Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
×
Encryption Government Communications Network Networking Privacy Security Software The Internet Wireless Networking News Hardware Politics Technology

Putin Gives Federal Security Agents Two Weeks To Produce 'Encryption Keys' For The Internet (gawker.com) 296

An anonymous reader writes: The President of the Russian Federation, Vladimir Putin, has ordered the Federal Security Service (FSB) to produce "encryption keys" to decrypt all data on the internet, and the FSB has two weeks to do it, Meduza reports. The head of the FSB, Alexander Bortnikov, is responsible for accomplishing such a task. "The new 'anti-terrorist' laws require all 'organizers of information distribution' that add 'additional coding' to transmitted electronic messages to provide the FSB with any information necessary to decrypt those messages," reports Meduza. "It's still unclear what information exactly online resources are expected to turn over, given that all data on the internet is encoded, one way or another, and in many instances encryption keys for encrypted information simply don't exist." Some of the details of the executive order include requiring telecom providers and "organizers of information distribution" to store copies of the content of all information they transmit for six months and store the metadata for three years so the Kremlin can access it whenever they want. In order for that to happen, ISPs would need to build new data centers capable of holding all that information and buy imported equipment, all without state subsidies, where they risk going bankrupt. To actually operate the data centers, the Russian government would need to upgrade Russia's outdated electrical grid and cables, which could cost between $30 and $77 billion. What about the "encryption keys?" In addition to storing all the transmitted information, "organizers of information distribution" have to turn over "any information necessary to decrypt those messages." Therefore, "additional coding" will need to be added to all electronic messages to act as instructions for the FSB to "decode" them. Many services and websites don't have "keys" or are fundamentally unsharable, like banks and financial institutions. Nearly all electronic information needs to be "encoded" in some way. Bortnikov has two weeks and the clock starts now. Good luck!
This discussion has been archived. No new comments can be posted.

Putin Gives Federal Security Agents Two Weeks To Produce 'Encryption Keys' For The Internet

Comments Filter:
  • by Anonymous Coward on Friday July 08, 2016 @08:03AM (#52470081)

    and you can't do that one, simple thing.

  • by Anonymous Coward

    There is no such thing as keys that would decrypt "all data on the internet", which hopefully everyone here already knows. Empty, dead, pointless parody of law. The war on encryption is doomed to fail

    • by Maritz ( 1829006 )
      It'll be fun to watch this one. Dear Leader gets everything he wants, but I think this time he's asked for something that cannot be provided.
      • by NatasRevol ( 731260 ) on Friday July 08, 2016 @08:38AM (#52470383) Journal

        Maybe if all ISPs in Russia are required to do this, it will be done.

        I'm thinking that this will really reduce foreign investment in Russia. And business & the economy will take a direct hit over the next several years.

        • by JaredOfEuropa ( 526365 ) on Friday July 08, 2016 @08:50AM (#52470499) Journal
          A solid economy is certainly not Putin's first concern. Perhaps the contrary: despots do not thrive in problem-free states.
        • Perhaps any private key stores in the hands of ISPs or other Russian services may end up in the Russian government's hands. But what about all the self-signed communications, or communications signed by keys external to Russia?

          One wonders whether this is just an attempt at a bluff, as in "We'll find your secret communications, Comrade!" or whether Putin and his advisers are is ignorant of the underlying mathematics and technology as so many governments in the West are? On the face of it, whoever wrote this

          • Perhaps any private key stores in the hands of ISPs or other Russian services may end up in the Russian government's hands. But what about all the self-signed communications, or communications signed by keys external to Russia?

            One wonders whether this is just an attempt at a bluff, as in "We'll find your secret communications, Comrade!" or whether Putin and his advisers are is ignorant of the underlying mathematics and technology as so many governments in the West are? On the face of it, whoever wrote this law has absolutely no fucking idea how encryption works on the Internet.

            I would bet the latter.

            It's actually kind of refreshing to see a leader of a (former) SuperPower that is even more ignorant of technology than our own homegrown Overlords in the U.S.

