Welcome to DU! The truly grassroots left-of-center political community where regular people, not algorithms, drive the discussions and set the standards. Join the community: Create a free account Support DU (and get rid of ads!): Become a Star Member Latest Breaking News Editorials & Other Articles General Discussion The DU Lounge All Forums Issue Forums Culture Forums Alliance Forums Region Forums Support Forums Help & Search
 

Segami

(14,923 posts)
Wed Nov 6, 2013, 04:38 PM Nov 2013

Meet The “DARK MAIL ALLIANCE” Planning to Keep the NSA Out of Your Inbox



"..Email might be on the verge of a radical makeover. And the NSA is not going to like it..."






On Wednesday, two American companies with a track record of offering encrypted private communications are set to join forces in an unprecedented bid to counter dragnet Internet spying. Some of the world’s top cryptographers are behind the secure communications provider Silent Circle, and they’ve teamed up with the founder of Lavabit, the email provider used by Edward Snowden, which recently shut down in a bid to resist surveillance. They’re calling it the “Dark Mail Alliance.” For months, the team has been quietly working on rebuilding email as we know it—and they claim to have had a breakthrough.



The newly developed technology has been designed to look just like ordinary email, with an interface that includes all the usual folders—inbox, sent mail, and drafts. But where it differs is that it will automatically deploy peer-to-peer encryption, so that users of the Dark Mail technology will be able to communicate securely. The encryption, based on a Silent Circle instant messaging protocol called SCIMP, will apply to both content and metadata of the message and attachments. And the secret keys generated to encrypt the communications will be ephemeral, meaning they are deleted after each exchange of messages.



For the NSA and similar surveillance agencies across the world, it will sound like a nightmare. The technology will thwart attempts to sift emails directly from Internet cables as part of so-called “upstream” collection programs and limit the ability to collect messages directly from Internet companies through court orders. Covertly monitoring encrypted Dark Mail emails would likely have to be done by deploying Trojan spyware on a targeted individual's computer. If every email provider in the world adopted this technology for all their users, it would render dragnet interception of email messages and email metadata virtually impossible.



Existing forms of email encryption, like PGP, can be used to encrypt the content of an email. But PGP cannot encrypt the “subject” header or metadata like the “to” and “from” fields, and the average user can find it too complicated to use. Dark Mail promises to address both of these issues in the form of an easy-to-use iOS app and an Android app. There will also be desktop versions for Mac and Windows users. People using the technology will still be able to send emails to friends or colleagues using Gmail and Hotmail—but when sending messages to non-Dark Mail users, a warning will be displayed, making it clear that the communication could be intercepted. Silent Circle and Lavabit don’t plan to offer the technology exclusively. On the contrary, the source code of the software will be made public for anyone to scrutinize and audit, and the team is hoping that other email providers will be willing to join the Dark Mail Alliance. The more companies that do, the more secure email will become.



“Our vision is three or four years from now that this will become email 3.0—the way the majority of Internet users email,” says Mike Janke, Silent Circle’s CEO. The 45-year-old, a former Navy SEAL sniper, acknowledges that the launch of the service is going to be “politically hot.” Major companies like Google and Microsoft may be unwilling to adopt it because of how controversial it could be, with governments potentially furious that the technology could thwart their attempts to monitor communications and track criminals. But surveillance has become “completely out of hand,” Janke says, and he believes it’s time to readdress the balance between security and privacy.



cont'


http://www.slate.com/blogs/future_tense/2013/10/30/dark_mail_alliance_lavabit_silent_circle_team_up_to_create_surveillance.html
5 replies = new reply since forum marked as read
Highlight: NoneDon't highlight anything 5 newestHighlight 5 most recent replies
Meet The “DARK MAIL ALLIANCE” Planning to Keep the NSA Out of Your Inbox (Original Post) Segami Nov 2013 OP
As always, I feel the need to point out... randome Nov 2013 #1
But that population is probably around 3% - and with the Big Crime folks in bed with truedelphi Nov 2013 #3
I hope they're successful. I'll use it when it becomes available. LuvNewcastle Nov 2013 #2
Sounds like an extremely efficient way to distribute malware KamaAina Nov 2013 #4
If it gets rid of spam I'm all for it. n/t Bonhomme Richard Nov 2013 #5
 

randome

(34,845 posts)
1. As always, I feel the need to point out...
Wed Nov 6, 2013, 04:46 PM
Nov 2013

...that absolutely secure communications will also be used by organized crime, pedophile societies, money launderers, etc.

To claim that governments will be furious sounds like hyperbole designed to sell the service. There are legitimate needs for law enforcement to break encryption when they have legal mechanisms in place to allow it.
[hr][font color="blue"][center]Treat your body like a machine. Your mind like a castle.[/center][/font][hr]

truedelphi

(32,324 posts)
3. But that population is probably around 3% - and with the Big Crime folks in bed with
Wed Nov 6, 2013, 05:17 PM
Nov 2013

Local law enforcement, and may politicians, etc, I don't see why we need to worry about who else might find this of use.

Mafiosa, pedophiles, and other nasty people use seat belts. Does that mean I shouldn't?

Latest Discussions»General Discussion»Meet The “DARK MAIL ALLIA...