The NSA Has Figured Out How To Access Some Of The Most Private Data On The Internet

Source: http://www.businessinsider.com/the-scariest-part-about-the-nsa-access-2013-9

The New York Times has published a report, drawing on documents leaked by Edward Snowden, that reveals the National Security Agency is able to circumvent the encryption, or digital scrambling, that guards the privacy of much of the traffic on the Internet.

The most alarming part is that they want it all.

The Times' report explains how, exactly, the agency has been able to obtain so much access to the world's web traffic.

From The Times:

Because strong encryption can be so effective, classified N.S.A. documents make clear, the agency’s success depends on working with Internet companies — by getting their voluntary collaboration, forcing their cooperation with court orders or surreptitiously stealing their encryption keys or altering their software or hardware.

So the world's largest spy agency is paying companies, coercing companies, stealing from companies, and/or altering the software of companies to get the access to Internet data.

In the words of Bruce Schneier, an encryption expert and fellow at Harvard's Berkman Center for Internet and Society, the NSA is "doing it primarily by cheating, not by mathematics."

And the agency can only to this with the voluntary or involuntary cooperation of Internet companies.

That $250-million-a-year effort, called the Sigint Enabling Project, “actively engages the U.S. and f! oreign I T industries to covertly influence and/or overtly leverage their commercial products’ designs” to make them “exploitable."

From The Guardian, which has published a parallel report:

"For the past decade, NSA has lead [sic] an aggressive, multi-pronged effort to break widely used internet encryption technologies," stated a 2010 GCHQ document. "Vast amounts of encrypted internet data which have up till now been discarded are now exploitable."

Ultimately, beyond the capabilities provided through the a highly classified program, code-named Bullrun, is that the NSA and its British counterpart (i.e. GCHQ) want even more access.

From the New York Times (emphasis ours):

But the agencies’ goal was to move away from decrypting targets’ tools one by one and instead decode, in real time, all of the information flying over the world’s fiber optic cables and through its Internet hubs, only afterward searching the decrypted material for valuable intelligence.

One way to do this would be to obtain the master keys that companies use for Web encryption. It is unclear how far the U.S. and U.K. spy agencies have come to realizing that goal.

According to Schneier, there are still ways to remain secure against NSA surveillance.

SEE ALSO: CYBER EXPERT: The NSA Has The Means And Motive To Spy On Everyone

Join the conversation about this story »

Read More...

Summary only...

PATRIOT Act Author: The NSA Has Abused Its Power Under The Law

Source: http://www.businessinsider.com/patriot-act-author-nsa-abused-its-power-2013-9

The U.S. government contends that the bulk collection of U.S. phone records is authorized by section 215 of the PATRIOT Act.

Jim Sensenbrenner (R-WI), the author of the original USA PATRIOT Act, disagrees.

In a amicus brief filed in support of the American Civil Liberties Union's lawsuit against the National Security Agency's bulk collection of U.S. phone records, Sensenbrenner argues that the government has gone far beyond what the legislation authorizes.

Section 215, known as the business records provision, authorizes intelligence agencies to apply for information if "the records are relevant to an ongoing foreign intelligence investigation."

In practice, the NSA uses section 215 to collect data pertaining to every phone call to, from, and within the U.S. in the name of combating terrorism.

Sensenbrenner and the other members of Congress who enacted Section 215 "did not intend to authorize the program at issue in this lawsuit or any program of a comparable scope," according to the brief.

The brief goes on to propose this question (emphasis ours):

The NSA is gathering on a daily basis the details of every call that every American makes, as well as every call made by foreigners to or from the United States. How can every call that every American makes or receives be relevant to a specific investigation?"

Filed by the Electronic Frontier Foundation, the brief notes that Sensenbrenner "was not aware of the full scope of the program when he voted to reauthorize Section 215" and would have voted against it if he had known.

In Sensenbrenner's words: "The suggestion that the administration can violate the law because Congress failed to object is outrageous. But let them be on notice: I am objecting right now." 

SEE ALSO: The Best Hope Left For Americans' Privacy Is This 2012 Supreme Court Opinion

Join the conversation about this story »

Read More...

Summary only...

Chrome apps gain native powers and desktop launcher on Windows and Chrome OS, Mac, Linux versions to follow

Source: http://www.engadget.com/2013/09/05/chrome-apps--native/

The line between native and web apps has been blurring more and more with the advent of HTML 5, and now Google's taking things even further with what it's calling a "new breed of Chrome apps." These new apps, while built with web technologies and the Chrome browser, appear and act like native apps. In fact, Google is rolling out a Chrome app launcher for Windows to allow users to launch these new apps directly from their desktop. Windows and Chrome OS users will get first crack at using these apps, with Mac and Linux folks getting them a bit later.

To give these apps a native feel, Google has given devs a whole host of new tools. Apps work offline, can save data locally or in the cloud, provide desktop notifications and can connect with any device hooked into your computer via USB or Bluetooth -- meaning games can be designed to use external controllers. And, apps won't look tied to the browser as they won't be saddled with tabs, buttons, text boxes or any other browser-esque visual cues. The idea is to create Chrome apps that are nigh indistinguishable from their locally installed counterparts. For now, there are over 50 such apps available in the Chrome Web Store, with offerings including games, basic photo editing and task tracking apps, among others. However, we have a sneaking suspicion that Google's going to ensure that number grows exponentially in the near future.

Filed under: Internet, Google

Comments

Source: Google Chrome blog

Read More...

Summary only...

Chrome OS beta adds touchscreen support for selections, drag and drop (video)

Source: http://www.engadget.com/2013/09/05/chrome-os-beta-touchscreen-select-drag-drop/

We don't know when Google plans to release another device like its Chromebook Pixel, but Chrome OS support for touchscreens is continuing to improve. A new update in the beta channel brings support for both touch enabled text selection and touch enabled drag and drop on touch based devices. Right now the Pixel is the only Chrome OS laptop that supports it, but who knows what could be around the corner. Google "Happiness Evangelist" François Beaufort noted the new feature in Chrome OS' dev channel a couple of weeks ago and recorded a demonstration video, which you can check out after the break. Otherwise, Chrome OS users living on the not-quite-bleeding-edge can also expect tweaks like an audio source selector in the tray menu, ability to share folders and files from the Files app and an improved UI for the release channel switcher.

Filed under: Laptops, Google

Comments

Source: Chrome OS Releases

Read More...

Summary only...

Mozilla's 'Phone for Apps' initiative hits phase two, lures devs into porting HTML5 apps to Firefox OS

Source: http://www.engadget.com/2013/09/05/mozilla-firefox-os-phone-for-apps-phase-two/

Firefox has certainly taken some pretty huge steps since Mozilla initially announced its "Phone for Apps" program back in May. Still, the browser maker knows there's a lot to be done before the mobile OS becomes more of a household entity. To help it achieve that, Mozilla's launching phase two of the "Phone for Apps" initiative, offering developers a Firefox OS device -- in this case the Geeksphone Keon -- in exchange for porting their HTML5 apps to the young platform. More specifically, this qualifies devs who have "already built and shipped an HTML5 web app and have the time now to port that app to the new Firefox OS." Is this you? Then here's what's left to do: click the source below to peruse the rest of the guidelines, fill out the application and, if you're amongst the chosen group, expect a confirmation to reach your inbox sometime thereafter.

Filed under: Cellphones, Software, Mobile

Comments

Via: TechCrunch

Source: Mozilla

Read More...

Summary only...