FBI, NSA Want Master Encryption Keys from Internet Companies
July 25, 2013 7:06 PM
comment(s) - last by
The question of whether it's legal for them to ask for these SSL keys or not is unclear
The feds are trying to creep further into the personal lives of Web users by requesting master encryption keys from Internet companies.
According to a new report from
, the Federal Bureau of Investigation (FBI) and the National Security Agency (NSA) have both tried to obtain master encryption keys as part of their
digital surveillance efforts
, but there's a huge question as to whether they have the legal authority to do so.
Master encryption keys are crucial to Web encryption. They put contents of Web communications into code that is tough to crack using Secure Sockets Layer (SSL). If government agencies were to get their hands on these SSL keys, they could decode the content and peek into the lives of Internet users.
The NSA is also looking to get these SSL keys because it would allow for surveillance through its fiber taps, which are now heavily guarded by SSL.
SSL was originally put in place because of insecure and open Wi-Fi networks. Google adopted HTTPS (which appears in the browser to show that SSL is enabled -- back in 2010 for Gmail, and Microsoft did the same for Hotmail. Later in 2012, Facebook followed suit for its popular social network.
Now, these large Internet companies face the fear of government agencies trying to obtain the SSL keys and expose information on their users. Microsoft, Google and Facebook all said that they haven't given any SSL keys to the government, and agreed that they would fight against doing so.
Other larger companies like Apple, Verizon, AT&T, Yahoo, Comcast and AOL haven't said if they've been asked for or have given SSL keys to the feds.
But the larger companies fear that smaller Web establishments without deep pockets or a hefty legal department will give in to the government's requests for keys.
SSL has certainly hindered the government's spying abilities, which is why they're coming directly to the source for the keys. But if all else fails, the feds have other avenues of
getting what they need
. For instance, companies like Packet Forensics help government agencies import "legitimate" copies of SSL keys -- which could possibly be obtained through a court order -- for spying on users.
Speaking of a court order, it's not clear whether federal surveillance laws allow the government to ask for SSL keys -- even with subpoenas. Subpoenas call for gathering evidence related to an investigation, where SSL keys would seem to open up a treasure trove of data that may contain pieces of information relevant to an investigation, but likely most that are not.
This article is over a month old, voting and posting comments is disabled
RE: Too little too late
7/26/2013 6:57:53 PM
Care to elaborate on how he's a crackpot? Let's see:
-Correctly called out the war on drugs for the catastrophic, expensive and violent failure that it is.
-Correctly called out our imperialist aggression abroad for the catastrophic, expensive and violent failure that it is.
-Correctly called the 2008 meltdown years before it happened because he knew a bubble was being blown by the government and the Federal Reserve.
-Correctly called out our cradle to grave social welfare state for the immoral theft that it is.
-Correctly called out our corporate welfare state for the immoral theft and misallocation of resources that it is.
The list goes on. He has been consistently right before, during, and after he was in office. Compare that with the rest of the garbage in Washington and it becomes clear that the opposite of what you said is true: Ron Paul was the only sane one, the rest have literally lost their minds as they carry us off a cliff.
RE: Too little too late
7/29/2013 1:21:02 PM
Like so many others....
Legalizing all drugs and isolationist stance in the world are non starters for conservatives like me. Both ideas if implemented would make our current issues seem like a rainy day as compared to a hurricane...libertarians are delusional anarchists nothing more.
"I modded down, down, down, and the flames went higher." -- Sven Olsen
NSA Spying Fallout Hits Defcon, Hackers Tell Feds to Stay Away
July 12, 2013, 9:00 AM
Source: Don't Worry, NSA Spies on "99 Percent" of Americans' Locations, Call Records
June 14, 2013, 3:57 PM
AT&T Defeats Purpose of New Apple SIM, Locks iPad Air 2 SIMs to Its Network
October 24, 2014, 2:17 PM
Microsoft to Discontinue Free, Ad-supported Xbox Music Service on December 1
October 23, 2014, 10:03 AM
Christian Bale Confirmed to Play Steve Jobs in Upcoming Film
October 23, 2014, 8:43 AM
Monica Lewinsky Speaks Out, Calls Herself "Patient-Zero" for Internet Cyberbullying
October 21, 2014, 2:25 PM
Google Fiber Finally Heading to Austin, Texas in December
October 16, 2014, 11:48 AM
Dropbox Flexes Security Muscle, Appears to Have Squashed Password Breach
October 15, 2014, 12:12 PM
Most Popular Articles
Chinese Government Declares Digital War Against America's Top Tech Firms
October 20, 2014, 12:07 PM
Samsung Announces Galaxy S5 Plus with Snapdragon 805 Processor, LTE-A
October 22, 2014, 3:40 PM
Windows 8.1 + Android "Sell Mini PC" w/ Bay Trail Creates New PC Form Factor
October 20, 2014, 5:07 PM
Apple Releases iOS 8.1; Adds Apple Pay Support, SMS Relay, Instant Hotspot
October 20, 2014, 1:00 PM
Apple's iPad Air 2 Features Triple-core A8X Processor, 2GB of RAM
October 21, 2014, 8:32 PM
Latest Blog Posts
The Surface Mini That Was Never Released Gets "Hands On" Treatment
Sep 26, 2014, 8:22 AM
ISIS Imposes Ban on Teaching Evolution in Iraq
Sep 17, 2014, 5:22 PM
Space Terrorism is a Looming Threat For the United States
Apr 23, 2014, 7:47 PM
Facebook Aims to Provide Internet to "Every Person in the World" with Drones, Satellites
Apr 1, 2014, 10:20 AM
Retail Mobile Sites Experience Outages in Light of Simplexity's Bankruptcy
Mar 14, 2014, 8:48 AM
More Blog Posts
Copyright 2014 DailyTech LLC. -
Terms, Conditions & Privacy Information