[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Encrypted files and the 5th amendment

To: Tim <tim-security@xxxxxxxxxxxxxxxxxxx>
Subject: Re: [Full-disclosure] Encrypted files and the 5th amendment
From: "Thor (Hammer of God)" <thor@xxxxxxxxxxxxxxx>
Date: Tue, 12 Jul 2011 20:00:34 +0000

Tim, I actually use TruCrypt now to do exactly what you speak of.   I 
pre-allocate a fixed virtual disk, and use one passcode for one section of data 
and a different passcode for a different section of data.   It is impossible to 
determine if the disk is set up in this manner, and impossible to tell which 
section of data is being used.   It is actually quite easy to do.

What really concerns me is how ignorant our government is to issues of 
encryption and technology.  If I am arrested and my laptop seized, and am 
compelled to give up my "encrypted files," then those factors, as well as the 
data, become evidence.  When I give up one passphrase that decrypts a 
collection of my own artwork of nuns riding My Little Ponies leading a cart of 
newly adopted Cabbage Patch Kids, it will be disclosed as evidence in trial 
that I not only cooperated 100% with authorities, but that no incriminating 
evidence whatsoever was found in my files.  This would work in my favor, 
obviously.

Considering encryption keys to be analogous to keys to a safe containing 
documents for evidentiary purposes is, quite frankly, stupid.  Prosecutors who 
think they are doing the world a favor by establishing precedence that actually 
can be used to a criminal's advantage while reducing our constitutional rights 
should be forced to work in other industries.  Douche bags. 

t




> -----Original Message-----
> From: Tim [mailto:tim-security@xxxxxxxxxxxxxxxxxxx]
> Sent: Tuesday, July 12, 2011 10:10 AM
> To: Thor (Hammer of God)
> Cc: full-disclosure@xxxxxxxxxxxxxxxxx
> Subject: Re: [Full-disclosure] Encrypted files and the 5th amendment
> 
> Supposing that the US courts decide that people aren't protected by the 5th
> ammendment, one solution for protecting your files might be:
> 
> Encrypt everything using a one-time pad.  When compelled to provide the
> one-time pad, provide a pad that decrypts the data to something else.  Any
> resulting plaintext can be crafted.
> 
> Ok, sure, that seems pretty painful (storage/protection of pad, etc).
> I guess the only other technical solution would be steganography.
> 
> tim

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] Encrypted files and the 5th amendment
  - From: Christian Sciberras
- Re: [Full-disclosure] Encrypted files and the 5th amendment
  - From: Michael Holstein

References:
- [Full-disclosure] Encrypted files and the 5th amendment
  - From: Thor (Hammer of God)
- Re: [Full-disclosure] Encrypted files and the 5th amendment
  - From: Tim

Prev by Date: Re: [Full-disclosure] Encrypted files and the 5th amendment
Next by Date: Re: [Full-disclosure] Encrypted files and the 5th amendment
Previous by thread: Re: [Full-disclosure] Encrypted files and the 5th amendment
Next by thread: Re: [Full-disclosure] Encrypted files and the 5th amendment
Index(es):
- Date
- Thread