Octopus Overlords

Rip wrote: A lot of more important things done with those resources. The cost of breaking modern encryption methods far exceeds the value of doing so in almost every instance. But sure if they think that means they don't need backdoors I'm more than willing to let them.

Defiant wrote:Much as I would prefer decryption only when there's a warrant, there is the issue of it taking a (*very*) long time to decrypt. You could make the person decrypt it for you, but I imagine that would violate the fifth amendment against self incrimination?

GreenGoo wrote:
No, I believe there is precedent for forcing a person to give up the key to a lock box or a combination for a safe.

The case the justices were asked to review Friday concerns a Florida man who got a life term for several robberies in a 2012 case built with his mobile phone's location data the police obtained without a warrant.

The case has big privacy implications for anybody who carries a mobile phone. According to the government, that device may be tracked at will without the Fourth Amendment's probable cause standard being met.

What's more, the petition to the high court from defendant Quartavious Davis comes as cell-site tracking has become a choice surveillance tool in the aftermath of a Supreme Court ruling that said the authorities needed a warrant to affix GPS trackers to vehicles. In that 2012 decision, the high court declared that the government's act of affixing a GPS device on a vehicle was the equivalent of a search usually requiring a warrant.

The American Civil Liberties Union is representing Davis and wants the high court to overturn a March decision (PDF) from the 11th US Circuit Court of Appeals, which ruled against Davis based on precedent from the analog age.

Defiant wrote:

GreenGoo wrote:
No, I believe there is precedent for forcing a person to give up the key to a lock box or a combination for a safe.

OK, though maybe a lawyer can explain the difference?

(I imagine "forcing" is just punishing him with contempt of court, right?)

@neiltyson Thanks for the welcome. And now we've got water on Mars! Do you think they check passports at the border? Asking for a friend.

A deal that allows thousands of companies to transfer data from Europe to the United States is invalid, the highest EU court said on Tuesday in a landmark ruling that follows revelations of mass U.S. government snooping.

Many companies, particularly tech firms, have said the Safe Harbour agreement helps them get round cumbersome checks to transfer data between offices on both sides of the Atlantic, including payroll and human resources information and also lucrative data used for online advertising.

But the decision by the Court of Justice of the European Union (ECJ) could sound the death knell for the system, set up by the European Commission 15 year ago and used by over 4,000 firms including IBM (IBM.N), Google (GOOGL.O) and Ericsson (ERICb.ST).

The court said Safe Harbour did not sufficiently protect EU citizens' personal data as American companies were "bound to disregard, without limitation" the privacy safeguards where they come into conflict with the national security, public interest and law enforcement requirements of the United States.

"The Court of Justice declares that the Commission's U.S. Safe Harbour decision is invalid," the court said.
...
The Commission will give a press conference at 1500 CET (9:00 a.m. EDT) in response to the ruling, but it was unclear if the decision would prompt national data protection authorities to suspend personal data transfers to the United States.
...
Without Safe Harbour, multinationals could be forced to draw up contracts establishing privacy protections between groups or seek approval from data protection authorities for information transfers to countries the EU deems to have lower privacy standards, including the United States.

GreenGoo wrote:Neat. I'd like to think that this is an opportunity to make great headway in privacy laws, but I'm resigned to the fact that something even more awful will be put in place.

From an outsider's viewpoint, it's hilarious that Europe feels that data isn't safe in the land of the Free. It's somewhat ironic, no?

GreenGoo wrote:Neat. I'd like to think that this is an opportunity to make great headway in privacy laws, but I'm resigned to the fact that something even more awful will be put in place.

From an outsider's viewpoint, it's hilarious that Europe feels that data isn't safe in the land of the Free. It's somewhat ironic, no?

GreenGoo wrote:Ah, I see I miscommunicated. I'm mocking the idea that the land of the free and a civil liberties mecca has become so untrustworthy that Europe has decided their data is not safe in US Corporations' hands not because of the Corps (which is bad enough) but because of the privacy invading Government (which is worse).

Just so we're clear, they don't want the data to fall within the US's jurisdiction, not that they are worried about the data being sold to advertisers (which I'm sure is also a concern, but not the main named concern).

Isgrimnur wrote:European Safe Harbor yanked:

The court said Safe Harbour did not sufficiently protect EU citizens' personal data as American companies were "bound to disregard, without limitation" the privacy safeguards where they come into conflict with the national security, public interest and law enforcement requirements of the United States.

ImLawBoy wrote:This has the potential to have a very, very big impact on my work, as I support contracts for the outsourcing of large, international networks. Should be interesting (and I'm guessing the cause of more than a few headaches).

GreenGoo wrote:Well, corporations can't throw you in jail for what they find in your data, or think they find. Or put there. Just as Free Speech is only guaranteed from Government intervention, I would prefer that the government doesn't go rooting through my data. I would prefer corporations not either, but at least they are just going to make my life inconvenient, not incarcerate me.

