can't keep an archive of messages. On the other hand, it's much more secu
Re:Very little utility here (Score:5, Insightful)
If only there were some sort of secure way of exchanging keys over an insecure medium... [wikipedia.org]
Re:Very little utility here (Score:5, Funny)
Saaay, someone should tell Phil Zimmerman about that - I'll bet he could really put it to some good use!
Re:Very little utility here (Score:5, Funny)
Saaay, someone should tell Phil Zimmerman about that - I'll bet he could really put it to some good use!
I can imagine that the result would be some pretty good privacy for the ordinary user.
Re:Very little utility here (Score:5, Informative)
I'm not confident that the NSA hasn't already solved the discrete logarithm problem at the heart of that method.
http://arstechnica.com/security/2013/08/crytpo-experts-issue-a-call-to-arms-to-avert-the-cryptopocalypse/ [arstechnica.com]
Even if the security is perfect, I have a hard time understanding why people would need it. If you were discussing something that were merely private that you didn't want anyone to ever know you'd have to convince the other person to install the app as well. Hey Dave, I have a secret I would like to share with you, but only if you install this app... You have to be really paranoid, or have a really valuable secret to divulge. I just don't see that many legitimate uses.
If you integrated it into android, where every text between two android users did the same thing, that would be valuable. So things would be secure and private by default.
Re:Very little utility here (Score:4, Interesting)
I just don't see that many legitimate uses.
What about illegitimate uses? Those are the only kind that domestic extremists like myself care about.
If you were discussing something that were merely private that you didn't want anyone to ever know you'd have to convince the other person to install the app as well.
This would seem to be the case for every form of private communication. Is there any way to communicate securely with someone who doesn't care about private communication?
Hey Dave, I have a secret I would like to share with you, but only if you install this app...
I had this problem with my defense attorney. I wanted to discuss some aspects of my case with him via email, which I rightfully didn't trust. So I asked him if he would be willing to install and use gpg4win or at least sign up for Hushmail, but that went over like a lead balloon. So in the end I had to wait to discuss the case with him in person.
Re: (Score:2)
I just don't see that many legitimate uses.
How about a politician traveling to a less than friendly country?
Re: (Score:3)
A politician isn't going to be savy enough to install the app, and have everyone he's communicating with install the app. interTubes are not their friends. It has to be secure by default.
Re: (Score:2)
This kind of system should be integrated into messaging systems. It would wipe out spam as well as keeping away snoops. The overhead for this would be fairly small - essentially it would require doing similar negotiation to what WPA does when you make a connection. People switch messaging networks all the time, and the timed-destruction feature is something that's in demand. My teenage cousin is all over Snapchat.
Re: (Score:2)
I'm not confident that the NSA hasn't already solved the discrete logarithm problem at the heart of that method.
http://arstechnica.com/security/2013/08/crytpo-experts-issue-a-call-to-arms-to-avert-the-cryptopocalypse/ [arstechnica.com]
I think its about NSA submarining vulnerable elliptic curve keys into the standard
Re: (Score:3)
It doesn't matter how secure the key exchange is, if the hacker has access to your keys, for instance by having a backdoor into the OS or app that uses the keys.
Or in other words, a public key from a key pair isn't worth shat if the private key can be compromised.
Re: (Score:2)
Which is why you create a private key for the message exchange, then delete it. If your OS is compromised you're hooped regardless, but it avoids the "sir, I pulled you over because you have a broken tail light. Now, let me see your license, registration and cell phone" situation.
How to crack: (Score:4, Insightful)
1. Send order to Google saying, "give us unrestricted read/write access to the persistent storage of all android devices. Oh, and you cannot tell anybody about it."
2. Download the contents of all devices, including the keys.
3. Install keylogger to capture any necessary passwords.
4. Profit!
Re: (Score:2)
You don't even need to do the whole device. Apps run as their own user, so all you need to do is grab files owned by that user.
The only way around this is for an app to use 'su' to escalate it's privileges, which requires a rooted device.
Re: (Score:2)
That's incorrect. On Android every app is a separate user. Only files stored in the "SD Card" area are visible to other apps. So in theory you need a root exploit to get at this data.
Re: (Score:3)
Re: (Score:2)
That's what I just said?
Re: (Score:2)
no, no, they will need the entire file system just in case there was something else they needed. Once you've read government requests (I'm not talking the secret ones, just regular investigatory) the fishing expedition methodology employed quickly becomes apparent.
Re: (Score:2)
5. hacked rom authors discover this, post the information to their forums.
6. news picks it up.
7. Public outrage until some teen star twat shakes her butt on stange...
8 Rinse
9 repeat.
Re: (Score:2)
1. Opt out completely by first installing Cyanogen.
Re: (Score:2)
I think this speaks to the fact that post-Snowden, the game has entered a new stage.
