What to do about PRISM surveillance. A practical advice.

AnonyMint

hero member

Activity: 518

Merit: 521

Quote from: Snowfire on December 27, 2013, 12:26:41 AM

Bitmessage (though it could use improvement) does not have open metadata the way simple encrypted email does.

Bitmessage type of anonymity is in theory (if done correctly) not susceptible to timing analysis as Tor and I2P are. The latter use onion routing where it is known which encrypted packets are intended for which IP addresses. In Bitmessage, in theory no one knows which packets are intended for which destinations.

Unfortunately Bitmessage can't scale because everyone receives every (encrypted) message. Perhaps this can be addressed with subsets, but this might compromise the anonymity.

Snowfire

full member

Activity: 122

Merit: 100

Bitmessage (though it could use improvement) does not have open metadata the way simple encrypted email does.

Even with snail-mail, it is possible to obfuscate the sender (although not the receiver.) And there are ways to make content tampering (e.g. steaming envelopes) difficult to do without its being obvious.

However: if you choose to protect some communications but not others, that is itself a form of metadata that is subject to analysis. And if some persons but not others choose to protect communications, that is also metadata. Communication protection is hence most effective if adoption is widespread (built into most systems by default.) This alone would truly erase these issues.

AnonyMint

hero member

Activity: 518

Merit: 521

Quote from: tkbx on June 18, 2013, 12:03:19 AM

If you go on Reddit, you've probably seen this about 20,000 times, but here goes:

Don't ask your government for your Privacy, take it back:

   Browser Privacy: HTTPS Everywhere, AdBlock Plus + EasyList, Ghostery, NoScript (FireFox), NotScript (Chrome)
   VPNs: BTGuard (Canada), ItsHidden (Africa), Ipredator (Sweden), Faceless.me (Cyprus / Netherlands)
   Internet Anonymization: Tor, Tor Browser Bundle, I2P
   Disk Encryption: TrueCrypt (Windows / OSX / Linux), File Vault (Mac).
   File/Email Encryption: GPGTools + GPGMail (Mac), Enigmail (Windows / OSX / Linux)
   IM Encryption: Pidgin + Pidgin OTR
   IM/Voice Encryption: Mumble, Jitsi
   Phone/SMS Encryption: WhisperSystems, Ostel, Spore, Silent Circle ($$$)
   Google Alternative: DuckDuckGo
   Digital P2P Currency: BitCoin
   Live Anonymous/Secure Linux: TAILS Linux

Good list. However, VPN + Tor or I2P Darknet are vulnerable to traffic analysis. Even with encrypted communications, these do not reliably obscure your identity from your IP address if the adversary is determined and has the resources to see all traffic.

Also we have no way of knowing which VPNs are backdoored.

Voice, chat, and email encryption obscure the content, but not the identities of whom is communicating. Thus you've just categorized yourself for the concentration camps coming.

Unfortunately you neophytes do not realize that details matter much.

Essentially what you all are doing by using these technologies and Bitcoin is labeling yourselves in the small minority that are anti-government. Not good for you.

UPENtXF

member

Activity: 125

Merit: 10

I don't know how secure it is, but Ostel.co seems to work as advertised, and I trust Zimmerman's ZRTP more than I trust any of the NSA creations.

I think if everyone starts using that kind of technology wherever they can, it will be prohibitive for the Washington District of Criminals to spy one everyone.

mairusu

newbie

Activity: 28

Merit: 0

I understand the disgust at these "official findings" but unless you provide the service for yourself it can never be secure like farming, internet, etc. So, unless you're going to start a gigantic intranet based medium to provide information than I say do what you can but always know somebody out there if they really wanted to could spy on us...it's the price we pay when we aren't the producers of our consumption.

tkbx

sr. member

Activity: 350

Merit: 251

If you go on Reddit, you've probably seen this about 20,000 times, but here goes:

Don't ask your government for your Privacy, take it back:

Browser Privacy: HTTPS Everywhere, AdBlock Plus + EasyList, Ghostery, NoScript (FireFox), NotScript (Chrome)
VPNs: BTGuard (Canada), ItsHidden (Africa), Ipredator (Sweden), Faceless.me (Cyprus / Netherlands)
Internet Anonymization: Tor, Tor Browser Bundle, I2P
Disk Encryption: TrueCrypt (Windows / OSX / Linux), File Vault (Mac).
File/Email Encryption: GPGTools + GPGMail (Mac), Enigmail (Windows / OSX / Linux)
IM Encryption: Pidgin + Pidgin OTR
IM/Voice Encryption: Mumble, Jitsi
Phone/SMS Encryption: WhisperSystems, Ostel, Spore, Silent Circle ($$$)
Google Alternative: DuckDuckGo
Digital P2P Currency: BitCoin
Live Anonymous/Secure Linux: TAILS Linux

If you have any problems installing or using the above software, please contact the projects. They would love to get feedback and help you use their software.

Have no clue what Cryptography is or why you should care? Checkout the Crypto Party Handbook or the EFF's Surveillance Self-Defense Project.

Just want some simple tips? Checkout EFF's Top 12 Ways to Protect Your Online Privacy.

If you liked this comment, feel free to copy/paste it.

Financisto

hero member

Activity: 633

Merit: 768

BTC⇆⚡⇄BTC

OPs and MODs:

I'd like to suggest a fixed topic about PRISM surveillance and inside that topic some info like that available at http://prism-break.org/

And freedom for all!

spike420211

sr. member

Activity: 1610

Merit: 372

Quote from: bitzox on June 12, 2013, 12:52:31 PM

I think that would depend on who you ask Lips sealed

well, they've evolved from outlawing WoW gold tasking to cnc[chinacoin].

bitzox

full member

Activity: 172

Merit: 100

Quote from: spike420211 on June 12, 2013, 12:30:51 AM

Remember...
the People's Republic of China has been monitoring THEIR internet even tighter
for over 10 years now, with lackluster results.

I think that would depend on who you ask Lips sealed

RodeoX

legendary

Activity: 3066

Merit: 1147

The revolution will be monetized!

Quote from: mprep on June 11, 2013, 07:33:24 PM

Quote from: RodeoX on June 11, 2013, 03:53:35 PM

Quote from: domob on June 11, 2013, 03:42:32 PM

http://prism-break.org/

Nice. Thanks.

Also, LIE. LIE like a MF. You do not have to be truthful on the internet. Junk up the databases with useless lies. Is your phone in your name? Why? I have not had a phone in my real name in forever. Use a variety of fictitious identities for your phone. Talk to your drug dealer, he/she will know how to do this.
Stop using spyware like windows or apple. You don't want that crap anyway. Try Linux and you will never go back to an untrustworthy proprietary OS.

Last and most importantly. Complain to your representatives. Politicians only care about money and votes. Call them out in public! If we are vocal enough we can take back some of our freedoms.

You see, not everyone is in contact with their local drug dealer.

It's not even true that they would know anything.
I could not resist some wise-assery in my remarks.

spike420211

sr. member

Activity: 1610

Merit: 372

Remember...
the People's Republic of China has been monitoring THEIR internet even tighter
for over 10 years now, with lackluster results.

stochastic

hero member

Activity: 532

Merit: 500

What I am really annoyed about is that it was not confidential because it would tell the enemy what the government is doing. The information was classified so that the America people would not be informed of the program and thus could not sue on constitutional grounds. The courts have said secret programs cannot be found to be unconstitutional because they are secret and no one knows if they are actually occurring and no one knows who they are occurring on.

The point of it being confidential is so the public does not know and does not stop the program from occurring.