That's why I feel government snooping is worse. Especially when they are doing some mental gymnastics to bypass laws that were clearly made to avoid this kind of invasion of privacy.

IT’S BEEN JUST over two years since Edward Snowden leaked a massive trove of NSA documents, and more than five since Chelsea Manning gave WikiLeaks a megacache of military and diplomatic secrets. Now there appears to be a new source on that scale of classified leaks—this time with a focus on drones.

Moliere wrote:A Second Snowden Has Leaked a Mother Lode of Drone Docs

IT’S BEEN JUST over two years since Edward Snowden leaked a massive trove of NSA documents, and more than five since Chelsea Manning gave WikiLeaks a megacache of military and diplomatic secrets. Now there appears to be a new source on that scale of classified leaks—this time with a focus on drones.

The revelations about the CIA and Joint Special Operations Command actions include primary source evidence that as many as 90 percent of US drone killings in one five month period weren’t the intended target, that a former British citizen was killed in a drone strike despite repeated opportunities to capture him instead, and details of the grisly process by which the American government chooses who will die, down to the “baseball cards” of profile information created for individual targets, and the chain of authorization that goes up directly to the president.1

In June, Congress passed a law that will end this collection of the records. Instead the NSA will be allowed to search the phone companies’ databases for such call records, but only if it gets a warrant.

That change will take effect on Nov. 29, and government lawyers had urged Judge Leon to allow the NSA to conduct a transition to the new system on its own schedule.

The FBI has interpreted its NSL authority to encompass the websites we read, the Web searches we conduct, the people we contact, and the places we go. This kind of data reveals the most intimate details of our lives, including our political activities, religious affiliations, private relationships, and even our private thoughts and beliefs," said Nicholas Merrill, who was president of Calyx Internet Access in New York when he received the NSL targeting one of his customers in 2004.

The FBI subsequently dropped demands for the information on one of Merrill's customers, but he fought the gag order in what turned out to be an 11-year legal odyssey just to expose what the FBI was seeking.

Area libraries balance respect for privacy, terror fight, from the Ithaca Journal
“Under the Patriot Act, law-enforcement officials must still back up their library-search requests with a warrant from a court. But that court meets in secret to hear the FBI’s reasons for suspicion, critics say, and legal standards for obtaining warrants are not as tough as standards for traditional search warrants.”

We were shocked and outraged by the deadly act of terrorism in San Bernardino last December. We mourn the loss of life and want justice for all those whose lives were affected. The FBI asked us for help in the days following the attack, and we have worked hard to support the government’s efforts to solve this horrible crime. We have no sympathy for terrorists.

When the FBI has requested data that’s in our possession, we have provided it. Apple complies with valid subpoenas and search warrants, as we have in the San Bernardino case. We have also made Apple engineers available to advise the FBI, and we’ve offered our best ideas on a number of investigative options at their disposal.

We have great respect for the professionals at the FBI, and we believe their intentions are good. Up to this point, we have done everything that is both within our power and within the law to help them. But now the U.S. government has asked us for something we simply do not have, and something we consider too dangerous to create. They have asked us to build a backdoor to the iPhone.

Specifically, the FBI wants us to make a new version of the iPhone operating system, circumventing several important security features, and install it on an iPhone recovered during the investigation. In the wrong hands, this software — which does not exist today — would have the potential to unlock any iPhone in someone’s physical possession.

The FBI may use different words to describe this tool, but make no mistake: Building a version of iOS that bypasses security in this way would undeniably create a backdoor. And while the government may argue that its use would be limited to this case, there is no way to guarantee such control.
...
Rather than asking for legislative action through Congress, the FBI is proposing an unprecedented use of the All Writs Act of 1789 to justify an expansion of its authority.

The government would have us remove security features and add new capabilities to the operating system, allowing a passcode to be input electronically. This would make it easier to unlock an iPhone by “brute force,” trying thousands or millions of combinations with the speed of a modern computer.

The implications of the government’s demands are chilling. If the government can use the All Writs Act to make it easier to unlock your iPhone, it would have the power to reach into anyone’s device to capture their data. The government could extend this breach of privacy and demand that Apple build surveillance software to intercept your messages, access your health records or financial data, track your location, or even access your phone’s microphone or camera without your knowledge.

Opposing this order is not something we take lightly. We feel we must speak up in the face of what we see as an overreach by the U.S. government.

We are challenging the FBI’s demands with the deepest respect for American democracy and a love of our country. We believe it would be in the best interest of everyone to step back and consider the implications.

While we believe the FBI’s intentions are good, it would be wrong for the government to force us to build a backdoor into our products. And ultimately, we fear that this demand would undermine the very freedoms and liberty our government is meant to protect.

