Clueless Press Being Played To Suggest Encryption Played A Role In San Bernardino Attacks
from the gotta-try dept
As law enforcement and their friendly politicians have used the attacks in San Bernardino to renew a call to undermine and break encryption, the mainstream press has been an easy target for politicians looking to get out whatever message they want. Take, for example, the following set of stories that popped up for me in a simple Google News search:The couple who launched the terrorist attack in San Bernardino, California, last week had devices with some form of encryption, making it difficult for authorities to access all potential information on phones and perhaps other devices, two senior U.S. officials told ABC News.The story at The Hill that claims there's "no evidence" instead has lots of quotes from people suggesting that they just haven't found it yet, and Senator Richard Burr saying it doesn't matter because "we've still got a big problem out there that we're going to have to deal with and it's called encryption." This is the same Richard Burr who, just a couple of months ago, was warning about the dangers of "cyber" attacks in pushing CISA. Does he not realize that encryption helps protect against those attacks significantly more than the ridiculous CISA bill he supported?
"Some of their digital media we have been able to exploit. Some of it we have not,” one official said.
Anyway, it appears the same anonymous "senior US officials" who were whispering in ABC's ear were doing the same to CBS, which posted a ridiculously vague tweet, without any followup story (that I can find):
Lawmakers say the San Bernardino shooters may have used encrypted communications in an attempt to hide their activities. This type of encryption has been seen before, however.The rest of the article deals with the FBI's new claims that one of the Garland, Texas, shooters used encryption, not the San Bernardino attackers. And then it just mentions that ISIS has its own form of encryption at the end of the article, never tying it back to the San Bernardino attackers. A headline like that seems like journalistic malpractice.
Thankfully, Joshua Koopstein at Vice's Motherboard throws some cold water on this kind of idiocy, noting that every phone these days has some "built-in encryption" and that the press running with this story are being ridiculous.
And, even more on point, Marcy Wheeler points out that "encryption" has just become law enforcement and the intelligence community's buzzword of choice for "failing to achieve omniscience."As many in the security world quickly pointed out, the claim is both vague and nonsensical: Every phone and computing device currently sold in the US has “levels of built-in encryption.” If they didn't, criminals would still be able to easily intercept your calls when your phone connects to a cell tower, and a common thief who steals your device would get access to your bank account info, login details, pictures, and any other sensitive data you stored on it.
In other words, saying you found “built-in encryption” in a modern cellphone is about as meaningful as saying you found a battery and a touchscreen.
But this is the second attack in a row, with Paris, where Burr and others have suggested that their lack of foreknowledge of the attack makes it probable the planners used encryption. Burr doesn’t even seem to be considering a number of other things, such as good operational security, languages, and metadata failures might lead the IC to miss warning signs, even assuming they’re collecting everything (there should have been no legal limits to their ability to collect on Malik).Indeed, that's why we pointed out that the Paris attacks were an intelligence failure, not an encryption problem. And it explains why the law enforcement and intelligence communities are so quick to blame encryption. They don't want people looking back at their own failures, so they might as well blame the technology.
We’re not having a debate about encryption anymore. We’re debating making the Internet less secure to excuse the IC’s less-than-perfect-omniscience.
But, really, none of that really matters in the long run. There certainly will be attacks where encryption is used for planning -- why wouldn't there be? But the debate shouldn't be about that so much as looking at the overall setup of the world and computer security. And the simple fact is that more people are made safer by the widespread adoption of encryption than are made safer by undermining that encryption to let the FBI peek in on your communications.
Thank you for reading this Techdirt post. With so many things competing for everyone’s attention these days, we really appreciate you giving us your time. We work hard every day to put quality content out there for our community.
Techdirt is one of the few remaining truly independent media outlets. We do not have a giant corporation behind us, and we rely heavily on our community to support us, in an age when advertisers are increasingly uninterested in sponsoring small, independent sites — especially a site like ours that is unwilling to pull punches in its reporting and analysis.
While other websites have resorted to paywalls, registration requirements, and increasingly annoying/intrusive advertising, we have always kept Techdirt open and available to anyone. But in order to continue doing so, we need your support. We offer a variety of ways for our readers to support us, from direct donations to special subscriptions and cool merchandise — and every little bit helps. Thank you.