            • It's inconceivable that Russian Intelligence is ignorant of the realities of encryption or of the internets' infrastructure. My assumption is this is concrete message to anybody in the space that they are expected to do whatever they can, meaning to pro-actively implement the appropriate infrastructural back doors into their systems to allow for data exposure upon demand. It doesn't have to be very well defined to change the status quo. Corporate Russia will figure out how to orient itself into compliance w

          • Considering that essentially all of the politicians in Russia have fake PhDs ( http://www.slate.com/articles/... [slate.com] ) I would say that it's fairly likely that they have no idea how the Internet or mathematics or economics or really anything works...

      • by gtall ( 79522 )

        It isn't important that it be done, it is important that it is said to be done. It will happen like everything else in Russia, half-assed and boneheaded. That's not what Tsar Putin will hear though. He will hear, "'tis a wonder and increaseth growth, verily the West will cower to our enlarged secure internet". The Tsar will declare to the Russian people they are now even better protected than they were before from Western conspiracies designed to lay waste the Soviet...errr...Russian people.

        For once I'd lik

    • Re: (Score:2, Insightful)

      by Anonymous Coward

      It's neither empty, dead, nor pointless. It justifies any and all warantless exploration of communication from 2 weeks until eternity, and provides a legal means for any telecoms operator to be required to install anything that the government instructs, whenever. And it's pretext to outlaw new encryption methods.

    • by Anonymous Brave Guy ( 457657 ) on Friday July 08, 2016 @08:16AM (#52470195)

      Empty, dead, pointless parody of law.

      I might feel better about that if my own government and those of many of our Western allies weren't trying to do essentially the same thing, also with a perfectly straight face.

    • There is no such thing as keys that would decrypt "all data on the internet", which hopefully everyone here already knows. Empty, dead, pointless parody of law. The war on encryption is doomed to fail

      Are you sure?:

      0000000 90e4 781a 3c0a f245 1c28 4910 6394 1c84
      0000020 8ce8 da59 fffe 5993 4499 19c6 5e3e 405f
      0000040 c2d8 83bf f249 e9be 3b4a 68d3 2355 b2ce
      0000060 4a6e 17a4 b1d7 92a7 0503 0e1e 1c22 6215
      0000100 7709 e0ea 5b76 382a e59f 4a00 d9fd 0e85
      0000120 41e1 9080 7f36 01c4 449f b7c4 b31e 2f38
      0000140 953a a04f f4df 3f7b b47f 4097

  • by Mal-2 ( 675116 ) on Friday July 08, 2016 @08:05AM (#52470097) Homepage Journal

    I think Putin knows full well that this task is not achievable, but wants to use it to shove someone out of their job in disgrace. I guess we'll find out who that is soon enough.

    • by mysidia ( 191772 )

      After they fail, their next step is to say "See, this cannot be done", And Ban all cryptography.

      • by bsDaemon ( 87307 ) on Friday July 08, 2016 @08:15AM (#52470185)

        What was the old saying in Tsarist Russia? Something like, "If 5 people get together to plot revolution, what you have is one revolutionary and four police informants." We are not talking about a country that has ever really been free since the earliest Viking settlements in places like Moscow. Hundreds of years of autocracy or oligarchy. What else would they produce politically but Putin and an encryption ban?

        • That reminds me of the recent efforts to infiltrate extreme right-wing groups in Germany: at some point there were so many agents and so many agencies involved that no one could be sure anymore who was an agent and who wasn't.
          • Re: (Score:3, Insightful)

            This sort of thing backfired on Germany before. After all, one Adolf Hitler was employed by the German security services to infiltrate a certain of far right extremists, and the rest, shall we say, was history.

      • Banning encryption is useless, unless you plan to ban ALL information transmission. As long as you allow me to transport any information, I can easily find a way to transmit hidden messages.

        And trust me, Russians are GREAT at that. They have a long, long history of censorship and circumventing it.

    • Why? He can simply fire him and that's all. There is no need for this mascarade.
    • I think Putin knows full well that this task is not achievable, but wants to use it to shove someone out of their job in disgrace. I guess we'll find out who that is soon enough.

