If I understand Professor Moglen's main points in "So Much for Savages" correctly, he is suggesting that an entirely encrypted internet would present an impossibly large (and costly) problem for the government to decipher, which would therefore render fruitless government attempts at deciphering private communications. I know very little about cryptography, but this makes sense based on the linear relationship between the number of encrypted signals and the cost required to decipher them all. What I don't understand is why the government (or anyone) would need to break the encryption for the whole internet in order to break the encryption for any given piece of encrypted information. For example, if the government wanted to determine the contents of an encrypted email message between me and my wife, couldn't it do so be just breaking my encryption? If so, then even if all of the interent were encrypted wouldn't the government still be able to "listen in" on a conversation between any individual that was for whatever reason suspicious? On the flip side, would complete encryption of the internet really prevent theft of financial transaction information, or would it be possible for the thieves to simply focus their encryption-breaking efforts completely on communications from banks?

-- SethLindner - 29 Oct 2009

It is believed to be infeasible to break secure encryption. More precisely, secure encryption algorithms are math problems that are nearly universally believed by mathematicians to be computationally intractable (even with billions of times more resources that the most powerful organizations). It is not the theoretical basis for encryption that is the weakest link. One way that encryption can be broken is through implementation errors that are not part of the mathematical model (e.g. if your computer gets slightly hotter when it is decrypting a 1 as opposed to a 0 bit you could detect that).

But even such implementation errors are insignificant compared to more oblique attacks like social engineering and trojans. Your encryption is only as safe as your keys and the software running on your computer. The most successful attack against encryption is simply to gain access to the victims computer using a trojan or otherwise. This is well within the realm of feasibility of government. And it becomes trivial if they can "convince" a device or operating system manufacturer to provide backdoors for them. If your computer obeys someone else all is lost. A related example is that, although Skype calls are encrypted, Skype will gladly provide means to decrypt those calls to government agencies.

-- ElidedElided - 29 Oct 2009

Here is what I would like to do:

I would like to manufacture the Patriot Phone. It will be a cell phone with an american flag printed on it. It will have a USB plug at the bottom where you insert your PGP key on a USB token, that you keep on your keychain (or perhaps around your neck if you lose your keys a lot). When you place a call, it will look up the public key of whomever you are calling, and encrypt your conversation.

I will purchase advertising time on the Glenn Beck show and sell them by the bushel to his petrified viewers in Ruby Ridge, Idaho. I will give them out for free to those people who never seem to tire of running the WTO protests. I'll buy a batch of banners on firedoglake and give special discounts to anyone who ever gave a penny to Russ Feingold.

Why will I fail?

-- HarryLayman - 03 Nov 2009

> Why will I fail?

Because you have to compute with established entities: http://www.gsm-security.net/gsm-security-vendors.shtml

Secondly, people seem to be generally disbelieving that their communication are being monitored and don't care to take precautions about it. E-mail encryption is arguably much easier than telephone and yet no one does it.

-- ElidedElided - 04 Nov 2009

Those are all crap. They all cost $1000-$1500+ (if you can get them to give you a price at all). None of them are interoperable with other brands; you would have to have everyone use phones from a monopoly provider. Several of them feature the weaker A3/A5 encryption that has been broken. To say nothing of the broken links, indicating defunct companies.

Reasons that I thought such a product might not come into being: Overextensive IP protection obtained by teleco monopolists. The need for regulatory approval and regulatory capture by said monopolists.

Do you have any $50-$100 handset phones that use RSA or twofish or ECC based on open source and interoperability? I don't think you do. What people do or do not believe is the province of marketing. Show me a product. This February, when Obama was elected, Glenn Beck et al. made Wal-Marts in every rectangle state in the country sell out of guns and safes, and those things are not cheap.

-- HarryLayman - 04 Nov 2009