Publishing Guide

Features

Event Calendar

Open Newswire

Latest Comments

Editors Picks

Photo Gallery

Audio Gallery

Video Gallery

Files Gallery

News Archives

Hidden Articles List

Campaigns & Links

Covid Videos

Vaccine Deaths

Fracking

Fluoride

GM Crops

Podcast Feeds

Education

Upcoming Events

National | Miscellaneous

no events match your query!

New Events

National

no events posted in last week

Other Press

Miscellaneous

textCops welcomed with smoke bombs and flares Dublin Pride 19:57 Jul 14 0 comments

videoGemma O'Doherty: The speech you never heard. I wonder why? 05:28 Jan 15 0 comments

textA Decade of Evidence Demonstrates The Dramatic Failure Of Globalisation 15:39 Aug 23 1 comments

textThatcher's " blind eye" to paedophilia 15:27 Mar 12 0 comments

textTotal Revolution. A new philosophy for the 21st century. 15:55 Nov 17 0 comments

more >>

User Preferences

Feeds

Atom Summaries Link

Atom Full Posts Link

Atom Videocast Link

Atom Audiocast

Atom Mediacast Link

RSS Summaries Link

RSS Full Posts Link

RSS Videocast Link

RSS Audiocast

RSS Mediacast Link

Podcast Link

iTunes Store Podcast Link

Blog Feeds

Anti-Empire

Anti-Empire

offsite link North Korea Increases Aid to Russia, Mos... Tue Nov 19, 2024 12:29 | Marko Marjanovi?

offsite link Trump Assembles a War Cabinet Sat Nov 16, 2024 10:29 | Marko Marjanovi?

offsite link Slavgrinder Ramps Up Into Overdrive Tue Nov 12, 2024 10:29 | Marko Marjanovi?

offsite link ?Existential? Culling to Continue on Com... Mon Nov 11, 2024 10:28 | Marko Marjanovi?

offsite link US to Deploy Military Contractors to Ukr... Sun Nov 10, 2024 02:37 | Field Empty

Anti-Empire >>

Human Rights in Ireland
Promoting Human Rights in Ireland

Human Rights in Ireland >>

Lockdown Skeptics

The Daily Sceptic

offsite link In Welcoming Trump, Let Us Remember Henry VIII Fri Jan 24, 2025 19:00 | Joanna Gray
We're all feeling a little giddy after the inauguration, but let us remember to put not our trust in princes, says Joanna Gray. After all, Thomas More effused at the coronation of Henry VIII, and look what happened to him.
The post In Welcoming Trump, Let Us Remember Henry VIII appeared first on The Daily Sceptic.

offsite link Have Covid Travel Requirements Gone Away? Fri Jan 24, 2025 17:00 | Dr Roger Watson
Back in 2022 and 2023 when Covid travel restrictions and vaccine passports were all the rage Dr Roger Watson published his country-by-country guide. Now, in 2025, he takes a look to see if any are still at it.
The post Have Covid Travel Requirements Gone Away? appeared first on The Daily Sceptic.

offsite link A Golden Age for American Meritocracy Fri Jan 24, 2025 14:15 | Darren Gee
The second Trump Presidency has already dissolved hundreds of DEI programmes and looks set to herald a new golden age of American meritocracy. It's a movement America and the world are hungry for, says Darren Gobin.
The post A Golden Age for American Meritocracy appeared first on The Daily Sceptic.

offsite link Think Tank?s Net Zero Survey Concludes the Public is the Problem Fri Jan 24, 2025 13:10 | Ben Pile
The Social Market Foundation has carried out a survey on public attitudes to Net Zero and concluded that the "uninformed" and reluctant public are the problem. Why else would they say no to heat pumps?
The post Think Tank’s Net Zero Survey Concludes the Public is the Problem appeared first on The Daily Sceptic.

offsite link Number of Children Who Think They are Wrong Sex Surges 50-Fold Fri Jan 24, 2025 11:10 | Will Jones
There has been a 50-fold rise in children who think they are the?wrong sex in just 10 years, with two thirds of them girls, analysis of GP records suggests.
The post Number of Children Who Think They are Wrong Sex Surges 50-Fold appeared first on The Daily Sceptic.

Lockdown Skeptics >>

Voltaire Network
Voltaire, international edition

offsite link Voltaire, International Newsletter #117 Fri Jan 24, 2025 19:54 | en

offsite link The United States bets its hegemony on the Fourth Industrial Revolution Fri Jan 24, 2025 19:26 | en

offsite link For Thierry Meyssan, the Sarkozy trial for illegal financing of the 2007 preside... Fri Jan 24, 2025 19:23 | en

offsite link Should we condemn or not the glorification of Nazism?, by Thierry Meyssan Wed Jan 22, 2025 14:05 | en

offsite link Voltaire, International Newsletter N?116 Sat Jan 18, 2025 06:46 | en

Voltaire Network >>

Inside Cisco's eavesdropping apparatus

category national | miscellaneous | news report author Monday April 28, 2003 17:08author by Paul Wouters Report this post to the editors

Cisco's wiretapping plans, int'v with Fred Baker I am a concerned Dutch citizen, keeping a public eye on the wiretapping situation there, especially since we were, until Cisco announced their plans, far "ahead" of the world (even before 9-11).

