John Hemming's Web Log John's Reference Website
Friday, June 22, 2012
  Communications and Data Bill (Snoopers Charter) why it cannot work
I have read the Snoopers Charter. It tends to concentrate on the administrative processes rather than the key question as to what records can in practise be kept.

Web browsers work in two main ways. These can be distinguished in the URL. Eg http://www.theyworkforyou.com is insecure. https://www.twitter.com is secure.

If, for example, you try to use twitter in an insecure manner it automatically switches to a secure link.

The data that passes between two insecure web links can be tracked by anyone who has access to any of the networks that the data passes on. There are programs such as packet sniffers that are created to do this. Obviously the Internet Service Provider (ISP) can do this. However, data that transfers in a secure manner cannot be tracked. The secure system is called SSL Secure Sockets Layer.

The way it works is that a system called asymmetric key encryption is used to exchange a session encryption key between client and server. The server first passes out what is called a certificate with details of a number that can be used to encrypt a message. The client then encrypts the session key using that number. The system is asymmetric in that a different number is used to decode the session key than is used to encode the session key. Hence it is possible to encode the session key in such a way as only the server (and no-one in the middle of the conversation) can decode it.

This is normally done with the Rivest Shamir Adleman (RSA) algorithm which is based upon the mathematical rule that factoring the product of two very large prime numbers takes a very very long time.

Maths bit:
This is that if n=pq (p and q being both prime numbers) and m=(p-1)(q-1) and E a number selected to be coprime with m (ie it has no common factors) and D is another number selected so that DE mod n=1 then if your session key is x
y=x ** E mod n (** to the power of)
and the magic is that x=y ** D mod n
So E (plus n) is your public key and D (plus n) the private key. The client encrypts the session key with the public key and the server uses the private key to decrypt it. To get the private key from the public key you need to factor n.

If you pick long enough session keys and long enough prime numbers it is not practical to break the encryption. (it takes too many centuries of processing).

Hence if you are using SSL all that can be tracked by a "man in the middle" is which IP address is being used for the server. It is not possible to know which web pages on that server are being looked at or even the domain of the server.

The IP addresses are the numbers of each computer. You can find your public IP address here.

The same can be done for email. Furthermore it is possible to use onion routing to conceal what the destination IP address is. Hence no useful information can be obtained by people getting access to the communications between client and server.

Hence unless the state bans the use of encryption (which is used for credit card transations) then ISPs are unable to pick up any useful information about what people are doing on the net.

Obviously the state could require everyone to have a chip implanted in their skull to record all communications, but I don't think that would enthuse people.

The above, however, is why the snooping bill won't acheive anything.

 
Comments:
Has the Government actually found someone they were looking for, we are all drones these days and chips in skulls would be an easy out, it does not protect national security snooping on folks the way they intend, minorities controlling the masses, I would gladly allow Gov.PLC to snoop on my emails, they would have a sharp wake up call, well that's when the ruddy thing works right
 
not true...i use the SSL firefox addon, auto encrypts all viewing supposedly....back doors built into the system or they wdn't be allowed to operate.

and you have been spying on my emails for years, never mind cameras in the house/ prison in which i try to survive (and other devices most likely, RIPA 2001- not just Mafia5 doing it these days! even the dutbin man can and any other private employee as authroised- as JSA seekers also pay NINO they're considered employees of the state...that means anyone can do it! unless oyu do it to them, defned themselves then Victor says YOU are the bad guy)
....the odd fifth columnist does let me know now and then!

pretty sure John knows this as he is an MP + has worked in the field...onion routing eh...? tempted to look that one up but what's the point if you're advocating it?
 
https://www.pirateparty.org.uk/forum/viewtopic.php?f=11&t=4266
 
Post a Comment

<< Home

Click Here for access to higher resolution versions of the photos The license for use allows use of the photos by media as long as they are attributed.

