Retour aux nouvelles

4 septembre 2018 | International, C4ISR

Five Eyes Intel Alliance Urges Big Tech to Help Break Encrypted Messages

By Joseph Marks

The U.S. and four major allies warn new legislation might be necessary to ensure law enforcement can access communications.

Homeland Security Secretary Kirstjen Nielsen joined leaders of the U.S.'s four major intelligence sharing partners Thursday in a statement urging tech companies to help law enforcement access otherwise-encrypted communications from criminals and terrorists.

The joint statement stopped short of urging new laws to mandate that cooperation but warned that “should governments continue to encounter impediments to lawful access to information necessary to aid the protection of the citizens of our countries, we may pursue technological, enforcement, legislative or other measures to achieve lawful access solutions.”

The statement from the U.S., Canada, the United Kingdom, Australia and New Zealand, collectively known as the Five Eyes, describes law enforcement's inability to access encrypted communications as “a pressing international concern that requires urgent, sustained attention.”

While “governments should recognize that the nature of encryption is such that there will be situations where access to information is not possible,” the statement notes, “such situations should be rare.”

Obama and Trump administration officials have warned since 2014 that end-to-end encryption systems, which shield the content of communications even from the communications provider, are allowing criminals and terrorists to plan operations outside law enforcement's reach.

Legislative proposals that would make it easier for police to access those communications have failed to gain traction, however, even after a 2015 showdown between the FBI and Apple over an encrypted iPhone used by San Bernardino shooter Syed Farook.

An inspector general's investigation in March found the FBI rushed to court in that case, seeking to compel Apple's assistance without exploring other options for cracking into the phone.

Thursday's statement notes that: “Providers of information and communications technology and services ... are subject to the law, which can include requirements to assist authorities to lawfully access data, including the content of communications.”

The statement does not go into detail, however, about what laws would justify those requirements and how they should be interpreted. The San Bernardino case was never decided in court because an unknown third party sold the FBI a method for breaking through the phone's passcode and accessing its encrypted contents.

U.S. tech companies, for the most part, have resisted calls to cooperate with law enforcement. They argue that any effort to weaken encryption would be found and exploited by criminal hackers or foreign spies.

Technologists, civil libertarians and many members of Congress have urged police to use other methods to break through encrypted communications without forcing companies to help or installing government backdoors into encryption systems.

Those methods include obtaining a warrant to hack into the communications and building a case using unencrypted metadata.

During the summit, Nielsen and other Five Eyes officials also agreed to strengthen cooperation between their nations' cyber centers and to cooperate on improving the cybersecurity of supply chains for critical infrastructure such as energy plants and airports.

https://www.nextgov.com/cybersecurity/2018/08/five-eyes-intel-alliance-urges-big-tech-help-break-encrypted-messages/150961/

Sur le même sujet

  • German Defence Ministry punts key US defense-cooperation projects to the next government

    8 février 2021 | International, Aérospatial, Naval, Terrestre, C4ISR, Sécurité

    German Defence Ministry punts key US defense-cooperation projects to the next government