      Oh, like he NEEDS an excuse?

      No, sorry. I think Putin really is that ignorant and megalomaniacal.

  • by Nidi62 ( 1525137 ) on Friday July 08, 2016 @08:08AM (#52470127)

    Contents of Official FSB Decryption kit:

    Wrench

    One way train ticket to Siberia

    • Re:2 weeks later (Score:4, Informative)

      by Fire_Wraith ( 1460385 ) on Friday July 08, 2016 @08:10AM (#52470145)
      Obligatory XKCD: https://xkcd.com/538/ [xkcd.com]
      • Which is the "official and legal" way to obtain access to encrypted information in the US. The "wrench" is called a "subpoena" or a "warrant" issued by a judge for probable cause, combined with an unbounded eternity in jail for contempt of court until you cough up the keys. Yes, you can be in prison for life without even having a trial for ongoing contempt of court. Every day is a new offense and another day in jail.

        I'm even reasonably comfortable with that. At least there is some sort of due process wi

    • Mother Russia always been good with low tech answer to high tech problem. MIR kept in orbit long time with duct tape. When was available. Often just kept together by underpants. When was available.

  • by penguinoid ( 724646 ) on Friday July 08, 2016 @08:13AM (#52470165) Homepage Journal

    So why is he pretending to be stupid?

    • So why is he pretending to be stupid?

      Perhaps he's been in power too long and it's beginning to mess with his sanity like it happened to many other dictators before him?

      • So why is he pretending to be stupid?

        Perhaps he's been in power too long and it's beginning to mess with his sanity like it happened to many other dictators before him?

        Perhaps it's just the first symptoms of Polonium poisoning [wikipedia.org].

        We can only hope.

    • by Anonymous Coward on Friday July 08, 2016 @08:24AM (#52470271)

      Many reasons:

      -Trying to oust Bortnikov, for when he inevitably fails Putin has a reason to toss him or large parts of the FSB out.
      -Justification for giving them (FSB) more funding or more powers to accomplish these goals (as a result of inability to accomplish goals with current resources).
      -It could also be to create a large effort in the FSB with the rationale that the FSB will have no choice to resort to heavy handed tactics, which will them be targeted at institutions and/or ISP's that through "random coincidence" have slighted Putin somehow.

      But yes, Putin is very smart--and also very shrewd.

    • Perhaps because he is really stupid?
    • Re: (Score:2, Insightful)

      My theory: journalists are too stupid to report foreign affairs properly. We already saw how they were led around by the nose by Obama's staff for years, and reported government-approved narratives instead of facts. They are just deeply ignorant people who have no business being in the jobs they're in. Sad but true.
      • Re: (Score:3, Insightful)

        by hyades1 ( 1149581 )

        Sorry, but you're 100% wrong. Mainstream news media have unfailingly supported the corporate viewpoint for years. The trend started when TV news brought the Vietnam War into America's living rooms, and the so-called "Silent Majority" turned on the corporate money machine and forced an end to that war. That would not be allowed to happen again. Concentration of ownership ensued, and we now have only a handful of major voices left...and they're all singing from the same songbook.

        Anybody who believes ground

    • He sounds like any manager or C-suite idiot who wants something that is not possible.
    • Look at everything he does as a means to an end. Don't assume this is about encryption keys.

  • not that putin is a good guy. nor is his new law, and his orders based on that, good. he and it are evil things. though law at least is merely an attempt to give russian government same powers as usa government. definition of evil.

    anyway this summary and gawker article exaggerate to absurdity in order to vilify russians in every way possible, and seems to assume total ignorance on the part of readers. (to be expected from gawker but not from /.).

    there are much more knowledgeable and rational critiques of

  • All keys... (Score:5, Informative)

    by Tomahawk ( 1343 ) on Friday July 08, 2016 @08:21AM (#52470235) Homepage

    for (i=0; i0xffffffffffffffff; i++)
        printf("%16x\n",i);
    printf("ffffffffffffffff");

    or something along those lines. That'll produce all 128bit keys. Just don't ask me to match each key with each piece of data...

