Ich bin ein Cyberpunk

17:02 Aug 22, 2013 94

Welcome to your sudden but inevitable future of ubiquitous surveillance.

To an extent, I appreciate the arguments made by supporters of the GCSB Bill - it's not really a huge encroachment of mass surveillance powers, it is, mostly, just the formalisation of mass surveillance powers that have been encroaching for a decade. We are not fucked off because of the bill itself, really, but because we've finally been forced to pay attention to the barftastic overreach of state surveillance that's been happening around us.

At least, that's true for me. Thanks to the GCSB Bill, I finally got around to reading the Kim Dotcom affidavits. It's the best example we have of how "GCSB assistance" is actually rendered. The Police asked the GCSB for help in a one-page request (page 13 of this):

Once the GCSB's lawyer had a look at it, the Police provided a list of "selectors" to the GCSB (we now know from the PRISM documents that "selectors" is the term used to describe the search terms used to make PRISM requests):

The selectors were entered into █████, in an email classified as "SECRET//COMINT//REL TO NZL, AUS, CAN, GBR, USA". In other words, the selectors were entered into a secret communications intelligence system, and this secret system was considered related to Five Eyes:

The email from the GCSB then described "traffic volume from these selectors": i.e. This secret system was capturing live traffic.

This is consistent with everything that we know about PRISM. Key has refused to comment on this.

What does this mean? It means that GCSB assistance is NSA assistance. It means that government agencies can tap into these powers as part of bread-and-butter law enforcement. Through the Bradley Ambrose case, we've seen that the Police are willing to use the full extent of their powers for entirely bullshit cases. Combine the two, and it makes me very, very queasy.

I ended my post in May with "we need to start by getting really, really fucked off". What is step two? Fortunately, there is a 25-year-old answer to this question: Encrypt everything.

Over the next however long it's going to take me, I'm going to be doing short posts on how to secretfy your stuff. Today's post is on encrypting text using public-key encryption.

Public-key Encryption (the uber-short version)

This technique is based on a pair of matching keys - one public, one private. Anything encrypted with one can only be decrypted with the other. Why? MATHS, that's why. The public key is then made public (my key is here), and anyone can use that key to encrypt a messsage. Only you - with the private key that you keep secret - can decrypt that message.

It's actually not that hard. The simplest tool for dealing with PGP keys is gpg4usb. Go download it and have a play. Purely for testing purposes, here is the public AND private keys for "John PGPKey" (right click on the link --> "Save link as.." to save the file). Open up gpg4usb and use the menu bar: Keys --> Import Key from.. --> File.

Select the .asc file you just downloaded. You can now use John PGPKey's private and public keys.

(Just to reiterate, this is for testing purposes only - you should NEVER put your real private key on the internet.)

Here is a message that's been encrypted using John PGPKey's public key. Open it up and copy and paste the garbled text into gpg4usb (including the BEGIN PGP MESSAGE and END PGP MESSAGE lines). Click on the "Decrypt" button. It'll ask you for a passphrase, which is "spicy panopticon in a dunnenad sauce" (this is a more reliable guide to making secure passphrases than your IT department).

(And no, you should not be putting the passphrases for your real private key on the internet, either. NOTE: Apologies if this didn't work before, I posted the wrong version of the key I was faffing around with.)

Enter the passphrase and BAM - you've decrypted a message! (If you haven't, check that you've copied the whole message, and check that you typed in the password properly.)

Now, to encrypt a message, just type things into the text box, select the key you want to encrypt with, and click on the "Encrypt" button. Pretty goddamn easy.

To create your own key, open up Keys --> Manage Keys. From the Key Management window, open up Key --> Generate Key. Fill out the boxes and go. You can export the public key and put it somewhere public - but let's not actually do that yet, until we have a way of securing your private key.

In the next part, we'll talk about publishing keys, verifying keys, signing with keys.

94 responses to this post

First ←Older Page 1 2 3 4 Newer→ Last

Jon J., 17:59 Aug 22, 2013

Spectacular. :-)

Wellington • Since Aug 2013 • 3 posts Report
Rich of Observationz, 18:56 Aug 22, 2013

Key distribution, that's the hard part. Ensuring that you have the public keys of everyone you want to contact and that these haven't been tampered with.
It's a hard problem, partly because of the risk of the man-in-the-middle attack (where somebody intercepts your traffic, substitutes the key and encrypts/recrypts your mail). I think the community got a bit hung up on this though - it should be possible to build an infrastructure that's strong enough and tamper-evident enough to make systematic monitoring very difficult.

Back in Wellington • Since Nov 2006 • 5550 posts Report
Amanda Wreckonwith, 19:59 Aug 22, 2013

Good work.
People like us need people like you.
Sod the others - will you stand for Labour Party leader?

Since Sep 2012 • 171 posts Report
Nicola Rowe, 20:14 Aug 22, 2013

Thank you! I've been looking for this.