Articles I have
written on this subject are availble online, often in dutch and English,
and include:

http://www.fnl.nl/ct-nl/archief2001/ct2001-06/ct200106032033.htm (Dutch)
http://www.opentap.org/ct/ct.aftappen-eng.html (English)
http://www.fnl.nl/ct/archief2002/ct2002-12/aftappen.htm (English)
http://www.opentap.org/ccc/ (English)


In response to your article "Inside Cisco's eavesdropping apparatus"
on http://news.com.com/2010-1071-997528.html?tag=fd_nc_1 I have a few
comments to make:

First you quote Baker saying:

> We've had direct contact with the FBI and other agencies. When I was in
> Holland I (spoke at a conference with the head of the equivalent of the
> country's Central Intelligence Agency). The fact that he came out and
> said something made the 8 o'clock news. I had a meeting with him and
> some of his people a few days later to figure out what he wanted and
> what he intended to do with this. As an engineer I wanted to understand
> a customer's problem.

The 8 o'clock newsitem Baker is referring to can be seen at:

http://www.xtdnet.nl/paul/fb.mpg

Only the introduction is Dutch, the remainder is in English with Dutch
subtitles

Let me put this a bit in context though. Baker spoke at the ISOC
on januari 16, 2002. I was there as well. Baker explained that any
wiretapping technology should not go into the protocols (eg TCP/IP)
themselves, because it would make the internet infrastructure weaker. It
is the same argument as the Clipper chip. Backdoors are bad. Escrow keys
leaking out would mean an international disaster. Baker, or rather
the IETF, made a conscious decision not to weaken the protocols, even
though the LEA's (Lawful Enforcement Agencies) wanted this. Baker did
acknowledge that some sort of wiretapping needed to exist for those
LEA's. But he would not comment on what he or Cisco deemed to be the
solution, except that Cisco was working on it.

The boasting of our Dutch CIA being present is really out of context. Our
intelligence agencies have been going through various reorganisation
rounds, with the Old generation leaving (Dr. van Leeuwen) and new people
settling in. Veenstra was just doing some PR for the BVD. Both the
military intelligence and the civil intelligence units had ben revamped,
now called MIVD (Militaire Inlichtingen en Veiligheids Dienst) and AIVD
(Algemene Inlichtingen en Veiligheids Dienst). Note the difference
between "binnelandse" (Internal affairs) and "algemene" (generic). By
now, we also know that our government "needed" more and better SIGINT
to protect against fundamentalists and terrorists. A new organisation,
the NSO (Nationale SIGINT Organisatie) was setup to cater for those post
9-11 worries.

All that Veenstra said that day was that they had an "extreme focus on
terrorist activity". That took about 10 to 15 minutes. How ironic that
only four months later Pim Fortuyn, the leader of the new political party
LPF that rose from nothing to become the second largest political party in
the Netherlands, was shot dead. Unfortunately, the secret nature of LEA's
can explain both failure and success as a reason for more power and money.


One of the other things I would like to comment on is Baker's remark
in the news item that he didn't believe "new laws were being made". I
think by now it has become quite obvious that all Western governments are
quickly morphing into a police state. Though I will let others comment
on the "no new laws" statement Baker made regarding the US situation, I
will comment on the Dutch situation. In the last four years, most of the
"temporary laws" (In Dutch "nood-verordeningen") protecting big events
such as the Eurpoean soccer Championship or our Royal Wedding are still
in place. Any engineer walking in the center of Amsterdam after 7pm
officially violates one of these laws if he carries a screwdriver with
him. In the entire downtown area of Rotterdam and Amsterdam you can be
"preventatively searched". Without any cause or suspicion. By being in
the center of Amsterdam you must be a criminal.

But let me get back onto the topic of wiretapping. We now know Cisco
would like to implement a wiretapping solution in their hardware, instead
of in the protocols. From a first cursory glance over the document, it
seems that Baker's draft complies with the ETSI norm. The Netherlands
already has such a system in place. It is called Transport of Intercepted
IP Traffic (TIIT) of which the (secret!) specifications can be found
on http://www.opentap.org/ The one line explanation of the system is
"Digitally signed XML warrant goes in, tapping data comes out". The
government stressed that it would never automate tapping without involvig
the ISP.

The experiences with this system are currently fairly limited. The
government is tapping about 100kb continiously, with peaks going to 0.5 to
1 mbit. These figures are based on their public router statistics. Bits
of Freedom (www.bof.nl) tried to obtain numbers on the telephone and
internet taps using the Dutch version of the Freedom of Information Act,
but despite a government reimbursement system for telco's, it claimed it
had no central registration of these taps, the government didn't want or
need these numbers themselves, and therefor these numbers do not exist,
and cannot be obtained by worried citizens.