  • And here I thought it was only U.S. Politicians that didn't understand how to computer. Someone get that man 4 Internets Please.
  • Especially not THAT stupid.

    I guess that back at his own KGB/FSB days, that poor Bortnikov guy tried to hit on Putin's girlfriend or something like that... In twio weeks he will see what that got him....

  • by Anonymous Coward

    Terrorism is king. It trumps privacy or freedom.

    The west has been using this justification for many years now and it would seem that Russia too last learned that to justify anything Orwellian, all you need to say is "because terrorism." Case closed.

  • and in many instances encryption keys for encrypted information simply don't exist

    Ahh keyless encryption: for when you really don't care to ever get the data back.

    • by flink ( 18449 ) on Friday July 08, 2016 @08:36AM (#52470361)

      and in many instances encryption keys for encrypted information simply don't exist

      Ahh keyless encryption: for when you really don't care to ever get the data back.

      Many keys are ephemeral. Once the information has been received and acknowledged, both parties discard their keys. If you intercept one of these messages, no one will ever have a way of decrypting it. The only way to get the information is to double back and beat it out of one of them.

      • and in many instances encryption keys for encrypted information simply don't exist

        Ahh keyless encryption: for when you really don't care to ever get the data back.

        Many keys are ephemeral. Once the information has been received and acknowledged, both parties discard their keys. If you intercept one of these messages, no one will ever have a way of decrypting it. The only way to get the information is to double back and beat it out of one of them.

        Sure, you can use TLS for instance and get a new key for each transaction. There is still a key, however and one could intercept a TLS key, for instance, by way of a man in the middle attack.

  • "The President of the Russian Federation, Vladimir Putin, has ordered the Federal Security Service (FSB) to produce "encryption keys" to decrypt all data on the internet, and the FSB has two weeks to do it"

    Lol, and I also want a magic box that produces an endless supply of tasty, tasty unicorn-scented donuts, the kind with sprinkles on top. And it has to run forever without any electricity or ingredients, too. And I want a big red yacht that can fly to orbit, has artificial gravity, and a tennis court the s

  • Possibilities (Score:5, Insightful)

    by DarkOx ( 621550 ) on Friday July 08, 2016 @08:32AM (#52470337) Journal

    Possibilities in order of likelihood

    1) This reporting is wildly inaccurate, and misses key details, like for example only part of the implantation must be completed in two weeks or similar.

    2) Putin is doing this for political cover, he has intelligence there is going to be another terror attack in Russia or one of its surrogates. The intel is not good enough to prevent it, but he wants to look like he is 'doing something'. The argument will be if only people had got out of his way an let him do this sooner the tragedy would have been avoided. It both bolsters his strongman persona and gives an excuse to expanding executive power.

    3) Putin is created a legal excuse to punish people who are otherwise political enemies, noncompliance with this new law will provide a legal cover an a veneer of legitimacy.

    4) Putin is perfectly aware this is impossible but it will produce a flurry of activity from people who will be trying desperately to save the careers by at least appearing to comply in good faith, in hopes others will take the blame for the obvious eventual failure. Putin plans to utilize all this activity as a distraction to enable some other covert objective to be completed.

    5) Putin has totally left the reservation.

    • Possibilities in order of likelihood

      1) This reporting is wildly inaccurate, and misses key details, like for example only part of the implantation must be completed in two weeks or similar.

      Best one of those I saw recently said "MP threatens to cut off Gove's penis", turned out what had actually happened was when asked what game of thrones character he resembled the MP responded with the name of a guy in it who apparently had his cut off or something.

    • 1) Part or whole, this is prime quality horse shit. The idea alone speaks volumes about how much li'l Vova knows about the internet in general and encryption in particular.