Christchurch • Since Jul 2012 • 5 posts Report
Moz, in reply to Rich of Observationz, 20:15 Aug 22, 2013

it should be possible to build an infrastructure that’s strong enough and tamper-evident enough to make systematic monitoring very difficult.
The standard way is to use an outside channel. The simple(ish) way is just to put the hash of your public key in visible places - an image on your website for example. That's hard to mechanically detect and change, but easy to verify.

Sydney, West Island • Since Nov 2006 • 1233 posts Report
Jeremy Andrew, 20:32 Aug 22, 2013

Cypherpunk, surely?

Hamiltron - City of the F… • Since Nov 2006 • 900 posts Report
HamishFraser, 20:59 Aug 22, 2013

-----BEGIN PGP MESSAGE-----
Version: GnuPG v1.4.12 (MingW32)
hQEMA4M1NX6HbamyAQf8CFd6lN4au27J1PSYjlaLnHpQFyrrrhYyPyZcceiLZKWd
sehQX8+wNzNgqkJ13cS1ouMhmL7hFqLOgZUSGqe8kWNvAUf0JlNaFtQ91VPqraU7
uP2YQKwicg/Q7BadcSwB6Cht39P+jX1uJOa5KZoprxSg3E/uM4nSuueFNNIuUCzq
vw/t1e9MCU0ohJ6Wh5vpteMAwnw5GiILZ/WU/AzCy1vPAdRcPXAV//V8qWP8kW6N
tYRERiGFtRYaemvAgu3s/90zvK3sUr84Kd47U1TGihC1NJr/i4bpkzbZ01/IIPw7
ViePKjeIB1DRp56eOv3NaJ6x80BxJGdkuniCtl8Y/tKdAcXYWF68AI909N6rswZR
xAHByw2Qu0PFyTWHQoQra0558sqpvQytVQMAKiz0AUQJmeowvaIQTtWWpUm4gqrl
XP90ZrrTv2fBjw/rOraC5N/PgQ9Hj5lHYodfuRFe+KH1GiuxzJnUWNStRspxdJpy
cvQe8IzxgFXyAYa0uwzcjKXmEV81adv0fZvyHDXOwqkyG8CY9340EYeX0ZOqSw==
=vpAb
-----END PGP MESSAGE-----

Since Mar 2012 • 5 posts Report
Keith Ng, in reply to HamishFraser, 21:05 Aug 22, 2013

Huzzah! It worked. I'd reply in an encrypted message, but I don't have your public key.

Auckland • Since Nov 2006 • 543 posts Report
Keith Ng, in reply to Moz, 21:12 Aug 22, 2013

Moz & Rich: Yes, will get to that in the next part...

Auckland • Since Nov 2006 • 543 posts Report
HamishFraser, 21:20 Aug 22, 2013

Which is the answer to the question I was now asking myself, I wrote a link to my public key in my message and then must have sent an earlier attempt which I have no copy of. In other words - to much focus on the process, not enough on the content.
-----BEGIN PGP MESSAGE-----
Version: GnuPG v1.4.12 (MingW32)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=g6Fq
-----END PGP MESSAGE-----

Since Mar 2012 • 5 posts Report
Sacha, in reply to Jeremy Andrew, 21:41 Aug 22, 2013

zing

Ak • Since May 2008 • 19745 posts Report
nzlemming, 21:45 Aug 22, 2013

Thanks for connecting those dots. I downloaded the docs but haven't got round to reading them yet.

Waikanae • Since Nov 2006 • 2937 posts Report
Brent Jackson, 21:50 Aug 22, 2013

Is this build into any email clients ? If not, why not ?

Auckland • Since Nov 2006 • 620 posts Report
Martin Lindberg, 22:05 Aug 22, 2013

There was a pretty good how-to on Ars Technica a couple of months ago. See Encrypted e-mail: How much annoyance will you tolerate to keep the NSA away?.
Apart from showing the steps, it also talks about why the process is pretty annoying unless you have a group of friends or colleagues you regularly email and you are all in this together.

Stockholm • Since Jul 2009 • 802 posts Report
Adam Shand, 22:09 Aug 22, 2013

I reached the same conclusions a week ago and decided to write up a tutorial on how to make encrypting email as easy as possible.
For those that might be interested, here is a (hopefully extremely easy to follow) tutorial on how to get email encryption working on a Mac running Mountain Lion:
https://medium.com/open-source/7151e454ed93
For those that want secure instant messaging the answer is much simpler and better. Get a client that supports OTR (Off The Record), on the Mac that's Adium. So long as you've clicked the "generate key" and both people have OTR installed, messages are encrypted.

Peka Peka • Since Aug 2013 • 1 posts Report
Ian Dalziel, in reply to HamishFraser, 22:15 Aug 22, 2013

—–BEGIN PGP MESSAGE—–
Version: GnuPG v1.4.12 (MingW32)
hQEMA4M1NX6Hba...EriyEalV/q5J7x2gn7S21UB2gYUqPgNu
=g6Fq
—–END PGP MESSAGE—–
Hello 'Not-So-Public Address'...

