UK Police Want Magic 'This Computer Is Used By A Criminal' Alert Software
from the and-a-pony! dept
It seems that some folks in the UK police department are in their "wishful thinking" mode as we approach the holidays -- and those wishes seem to include everything. Specifically, detective superintendent Charlie McMurdie is asking for a theoretical device that would basically tell police when they're in the presence of a computer being used for criminal purposes, which he refers to as a "breathalyzer" for computer crimes:"Do we need to seize five computers in a suspect's house or could we use a simple tool to preview on site and identify there's that one email we are looking for and we can then use that and interview the person now, rather then waiting six to 12 months for the evidence to come back to us?I mean, sure, it would be good to be able to do that... but how could you possibly develop an algorithm that would work that way. A breathalyzer works because you have one single (measurable) thing to measure: blood-alcohol levels. For crime, there's simply no way to do something like that. Yes, it is a good idea for police to be able to do better computer forensics, and not have to wait forever for computer contents to be examined -- but this seems like pure wishful thinking.
"For example, look at breathalysers - I am not a scientist, I could not do a chemical test on somebody when they are arrested for drink driving but I have a tool that tells me when to bring somebody in."
Thank you for reading this Techdirt post. With so many things competing for everyone’s attention these days, we really appreciate you giving us your time. We work hard every day to put quality content out there for our community.
Techdirt is one of the few remaining truly independent media outlets. We do not have a giant corporation behind us, and we rely heavily on our community to support us, in an age when advertisers are increasingly uninterested in sponsoring small, independent sites — especially a site like ours that is unwilling to pull punches in its reporting and analysis.
While other websites have resorted to paywalls, registration requirements, and increasingly annoying/intrusive advertising, we have always kept Techdirt open and available to anyone. But in order to continue doing so, we need your support. We offer a variety of ways for our readers to support us, from direct donations to special subscriptions and cool merchandise — and every little bit helps. Thank you.
–The Techdirt Team
Filed Under: computer crime, forensic tools, uk
Reader Comments
Subscribe: RSS
View by: Time | Thread
[ link to this | view in thread ]
Re:
[ link to this | view in thread ]
[ link to this | view in thread ]
[ link to this | view in thread ]
This is clearly just...
The problem occurs if somebody makes a profile device and then says "This will tell you if there's crime on a computer!".
[ link to this | view in thread ]
Re: but honestly ...
[ link to this | view in thread ]
Re: This is clearly just...
[ link to this | view in thread ]
ohhhh noessss!!!
WTB device to measure how moral a person is... ZOMG!! morals aren't real!
All hells breaks lose and humanity realizes being 'good' is fake.
[ link to this | view in thread ]
Not too stupid
I would be more worried about the fact that plod finds it increasingly easy to get hold of someone's PC in the first place.
[ link to this | view in thread ]
This made my day..
These 'cops' should really lay off the CSI.
[ link to this | view in thread ]
Re: Re: This is clearly just...
It could scan for credit card information. Certainly a list of credit card numbers would be suspicious.
It could scan for large numbers of MP3s and video files, which could indicate copyright infringement.
It could scan for cracks and keygens. Which again could indicate copyright infringement.
It could scan for mass mailing software, which could indicate spamming.
I could scan image files for high amounts of flesh colors which could indicate porn.
[ link to this | view in thread ]
Re: Re: Re: This is clearly just...
The use of "I" clearly was a Freudian slip!
[ link to this | view in thread ]
Stress and shame.
or find out that, yes it is indeed true, for every conceivable fetish there is a porn for it.
[ link to this | view in thread ]
Re: Re: Re: This is clearly just...
[ link to this | view in thread ]
Re: Not too stupid
[ link to this | view in thread ]
already available
Things have probably changed in the 20 years since I looked at the schematic for a breathalyzer, but at the time there were two things to measure. Breath-alcohol levels were one and, I believe, acetone was the other. It's present in the breath of diabetics and absorbs some of the same wavelengths of light as alcohol and, coincidentally, the ones used to measure alcohol levels in breath.
On topic, the RIAA already has such software. The instant it detects that it's been connected to a computer it alerts to the presence of a criminal, because everyone pirates music.
