Putin Says All Encryption Must Be Backdoored In Two Weeks
from the make-it-snappy dept
A few weeks ago, we wrote about the push by the Russian Duma to pass a massive new surveillance bill that would mandate backdoors to encryption as well as massive data retention requirements for service providers, including saying that they need to store recordings of phone calls. As you may have heard, earlier this week, Russian President Vladimir Putin signed the bill into law. And apparently to prove that he’s serious about all of this, Putin has also signed an executive order telling the FSB (the modern version of the KGB) to make sure it gets encryption keys to unlock everything within the next two weeks.
After signing controversial anti-terrorist legislation earlier today, President Putin ordered the Federal Security Service (the FSB, the post-Soviet successor to the KGB) to produce encryption keys to decrypt all data on the Internet. According to the executive order, the FSB has two weeks to do it. Responsibility for carrying out Putin’s instructions falls on Alexander Bortnikov, the head of the FSB.
As the article notes, there’s a lot of uncertainty here, because in many cases, when things are encrypted locally or where there are private keys, there isn’t any way for service providers to turn over any keys.
What happens next is a little unclear. But it seems likely that the Russian government will use this to attack certain encrypted communications services, and potentially block and/or fine them for failing to comply with the new law. There has been a lot of talk about how Ed Snowden has been speaking out against this law, as he should. Considering that he uses a number of different encryption systems to communicate with the world, this law puts him very directly in danger. But it also puts lots of other people at risk as well. As we’ve been pointing out for a while, encryption does much more to protect everyday citizens than it does to hide the communications of “terrorists.” Undermining that puts a lot more people at risk of people hacking into their stuff than being a victim of a terrorist attack.
Filed Under: backdoors, data retention, ed snowden, encryption, fsb, mass surveillance, russia, surveillance, vladimir putin
Comments on “Putin Says All Encryption Must Be Backdoored In Two Weeks”
This will make the NSA’s job much easier…..along with the rest of the world.
Dear Congress critters,
As the old adage goes...
Nothing is impossible for the person who doesn’t have to do it.
Re: As the old adage goes...
In Soviet Russia…
Re: Re: As the old adage goes...
…encryption backdoors you!
Re: Re: Re: As the old adage goes...
The Russian people are getting “backdoored”, all right….
Re: Re: Re:2 As the old adage goes...
.. and everyone else is in Shangri-La.
Oh, so Russia decided to commit digital suicide before the US. Let’s see if the Russian tech companies will start relocating. Meanwhile let’s avoid Russian software, shall we?
Re: Re:
To be honest, if the choice is going to be between using crypto that the Russian (or Chinese, etc.) government can break and crypto the US government can break, I’d lean toward the Russian.
Re: Re: Re:
If we’re just talking about government officials… sure. But Russian officials are a notoriously corrupt lot. I don’t doubt that a number of those encryption keys will end up making their way to the black market.
Re: Re: Re: Re:
At least corruption is more visible there, no? Or do they call it lobby too?
Re: Re: Re: Re:
That’s no different than how it would be if the US had them.
Re: Re: Re:
AFAIK, backdoors are equal opportunity exploiters.
Re: Re:
LMAO DId you miss edward snowden this is already happening in the US
Oh, Russian shills...
Won’t you come out to play?
Let's also see what new forms of Steganographic crypto appear in response.
If plausible deniability encryption starts becoming public and popular in response to this then it means we in the US will be prepared when our government makes the same mistake.
In the meantime, the people of Russia are about to get way more vulnerable to hackers, state-endorsed or otherwise.
What is it about politics that give politicians such delusions?
Re: Re:
dopamine
Re: Re:
Massive amounts of power, the ability to order people to do something without actually having to know whether or not it’s even feasible to do, little to no accountability…
Re: Re:
The system we have today, in the past, and no doubt long into the future
In a related story...
Alexander Bortnikov, ex-head of the FSB, appealed to the European Union for political asylum.
Re: In a related story...
I think that Alexander Bortnikov has asked Snowden if he has a spare bedroom to rent.
Re: Re: In a related story...
Bortnikov assassinated by polonium-210 poisoning (unwittingly irradiating everyone he knows in the meantime) in 3…2…1…
Not all all unexpected
This really isn’t all that unexpected ’cause Putin has been behaving like a despot for quite a while now.
Sorry, haven’t quite read the piece yet, but….
Ahhhh-hah-hah-hah-hah-hah-haaah-ha-heh-hoo-hoo-hehh. gasp.
omfg, it hurts a little..
Well...
I think that Putin should be backdoored. Oh, wait…
once a spy, always a spy
Since Putin — a spy by trade — spent years running the world’s second largest spy agency, is it really a surprise that he might tend to view government spying as a good thing?
The NSA or CIA might not be the only ones to plant backdoors in open source encryption. A rather high proportion of the world’s crypographic experts are Russian. The RSA debacle might not be unique.
disgraceful and should be condemned but is it so different from what is wanted in the USA, in the UK and many other so-called democratic countries? no! it fucking isn’t! that’s why those who want to do it are removing democracy for good and those who dont want it are condemned as being backers of terrorism! ridiculous!
Re: Re:
if you listen to Snowden this has already happened in the USA
Re: Re:
Oh look the Russian backdoor troll squad finally showed up.
At first I didn’t think the U.S. could manage to 1984 the whole world, but with Putin’s help they might just have a shot.
mUSIC TO THAT??
