Feeds

So, what shall we ban next?

John Keegan

  • alert
  • submit to reddit

Security for virtualized datacentres

Bomb the ISPs - Daily Telegraph


Surely this mean that we should ban shortwave radio? Ham radio? These are also methods of communicating securely when combined with that all time favourite a pen, pad and codebook! Ban biros - they can be used for cryptography.

Oh, and we'll have to ban going for walks, these can be used for dead-drops, we'll have to ban books because of book code and I suppose we'll ban all recordable media because of the steganographic potential. Further to this, why not ban all books about cryptography, all cryptographic papers, Radioshack and radioshackalikes, photography, computers and playing cards!

I jest of course. But it's all very much like Gore Vidal and cellphones. Further to this there is bugger all anyone can do about any of the above apart from working out effective methods of penetrating terrorist organisations. You can't ban a pen and paper after all... Well it would piss a few hacks off anyway.

If anything banning crypto on ISPs will have the opposite effect. Serious criminals will find more devious ways of hiding.

John Everitt




What about the menace of web cafes, and webmail? Maybe Mr Keegan hasn't noticed those strings of people queuing all over central London to hand over untraceable cash to log into their own personal, non-localised, anonymous communications systems. Some of them look suspiciously foreign.

Just as long as those cruise missiles aimed at easyeverything in Oxford Street don't hit the New York Port Authority offices a couple of doors down in Stratford Place, which would presumably not be acceptable collateral damage.

Guy E.S. Herbert




It's too late to retract the encryption genie.

The global economy, including all financial institutions, relies heavily on digital certificates, SSL, VPNs, ssh, PGP, strong symmetric andasymmetric encryption products, and to a lesser extent, S/MIME.

This journo's insane rant is completely impractical: any decent security person will be able to get around any type of automatic ingress/egress filtering that an ISP would be able to use without disabling itself.

C&W's internal global network is now a MPLS VPN using its own Internet infrastructure, and it is encrypted. Who would tell a major multinational, let alone all the millions of business relying on this cost-lowering and business enabling technology (it takes seconds and no dollars to add another subsidiary) that they can no longer use the Internet safely?

Just as we shouldn't have anyone trolling through an exchange at random to listen on in on calls, we shouldn't have anyone randomly trying to listen to the Internet (a la Carnivore), although I'm sure it does happen.

Encryption is not the problem people think it is: if you have been granted a warrant to establish a tap, it shouldn't be that hard to get permission to get a keyboard intercept, which allows the private key pass phrase to be recorded. This protects us against extra-judicial eavesdropping, and is legal and valid under all the major legal systems.

The idea of going back to the old ways is not practical nor do-able in any time frame.

Andrew van der Stock

Reducing the cost and complexity of web vulnerability management

More from The Register

next story
Oi, London thief. We KNOW what you're doing - our PRECRIME system warned us
Aye, shipmate, it be just like that Minority Report
WRISTJOB LOVE BONANZA: justWatch sex app promises blind date hookups
Mankind shuffles into the future, five fingers at a time
Every billionaire needs a PANZER TANK, right? STOP THERE, Paul Allen
Angry Microsoftie hauls auctioneers to court over stalled Pzkw. IV 'deal'
Apple's Mr Havisham: Tim Cook says dead Steve Jobs' office has remained untouched
'I literally think about him every day' says biz baron's old friend
Cops apologise for leaving EXPLOSIVES in suitcase at airport
'Canine training exercise' SNAFU sees woman take home booming baggage
Flaming drone batteries ground commercial flight before takeoff
Passenger had Something To Declare, instead fiddled while plane burned
prev story

Whitepapers

Secure remote control for conventional and virtual desktops
Balancing user privacy and privileged access, in accordance with compliance frameworks and legislation. Evaluating any potential remote control choice.
WIN a very cool portable ZX Spectrum
Win a one-off portable Spectrum built by legendary hardware hacker Ben Heck
Intelligent flash storage arrays
Tegile Intelligent Storage Arrays with IntelliFlash helps IT boost storage utilization and effciency while delivering unmatched storage savings and performance.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Beginner's guide to SSL certificates
De-mystify the technology involved and give you the information you need to make the best decision when considering your online security options.