400 likes | 526 Views
Digital source- protection. Fredrik Laurin fl@trojkan.se . The problem?. Everything is digital Contacts per mobil/sms (Knutby) Telephone logs at work (Who owns the telephone account?) E-mail(Who owns the account/server?)
E N D
Digital source-protection Fredrik Laurin fl@trojkan.se
The problem? • Everything is digital • Contacts per mobil/sms (Knutby) • Telephone logs at work (Who owns the telephone account?) • E-mail(Who owns the account/server?) • Manuscripts written in editorial systems (Who owns the server? Bonniers? Who is support?) • Coffe with the source paid with a credit card. • To act analogue has become a rarity
The problem? • The state is not good. • Source-protection is no good in the digital world. • All traffic data is logged according to national laws/EU directive /billing. • Eavesdropping is leaglized. • The Security police is free to bug, film and surveill like never before.
The treaths are real! • Swedish tenants association,HSB, hired private eye to break into reporters office. • Private drug clinic Baggershus ”tricked” Swedish Radios:s webbserver to reveal what was to be aired.
The treaths are real! • Source got fired after calling the journalist private (listed) mobile.
The treaths are real! • Swedish correspondent Nils Horner got his creditcard-bills and telephone records asked for in court by his landlord in a rent-dispute.
The treaths are real! • GCHQ/MI5 cooperated with Swedish police on suspected militant muslims in Sweden. • Agiza/El Zary – not known to the Swedish police – until the US called. • CIA/GCHQ/Swedish FRA– they all have ”Usama Kassir” and ”Mehdi Gehzali” in their search patterns. • Should we be telling them what their families have told us?
The case of Ilze Nagle, ” DeFacto” TV3 Latvia • Secret source – ”Neo” • Taxrecords of high officials • House search, computers, USB sticks etc. • Ilmārs Poikāns was arrested.
The route a mail-tip used to take reach SVT:s ”Updrag granskning” – the investigative show
The treaths are real! • The mugger on the subway! • TV4-boss lost her laptop on the subway. • A prosecutor took another one with a search warrant… • Who else has it happend to?
The treaths are real! • Estonia • Dalai Lama • ”Styxx” – Iranian Siemens equipment
Who owns the problem? • The media bosses? • Bonniers? • The prosecutors?
Who owns the problem? • Source protection is the responsibility of the JOURNALIST - not the publisher.
Journalists must : • Be able to email anonymously. • Know how to surf without traces. • Be able to encrypt • Sound, video, research
PGP - Pretty Good Privacy • Philip Zimmerman – didnt like to throw stones – created PGP instead. • Was almost put away for it • The rest of the world was about to follow US advice on encryption-bans • One Public and one secret key • Solves an ancient dilemma. • Internet standard = many programs and many users
PGP is uniqe • Open source= can be controlled
PGP can… • Encrypt ONE message • Encrypt ONE file on your harddisk. • Encrypt A virtual harddisk • Encrypt THE WHOLE harddisk.
PGP • Shareware/Freeware - Free for private users. • GNU PGP www.gnupg.org • Commercial – US $ 100 • PGP Corporation – www.pgp.com = support/harddisk encryption
Now… • Create your own key • Back up the key • Send it to your friends • Encrypt a message and send it • Encrypt a file and send it – or just save it on your computer
To exchange keys Go to:www.gmail.com Id:pgpcourse@gmail.com Pw:securepassphrase DONT SEND MAIL, ONLY SAVE IN DRAFT!
Anonymous telephone and email • Get an anonymous gmail-account • Humlan7345@gmail.com is free • You dont even need to email – just save as draft. • Buy a used mobile – and a cash SIM card. • With cash… • Keep it OFF in your drawer.
Is it safe? • No crypto is safe • But it makes it harder • You keep the initiative • Computer hygiene is the biggest threath • PassPHRASE instead of password. • Dont loose the key • Stop pornsurfing and update your virusprogram.
LINKS • www.gnupg.org • PGP FREEWARE for Mac and XP - plus massor med kunskap • www.pgp.com • PGP desktop - free in basic mode. • Full version ca US $ 100 • NGO in a box – free security package • http://security.ngoinabox.org/ • 4t HIT Mail Privacy program hides text in a picture: www.4t-niagara.com • Safe passwords: • http://en.wikipedia.org/wiki/Password#Designing_a_personal.2C_user-friendly_password • http://wolfram.org/writing/howto/password.html
Handouts • PM Datakunskap för journalister.doc • PM Researchteknik.doc • Programvara • www.trojkan.se/temp - Journalism handouts