Johns Hopkins Tells Security Researcher To Remove Blog Post About NSA Encryption Attacks From University Server
from the now-take-a-look dept
Last week, a great blog post by cryptographer and research professor Matthew Green was posted, providing some fantastic details about the likely attack vectors by the NSA to compromise encryption schemes. It's a well written and detailed piece from someone who clearly knows what he's talking about. Oh, and it kicks off with an amusing story about how the reporters working on the "NSA builds backdoors into encryption" story had contacted him for comments and, because they didn't reveal too many details, he was concerned about coming off as too paranoid or too much of a "crank." However, after the details came out, he realized he "wasn't cranky enough."Oddness aside it was a fun (if brief) set of conversations, mostly involving hypotheticals. If the NSA could do this, how might they do it? What would the impact be? I admit that at this point one of my biggest concerns was to avoid coming off like a crank. After all, if I got quoted sounding too much like an NSA conspiracy nut, my colleagues would laugh at me. Then I might not get invited to the cool security parties.He then goes on to explain where the most probable attacks are coming from and what we should be most worried about and what's likely still safe. I had hoped to write up something about the post in general, but today something new came up. Green noted that the Dean where he teaches, at Johns Hopkins, had asked him to remove the blog post from the university's servers. The blog post was cross-posted both to a blog on the university's servers, as well as to Green's personal blog on Blogger. The personal blog post is still up (and now about to get that much more attention for the takedown). He also notes that this "isn't my Dean's fault" though plenty of folks are curious whose fault it might be. For what it's worth, it appears that Hopkins has a close relationship with the NSA, and the school really isn't that far from the NSA's headquarters.
All of this is a long way of saying that I was totally unprepared for today's bombshell revelations describing the NSA's efforts to defeat encryption. Not only does the worst possible hypothetical I discussed appear to be true, but it's true on a scale I couldn't even imagine. I'm no longer the crank. I wasn't even close to cranky enough.
Either way, for a whole variety of reasons, demanding the blog post be taken down seems fairly pointless. Not only will it draw much more attention to the original post, it now creates additional scrutiny towards Johns Hopkins as to why it's stifling the speech of one of its professors on a key topic of public interest.
Thank you for reading this Techdirt post. With so many things competing for everyone’s attention these days, we really appreciate you giving us your time. We work hard every day to put quality content out there for our community.
Techdirt is one of the few remaining truly independent media outlets. We do not have a giant corporation behind us, and we rely heavily on our community to support us, in an age when advertisers are increasingly uninterested in sponsoring small, independent sites — especially a site like ours that is unwilling to pull punches in its reporting and analysis.
While other websites have resorted to paywalls, registration requirements, and increasingly annoying/intrusive advertising, we have always kept Techdirt open and available to anyone. But in order to continue doing so, we need your support. We offer a variety of ways for our readers to support us, from direct donations to special subscriptions and cool merchandise — and every little bit helps. Thank you.
–The Techdirt Team
Filed Under: censorship, cryptography, encryption, matthew green, nsa, nsa surveillance
Companies: johns hopkins
Reader Comments
Subscribe: RSS
View by: Time | Thread
I mean, given the revelations thus far, I wouldn't put it past those rat bastards.
[ link to this | view in thread ]
Not surprised
[ link to this | view in thread ]
Hmm...
Of course, that's just me making a harmless speculative guess. It would be interesting to find out the real reason though, if it's ever revealed.
As the Zen Master says, "We'll see."
[ link to this | view in thread ]
Streisanded
Don't you already have a fairly complete dossier on the keywords "Streisand AND Effect"?
If so, please study 'correlation and cause' whilst holding up a hand mirror to your face.
Yours Truly
The Internets
[ link to this | view in thread ]
[ link to this | view in thread ]
Ah the Streisand effect...
[ link to this | view in thread ]
All hail the "conspiracy kooks" who turned out to be RIGHT.
I'm not bragging personally because not one who's done the work of publicizing info over the last three or so decades, but now clear that it's almost impossible to be "cranky enough" with regard to the surveillance state. It has nearly unlimited money with which to buy research and people.
But I'm confident that what I believe about Facebook and Google as actual components of the NSA will soon be proven. That's one of the items they really wish to protect, because gives the illusion of not only separation between gov't and corporations, but that there's some varied interests in the society, instead of all under ONE over-arching conspiracy.
Spying is the main 'business model' of the internet, especially for Google and Facebook.
[ link to this | view in thread ]
Maybe also motivated by clumsy DoD site-blocking policies
But, those same domains may include other information that the DoD/troops need (and have "paid for" in research grants and joint programs). Hence, because (like early versions of China's firewall) their censoring tech is crude and whole domain/IP-address oriented, they pressure JHU to segregate content for troop-friendliness.
[ link to this | view in thread ]
I have similar feelings when I see conspiracy nuts come by and claim something. Then I hit them with a newspaper and go
"Whatever you just said was less crazy than what's being confirmed as true facts right now!"
[ link to this | view in thread ]
[ link to this | view in thread ]
Re: All hail the "conspiracy kooks" who turned out to be RIGHT.
Seriously blue, stop and think for a moment. How many people would have to know about this single giant conspiracy you keep saying exists? Thousands? Hundreds of thousands? The odds of everyone involved being able to keep their mouths shut, or no information leaking out onto the web, are very, very low.
[ link to this | view in thread ]
Re: Not surprised
[ link to this | view in thread ]
Re: Maybe also motivated by clumsy DoD site-blocking policies
I'm aware that different subdomains can be completely separated, but the cost of a domain name is so cheap that it's not worth the potential trouble. The largest reason to not go with a separate domain name is shared hosting. At that point domain names are the least of the universities security troubles.
[ link to this | view in thread ]
[ link to this | view in thread ]
Re: Re: All hail the "conspiracy kooks" who turned out to be RIGHT.
[ link to this | view in thread ]
Re: All hail the "conspiracy kooks" who turned out to be RIGHT.
The government does. The government is who is demanding all this information, and will then, inevitably use that information to arrest people, indeed already has what with the DEA having laundered tips they get from the NSA.
If you're so worried about Google and Facebook having your information and then passing it along, stop using them. Look to other services. There will doubtlessly be new services within the next year or two that have as part of their marketing campaign "Not based or have any ties to the US at all! Free from NSA spying!"
[ link to this | view in thread ]
Re:
[ link to this | view in thread ]
Re:
I think we've passed the point where there is something - some "red line" - that the NSA will not cross. Torture? Natch. Blackmail? You bet. Setting up a fatal "accident"? Almost certainly.
Our government has declared all of us the enemy.
[ link to this | view in thread ]
[ link to this | view in thread ]
Re: Re: Not surprised
[ link to this | view in thread ]
CYA screwup
[ link to this | view in thread ]
The internet was formerly darpanet. It's purpose was to link .gov to .edu together (ie: to influence academia). So this is not surprising.
[ link to this | view in thread ]
[ link to this | view in thread ]
[ link to this | view in thread ]
Its True
Coming from a former employee of JHH, it is true, I had DOD monitor my phone when I started going through trouble with Johns Hopkins and they continue to do so. They come into my home when I'm not there and my car. I was and still am under surveillance and it's horrible. Believe it or not, do some research under Intelligent Decision who left their pen in my home while they did God knows what. I don't trust my home or car not alone what I eat. Work for them at your own risk. Oh yes. They also monitor your phone and internet. Signed, tired of being watched and want my life back!
[ link to this | view in thread ]