–The Techdirt Team
Filed Under: encryption, journalism, san bernardino attacks
Reader Comments
Subscribe: RSS
View by: Time | Thread
Feds Challenged by Private Conversations of San Bernardino Attackers
"It makes it extremely difficult to gather useful intel," one anonymous government official explained. "These people, these criminals, have taken to having in-person, private conversations, away from any form of recording device, making it all but impossible for us to gather intelligence as to their actions and plans."
An anonymous police official mirrored the government official's sentiment, adding that it was even worse than that. "Not only are they using methods of communication that we don't have access to and can't intercept, some of them have even taken to talking in code."
"Where before you might have a criminal say over the phone, 'Hey, that bank we were going to rob, with the one shotgun and two semi-automatic pistols spread out among the three of us, that was going to happen on the 23rd of this month, 6:15 pm, at the NorthWest Bank, right?', now they won't even mention any criminal activity at all, making it incredibly difficult to tell the difference between people planning a crime, and ones having a completely innocent conversation."
Officials are warning the public that unless drastic steps are taken, and soon, a massive wave of crime and terrorist activity is likely to sweep the nation.
"Across the US you've got criminals, you've got terrorist, you've even got communists, planning crimes in the privacy of their own homes, or in other out of the way places without any cameras or microphones," an anonymous police spokesman noted. "Unless we can do something about this 'privacy' thing, unless we can ensure that no conversation goes unrecorded, no act unwitnessed by the proper authorities, they are going to continue to slip past our carefully crafted surveillance systems, and continue to commit crimes."
However, even in the face of such a threat, there are those that oppose the simple steps that the police and government are calling for.
"I've lost track of how many 'civil rights' groups have sent in protests, whining about how you can't forbid people from using private forms of communication, or mandate that any conversation or planning of any sort must be recorded and sent to the proper authorities. Groups who claim that what we're proposing is somehow a 'violation of basic privacy', and 'incredibly intrusive'." An anonymous government official was quoted as saying.
"What it comes down to is that they value liberty, privacy, and freedom more than the lives and safety of the public. We're trying to make sure that no-one is allowed or able to have a private conversation ever again, to make it so that anything someone says or does or writes is recorded and accessible by the proper authorities so that they can prevent crimes, and solve the ones that they can't prevent for reasons that are completely not their fault, and yet they object to that."
"They would rather people live a life free from all encompassing surveillance and a complete and utter lack of privacy, even if it means that bad things might happen, that people might be injured or even killed, rather than the safer life we're offering them, safe from crime, safe from terrorism, and safe from freedom and privacy."
It's hard to argue that it's a difficult time for the safety of the nation, and one can only hope that the public comes to it's senses, and hands over the keys to their privacy and liberty to the trustworthy guardians of the public before it's too late.
[ link to this | view in chronology ]
Re: Feds Challenged by Private Conversations of San Bernardino Attackers
Finding sanity is so rare these days.
[ link to this | view in chronology ]
Re: Feds Challenged by Private Conversations of San Bernardino Attackers
[ link to this | view in chronology ]
San Bernardino attackers able to ascertain they were not being followed thanks to golden-key-enabled encryption scheme used by cops.
Perhaps then they will stop trying to break encryption; though I'm not holding my breath.
[ link to this | view in chronology ]
[ link to this | view in chronology ]
Criminals hide their plans from the government
[ link to this | view in chronology ]
Here is what is really going on...
[ link to this | view in chronology ]
Re: Here is what is really going on...
[ link to this | view in chronology ]
Re: Re: Here is what is really going on...
[ link to this | view in chronology ]
After another year of the government's successful implementation of golden key decryption, officials say this still isn't enough and are now requiring all citizens wear body cameras at all times. One insightful official quoted "Well it is easy to tell who the criminals are, just have everyone equipped with a body camera. If you are not wearing one, you must be a criminal."
In other news, hackers continue to wreak havoc. Government officials are baffled as they continue to break into secured communication all over the US.
[ link to this | view in chronology ]
Re:
Otherwise, please feel free to film everybody else and send the video of them doing something bad with complete identifying information so that we can go pick them up without having to work very hard. That would be great.
[ link to this | view in chronology ]
[ link to this | view in chronology ]
We can EASILY solve this encryption debate...
Here's a VERY simple solution...
Let the government pass the damned law.. In 30 days time after the first "backdoor" and "hacker proof" algorithm is completely destroyed by pretty much everyone who wants to try then we can put this issue to bed that NO BACKDOOR IS SAFE. Period.
