12/2014 - 31C3: What is still safe (Truecrypt, SSL, ssh, ...)
On the 31st Chaos Communication Congress (31C3) in Hamburg (Germany), Snowden's confidants Jacob Appelbaum and Laura Poitras reported on which cryptographic applications one may arguably still trust. Besides protocols like for instance SSL and PPTP, IPsec and SSH are also on the Western secret services' hit list (e.g. NSA and GCHQ). Protocols like for instance OTR, ZRTP seem to be besides the possibilities. The intelligence authorities evaluate a combination of these systems with the anonymisation service 'Tor' as being 'catastrophic'. Mail encryption with PGP or GnuPG will also stay beyond the reach of NSA and Co. Additionally, the crypto software 'Truecrypt' had been classed as being almost insurmountable before the development team surprisingly quit working on it. This results from Edward Snowden's new documents published amongst others by Jacob Appelbaum and Laura Poitras ('Citizenfour') in cooperation with the German news magazine 'Spiegel'. In terms of contents they deal with the NSA's and their partners' strategies to circumvent, decrypt, subvert, and hack data encryption both on the internet and on PCs. During the 31C3 the above mentioned presented new details regarding the projects 'Bullrun' and 'Edgehill'. It should always be remembered that even the NSA does not possess super powers, though having backdoors and listening devices at its disposal. Nevertheless, it may subvert platforms, standards and random number generators, as well as legally 'synchronise' the IT business; resistance is possible, however, and a 'duty' for the technically skilled hacker community [source: heise.de ].
Tag-Filter
18.03.2020 - Home office at the time of the corona pandemic [more...]
07.11.2019 - Judgment of the ECJ on (tracking) cookies [more...]
24.10.2019 - Environmental protection by aixzellent [more...]
02.10.2019 - End-to-end encryption (I): Increasing cooperations between IT companies and states – Is this the end of secure messaging in Germany? [more...]
11.06.2019 - Tracking Cookies - Currently still illegal! [more...]
15.04.2019 - Copyright law – What you should know [more...]
27.02.2019 - Two Factor Authentication [more...]
31.01.2019 - Static vs. dynamic website - which one is the right for your company? [more...]
30.10.2018 - Informational self-determination – the concept of decentralisation as an alternative to powerful data gathering companies [more...]
01.10.2018 - Nextcloud: Control is the key to security [more...]