<div dir="ltr">I think it's worth making the NSA and others earn their corn. Whilst it's entirely possible that they've bastardised the entire Internet, cryptographic systems and the laws of physics as we know them, I don't think the data acquisition process should be as "simple" as an API call to Facebook/Gmail/etc.<div>
<br></div><div><div>Encrypt all the things, even if it only means "they" have to work a little harder.</div></div><div><br></div><div>Good luck with your project, Steve.</div>
</div><div class="gmail_extra"><br><br><div class="gmail_quote">On 15 September 2013 22:59, Steve <span dir="ltr"><<a href="mailto:steve@44con.com" target="_blank">steve@44con.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Hi all,<br>
<br>
So to make a change from the usual Dave/Immunity posting kicking things off, and after hearing about how much Ben Nagy loves Malaysia the other day (at least so Thomas told me in the pub) I thought I'd ask what the list thinks about all the latest NSA/FiveEyes bullshit.<br>
<br>
I started looking at developing a messaging framework that might yield some resilience (like no doubt tens of thousands would've done the same) and talked about it on the hidden track at 44CON[1] this year. In the interests of disclosure I set up the hidden track and opened because I expected 2 or 3 people there (as we weren't telling people where it was). I've submitted a talk to 30c3 about how the problem isn't really the people that are nominally accountable to us, that it's the ones that realise the capability exists, and what we need to do about it.<br>
<br>
I've also built an anonymous encrypted mailing list framework that's serverless, does funky things to stay anonymous-ish and may be worth a look for some on this list, to be released at 30c3 (if I'm accepted, I have no Charlie Miller-style expectations that my stuff will be good enough nor that I would be a big enough rock star to qualify). Anyhoo, if you'd like to try out CoUNT, then send your public key to <a href="mailto:lisa.groening@gmx.com" target="_blank">lisa.groening@gmx.com</a> and I'll add you to a test list.<span class="HOEnZb"><font color="#888888"><br>
<br>
-- <br>
Co-Founder, 44Con<br>
Twitter: @stevelord<br>
______________________________<u></u>_________________<br>
Dailydave mailing list<br>
<a href="mailto:Dailydave@lists.immunityinc.com" target="_blank">Dailydave@lists.immunityinc.<u></u>com</a><br>
<a href="https://lists.immunityinc.com/mailman/listinfo/dailydave" target="_blank">https://lists.immunityinc.com/<u></u>mailman/listinfo/dailydave</a><br>
</font></span></blockquote></div><br></div>