Profile picture
Matthew Green @matthew_d_green
, 17 tweets, 4 min read Read on Twitter
GCHQ has proposal to surveill encrypted messaging and phone calls. The idea is to use weaknesses in the “identity system” to create a surveillance backdoor. This is a bad idea for so many reasons. Thread. 1/ lawfareblog.com/principles-mor…
Quick background: most end-to-end encrypted messaging systems do a great job at encryption. A big weakness in this (and all encryption systems) is key distribution — getting the right keys to encrypt with. 2/
A related problem is call/chat setup. For various reasons, some systems like WhatsApp allow the server to add new users to your group chat. You get a notification, but otherwise that part isn’t end-to-end. 3/
From a security perspective, most researchers recognize these as *flaws* to be repaired. It has been hard to convince actual companies to care about them, b/c they seemed like theoretical concerns. GCHQ’s proposal shows the problem with that approach. 4/
Which finally brings me to the meat of the GCHQ proposal. It’s alarmingly simple. Roughly speaking, they want to add themselves to your conversations and phone calls. 5/
GCHQ defends this approach as “not weakening encryption” but of course that’s a very lawyerly description. In practice they’re absolutely going to weaken encryption *systems*, with unpredictable and unfortunate consequences. 6/
Let’s tackle the obvious problems with this system. First off, right now most chat clients will give you an explicit warning when a new person joins your conversation. Obviously the police can’t have a “Special Agent Bryant joined your chat” message pop up. 7/
So that message will have to be suppressed. In a few systems this can be done by blocking a message at the server side (Apple iMessage in 2015) but generally it isn’t that easy. So you need to change the code running in the client. 8/
How is this updated (and weaker) client app distributed? Do you distribute the modified app to every user? Or push an app update just to your wiretap targets?

If it was the latter, then the problem would already be solved. So most likely, everyone gets the weakened app. 9/
So in the process of creating a “targeted vulnerability” you’ve introduced a global security hole across your entire userbase. No doubt you will try to block exploitation, but history tells us people are great at exploiting vulnerabilities. That’s why we don’t add flaws. 10/
The remarkable thing about this GCHQ proposal is how limited its shelf life is. The reason nobody hardens their key distribution systems against these attacks is because vendors saw them as impractical. By proposing the attack, GCHQ makes it legitimate to worry about. 11/
The thing is, we have a lot of ideas for how to harden key distribution systems. They range from simply allowing third party OSS clients (that can’t easily be backdoored) and can detect key tampering, to deploying systems like Key Transparency. github.com/google/keytran…
This puts everyone into a bind, because the only way GCHQ’s strategy seems like it will work is if they issue Technical Capability Notices to vendors. This has the effect of *forcing* vendors to keep their systems vulnerable against a known weakness, maybe indefinitely. 13/
If this was a Choose Your Own Adventure book, it would have two endings. In one, vendors rapidly patch their identity systems and GCHQ’s capability vanishes in a puff of smoke. In the other, GCHQ takes over the system design of every messaging system in the world. 14/
This has been a long enough thread but I want to make two final points.

1. Vendors like WhatsApp and Apple deserve plenty of blame here too. Everyone with a brain knew they had left a gaping key management hole in their systems, and they had better fix it quick. 15/
2. GCHQ pretends they aren’t attacking encryption. But the truth is that in 2018, safe key distribution and UX — as opposed to, say, cipher design — are the leading-edge problems in our field. If adopted, GCHQ’s proposal has the potential to set us back by a decade. 16/16
Also it kills me that there is a typo in the first tweet of this thread. Damn autocorrect.
Missing some Tweet in this thread?
You can try to force a refresh.

Like this thread? Get email updates or save it to PDF!

Subscribe to Matthew Green
Profile picture

Get real-time email alerts when new unrolls are available from this author!

This content may be removed anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