[ link to this | view in thread ]
Re: Re: but honestly ...
here in America you're innocent until proven guilty. If you put one person away who didn't deserve it based on bogus breathalyser data, the system has failed. So, maybe you can use your argument in Britain, but not in the US. A voting machine that miscounts votes is worthless. A breathalyser that 99% of the time works everytime is worthless as well. Close only counts in horseshoes and hand grenades.
[ link to this | view in thread ]
Re: Re: Re: Re: This is clearly just...
Child porn is. And in the US "obscene" porn is illegal, but it's hard to prosecute because no one really knows what "obscene" porn is. It's based on "community standards" which even juries cannot agree upon.
[ link to this | view in thread ]
You're missing the point
It looks to me like a simple scan and compare this person is asking for. And sure it could go beyond that to find email replies in the same thread of email exchanges with the same address.
You guys a missing the point. The cop is not looking for miracles, just a portable drive scan program.
[ link to this | view in thread ]
Re: Re: Re: This is clearly just...
[ link to this | view in thread ]
Of course whether something like this is possible, who knows, maybe someday if there was enough money invested in development. (Or if the UK has a lot of Bond villlians with powerpoint presentations called MyCriminalPlanForWorldDomination.ppt on their C drives, it might be closer than we think.)
[ link to this | view in thread ]
Silly...
My website's ToS involves you handing over your first born to me every full moon - but only if it's a girl, she's over 18 and very hot! Failure to meet any of those terms and you are a computer hacker!
[ link to this | view in thread ]
Re: Breathalyzer
[ link to this | view in thread ]
Already there
[ link to this | view in thread ]
Re: Re: Re: This is clearly just...
[ link to this | view in thread ]
Not that hard.
If he has a list of documents he wants to find, or suspects might be on a computer, a hash can be made of that file(s).
Then in 20 minutes each of those computers can be hashed on the spot(every individual file, not the hard drive as a whole), and any hashs that match your list of known files will pop up.
If that's all he's looking for, it's already ont eh market, or could be with almost no extra work.
[ link to this | view in thread ]
Re: Re: Re: This is clearly just...
"It could scan for credit card information. Certainly a list of credit card numbers would be suspicious."
Unless you had a lot of credit cards and used a digital wallet program to keep up with them, or if you owned a small business with, say, consultants who had company cards and you wanted to keep the numbers on file.
"It could scan for large numbers of MP3s and video files, which could indicate copyright infringement."
Unless you happend to be a DJ, or wedding videographer, or just someone who happens to have a large CD collection and prefers the convenience of the mp3 format.
"It could scan for cracks and keygens. Which again could indicate copyright infringement."
Unless you happened to have purchased a video game with non-functional, draconian DRM for which the game publisher suggested that you download the crack so you could play your legally purchased game.
"It could scan for mass mailing software, which could indicate spamming."
Unless you happen to be a marketer or even just a small business owner for whom these tools would be invaluable.
"I could scan image files for high amounts of flesh colors which could indicate porn."
You could, but then you'd find all of my family photos taken in my living room where my wife painted the walls "Bare Essences", which looks amazingly like nude flesh.
Honestly, the potential for false positives that would have to be more closely scrutinized makes any kind of tool like this useless and a waste of time.
[ link to this | view in thread ]
that hard
disclamer: IANAL
[ link to this | view in thread ]
If what I understand of it, it's a USB dongle that'll break through majority of password's they've put on it, include encryption, and most handily copy over anything stored on the RAM, which obviously goes if they seize the computer.
Here's the first link I came across - http://seattletimes.nwsource.com/html/microsoft/2004379751_msftlaw29.html
[ link to this | view in thread ]
Re:
[ link to this | view in thread ]
Re: that hard
Plus it should be noted, that if the police find anything, it's a given that they will seize and process every other computer as well. No cop will ever find one piece of evidence, and then call the search quits and leave. If a cop searchs your car and finds a crack pipe, you know they are going to tow that car to the station and tear it apart looking for anything else.
[ link to this | view in thread ]
Seems like a shitty idea all around.
[ link to this | view in thread ]
I'll make it
The potential for abuse is huge.