Pre-Snowden the NSA or whoever would not have been willing to do such a thing, due to the very high likelyhood of detection. Yes, 99.9% of people aren't going to notice their phone doing something unexpected. But if you apply it to everyone because you want the ability to grep their communications for keywords a.k.a. selectors then you need all of it, all the time. There are over a billion Android activations now. Even 0.01%
You still can't control recipient devices (Score:5, Insightful)
No, it can't. The recipient could be using a tampered application that ignores the timeout directive. Or it could modify the JVM to lie to the executable about the time or refuse to fire timers. Or modify the JVM to write all the memory transactions to disk (or host) even after the application frees (or GCs) it. Or modify the screen rendering APIs to capture the rendering. Or attach with JDB over ADB and halt the executable while the plaintext is in memory and slurp it out. And, of course, there are apps in the store that will just take a video of the screen.
FWIW, I support the app and I believe the encryption-in-transit is a very worthwhile feature. But the "Burn Notice" is, from a security point of view, useless. If you trust the recipient with the plaintext, you trust the recipient with the plaintext, end of story. Anything else is DRM-esque attempts to put restrictions on a device that you do not own.
Re: (Score:2)
AFAIK an app could execute binaries that it packages. They just execute within that user's context. It doesn't have to be done via the JVM.
Re: (Score:2)
Re: (Score:2)
No, it can't. The recipient could be using a tampered application that ignores the timeout directive.
Now is probably a bad time to point out that all phones have the ability to have their firmware rewritten and software updated silently, and this functionality is enabled by, er... turning it on. Any data stored on a mobile phone is inherently, by design, enforced by hardware mandate... insecure.
You cannot secure a mobile phone anymore than you can build a bull pen using construction paper and string and expect it to hold an angry bull. Stop trying people. Fix the fucking hardware, then maybe all your "Ther
Re: (Score:2)
Re: (Score:2)
Re: (Score:2)
The "Burn Notice" feature lets the sender set a time for a text, video, voice recording or picture to be erased from the recipient's device.
No, it can't. The recipient could be using a tampered application that ignores the timeout directive
Ok, the solution is obvious: don't depend on recipient software to do the deletion. Rewrite the sending app so it sends ,instead of standard IP ones and zeroes, nanobot-bits which are preprogrammed to self-destruct after a set period of time. Being nanobot-bits, they can't be copied either, due to the Sokal Lemma modification to the Post-Hermaneutic Uncertainty Principle.
Re: (Score:2)
The point is not to force the recipient to delete messages, it's to delete messages for the recipient. It's a convenience feature. You and I could send each other e-mail, exchanging one-time use public keys each time and dutifully deleting both the plain text and private keys as soon as we'd read the messages. OR, we could use this app, that does all that work for us.
Yes, if the person you're sending messages to is compromised you're screwed. But if he's merely imperfect, a timed auto-destruct prevents
Re: (Score:2)
Nobody said it'd be the user of the device that employs those circumvention methods.
How do you securely remove on android ? (Score:2)
You might try overwriting the data, but that makes the assumption that a write is to the same place as the data was a second ago. Ext3 does not guarantee that and SD cards avoid it to ensure wear levelling. It is harder than you think.
WTF, PRZ? (Score:4, Interesting)
TFA makes it sounds like the sender can make decisions about what the receiver's machine does. That is insane (and also impossible, or it's irresponsible to lead users to believe they'll get that). I hope I am misreading the claim.
If the receiver has that control, or if the sender gets to specify advisory info in the hopes that the receiver uses it, ok. If not, then I think one of the most respected programmers ever (PZ) has left the path of wisdom.
Re: (Score:2)
No, you the receiver can make the decisions.
Software like this is old, even Microsoft sell software with similar options.
Instead of using the normal mail you have to you their software. Since the email only unencrypts in that software it can control how long it is kept, if you can forward it, if you can save it, etc. So unless you do screen captures if the sender only wants you to be able read it once that is all the software is going to allow you to do.
Re:WTF, PRZ? / private key weakness (Score:2)
Also, what about the weakness that an update of the app (forced on them by NSA/etc) may send your private keys upstream. Like Mega they claim it is hands-off, but in reality there is a mechanism through which they could obtain the private key if pressured/blackmailed/waterboarded/whatever.
Re: (Score:2)
It's possible that Silent Circle has been compromised by the NSA.
Comment removed (Score:4, Insightful)
Re: (Score:2)
Just Stop.. (Score:5, Insightful)
The idea of a secure phone app is laughable (Score:2)
The only way to win is not to play.
Re: (Score:2)
Re: (Score:2)
When the hardware, the software, and the transport medium are all compromised it is moronic to continue this "security" game.
Or encode your messages OUTSIDE of the technology. At one time codes and cyphers were used for secret correspondences before creation (writing on paper) and transmission (hand carried by courier), but of course that takes effort at both ends.
How long before ... (Score:2)
Sadly, I'm forced to wonder how long before it will be illegal to do anything which would prevent the NSA from spying on you.
Because, after all, if you have nothing to hide you have nothing to fear.
Trust No One (Score:4, Insightful)
It is closed source right? And even if it is not, you need to be able to build the binary from a vetted copy of the source and associated libraries.