More from @matthew_d_green see all

Profile picture
The Facebook stablecoin (if it works, scales, gets deployed and adopted by non-Facebook companies, doesn’t get regulated into dust) is going to be a massive game-changer for the financial services industry. Fight me.
Hell, even if Facebook is able to make a credible run at deploying the thing, it will give them huge leverage with their banking relationships. No more closed (to FB) instant networks like Zelle, reduced transaction fees, etc.
Summary of the comments: (1) a bunch of people seem to think asset-backed stablecoins won’t be allowed by regulators, or that people won’t use/trust them. That horse has already bolted. google.com/amp/s/www.coin…
Read 5 tweets
Profile picture
The theory, for what it’s worth, was that the big brand name services would behave better than the fly-by-night shady data brokers. Much as CVS is perceived as less likely to put Fentanyl into your medicine than, say, the drug dealer on the corner.
The sole redeeming feature of the centralization of the web was supposed to be improved data handling. Better security and oversight of partners (like ad networks etc.) Instead we got Facebook treating your data the way a teenager treats a house when the parents go out of town.
The Facebooks and Googles would do this voluntarily, in part because it’s smart business — don’t give away the store. But mostly because it’s way easier for governments to target them with punitive regulations.
Read 4 tweets
Profile picture
@LargeCardinal The group messaging mechanism is very different. In Signal (app) group messages are layered on top of the existing pairwise messaging system. To add a new user, you (an existing user) have to send encrypted control messages to each existing user. The server can’t do this.
@LargeCardinal In fact, the Signal server doesn’t even know what a group message is. As far as it’s concerned, when I send a message to a group of N people, it just looks like I’m sending a bunch of pairwise messages at the same time.
@LargeCardinal In WhatsApp (as of a few months ago) the server knows what group messages are. It actually sends special control (add/remove) requests to the members of the group, and it handles multiplexing group messages to all of the other users.
Read 4 tweets

Related threads

Profile picture
There's a lot of misinformation around the #surveillance notification that came out yesterday. Here's #thread that will help clarify issues.
Is the notification new? Obviously, yes. But is the issue new? Not at all. What the Modi Govt did was only take the next logical step in am existing law.
So what was the law. This is where it gets interesting. The surveillance laws come out of an 18th century postal act that gives powers to intercept communications of correspondents during war.
Read 23 tweets
Profile picture
Many relationship surveys have identified, Money, Sex and Children as the biggest issues couple fight over. So I thought to do a thread about the other silly and ridiculous things married couples fight over.

I will start with a few and you can add more as well.

A THREAD!
TOOTHPASTE

As silly as this sounds, it is the source of a lot of fights in homes. So one person likes to press it from the middle and another from the bottom. Usually the one who complains is the bottom presser. So how do you solve this problem? Use separate toothpaste. Chikena
BEDSHEETS

So you have one partner (usually the guy) who can sleep on mattress made or unmade while you have the other (usually the babe) who can't sleep unless the bedsheet is new or bed is laid. Imagine a scenario where the former goes to bed before the latter. WW3 Loading....
Read 9 tweets
Profile picture
With lots of news around the world happening, let's take a look at this THREAD again with some additional Information
Andrés Manuel López Obrador, KNOWN as AMLO
His policies and his ties to Trump
Updated THREAD

In the THREAD I mention above, I was concerned about what AMLO (as I'll refer to him) being a bad choice for some many reasons.
But that Mexico is like the Southern Mafia. Run by Oligarchs and who have their fingers in drugs and businesses around the world and in the U.S.
I suggested that AMLO was making waves and making comments that got the attention of the U.S. like Pompeo and Kushner.

Read 27 tweets
Profile picture
Welcome to the #Metpolice

justlivewithit.co.uk/metpolice/blog…

#skynews #TargetedIndividual #bbcnews #coverup #c4news #worldnews #euronews #conspiracy #news #ukgov #theresamay #LBC
It's a criminal offence to falsifying a legal instrument. But if the #MetPolice / #LBRUT do it, then there is not even an investigation. 12 years of silence. Evidence to prove it - ukcoverup.com/search-warrant-

#skynews #lbc #theresamay #uk #bbcnews #coverup #c4news #worldnews #ukgov
Welcome to the #Metpolice who also changed & falsified my arrest details. Have a look at the evidence here ukcoverup.com/arrest-details as it's all easy to prove & that's why it's never addressed

#R4today #corruption #coverup #leadership #values #corevalues #bbcnews #skynews #itvnews
Read 97 tweets
Profile picture
1. I was a HS teacher for a short time (grant position). Why would I never want teachers w/ guns? Besides the obvious, teachers represent the country as a whole. Which means there are good & bad teachers. I've heard teachers call POC teens terrible words in the teacher's lounge.
2. I've seen POC students treated worse than white students for same offense. Plus, no matter the race, I've seen teachers get frustrated and throw things (not at students). Teachers are human. I've been around some of the most outstanding teachers ever, but there are bad too.
3. I loved my job, but it was the bad teachers which finally drove me away. As a state granted teacher, it was hard to change an entire environment when I was only one of a few who would speak up. I finally resigned.
Read 13 tweets

Trending hashtags

#BothSidesDont #legalrankings #bushdid911 #yourewelcome #injustice #thepledge #nomoreabuse #BlackHat #Solicitors #Directline #socialwelfare #ti #amazing #FundTheWall #MAGA #jurisdiction #highstreetstores #SchumerShutdown #nojustice #bild #DARKtoLIGHT #bbcbreakfast #BBCR1 #thechase #uknews

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member and get exclusive features!

Premium member ($30.00/year)

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!