Christchurch • Since Dec 2006 • 7953 posts Report
HamishFraser, 22:33 Aug 22, 2013

There is a certain glee in posting in broad daylight for a single individual. I am intrigued/lazy to know with a key size of 2048 and the RSA algorithm, how much time that would take to crack based on Edward Snowdens suggestion to Laura:
"Assume that your adversary is capable of a trillion guesses per second"
The program suggested a 5 year expiry date...

Since Mar 2012 • 5 posts Report
TracyMac, 22:34 Aug 22, 2013

For your webmail services like Gmail and Outlook.com, there's Mailvelope: http://www.mailvelope.com/
Comes in a Chrome app only so far, although they do apparently have a Firefox plugin in development.

Canberra, West Island • Since Nov 2006 • 701 posts Report
TracyMac, in reply to Brent Jackson, 22:36 Aug 22, 2013

There's a list of mail clients here that natively support PGP and many others you can get plugins/addons for: http://www.vanheusden.com/pgp.php

Canberra, West Island • Since Nov 2006 • 701 posts Report
TracyMac, 23:10 Aug 22, 2013

For more food for thought, these days I'd probably prefer to use S/MIME over PGP. Integration isn't a problem with most modern mail clients (http://email.about.com/od/smimesoftware/S_MIMEEnabled_Email_Software.htm) - it's built-in with no addons needed. It's a slight PITA having to get the cert installed and configured in the mail client, but it's a download > install rather than generating and installing. Hint to Windows users, download a cert in IE even if you normally use Firefox - Firefox has its own certificate cache and it's annoying to have to export it from there and install it into the OS cache. (ETA: if you follow the link to install the Comodo cert from their email, it looks like it installs it correctly even if you're in Firefox.)
You need a third-party-signed certificate, but there are free providers: http://www.instantssl.com/ssl-certificate-products/free-email-certificate.html
This is a basic guide for installing in Outlook, but just google "[mail client] smime" for instructions for most products: http://www.marknoble.com/tutorial/smime/smime.aspx. I would not recommend using Thawte certs as specified in this article - they require ID to "verify" who you are.
There are Gmail S/MIME addons - one's a Firefox addon, and another is called Penango (ironically used by the US Air Force).

Canberra, West Island • Since Nov 2006 • 701 posts Report
Idiot Savant, 23:12 Aug 22, 2013

GPG4USB: advantages: mobile, can be used to encrypt webmail and throwaways. Disadvantages: will teach you bad habits about encrypting only stuff which is worth the hassle, so it basicly signals people about content.
Still, better than nothing. And given my email useage patterns, probably a good match.

Palmerston North • Since Nov 2006 • 1717 posts Report
TonyWebb, 23:28 Aug 22, 2013

Great post Keith.
It's worth remembering that encryption done badly can be worse than not using it all. I'd urge people who want to use encryption to read and understand as much as they can when using encryption as there are many pitfalls. Key security is a biggy - the only cases of LE breaking encryption that are known to have occurred has been by obtaining private keys and passphrases. The use of open source security software is very important too in my opinion. You just don't know what proprietry software is doing when it comes to encryption.
However, the more people that do use encryption the better - I'm reminded of a comment from Phil Zimmerman about unencrypted email being similar to sending a postcard, encrypted mail being analogous to a letter in an envelope. Both can be intercepted and read, but a lot more effort needs to be expended to read the letter. The NSA will keep encrypted communications indefinitely, and they will be able to retrospectively "steam them open" in the future. Perhaps you could include PFS and OTR in your upcoming posts on this subject.
It would also be great to see some information on anonymous browsing via Tor (this is now fairly easy to set up - I posted this via Tor) and darknets such as I2P if you have the time or inclination.

Wellington • Since Aug 2013 • 2 posts Report
TonyWebb, 23:32 Aug 22, 2013

Thunderbird Email with the Enigmail plugin (uses GPG) and is an easy to use, cross platform key management solution.

Wellington • Since Aug 2013 • 2 posts Report
TracyMac, in reply to TracyMac, 23:39 Aug 22, 2013

One thing I didn't highlight about the advantages of S/MIME (beyond not having to download and run key-generation and mail client add-ons) is that public certificate distribution is easy - just send someone a digitally signed email (you need to ensure the option to include the cert is selected).
On receiving the signed message, all the recipient needs to do (in Outlook) is click on the signature prompt and select "add to contacts".
Since the key exchange is a bit "backwards" compared to PGP, they can now send you encrypted messages. You'd need to receive a digitally-signed message from them (it can be encrypted as well) to encrypt email back.

Canberra, West Island • Since Nov 2006 • 701 posts Report
Brent Jackson, 01:02 Aug 23, 2013

Hmm. I'm not sure that trusting Outlook or Gmail with Certificates and keys is any advantage - the NSA is already likely to have them in their pocket.

Auckland • Since Nov 2006 • 620 posts Report