YOU have a moral obligation to use crypto.

we_want_you_to_use_cryptoToday is The Day We Fight Back, a global initiative to send a message to our overlords that we're not thrilled about being spied on, subject to mass surveillance and basically living in an Orwellian nightmare.

Ordinarily we're not big "joiners" or "petition pushers", we think taking action has more efficacy. However, this is in it's own way doing just that. It is simply unfathomable to me how low on people's radar this issue is.

When the first revelations began surfacing that the NSA had basically implemented a surveillance state, I commented privately "just wait, eventually it will come out that Canada is doing the same thing".

Sure enough, reports started to surface about CSEC's activities, first engaging in industrial espionage against trading partners and then more recently, setting up wifi honeypots in Canadian airports to track Canadian citizens.

What surprised me was the lack of reaction from the populace here about this latest revelation. Trust me: this isn't just about an experiment in an airport tracking metadata, it's just the tip of the iceberg.

A lot of people like using us because we're not in the USA, and some of the rationalizations behind that perceived benefit still hold true: somewhat saner copyright laws (at least for the moment), not being wimps when it comes to idiotic takedown requests, et al.

But the idea that we are somehow "out of reach of the NSA" is definitely not one of them. Sure, we're not actively collaborating with them, as many US businesses are, but as we've said before: we just assume the pipes going into and out of our major network exchange points are being vacuumed en masse.

That's why we recently rolled out GPG encrypted email forwarding and will soon make it available on easyMail where it can encrypt your IMAP mailboxes. It's why we're going to spin out a personal privacy appliance fairly soon.

Because signing petitions is all well and good,  the anarcho-libertarian in me (not speaking for the entire company, or then again maybe I am) suspects that the political system we live under here in the "the Globalized World Order" is more or less bankrupt, corrupt and has lost all legitimacy to rule. It doesn't matter if next election one political party says "we're going to conduct a review of our intelligence agencies" and the other one says "we'll have a full public inquiry!". That's not a choice. There hasn't been real choice in the political menu in decades. So citizens can scream as loud as they want that "this is wrong!", it isn't going to sway our overlords from the current path.

That's why it's up to all of us to do it ourselves: start using crypto, take a look at things like bitcoin. Become hard to surveil, not because you're "doing nothing wrong", but because the government is.

Further Reading:



Comments

  1. A. says

    Is there a cryptosystem which we have reason to believe hasn't been compromised by the NSA already? Certainly not SSL (and you're not using that anyway).

    Is there a cryptosystem that hides not just the content, but the connections between people and places? Connections have been shown to be even more valuable than content snooping, but outside of Tor I don't see anyone even trying to do anything about that.

    Crypto seems valuable for letting me log in to Amazon.com from a coffee shop and not let the people around me see my password in cleartext, but useless when it comes to keeping the NSA out of my business.

    • Iu says

      Is there a cryptosystem that hides not just the content, but the connections between people and places?

      Bitmessage is one such system. It is like email except that it also encrypts all of the metadata and sends every message to everyone. The clients just try to decrypt every message and if it was destined for them then the decryption succeeds, otherwise it's not. In theory if the encryption isn't compromised nobody can see who is talking to who.

      • sk says

        That doesn't sound like it would scale very well. If bitmessage replaced email completely, in order to get my messages my machine would have to decrypt every message sent by the rest of humanity that day?

  2. paul says

    Crypto doesn't make it impossible for the NSA to surveil you, but it does make it harder. It means they have to dedicate non-trivial computer time to decrypt your signals, or non-trivial effort to subverting your computer to harvest pre-encryption signals. Pervasive crypto makes surveillance harder than running tail -f internet.txt | grep terror. If crypto is used only by dissidents, the state can target and encrypted communications. However, if crypto is commonplace, the mere use of crypto is no longer a credible source of encryption.

  3. says

    Did the NSA use this information in a way that violated anyone's civilrights in the same way that the IRS targeted political organizations because of their political opinions? Abuse of power begins when the government begins singling people out because of what the think and believe. What the NSA did is necessary to detect real world threats What the IRS did to the Tea Party organizations is the really beginning of INGSOC and the creation of the "Inner" party. Why no outrage of what the IRS did? Is it because you think it is ok for the IRS to target unpopular political thought and conservatives are thought criminals?