The Tor Project's "Ten Principles for User Protection in Hostile States" is both thoughtful and thought-provoking -- it's a list that excites my interest as someone who cares about the use of technology in improving lives and organizing political movements (principle 1 is "Do not rely on the law to protect systems or users" -- a call to technologists -- while number 7 is aimed at companies, "Invest in cryptographic R&D to replace non-cryptographic systems" and principle 2 says "Prepare policy commentary for quick response to crisis," which suggests that the law, while not reliable, can't be ignored); and also as a science fiction writer (check out those tags! "Acausal trade," "Pluralistic singularity" and "Golden path"! Yowza!) Read the rest
I first encountered the idea of "social contracts" for software projects in Neal Stephenson's seminal essay In the Beginning Was the Command Line, which endorsed the Debian project on the strength of its social contract: "As far as I know, Debian is the only Linux distribution that has its own constitution." Read the rest
When it comes to accessing public websites, Tor has an intrinsic security problem: though the nodes between your computer and the public internet are unable to see where the traffic is coming from or going to, the final hop in the network (known as an exit node) gets to know what webserver you are connecting to. Read the rest
Appelbaum, whose work has put him in the crosshairs of his own government and foreign states, resigned from the Tor project on Friday, accompanied by a short note from Tor executive director Shari Steele. Read the rest
FindFace is a new Russian smartphone app that lets users take photos of strangers and identify them with 70% reliability.
Germany's ruling coalition is modifying the country's legal "Störerhaftung" theory, which currently makes people liable for copyright infringement if they operate an open wifi network that someone else uses for copyright infringement, even if the operator didn't and couldn't know about it. Read the rest
Trevor Paglen and Jacob Appelbaum collaborate to create beautiful, acrylic-encased computers that are also Tor nodes, anonymizing data that passes through them, and install the in art galleries all over the world, so that patrons can communicate and browse anonymously, while learning about anonymity and Tor. Read the rest
The Torist is a newly launched literary journal, edited by University of Utah Communications associate professor Robert W Gehl and a person called GMH, collecting fiction, poetry and non-fiction. It is only available as a file on a Tor hidden service -- a "darkweb" site, protected by the same technology as was used by the likes of Silk Road. Read the rest
Shari Steele, who served as the executive director of the Electronic Frontier Foundation for 15 years and built the organization from a six-person shoestring operation that didn't even have an office into a fifty+ person, multimillion-dollar powerhouse, has come out of retirement to serve as the new executive director for the Tor Foundation, which oversees the Tor and Tails privacy/anonymity projects. Read the rest
Despite the French Ministry of Interior's demands to crack down on Internet anonymity, Prime Minister Manual Valls has gone on record saying he won't allow such a thing to pass: Read the rest
The nonprofit foundation that oversees development on Tor, the anonymity and privacy tool, has launched its first ever major cash fundraiser, seeking support for its crucial work. Read the rest
Documents published by Vice News: Motherboard and further reporting by Wired News suggest that a team of researchers from Carnegie Mellon University who canceled their scheduled 2015 BlackHat talk identified Tor hidden servers and visitors, and turned that data over to the FBI.
No matter who the researchers and which institution, it sounds like a serious ethical breach.
First, from VICE, a report which didn't name CMU but revealed that a U.S. University helped the FBI bust Silk Road 2, and suspects in child pornography cases:
An academic institution has been providing information to the FBI that led to the identification of criminal suspects on the dark web, according to court documents reviewed by Motherboard. Those suspects include a staff member of the now-defunct Silk Road 2.0 drug marketplace, and a man charged with possession of child pornography.
It raises questions about the role that academics are playing in the continued crackdown on dark web crime, as well as the fairness of the trials of each suspect, as crucial discovery evidence has allegedly been withheld from both defendants.
Here's a screenshot of the relevant portion of one of the court Documents that Motherboard/Vice News published:
Later today, a followup from Wired about discussion that points the finger directly at CMU:
Read the rest
The Tor Project on Wednesday afternoon sent WIRED a statement from its director Roger Dingledine directly accusing Carnegie Mellon of providing its Tor-breaking research in secret to the FBI in exchange for a payment of “at least $1 million.” And while Carnegie Mellon’s attack had been rumored to have been used in takedowns of dark web drug markets that used Tor’s “hidden service” features to obscure their servers and administrators, Dingledine writes that the researchers’ dragnet was larger, affecting innocent users, too.
John writes, "After a library created a Tor node on its network, the DHS and local police contacted them to ask them to stop. For now they have; their Board of Trustees will vote soon on whether to renew the service." Read the rest