NLIP (www.nlip.nl), the Dutch branche organisation of ISP's, has a long
history of behind doors negotiations with the government on behalve of
their members. The government swept away their 'demands'. So they have
foccused their effords on making tapping as cheap as possible for their
members instead (while publicly not stating that they are no longer
"nationally involved". Unfortunately, they do still seem to be used as
an excuse by the government to claim "they are talking to the ISPs".
This kind of conflict of interest (ISP's involved in law making only
secondary to their own reduction of expenses) is very dangerous. Two weeks
ago I also learned, indirectly through this NLIP, that the government
is writing up a decree (Dutch: "Algemene Maatregel van Bestuur"), that
is, a law that does not need the aprovement of parlemant, that will
allow LEA's to control the tapping equiptment of ISP's remotely. The
goal is to reduce the number of people who know about a tap. The side
effect (or one could argue that this is in fact the intended effect)
is that the legal system will be bypassed completely. The ISP doesn't
know when it is tapping its customers, and cannot check the validity of
the warrant. We will just "have to trust them".

But can we? Only two months ago, the Dutch had their own version of
"FoxNews" when the program Zembla reported that the Dutch tapping room
is completely outsourced to a questionable Israeli company:

http://www.opentap.org/zembla/ (Dutch)
http://www.fnl.nl/ct/archief2002/ct2002-12/aftappen.htm
http://www.opentap.org/foxnews/

Comverse (sorry, Verint-systems) has to come in and fix/repair/maintain
the digital tapping rooms very regularly. They hook up Hebrew keyboards
and no one knows what they are doing. An anonymous source within Comverse
told c't magainze (www.fnl.nl/ct) that 9.1GB Sony MO disks are used:
http://www.sony.net/Products/DataMedia/products/525MO/91GBMO.pdf And
that they can put 240 hour of conversations on one such MO using the
following codec: http://www.vidicode.nl/Dutch/scr_nl.htm

So even if our government means well, our data apparently leaks out
anyway. (Then again, the Wassenaar Agreement the Netherlands signed
includes Israel anyway, so Israel could just order their own taps from our
government anyway). But worse, the Zembla newsitem also showed that the
police had manipulated evidence. This became painfully obvious when one
of the "intercepted GSM phone calls" was heard pulse dailing (Remember
those days when dialing was done with a dial?)

I have long ago come to the conclusion that yes, tapping is a neccessary
evil. We need to accomodate this. But it is of vital importance
that tapping does NOT become an automatic system that only involves
LEA's. There is a valid reason that LEA's don't trust LEA's. That is
why they want to be able to tap each other, and that is the reason for
the ETSI demand for multiple parallel invisible taps. We should not play
their game. LEA's have their own, secret, agenda.

Back to Mr. Baker,

Mr Baker also mentions:

> What we're doing is putting the capability in a separate image so you
> know what you're getting when you get it. Under U.S. law, if you have
> that ability, you could be required to use it. Our service provider
> customers have asked us not to put it in the standard image, so that
> they can't be forced to use it.

Though this seems like a reasonable stance, let's not forget that a
far more important argument for Cisco is that putting a tapping image
in their Cisco's per default would cause two thirds of the worlds to no
longer buy Cisco. This is coming dangerously close to putting "Trusted
computing" into the router. I am sure it's trusted, but who owns the
device? It is of vital importance that any tapping accomodating protocol
is completely free and open, so that opensource implementations can be
written.

The solution?

In the TIIT specification, there is a special function to ensure
that the tap is still working properly. Ever 64 packets or 5 minutes,
a cryptographical checksum is generated by the tapping box over the
intercepted data, and also send to the LEA. This is to ensure the
integrity of the datastream to the LEA. I believe that the ISP should
not only be allowed, but should be forced to keep those checksums
themselves. Those can then later on be given to the courts to determine
any evidence tampering by the police. And it also ensures that the ISP
will always know about a tap in his network, and will always have the
means to check the legality of such a tap. I sincerely hope Mr. Baker
will add something similar into his Cisco's. If he does not, ISP's
will be prevented from checking the legality of warrants, and on top
of it they will face a rush of LEA's taking over their Cisco's.

If we are not allowed to investigate the correctness of a warrant, nor
the proper functioning of our LEA's, then we might as well end the charade
of the courtroom and admit that we have chosen to live in a police state.

Paul Wouters
Opentap

Add Your Comments >>
printable version with comments atom feed of commentsrss feed of comments RSS and atom feeds allow you to keep track of new comments on particular stories. You can input the URL's from these links into a rss reader and you will be informed whenever somebody posts a new comment.
Most Recent Comments First
View Comments Titles Only
save preference

Comments (1 of 1)

Jump To Comment: 1
Dutch people smoke too much grass
author by Barneypublication date Tue Apr 29, 2003 13:30author address author phone Report this post to the editors

Makes them PARANOID.

Add Your Comments >>
 
<< Back To Newswire
© 2001-2025 Independent Media Centre Ireland. Unless otherwise stated by the author, all content is free for non-commercial reuse, reprint, and rebroadcast, on the net and elsewhere. Opinions are those of the contributors and are not necessarily endorsed by Independent Media Centre Ireland. Disclaimer | Privacy