One interesting thing that I heard on the radio discussing privacy is that as the world becomes more connected and information is digitized privacy of the public becomes less but secrecy also becomes less of these programs. In he past information was in hard copy and thus hard to disclose. Now that many people have more access to information because it is digitized and keeping networks has become more specialized the secrecy of these programs is less easy to conceal.

spike420211

sr. member

Activity: 1610

Merit: 372

And last but not least,
use the word "FUCK" very liberally in all correspondence... Grin

RoadToHell

sr. member

Activity: 260

Merit: 250

Quote from: aigeezer on June 11, 2013, 05:22:56 PM

Quote from: bitzox on June 11, 2013, 04:51:47 PM

Quote from: aigeezer on June 11, 2013, 04:47:22 PM

Seems a missed opportunity, now that fiat has become Bernanke's proprietary software.

The Bernanke does what the Bernanke wants

http://www.youtube.com/watch?v=PTUY16CkS-k

Good one. I love a well-done xtranormal clip. That's a keeper!

I want to bang my head against a wall ...

mprep

global moderator

Activity: 3766

Merit: 2610

In a world of peaches, don't ask for apple sauce

Quote from: RodeoX on June 11, 2013, 03:53:35 PM

Quote from: domob on June 11, 2013, 03:42:32 PM

http://prism-break.org/

Nice. Thanks.

Also, LIE. LIE like a MF. You do not have to be truthful on the internet. Junk up the databases with useless lies. Is your phone in your name? Why? I have not had a phone in my real name in forever. Use a variety of fictitious identities for your phone. Talk to your drug dealer, he/she will know how to do this.
Stop using spyware like windows or apple. You don't want that crap anyway. Try Linux and you will never go back to an untrustworthy proprietary OS.

Last and most importantly. Complain to your representatives. Politicians only care about money and votes. Call them out in public! If we are vocal enough we can take back some of our freedoms.

You see, not everyone is in contact with their local drug dealer.

2dogs

legendary

Activity: 1267

Merit: 1000

Quote from: RodeoX on June 11, 2013, 03:53:35 PM

Quote from: domob on June 11, 2013, 03:42:32 PM

http://prism-break.org/

Nice. Thanks.

Also, LIE. LIE like a MF. You do not have to be truthful on the internet. Junk up the databases with useless lies. Is your phone in your name? Why? I have not had a phone in my real name in forever. Use a variety of fictitious identities for your phone. Talk to your drug dealer, he/she will know how to do this.

Yup,

DISINFO, PEOPLE!!

bitzox

full member

Activity: 172

Merit: 100

The guy has a whole series that made its rounds across trading desks a few years back. They are both hilarious and painfully accurate.

aigeezer

legendary

Activity: 1450

Merit: 1013

Cryptanalyst castrated by his government, 1952

Quote from: bitzox on June 11, 2013, 04:51:47 PM

Quote from: aigeezer on June 11, 2013, 04:47:22 PM

Seems a missed opportunity, now that fiat has become Bernanke's proprietary software.

The Bernanke does what the Bernanke wants

http://www.youtube.com/watch?v=PTUY16CkS-k

Good one. I love a well-done xtranormal clip. That's a keeper!

bitzox

full member

Activity: 172

Merit: 100

Quote from: aigeezer on June 11, 2013, 04:47:22 PM

Seems a missed opportunity, now that fiat has become Bernanke's proprietary software.

The Bernanke does what the Bernanke wants

http://www.youtube.com/watch?v=PTUY16CkS-k

aigeezer

legendary

Activity: 1450

Merit: 1013

Cryptanalyst castrated by his government, 1952

Quote from: domob on June 11, 2013, 03:42:32 PM

http://prism-break.org/

Nice site! I notice it takes BTC donations (yea) but it doesn't have a "currency" category in its list of substitutes (boo). Seems a missed opportunity, now that fiat has become Bernanke's proprietary software.

Edit: Yikes, it's there now, large as life. I don't know how I missed it. Maybe it just got changed (he whimpered).

Topic: What to do about PRISM surveillance. A practical advice. (Read 4512 times)