latest updates from easySERVICE™
Almost everyone’s outraged to one degree or another by the latest Edward Snowden revelations. I have my problems with some of the claims, but others are clearly disturbing. What are we to do about it?
Bruce Schneier is a famous and respected cryptographer and analyst of security more generally. He has been working with Glenn Greenwald of The Guardian and has his own advice for how people should protect themselves in light of the news. Some of this seems a bit overwrought to me, but it’s all meant to be practical advice.
His other essay yesterday was less practical. In fact, it’s anything but practical. His idea that we, by whom he means engineers, should redesign the Internet so that it is less amenable to the sorts of abusive surveillance we are seeing from the US government. And it’s the US government he calls out. I guess any features of the Internet abused by China don’t concern him as much.
In fact, it’s not just silly, it’s offensive in a way. If the weaknesses in the Internet that make widespread crime against innocent 3rd parties by freelance criminals is unworthy of a complete redesign, why is government surveillance worthy of it?
Nobody serious considered making a new, parallel and incompatible email system, even if it were to be immune from the numerous problems we have with e-mail. At least nobody spent real money on it. If you could never convince people to replace e-mail, an important protocol which everyone agrees was built with fundamental errors with which we are stuck, how could you start the whole Internet over?
Schneier’s call for rethinking Internet governance is similarly utopian. He sees himself that other governments and International bodies (the ITU in particular) are no solution, so that does that leave? Surely governments could find ways to subvert the IETF and other such bodies. If Schneier can’t think of an answer, maybe it’s because there are no benevolent overlords we can go to.
He also doesn’t consider, at least initially, the downsides to so secure a network. Sometimes it’s good, for instance, for police to be able to track down criminals. Do we really always want to impede that, even if there’s a legal process for obtaining the access?
He does make some good points. It would be good if engineers did not stay silent about government pressure to subvert the security of their products. Whistleblowing about this sort of thing seems honorable to me. More broadly, we do need to think about what to do, because the current situation is not acceptable.
But there’s no way to get around governments on this. The answer to the problem of surveillance by the US government has to be reform through US political processes. There is a constituency for this. If engineers, or even mere mortals, think something should be done about it, the ballot box is the place to do much of it.
Share your thoughts in the comments below and don’t forget to like this post.
Source: Associated Press