Encryption is NOT MAGIC (Score:2)
What people seem to fail to recognize about encryption is that it's not some kind of magic that makes the data perfectly "secure" forever. All it does is vastly increase the work factor for an attacker to read the data, because he first has to reconstruct the key.
Moore's law, GPU programming, and elastic clusters are radically lowering the costs of brute force attacks. An organization with the nigh-unlimited resources of the NSA is going to be able to crack your file a lot faster than J. Random Hacker. I i
Re: (Score:2)
That fact that we've adhered so closely to Moore's law makes encryption more secure. Someone in the early 80's, at the invention of RSA, could have accurately predicted how much it would cost today to break a message encrypted with a given key size. You could have picked your key size accordingly, including one that would make your message essentially impossible to decrypt at any time in your lifetime (or the lifetime of the Earth) using all the theoretical computing resources of the solar system.
In fact,
Re: (Score:2)
The NSA screwed themselves and everyone else (Score:5, Insightful)
We need an organization whose mandate is similar to the NSA. When the FBI, for instance, lawfully obtains evidence that gives them probable cause to get a warrant to invasively follow a chain of evidence, we need this information-gathering capability.
But the NSA over-stepped their bounds, broke the law, and betrayed all Americans and their allies. As a result, people are now more motivated to produce tools to evade organizations like the NSA. Because American citizens have the right to privacy, and they now have to go out of their way to get it, criminals are now gaining more sophisticated tools they can also use to evade the NSA. Looking at the other comments, the app mentioned in particular here isn't necessarily all that effective, but give it time. Pretty soon, you'll be able to put up an impenetrable wall around your data that the NSA can't break through.
The "problem" with this is that there are only two groups who will use these tools. Innocent privacy enthusiasts and criminals. The NSA will be unable to distinguish between them, essentially making rationally paranoid people targets of criminal investigations. And the NSA will be stupid about everyone else, seeing people NOT using encryption as low-hanging fruit, criminalizing countless innocent citizens merely in an effort to show that the NSA is catching *someone*, justifying their enormous budget. (In other words, they will make up criminals to justify their existance.)
If the NSA had obeyed the law, we wouldn't be in this mess, where it is inevitable that we can no longer spy on real criminals, probable cause or not.
Re: (Score:2)
We need an organization whose mandate is similar to the NSA.
For a second there I thought you were going to propose an anti-NSA organization: a government agency whose mandate and sole purpose is to protect Americans from NSA spying.
The "problem" with this is that there are only two groups who will use these tools. Innocent privacy enthusiasts and criminals. The NSA will be unable to distinguish between them
Are you implying that they can distinguish between them now? I don't think they particularly care. They are just building a database they can search, a private NSA Google.
Re: (Score:2)
We need an organization whose mandate is similar to the NSA.
For a second there I thought you were going to propose an anti-NSA organization: a government agency whose mandate and sole purpose is to protect Americans from NSA spying.
I feel dumb for not having thought of this. Mind you, protecting us from violations of our rights in general should be the job of the executive branch. The law is that we're not to be spied on without a clear chain of evidence constituting probable cause. The executive branch is supposed to enforce the law. Too bad they don't.
The "problem" with this is that there are only two groups who will use these tools. Innocent privacy enthusiasts and criminals. The NSA will be unable to distinguish between them
Are you implying that they can distinguish between them now? I don't think they particularly care. They are just building a database they can search, a private NSA Google.
True. And as someone who knows just enough about information retrieval to be dangerous, I can assure you that what they get out will be almost entirely garbage. Look up "precisio
Want NSA Proof? (Score:2)
Then use a 1 time pad book and hand encrypt and decrypt your text messages. The NSA will never EVER decrypt your communications. Why has nobody made that simple app? a 1 time pad file that you pre-share out of band and then have it send and receive your text messages. Under Android this would be trivial.
Re: (Score:2)
and also easy to do. but not automatic. if you had a flatfile you can automatically have the app auto increment the pad for every message sent to make it nearly invisible.
Then when you are to the last 10 it warns you to get a new PAD file.
you just have to be able to share the pad file out of band.
Re: (Score:2)
That's not a one-time pad. A one-time pad is random and shared securely. A link to a YouTube video is a form of encryption using a key generator. It's not random and, in this case, relies on obscurity.
So the NSA can read it... (Score:2)
What exactly does this protect against? (Score:2)
Re: (Score:2)
Hight-tech computer forensics applications can't retrieve a copy of a message that was deleted long ago, along with it's decryption key. That's the point.
A little safer than a computer in a hotel lobby (Score:2)
Thats how I would treat any computer (or phone) that I did not install myself. And frankly, I think even the cpus might have backdoors now.
Re: (Score:2)
Re: (Score:2)
Re: (Score:2)
They will hang you upside down or send pictures of your family until keys are revealed.
Tell us the key or we'll make you look at your sister again!
Re: (Score:2)
You can't reveal a key that deleted itself five minutes after you received the message. That's kind of the point.
Re: (Score:2)