    By: Sebastian Sprenger COLOGNE, Germany — The German Defence Ministry will leave planned air defense investments and other high-profile programs involving U.S. vendors unresolved in the final months of the Merkel government, officials have told lawmakers. A Feb. 3 list of “important” but unfunded programs, as officials wrote, includes several trans-Atlantic defense efforts that have been simmering for some time. As a result, American contractor behemoths Lockheed Martin and Boeing are left to wait until a new government re-litigates Germany's defense acquisition posture sometime after the Sept. 26 election. Lockheed Martin, along with MBDA Deutschland, has been gunning for a contract on the TLVS missile defense program following more than a year of negotiations and several years of German-American co-development. The program's prospects turned dimmer last fall, as new requirements drove up costs. Unsurprisingly, TLVS now officially appears on the to-do list for the next chancellor. Notably, a project aimed at defending against short-range aerial threats, like drones or mortar fire, is also lacking a budget, defense officials wrote to lawmakers. Defence Minister Annegret Kramp-Karrenbauer late last year reframed Germany's air defense requirements as needing greater focus on drone threats, as evidenced by the Nagorno-Karabakh conflict. She said a wholesale evaluation of the entire weapons portfolio would determine the way ahead, including what systems the Bundeswehr needs to counter threats of different sizes from various distances. Whatever happened with the review, it appears it did not spur an appetite to start something new soon. That leaves Germany's fleet of Patriot systems, along with a limited order of counter-drone systems made by Kongsberg and Hensoldt aimed at fulfilling Germany's commitment to NATO for 2023, as the baseline equipment for the time being. Lockheed also must wait for what happens next in the Bundeswehr's heavy transport helicopter program, which is meant to replace the fleet of CH-53G models. The Defence Ministry effectively halted the acquisition process last fall after Lockheed and Boeing went over budget with their custom offers of the CH-53K King Stallion and the CH-47 Chinook, respectively. German defense officials recently requested information from the U.S. Defense Security Cooperation Agency about buying more standard, and presumably cheaper, versions of the desired aircraft instead. In response, Lockheed launched a formal protest, which is now on the docket of the Federal Cartel Office, as newspaper Die Welt first reported. Company officials said they want to get a ruling of whether Berlin walking away from the purchase altogether was in line with fair-competition rules. German acquisition laws make it difficult for companies to protest when the government chooses not to award any contract at the end of a competition, said Christian Scherer, a public procurement expert with the law firm CMS Germany in Cologne. “Generally speaking, you can't force the government to buy anything,” he said. “But bidders might have compensation claims.” Judging offers as economically unfeasible, for example, could qualify as a valid reason for the government to withdraw, Scherer told Defense News. At the same time, there is a legal path if companies suspect abusive implementation of the rules, especially if the government's requirements remain the same, he added. Those rules exist to protect offerers against favoritism and other forms of manipulation. “You can't go ahead and compete the same thing with the intention to award the contract to your preferred bidder.” Finally, Germany's long-term campaign of replacing its fleet of Tornado combat aircraft will remain untouched during the final months of the Merkel era, according to the Defence Ministry. Defense officials last spring settled on a mixed fleet of mostly Eurofighters plus a smaller number of Boeing-made Super Hornets for electronic warfare and nuclear missions. The decision has morphed into something more akin to a mere recommendation that would require years to play out, leading Eurofighter maker Airbus to hold out hope that U.S. manufacturers can be entirely kept out of the business when all is said and done. Tobias Lindner, a Green Party member of the Budget and Appropriations committees in the Bundestag, said the list of unfunded programs is “almost more interesting” than the acquisitions considered doable by the time the Bundestag session ends in late June. With so many big-ticket programs in limbo (15 overall), Kramp-Karrenbauer could move to set priorities and cut needless projects. “Unrealistic announcements and promises weaken trust within the armed forces and with our allies,” Lindner said. https://www.defensenews.com/global/europe/2021/02/05/german-defense-ministry-punts-key-us-defense-cooperation-projects-to-the-next-government/

  • CIA awards intel community’s cloud contract to several vendors

    23 novembre 2020 | International, C4ISR, Sécurité

    CIA awards intel community’s cloud contract to several vendors

    Andrew Eversden WASHINGTON — The Central Intelligence Agency has awarded its new multivendor cloud contract to a few companies, the spy organization confirmed Friday. Microsoft, Amazon Web Services, IBM and Oracle all confirmed to C4ISRNET they had been awarded the CIA's Commercial Cloud Enterprise contract, which will serve as the intelligence community's cloud environment. NextGov, which first broke the news, reported Google as an additional winner. The CIA declined to confirm specific vendors to C4ISRNET. “We are excited to work with the multiple industry partners awarded the Intelligence Community (IC) Commercial Cloud Enterprise (C2E) Cloud Service Provider (CSP) contract and look forward to utilizing, alongside our IC colleagues, the expanded cloud capabilities resulting from this diversified partnership,” CIA spokesperson Chelsea Robinson said. The CIA declined to provide the contract value, though contract documents obtained by NextGov in 2019 stated it could be valued in the “tens of billions.” The draft request for proposals, released in February 2020 and obtained by C4ISRNET, was considering a 15-year performance period, a five-year base and two five-year options. The C2E contract is a follow-on award to the intel community's Commercial Cloud Services contact. AWS was the sole provider for that contract, which was worth $600 million. “We are honored to continue to support the intelligence community as they expand their transformational use of cloud computing. Together, we're building innovative solutions across all classification levels that deliver operational excellence and allow for missions to be performed faster and more securely,” an AWS spokesperson said. A spokesperson for Microsoft, which won the Defense Department's single-award, controversial Joint Enterprise Defense Infrastructure cloud contract, said the company was “eager” to work with the intel community. “We applaud the intelligence community in advancing its cloud strategy to the next phase in order to take advantage of the latest commercially available cloud technologies,” the AWS spokesperson said. Jay Bellisimo, IBM's general manager for the U.S. public and federal market, said that the company “is proud to further its collaboration with the U.S. federal government.” https://www.c4isrnet.com/it-networks/2020/11/20/cia-awards-intel-communitys-cloud-contract-to-several-vendors/

  • At next Project Convergence, 7 scenarios will test American tech against adversaries

    15 septembre 2021 | International, Aérospatial

    At next Project Convergence, 7 scenarios will test American tech against adversaries

    The force is also looking for ways to incorporate advanced technology like artificial intelligence and robotics to more quickly make decisions across multiple domains of operations.

Toutes les nouvelles