Kitz ADSL Broadband Information
adsl spacer  
Support this site
Home Broadband ISPs Tech Routers Wiki Forum
 
     
   Compare ISP   Rate your ISP
   Glossary   Glossary
 
Please login or register.

Login with username, password and session length
Advanced search  

News:

Author Topic: RIPA is here - for real now  (Read 3303 times)

guest

  • Guest
RIPA is here - for real now
« on: November 14, 2007, 09:29:26 AM »
The Register is reporting that an animal rights activist has been "requested" to hand her encryption keys over to the police/CPS. It doesn't appear to be a formal Section 49 request but I'm sure one of those will be forthcoming.

Full story :

http://www.theregister.co.uk/2007/11/14/ripa_encryption_key_notice/

Now I'm no great fan of animal rights activists but given all of RIPA is now activated this is a wakeup call to everyone - if your current encryption solution doesn't have some form of plausible deniability built in (hidden containers/multiple layers of encryption etc) then it is now totally useless in the UK. Don't anyone bother coming out with the old chestnut of "If you've got nothing to hide...." either as if you don't have something to hide then why are you using encryption? Make damn sure you delete old containers securely too as if it is recovered years later and you can't remember the key then plod can send you to prison for 2 years if they choose - 5 years if they think you're a terrorist.

Not a good week for encryption solutions using Windows random number generator to seed the key either :

http://www.theregister.co.uk/2007/11/13/windows_random_number_gen_flawed/

Hard to see how this can be anything other than a deliberate weakening of encryption by MS - speculate on the reasons yourselves.

Time to review your encryption solutions and make sure you're happy with them peeps :)
Logged

roseway

  • Administrator
  • Senior Kitizen
  • *
  • Posts: 43568
  • Penguins CAN fly
    • DSLstats
Re: RIPA is here - for real now
« Reply #1 on: November 14, 2007, 09:46:29 AM »
It makes me go cold to think about it. I keep all sorts of private information encrypted for completely innocent purposes - bank account details, registration details for various services, and so on. If the police were to gain access to this information I doubt very much that it would remain secret very long, and where would that leave me?
Logged
  Eric

guest

  • Guest
Re: RIPA is here - for real now
« Reply #2 on: November 14, 2007, 09:48:19 AM »
Phonebook Eric ;)

http://www.freenet.org.nz/phonebook/manual.html

Edit - although I note the manual still refers to SHA1 hashing which is known to be vulnerable to a non-brute force attack. Not very vulnerable right enough, but most people have moved on to SHA256 at least.
« Last Edit: November 14, 2007, 09:52:52 AM by rizla »
Logged

roseway

  • Administrator
  • Senior Kitizen
  • *
  • Posts: 43568
  • Penguins CAN fly
    • DSLstats
Re: RIPA is here - for real now
« Reply #3 on: November 14, 2007, 09:55:13 AM »
Gosh, thanks rizla, that looks just like what I need.
Logged
  Eric

kitz

  • Administrator
  • Senior Kitizen
  • *
  • Posts: 33883
  • Trinity: Most guys do.
    • http://www.kitz.co.uk
Re: RIPA is here - for real now
« Reply #4 on: November 14, 2007, 10:21:50 AM »
Reading the article on the MS encryption I couldnt help but laugh at this

/guaranteed to return a random number

public int random() {

// decided by fair dice roll

return 6;

}

 :-[
Logged
Please do not PM me with queries for broadband help as I may not be able to respond.
-----
How to get your router line stats :: ADSL Exchange Checker
 

anything