1 year ago   •   27 notes   •   VIA: ghostbongweedofthesamurai   •   SOURCE: ghostbongweedofthesamurai
  • Microsoft Rebuilds Skype Infrastructure for Wiretapping

    ghostbongweedofthesamurai:

    The Panopticon is a type of institutional building designed by English philosopher and social theorist Jeremy Bentham in the late eighteenth century. The concept of the design is to allow a watchman to observe (-opticon) all (pan-) inmates of an institution without their being able to tell whether or not they are being watched.

    Even before it was acquired by Microsoft, Skype was never really seen a particularly secure method of activist communication. Given its popularity, Skype has been a particularly attractive target for government and corporate surveillance, and there are plenty of stories (especially recently, with the Syrian revolution in full swing) of activists being tricked into downloading and installing trojan-laden versions of the program and setting themselves up to have their communications monitored. In the US this is generally done under the “lawful intercept” provision of the PATRIOT act. On paper this sort of thing is supposed to be done in specific circumstances involving international communications and “foreign agents”, but guess what.

    All this is why it was particularly concerning when Microsoft announced that it was buying Skype for a vast sum last year, shortly after the FBI began agitating for easier wiretap access to popular communications platforms. Microsoft’s record in terms of allowing backdoor access had been pretty suspect for a long time, but given Skype’s semi-decentralized architecture nobody was particularly sure how or when a system like the one the FBI was requesting might be put into place.

    Normally, Skype used a peer-to-peer type of communication, via a decentralized series of peer servers called “supernodes”. Supernodes functioned in a superficially similar way to DNS servers, in that they provided the initial “introduction” between clients that allows them to connect directly to one another and bypass any central servers. This was a good thing, since it’s harder to perform surveillance on a direct connection between two computers than it is to just sit your monitoring program on a central server and suck up data as it passes through.

    Then, at just about the same time as the “FBI wants easier wiretapping access” stories started to break, Skype replaced the supernode system with centralized servers. Now the peer traffic gets routed through a set of machines owned and maintained solely by Microsoft, which greatly simplifies the process needed to wiretap communications. Microsoft/Skype have denied that the system is intended to be used this way, but given recent developments in the realm of government surveillance it seems difficult to believe that the system wouldn’t be used in this way. Encryption, normally mandatory on Skype communications, isn’t a whole lot of help here since the keys are owned by Microsoft and thus easily provided to third parties.

    Yesterday, news came out that Skype had had its source code leaked, though it has not at the time of writing been put to any sort of real use. It’s possible that a modified system could be put into place to bypass the central servers, but this remains to be seen. Meanwhile, the surveillance state marches on largely unopposed.

    Basically, Microsoft purchased Skype and completely rebuilt its network architecture in order to make wiretapping literally effortless.  This is bad.

    1. mikhail-suslov reblogged this from ghostbongweedofthesamurai
    2. fainthum reblogged this from 3liza
    3. freeopensociety reblogged this from winneganfake
    4. safria reblogged this from killveous and added:
      I bet they’ll get off to those sexy rps and be like “OH KILLVE please write more sex rps *swoon*”
    5. killveous reblogged this from safria and added:
      Oh no. The governments pplz are going to be a reading my filthy sex rps. I am scared.
    6. anddesecration reblogged this from 3liza
    7. karlexceed reblogged this from 3liza
    8. sarkos reblogged this from 3liza
    9. oceanplait reblogged this from winneganfake and added:
      It is important, but it’s not at all surprising. We already live in a country where pay phone calls are routinely...
    10. oldmanyellsatcloud reblogged this from 3liza and added:
      I’m sorry, but I don’t buy that as its reason for the change, and intelligence agencies wanting more freedom for...
    11. rubberleviathan reblogged this from 3liza
    12. winneganfake reblogged this from teratocybernetics
    13. faizebeleth reblogged this from 3liza
    14. readinglist32 reblogged this from 3liza
    15. teratocybernetics reblogged this from 3liza and added:
      I think i saw and reblogged something about this like two months ago. Reblogging again because this shit is important.
    16. 3liza reblogged this from ghostbongweedofthesamurai and added:
      Basically, Microsoft purchased Skype and completely rebuilt its network architecture in order to make wiretapping...
    17. cory-doctorow-deactivated3103201 replied:
    18. ghostbongweedofthesamurai posted this