Putin on the ritz??
Re: mUSIC TO THAT??
Putin the the bathtub. Tiny Bubbles.
Talk about a no-win scenario
Decrypt all data on the Internet? The whole Internet?
Might as well order them to solve global warming and world peace while he’s at it.
Re: Talk about a no-win scenario
Thank you. I was wondering the same thing. Doesn’t that mean that Russia wants access to my Gmail here in the US?
I wonder of the FSB has presented Putin with an invoice for doing this massive job? Talk about unfunded directives!
Backdoors and Payment Processing
I’m probably just ignorant on the subject but how is commerce supposed to work in a world where, effectively, all information is public to some entity? In addition, how about between two financial institutions. Seems like it would break down things in a very fundamental way in for Wall Street.
Re: Backdoors and Payment Processing
These back door schemes almost always have exceptions in the fine print for certain people. These certain people are usually the government itself and it’s favorite partners (such as the banking industry).
The solution...
Janek’s black box.
Re: The solution...
A quantum computer. We just need to make a true one.
Re: Re: The solution...
Quantum computers will be terrible for tech support.
“Have you turn it off and on again at the same time without looking at it?”
Re: Re: Re: The solution...
“Man, I don’t actually know if it’s on or off. It seems there is a cat somewhere in the room though.”
Support guy: “O great, the cat.”
Schrodinger approves it!
When everyone's super, no one is!
This was asked once during a Congressional hearing I think. If {Company} is required to give a back-door key to the US Government, what if the Russia also required the back-door key? Now both countries have it, and neither (or no) country can trust it. RIP {Company A}.
Join the club.
The new legislation also violates Russian citizens’ right to the privacy of correspondence, which is enshrined in Article 23 of the Constitution. In order to deprive Russians of this right, police need a court order. The “Yarovaya legislation,” however, grants law-enforcement agencies access to everyone’s messages without any judicial oversight. [link]
Seems like Putin and the FSB are one the came page as Obama and the FBI.
Re: Join the club.
Putin will just set up a FISA to OK the authority. Hmmm.. where would THAT idea come from?
This is obviously not an attack on encryption.
Alexander Bortnikov is simply being fired. It is obvious
that Putin’s order is impossible to carry out and I’m sure
he doesn’t care that everyone knows it.
Re: Evil Overlord Minimum Standards of Conduct.
One does not simply get fired by Putin.
When Putin fires someone, Mr. Bigglesworth gets upset.
If there is a back door it isn’t in truth encrypted. Sorry comrade Putin, but having your keys put me in the drivers seat.
Basically, this means they have two weeks to relocate their data and web services outside of Russian territories and a mass exodus of the .ru domain. What’s worse is that could just as well be the fate of the US and the .com domain. We’re just a few months from potentially electing a president that admires authoritarians such as Putin.
Re: Re:
To put this in perspective, the massive exodus of knowledge and talent from Nazi Germany to the US was a huge boost to our economy. Now, imagine that happening again, except this time it’s fleeing the US for Europe or Asia. It’s already happened in part within the physics community after we dropped our super collider project. When the LHC was announced, many of them grabbed passports and left for Europe.
Hey hackers Russia is about to become a target rich environment. Rubles for all.
If it wasn’t for “terrorism”, it would be for: copyright, children, bad guys etc.
Putin is making the old Soviet Union look like a democracy.
Re: Putin IS Soviet Union.
He’s ex-KGB, and that’s a mob that no-one quits ever.
It would be as if an SS Officer were running Germany.
1984
You know, Orwell was trying to write a good, riveting story. He was NOT trying to predict the future. That seems to be something those in power fail to grasp.
Re: Cautionary fiction
It’s a pretty commonplace story type: Miserable citizens of a thoroughly oppressive dystopia get a taste of love and inner meaning and attempt to reconcile this with the society around them. Sometimes they escape the society, sometimes it tears them apart.
These days, young adult fiction is full of the stuff.
Re: Re: Cautionary fiction
These days, young adult fiction is full of the stuff.
That’s because just about all the politicians try to ruin their respective countries by turning them into thoroughly oppressive dystopias.
They should decrypt just major emails, not just any.
The age of fucking stupid fucking surveillance
FFFFFUCK!
Pardon my frensh
Do you think Putin (given the rumors flying around the Kremlin) couldn’t help but lick his lips and moan slightly when someone said “Internet Backdooring”?
Will the FSB keep all the keys in an encrypted server waiting to be plucked?
Had a boss who used to make demands like that,
Of course everybody knew he was coked out of his mind when he’d make them. My guess is he is probably VP by now.
I almost want to put the “you call will be recorded” message before any outbound calls to Russia now, but it would probably generate too many support tickets.
Interesting how the virtual walls appear the same as physical borders are reinforced. The world is closing itself off from each other, and I have trouble staying optimistic about it :/
Excellent, excellent news.
Sensationalist bullcrap
I dont understand what the whole fuss is all about. In many countries around the world the policy is that all telcos maintain data for a given amount of time, and metadata also. And its also known that any company that uses enryption for data comunication must provide keys to government if requested, and they do, which is actually what the article says. There have been many cases where VPN providers, for example, gave keys to data and access to logs when request was made by local law enforcement agencies. VPN providers, for example, have the right to refuse foreign agencies. All this is some sensationalist bull – keys to the internet…ROFL!
P.S. in Australia this already been done, wake up, no one caress.