Encryption protocols compromised by NSA and GCHQ, according to leaked Edward Snowden documents
The latest revelation shows "an aggressive, multi-pronged effort to break widely used internet encryption"
Friday 06 September 2013
Intelligence agencies from Britain and the US have cracked many of the encryption protocols used to secure communications on the internet, according to documents leaked by the NSA whistleblower Edward Snowden.
The fresh information reveals that the US National Security Agency has worked in collaboration with the the UK's GCHQ to compromise online privacy.
"For the past decade, NSA has lead [sic] an aggressive, multi-pronged effort to break widely used internet encryption technologies,” reads a GCHQ document from 2010. "Vast amounts of encrypted internet data which have up till now been discarded are now exploitable."
Various methods have been pursued in order to break or circumvent the security protecting the personal data of billions of people.
These include breaking encryption with “brute force” attacks conducted by super computers; using court-orders to force companies into handing over master keys to their software, and one program that “actively engages US and foreign IT industries to covertly influence and/or overtly leverage their commercial products' designs”.
This latter scheme, named the Sigint Enabling Project, costs the NSA $254.9m a year according to a 2013 budget document provided by Snowden. Sigint stands for "signal intelligence". An internal memo from the agency records the reaction from British analysts: “Those not already briefed were gobsmacked!”
“These frightening revelations imply that the NSA has not only pursued an aggressive program of obtaining private encryption keys for commercial products […] but that the agency has also attempted to put backdoors into cryptographic standards designed to secure users' communications,” said the Electronic Frontier Foundation in response.
“Additionally, the leaked documents make clear that companies have been complicit in allowing this unprecedented spying to take place, though the identities of cooperating companies remain unknown.”
In response to the leaked documents - which were handed from Mr Snowden to The Guardian, The New York Times and the non-profit news site Pro Publica - Google have claimed that no such "active engagement" has taken place.
"We have no evidence of any such thing ever occurring,” said the company in a statement. “We do not provide any government, including the US government, with access to our systems […] We provide user data to governments only in accordance with the law.”
The NSA described their various decryption programs as "price of admission for the US to maintain unrestricted access to and use of cyberspace”, but security experts believe that their actions are an attack against the most basic structure of the internet.
“Cryptography forms the basis for trust online," Bruce Schneier, a fellow at Harvard's Berkman Center for Internet and Societ, told The Guardian. "By deliberately undermining online security in a short-sighted effort to eavesdrop, the NSA is undermining the very fabric of the internet."
- 1 Green village to be bulldozed and mined for lignite in Germany's quest for non-nuclear fuel
- 4 Teenagers irritable because early school hours mess with their biological clocks
- 5 Now we know whose fault it is if you end up being murdered in Thailand
Isis could become 'world’s first truly terrorist state' and bomb UK with nuclear and chemical weapons, Theresa May warns
Car tax disc changes: Five facts you never knew about your (almost obsolete) tax disc
Five-year-old Iris Grace is raising awareness of autism through her extraordinary paintings
Isis an hour away from Baghdad - with no sign of Iraq army being able to make a successful counter-attack
The Aral Sea: Nasa pictures show how what was once the fourth largest lake in the world has become almost completely dry
Isis, we are told, is a 'clear and dangerous threat to our way of life'. I’m sorry, but I just don’t buy it
Exclusive: 'Putin's Russia has been my biggest regret,' says Nato's outgoing Secretary General
The Osborne Ultimatum: Chancellor’s benefits freeze bombshell will affect ten million households
There’s no excuse for Dave Lee Travis’s behaviour, but we need to keep a sense of proportion
Should gay sex be illegal? 16% of Britons think so
Mark Reckless becomes second Tory MP to defect to Ukip in a month
- < Previous
- Next >
£100 - £110 per day + Plus travel scheme: Randstad Education Cardiff: The Job:...
£40000 - £50000 Per Annum Excellent benefits: Clearwater People Solutions Ltd:...
£100 - £105 per day + plus Travel Scheme: Randstad Education Cardiff: The Job:...
£100 - £125 per day: Randstad Education Chelmsford: Would you like to work in ...