The FBI as an ethical hacker?

by Scott Bradner
Be the first to comment | 4I like it!
Tags: FBI, hack, spyware
More »
on this topic
Newsletter Sign Up »
April 21, 2009, 01:37 PM —  Network World — 

More details are emerging about how the FBI engages in hacking and the planting of spyware.

This story goes back to at least 2001 when Bob Sullivan of MSNBC and Ted Birdis of AP broke the story of Magic Lantern. At the time the FBI did not want to say much, but now there is real information that clears up some things and reinforces real concerns over this approach.

Law enforcement is faced with some very hard problems when it tries to find and get evidence on bad guys. There are a lot of tools that you and I can use to make the Internet safer when doing business on the 'Net or to protect our privacy if we need to blow the whistle on someone or communicate with a support group. You should be using encryption on your own computer so that your personal or business records are not compromised if your computer is stolen. You can use anonymizing proxies or anonymizing networks  if you are a dissident living in a repressive society or would like to visit a mental health support group. These are important tools when used by the good guys, but make life harder for law enforcement when used by the bad guys.

Though note that both of these technologies are far too important to give up just to make law enforcement's job easier.

Still, law enforcement needs to overcome tools of this type if they are to catch the people they are after. This is where Magic Lantern, and its less prosaically named successor, "Computer & Internet Protocol Address Verifier" (CIPAV), come in. These systems are officially sanctioned spyware, theoretically only used when permitted by the courts (in the United States at least).

Sign up for ITworld's Daily newsletter
Follow ITworld on Twitter @IT_world

I like it!
Close

On Twitter now

fbi

Powered by Twitter
Refresh results
You are logged in | Sign out
Sign in and post to Twitter

What are you thinking?

Insert this article url
Cancel Tweet sent

On Twitter now

Post a comment
The content of this field is kept private and will not be shown publicly.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd>
  • Lines and paragraphs break automatically.
peer-to-peer

Brian Proffitt
Microsoft/Novell: Breaking Down the Coupon Numbers

Esther Schindler
Drupal's Dries Buytaert on Building the Next Drupal

Tom Henderson
Top Ten General Operating Systems Rants

pasmith
PS3 motion controller delayed; goes up against Project Natal

sjvn
Neolithic Windows security hole alive and well in Windows 7

claird
Perl source code comparison makes for good reading

mikelgan
Cell phones don't create stress or interrupt much

Sandra Henry-Stocker
How to: The Unix Interview

 

Where Google Chrome security fails: the password
I heard mention that the Chrome OS will have some sort of encryption available a la bitlocker. If it's possible to encrypt personal data using another password or key, then it may have potential for very secure data.... And Ubuntu has an 'encrypt home directory' option, perhaps google should follow suit.
- Dann

Join the conversation here

The Daily Tip

The Daily TipQuick, practical advice for IT pros. Made fresh daily.

Hot tips:

Want to cash in on your IT savvy? Send your tip to tips@itworld.com. If we post it, we'll send you a $25 Amazon e-gift card.

Newsletters

Subscribe to ITWORLD TODAY and receive the latest IT news and analysis.

I would like to receive offers via email from ITworld partners.
By clicking submit you agree to the terms and conditions outlined in ITworld's privacy policy.
view all newsletters »
Marketplace