[ link to this | view in chronology ]
Re: We can EASILY solve this encryption debate...
[ link to this | view in chronology ]
Re: We can EASILY solve this encryption debate...
It will be ITAR in reverse, it will be illegal to import encryption, as it is assumed to be a weapon of mass destruction.
[ link to this | view in chronology ]
Re: We can EASILY solve this encryption debate...
[ link to this | view in chronology ]
This simple solution will restore your faith in humanity and change everything
they get people excited about the story so they can form an an opinion without having to read the story. Come on, who writes an entire story about a tweet from CBS??
We should treat clickbait headlines like spam: the less we click on it, and the quicker the companies see it's not working, the sooner it'll go away.
[ link to this | view in chronology ]
Re: This simple solution will restore your faith in humanity and change everything
[ link to this | view in chronology ]
[ link to this | view in chronology ]
speculative prevention
Although having a 'paper trail' to sort through would not have prevented the crime, it would have certainly given the security-industrial complex something to feed on to help justify their very existence.
[ link to this | view in chronology ]
Re: speculative prevention
[ link to this | view in chronology ]
Re: Re: speculative prevention
Ah, but it is indeed a primary point.
It is the inherent nature of government to grow and expand -- in both budget and personnel as well as scope and power. Therefore, it becomes an unending quest for the citizenry to try to limit the size and power of 'their' government.
Giving the government backdoors to encryption will virtually guarantee an endless "mission creep" and even more growth of government agencies. And possible more prisons to house all the people who commit thought-crimes and petty offenses that might never have been discovered if not for the government's increasingly expansive reach into everyone's private life.
It should worry even the people who are not privacy advocates in the slightest, because the "war against privacy" -- and the army to fight this war -- will be paid for by an already over-taxed public.
[ link to this | view in chronology ]
[ link to this | view in chronology ]
You would think.....
So I want to know WHY they are talking out their asses when they say encryption is bad and should be banned.
[ link to this | view in chronology ]
Re: You would think.....
[ link to this | view in chronology ]
Re: Re: You would think.....
They won't. Because the NSA or the CIA will sure as hell not provide somebody else with it, surely not the DOT, not the DOL, and probably not even the DEA.
And besides, all the millions of people within these departments will still use their Galaxy or MacBook for work, and thus create the necessary proliferation of backdoors for the CIA, the FSB, the MSS and maybe some terrorists to exploit.
[ link to this | view in chronology ]
What we could be observing is the pattern of demonizing encryption (or whatever is a perceived threat) is currently under. Officials coming out against the issue? Check. Conflicting media reports based off of "US officials" reports? Check. Pushing "blue-ribbon committees"? Check. At least this way, we expose this lazy strategy in view of what it is.
I hit my quoting quota "just now"
[ link to this | view in chronology ]
Five O'Clock Follies Redux Stenographers Transcribe Verbatim
Weakening encryption standards and allowing the use of US government "backdoors" to de-encrypt electronic communications will never end the (over hyped) threat of terrorism.
If FBI director James Comey was truly interested in lessening the threat of potential terror attacks in the US he would simply apply the rule of war and arrest those responsible for the US governments 15 years plus of criminal wholly elective wars based upon lies, kidnapping, indefinite/incognito/incommunicado detention without charge, torture and the theft of trillions of US dollars.
Instead James Comey (etal) actively seeks new ways to circumvent and or subvert the US Constitution in direct contravention of his oath of office.
Quite telling indeed.
A government that wants to surveil it's citizens every action is totalitarian in nature. The US government jettisoned the US Constitution long ago in the name of political expediency.
[ link to this | view in chronology ]
They're not clueless.
[ link to this | view in chronology ]
Talked about this sort of thing recently on Twitter. Here's a longer version
I'm not just talking about the major media outlets when I say this. And if by some miracle you happen to be reading this Jonathan McIntosh, here's special shoutout to you. Exactly why he earns this shoutout: http://m.imgur.com/TtEXwCo
Tried to use html tags to make post slightly prettier, but tags hate me, so fuck it.
[ link to this | view in chronology ]
[ link to this | view in chronology ]
Simple truth. .
But the simple truth is, someone that is determined to communicate privately will find a way to keep their communications private. And there is nothing they can do to prevent it.
So the only result will be to undermine the security and privacy of innocent citizens.
[ link to this | view in chronology ]
[ link to this | view in chronology ]