[ link to this | view in thread ]
1. They can put cameras in how homes.
2. Daily polygraph test.
3. Fit breathalysers / drug detectors to our cars.
4. Direct all internet traffic thro' central filters.
5. Do away with the need for trials (the police know who is guilty - why waste money on lawyers and let criminals off the hook)
6. Mandatory prison time every 5 years just in case they miss something (use a suitably prot name like "peoples' work camp").
...Remember, if you're innocent you've got nothing to hide. :)
[ link to this | view in thread ]
Re: Re: Not too stupid
So the person can be falsely imprisoned for a year only to find out there was nothing illegal on his PC?
[ link to this | view in thread ]
Re: Re: Re: but honestly ...
You must never use any product, ever, because it doesn't have a 100% success rate. You must have typed your asinine response on the most advanced piece of computing machinery in the universe, given that it obviously can't fail - otherwise you'd have nothing to do with it.
[ link to this | view in thread ]
breathalyzers are even accurate....
The thought of a similar 'tool' horrifies me when applied to computers...
[ link to this | view in thread ]
if ( user->isOrWillBeACriminal() ) {
sendMessageToPolice();
}
such code can be easily implemented into almost every operating system!
[ link to this | view in thread ]
Clearly what they want is a boolean function
returns either a true or false based off of nothing, since what he really wants is some sort of voodoo magic thing. Someone needs to outsource this to a shaman programmer.
[ link to this | view in thread ]
I think he means
[ link to this | view in thread ]
Re: Re: Re: This is clearly just...
MP3s and Video files are used for legitimate reasons more often then illegal ones
Cracks and Keygens are programs, and hence very difficult to decode without running them. Other programs have similar outputs to Cracks and Keygens. That is to say 'Legitamate copies' and 'Random number generators'
Mass mailing software... see same program problem
Image files with high amounts of flesh color? Since when was my faimly album with about 700 photos of my faimly illegal? Even if some of them are closeups of their faces?
[ link to this | view in thread ]
-David J. Hanson, Ph.D.
[ link to this | view in thread ]
Wishful thinking
Think about someone hundreds of years ago who would have wished to be able to get from Maryland to California in less than a month.... I'm sure they wished they could fly.
Yes, this seems like something on the verge of impossible but there are those people who make the impossible possible.
[ link to this | view in thread ]
Re: Re: Re: This is clearly just...
I'm sure most professional photographers would be pissed at the implication that large numbers of photos with "flesh colors" would be considered porn.
How about we go the other way and the police bugger off unles they have prior evidence of a crime being committed?
[ link to this | view in thread ]
Re: Re: Re: This is clearly just...
How would you determine "credit card numbers"? Strings of 16 numbers? That could be anything, especially if the data is encrypted, and thieves could just as easily encrypt the data using non-numeric characters to bypass the filter.
"It could scan for large numbers of MP3s and video files, which could indicate copyright infringement. "
Or someone running a video production company. Or a DJ transferring his collection to a backup server. Or someone transferring CC-licenced material.
"It could scan for cracks and keygens. Which again could indicate copyright infringement. "
Or someone trying to bypass the stupid CD keys on his own legally purchased software. Not to mention, how would you quantify a "crack" or "keygen"? Filenames? Pirates will name them something else. Content? How do people determine which sequence of 0s and 1s constitutes such a thing?
"It could scan for mass mailing software, which could indicate spamming. "
Or companies running a legitimate mass mailing marketing campaign to opted-in subscribers.
"I could scan image files for high amounts of flesh colors which could indicate porn."
Or someone with a lot of wedding, school or photos of other groups of people (and/or any legitimate glamour photographer you can think of). This has been tried with little success btw - slight old example here: http://www.dansdata.com/pornsweeper.htm, but there's many other failures.
Basically, there's no way of a system like this working without generating a huge amount of false positives while blocking massive amounts of legitimate usage.
[ link to this | view in thread ]
Re: Re: Re: This is clearly just...
Mailing software!? - like sendmail, postfix and qmail - or wait for it - outlook !?
[ link to this | view in thread ]
Wishful thinking
Think about someone hundreds of years ago who would have wished to be able to get from Maryland to California in less than a month.... I'm sure they wished they could fly.
Yes, this seems like something on the verge of impossible but there are those people who make the impossible possible.
[ link to this | view in thread ]
???
[ link to this | view in thread ]