Tim Cook

stessier wrote:It's not something that would only work with that phone - it would work for any phone with that version of ios.

The FBI, having heard the concerns of technology companies, has asked Apple to make custom software that is tied specifically to the device ID of Farook's iPhone.

Sepiche wrote:

stessier wrote:It's not something that would only work with that phone - it would work for any phone with that version of ios.

From what I've read that's not true. The FBI early on in the negotiation acknowledged that issue and asked that the custom software be designed to only work on the ID of the phone in question:
http://www.vox.com/2016/2/17/11037748/f ... bernardino

The FBI, having heard the concerns of technology companies, has asked Apple to make custom software that is tied specifically to the device ID of Farook's iPhone.

I feel like this is mostly a PR move on Apple's part. They're making a show of fighting this for the benefit of their users, but this is so different and so specific compared to the warrant-less wiretapping that has been going on, I really don't see the downside here.

LordMortis wrote:Can they engineer a hack that only works on computer? Once they do it for one, what does the well look like for others?

Isgrimnur wrote:There are leaks and there are lockpicks. All it takes is for one black hat to get hold of the software, reverse engineer it to determine how to modify the key, and every single device in the world is potentially compromised.

Isgrimnur wrote:
The implications of the government’s demands are chilling. If the government can use the All Writs Act to make it easier to unlock your iPhone, it would have the power to reach into anyone’s device to capture their data. The government could extend this breach of privacy and demand that Apple build surveillance software to intercept your messages, access your health records or financial data, track your location, or even access your phone’s microphone or camera without your knowledge.

El Guapo wrote:But if the FBI can compel a company to create something new in order to assist with a criminal investigation, what's the limiting principle on that? Why couldn't the FBI issue the list of orders that Apple has above?

Sepiche wrote:

El Guapo wrote:But if the FBI can compel a company to create something new in order to assist with a criminal investigation, what's the limiting principle on that? Why couldn't the FBI issue the list of orders that Apple has above?

Except to me that's a slippery slope argument that sidesteps that question.

The FBI has a specific warrant and a specific request that it's asking Apple to carry out because only Apple can. If the FBI came to them without a warrant or with a vague request Apple would, I think, be within it's right declining, but they aren't being asked to create an on going security hole in their product or create a way for the FBI to collect vast amounts of user data without a warrant.

If the FBI were asking for that, I too would be rightly upset, but the FBI's request in this case seems entirely reasonable and narrow in scope.

Sepiche wrote:

El Guapo wrote:But if the FBI can compel a company to create something new in order to assist with a criminal investigation, what's the limiting principle on that? Why couldn't the FBI issue the list of orders that Apple has above?

Except to me that's a slippery slope argument that sidesteps that question.

The FBI has a specific warrant and a specific request that it's asking Apple to carry out because only Apple can. If the FBI came to them without a warrant or with a vague request Apple would, I think, be within it's right declining, but they aren't being asked to create an on going security hole in their product or create a way for the FBI to collect vast amounts of user data without a warrant.

If the FBI were asking for that, I too would be rightly upset, but the FBI's request in this case seems entirely reasonable and narrow in scope.

Pyperkub wrote:I think the FBI needs to hire better hackers.

Rip wrote:

Sepiche wrote:

El Guapo wrote:But if the FBI can compel a company to create something new in order to assist with a criminal investigation, what's the limiting principle on that? Why couldn't the FBI issue the list of orders that Apple has above?

Except to me that's a slippery slope argument that sidesteps that question.

The FBI has a specific warrant and a specific request that it's asking Apple to carry out because only Apple can. If the FBI came to them without a warrant or with a vague request Apple would, I think, be within it's right declining, but they aren't being asked to create an on going security hole in their product or create a way for the FBI to collect vast amounts of user data without a warrant.

If the FBI were asking for that, I too would be rightly upset, but the FBI's request in this case seems entirely reasonable and narrow in scope.

If the FBI were asking that and they were asking many other companies they would get what they want and you would never hear about it.

Just sayin...

Me, never been a big Apple fan but this takes balls and I admire them standing up to the pressure. I don't think they should be able to require you to give them anything to unlock a phone, computer, etc.

You want the data on it, have at it.

Besides, we need the jobs.

Rip wrote:Absolutely, I definitely don't agree with everything he says. He isn't even my favorite candidate.

But he isn't the Hitler knockoff he is made out to be.

Just a gasbag who can read polls and knows how to manipulate the propaganda machine without having control of it.

Isgrimnur wrote: The implications of the government’s demands are chilling. If the government can use the All Writs Act to make it easier to unlock your iPhone, it would have the power to reach into anyone’s device to capture their data. The government could extend this breach of privacy and demand that Apple build surveillance software to intercept your messages, access your health records or financial data, track your location, or even access your phone’s microphone or camera without your knowledge.