Search Mailing List Archives
[liberationtech] Interesting Q&A
Bernard Tyers - ei8fdb
ei8fdb at ei8fdb.org
Mon Jun 17 15:05:46 PDT 2013
-----BEGIN PGP SIGNED MESSAGE-----
On 17 Jun 2013, at 22:23, Richard Brooks wrote:
> From Guardian Q&A with Snowden
> Is encrypting my email any good at defeating the NSA survelielance? Id
> my data protected by standard encryption?
> Encryption works. Properly implemented strong crypto systems are one
> of the few things that you can rely on. Unfortunately, endpoint security
> is so terrifically weak that NSA can frequently find ways around it.
Encryption does work but it needs to be something that everyone can install configure and use.
I wonder what encryption software would look like if Apple made it as friendly as their products....
What was also interesting was the following:
Question: 1) Define in as much detail as you can what "direct access" means.
(Anthony De Rosa 17 June 2013 2:18pm)
1) More detail on how direct NSA's accesses are is coming, but in general, the reality is this: if an NSA, FBI, CIA, DIA, etc analyst has access to query raw SIGINT databases, they can enter and get results for anything they want. Phone number, email, user id, cell phone handset id (IMEI), and so on - it's all the same. The restrictions against this are policy based, not technically based, and can change at any time. Additionally, audits are cursory, incomplete, and easily fooled by fake justifications. For at least GCHQ, the number of audited queries is only 5% of those performed.
Bernard / bluboxthief / ei8fdb
IO91XM / www.ei8fdb.org
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.17 (Darwin)
Comment: GPGTools - http://gpgtools.org
-----END PGP SIGNATURE-----
More information about the liberationtech