better brent chart

ARCHIVES
12/01/2003 - 01/01/2004 / 07/01/2004 - 08/01/2004 / 12/01/2004 - 01/01/2005 / 01/01/2005 - 02/01/2005 / 02/01/2005 - 03/01/2005 / 03/01/2005 - 04/01/2005 / 04/01/2005 - 05/01/2005 / 05/01/2005 - 06/01/2005 / 06/01/2005 - 07/01/2005 / 07/01/2005 - 08/01/2005 / 08/01/2005 - 09/01/2005 / 09/01/2005 - 10/01/2005 / 10/01/2005 - 11/01/2005 / 11/01/2005 - 12/01/2005 / 12/01/2005 - 01/01/2006 / 01/01/2006 - 02/01/2006 / 02/01/2006 - 03/01/2006 / 03/01/2006 - 04/01/2006 / 04/01/2006 - 05/01/2006 / 05/01/2006 - 06/01/2006 / 06/01/2006 - 07/01/2006 / 07/01/2006 - 08/01/2006 / 08/01/2006 - 09/01/2006 / 09/01/2006 - 10/01/2006 / 10/01/2006 - 11/01/2006 / 11/01/2006 - 12/01/2006 / 12/01/2006 - 01/01/2007 / 01/01/2007 - 02/01/2007 / 02/01/2007 - 03/01/2007 / 03/01/2007 - 04/01/2007 / 04/01/2007 - 05/01/2007 / 05/01/2007 - 06/01/2007 / 06/01/2007 - 07/01/2007 / 07/01/2007 - 08/01/2007 / 08/01/2007 - 09/01/2007 / 09/01/2007 - 10/01/2007 / 10/01/2007 - 11/01/2007 / 11/01/2007 - 12/01/2007 / 12/01/2007 - 01/01/2008 / 01/01/2008 - 02/01/2008 / 02/01/2008 - 03/01/2008 / 03/01/2008 - 04/01/2008 / 04/01/2008 - 05/01/2008 / 05/01/2008 - 06/01/2008 / 06/01/2008 - 07/01/2008 / 07/01/2008 - 08/01/2008 / 08/01/2008 - 09/01/2008 / 09/01/2008 - 10/01/2008 / 10/01/2008 - 11/01/2008 / 11/01/2008 - 12/01/2008 / 12/01/2008 - 01/01/2009 / 01/01/2009 - 02/01/2009 / 02/01/2009 - 03/01/2009 / 03/01/2009 - 04/01/2009 / 04/01/2009 - 05/01/2009 / 05/01/2009 - 06/01/2009 / 06/01/2009 - 07/01/2009 / 07/01/2009 - 08/01/2009 / 08/01/2009 - 09/01/2009 / 09/01/2009 - 10/01/2009 / 10/01/2009 - 11/01/2009 / 11/01/2009 - 12/01/2009 / 12/01/2009 - 01/01/2010 / 01/01/2010 - 02/01/2010 / 02/01/2010 - 03/01/2010 / 03/01/2010 - 04/01/2010 / 04/01/2010 - 05/01/2010 / 05/01/2010 - 06/01/2010 / 06/01/2010 - 07/01/2010 / 07/01/2010 - 08/01/2010 / 08/01/2010 - 09/01/2010 / 09/01/2010 - 10/01/2010 / 10/01/2010 - 11/01/2010 / 11/01/2010 - 12/01/2010 / 12/01/2010 - 01/01/2011 / 01/01/2011 - 02/01/2011 / 02/01/2011 - 03/01/2011 / 03/01/2011 - 04/01/2011 / 04/01/2011 - 05/01/2011 / 05/01/2011 - 06/01/2011 / 06/01/2011 - 07/01/2011 / 07/01/2011 - 08/01/2011 / 08/01/2011 - 09/01/2011 / 09/01/2011 - 10/01/2011 / 10/01/2011 - 11/01/2011 / 11/01/2011 - 12/01/2011 / 12/01/2011 - 01/01/2012 / 01/01/2012 - 02/01/2012 / 02/01/2012 - 03/01/2012 / 03/01/2012 - 04/01/2012 / 04/01/2012 - 05/01/2012 / 05/01/2012 - 06/01/2012 / 06/01/2012 - 07/01/2012 / 07/01/2012 - 08/01/2012 / 08/01/2012 - 09/01/2012 / 09/01/2012 - 10/01/2012 / 10/01/2012 - 11/01/2012 / 11/01/2012 - 12/01/2012 / 12/01/2012 - 01/01/2013 / 01/01/2013 - 02/01/2013 / 02/01/2013 - 03/01/2013 / 03/01/2013 - 04/01/2013 / 04/01/2013 - 05/01/2013 / 05/01/2013 - 06/01/2013 / 06/01/2013 - 07/01/2013 / 07/01/2013 - 08/01/2013 / 08/01/2013 - 09/01/2013 / 09/01/2013 - 10/01/2013 / 10/01/2013 - 11/01/2013 / 11/01/2013 - 12/01/2013 / 12/01/2013 - 01/01/2014 / 01/01/2014 - 02/01/2014 / 02/01/2014 - 03/01/2014 / 03/01/2014 - 04/01/2014 / 04/01/2014 - 05/01/2014 / 05/01/2014 - 06/01/2014 / 06/01/2014 - 07/01/2014 / 07/01/2014 - 08/01/2014 / 08/01/2014 - 09/01/2014 / 09/01/2014 - 10/01/2014 /


Powered by Blogger

Published, promoted, and printed (well not really printed I suppose, more like typed) by John Hemming, 1772 Coventry Road, Birmingham B26 1PB. Hosted by blogspot.com part of Google.com 1600 Amphitheatre Parkway Mountain View, CA 94043, United States of America. This blog is posted by John Hemming in his personal capacity as an individual.

Site Feed

If you want me to respond to any comment please either comment only on the past few entries or put something in your comment to make it clear what you are commenting on (the URL would help). Otherwise I will not be able to find the comment quickly and will not respond.

Links
Links (c) Peter Black (mainly Lib Dem)
Site
Meter eXTReMe Tracker