      2) "Doing something" could be done vastly differently in Russia. We're talking about a country where you can have soldiers parade up and down some roads on a whim, it's not like you have to do such petty grandstanding, you can do some real grandstanding! That is also a lot more powerful in the strongman approach. Just think what he could

  • by John Smith ( 4340437 ) on Friday July 08, 2016 @08:34AM (#52470351)
    I can give them to you but it might take a while for you to read them. (Lists every binary number storable in 512 bit space)
    • by Tomahawk ( 1343 )

      512 bit implies public/private key encryption, and bad encryption at that.
      For public/private key encryption you don't need to list every number, just every prime, and the list of every prime multiplied by every other prime.
      To do this properly, head to 4096 bits, though.

  • Lies (Score:5, Informative)

    by 110010001000 ( 697113 ) on Friday July 08, 2016 @08:37AM (#52470371) Homepage Journal
    Why does gawker keep publishing unsubstantiated bullshit, and why do people believe it? There are no references, no substantiation of any of this. How would Gawker know what the orders of Putin are? Christ. Stop republishing Gawkers crap.
    • Re: (Score:2, Interesting)

      by Anonymous Coward

      Checked all your posts. 99.9% of them (if I was conspiracy minded) seem like posts from one of Putins 'Internet commenter shills', where they try to insult and degrade any non-Putin owned Russian companies.

  • i think somebody is going to be drinking vodka like water for the next 10 days.

  • Sure mr. Putin, we already have a piece of software to accomplish just that.
    It's called "openssl" and it can generate any encryption key ever used in the past and in the future.
    It may take some time though.
  • In addition to storing all the transmitted information, "organizers of information distribution" have to turn over "any information necessary to decrypt those messages." Therefore, "additional coding" will need to be added to all electronic messages to act as instructions for the FSB to "decode" them.

    No, that "therefore" does not follow.
    If all the transmitted information is stored with the same encryption method, all they have to do is inform the government of how to access and decrypt once. It does not ha

  • by Anonymous Coward on Friday July 08, 2016 @08:53AM (#52470517)

    ISPs fail to have this system in place within 14days. Putin "takes over" all internet providers, claiming full share ownership of them.
    See - Russian Oil, coal, gas, solar, farms, manufacturing, Processor Manufacturer (MCST) etc. All now 100% owned by Putin.

  • All he needs is Janik's little black box. It looks like a telephone answering machine...

  • I do not think it means what you think it means.

  • ...to be head of FSB. I fear that Mr. Bortnikov will, in two weeks, become disappearnik.
  • in soviet russia we unencrypt you!

  • by SlithyMagister ( 822218 ) on Friday July 08, 2016 @09:13AM (#52470687)
    The solutions is simple:
    "It will be ready any day now" for about 6 months,
    "Ready for testing" Followed by 6 months of failures
    "Ready" With some sample data.
    "Make stuff up" from then on
    • That's like back when Soviet Russia was trying to turn shit into butter. They eventually claimed a 50% success: You could spread it on bread just fine, but the taste...

  • by Opportunist ( 166417 ) on Friday July 08, 2016 @10:08AM (#52471095)

    Is that enough time to pack and get a travel visa to ... doesn't matter, just OUT OF HERE!

  • I'll save Pution some time and post the encryption key to the Internet right here. Ready?

    1...

    2...

    3...

    4...

    5...

    So the encryption key to the Internet is 1, 2, 3, 4, 5.

    Now, if you'll excuse me, I need to change the combination on my luggage for completely unrelated reasons.

  • by kheldan ( 1460303 ) on Friday July 08, 2016 @11:39AM (#52471807) Journal
    If stupid trends like what Putin wants continue, at some point there won't be and Internet anymore, all there'll be are Walled Gardens within national borders, never interconnected at all, all of them with their own peculiar set of rules dictated by technologically-incompetent politicians, and for the most part completely unsafe for anyone to use for any reason whatsoever -- except the governments of those Walled-garden countries, who will use the strongest encryption possible, forbidding it to anyone else for any reason. So much for the age of information! As usual, involving too many Humans in it is mucking it up so thoroughly that it might not be possible to save it.

Fast, cheap, good: pick two.

Working...