Feeds

Anti-filesharing laws revive crypto fears for spooks

Blinded by Mandy

SANS - Survey on application security programs

The UK's intelligence and law enforcement agencies fear the government's anti-illegal filesharing plans will lead to a rise in encryption, scuppering their own efforts to monitor the internet, it's claimed today.

Plans for an enforcement regime to target those who perisitently infringe copyright are set to be brought forward in next month's Queen's speech.

Whatever sanctions are eventually agreed - this week culture secretary Ben Bradshaw suggested suspension of internet access will require a court order - the system will involve gathering evidence from peer to peer networks.

Intelligence and law enforcement agencies have suggested public resistance to such prying could prompt many more to encrypt their internet connection and make monitoring more difficult, The Times reports.

As well as obscuring traffic to current analytical techniques, widespread encryption would also damage the case for the Interception Modernisation Programme (IMP), an ongoing multibillion-pound, cross-government attempt to to increase surveillance of the internet.

"The spooks hate it. They think it is only going to make monitoring more difficult," a source involved in drafting Lord Mandelson's Digital Economy Bill told the paper.

While the paper speculates the source is referring to MI5 and MI6, it's more likely that GCHQ, the other intelligence agency, is at the centre of the fears.

It is responsible for electronic spying, sits at the heart of the IMP, and has long battled public use of cryptography.

The agency's National Technical Assistance Centre acts as a central resource for cracking scrambled communications and stored data, used by police, MI5, MI6 and SOCA. Its limited resources are likely behind GCHQ's battle to against widespread take-up of encryption, and so fears over anti-filesharing legislation.

If more internet users were to use encrypted connection, it would at least in part blind the IMP. The Programme aims to intercept and details of who contacts whom, when, where and how in transit inside ISP networks (although not the content of the communication, which will require a warrant). Encryption would render third party communications services such Facebook effectively invisible.

Intelligence fears of being blinded by mass take-up of cryptography have emerged before however, and proven largely unfounded. After losing the "Crypto Wars", for example, GCHQ is known to have successfully lobbied for the provisions of the Regulation of Investigatory Powers Act that make refusal to decrypt a criminal offence. Yet the power is rarely used.

The Met's Police Central e-Crime Unit and the Serious and Organised Crime Agency, cited by The Times as sharing intelligence fears, both declined to comment.

It remains to be seen how harsh the measures against illegal filesharers will be. ®

3 Big data security analytics techniques

More from The Register

next story
Lavabit loses contempt of court appeal over protecting Snowden, customers
Judges rule complaints about government power are too little, too late
Don't let no-hire pact suit witnesses call Steve Jobs a bullyboy, plead Apple and Google
'Irrelevant' character evidence should be excluded – lawyers
Record labels sue Pandora over vintage song royalties
Companies want payout on recordings made before 1972
EFF: Feds plan to put 52 MILLION FACES into recognition database
System would identify faces as part of biometrics collection
Edward Snowden on his Putin TV appearance: 'Why all the criticism?'
Denies Q&A cameo was meant to slam US, big-up Russia
Ex-Tony Blair adviser is new top boss at UK spy-hive GCHQ
Robert Hannigan to replace Sir Iain Lobban in the autumn
Judge halts spread of zombie Nortel patents to Texas in Google trial
Epic Rockstar patent war to be waged in California
German space centre endures cyber attack
Chinese code retrieved but NSA hack not ruled out
APPLE FAILS to ditch class action suit over ebook PRICE-FIX fiasco
Do not pass go, do cough (up to) $840m in damages
prev story

Whitepapers

Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
SANS - Survey on application security programs
In this whitepaper learn about the state of application security programs and practices of 488 surveyed respondents, and discover how mature and effective these programs are.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.