Why Outlawing Encryption Is Wrong - InformationWeek

InformationWeek is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

IoT
IoT
Government // Cybersecurity
Commentary
10/22/2014
08:06 AM
Connect Directly
LinkedIn
Twitter
RSS
50%
50%

Why Outlawing Encryption Is Wrong

Putting data encryption solely into the hands of government employees won't prevent bad things from happening -- and it might encourage wrongdoing.

the ability of citizens and businesses to secure their data in such a way that meets the approval of credible global security experts. That means no back doors.

Slippery slope
As more and more of our life goes digital, those of us who are skilled at translating manual processes into automated ones understand what back-door, automated access to our digital lives would look like.

Your photos will be instantly accessible. Jennifer Lawrence recently had firsthand experience with the risks that all Americans will have: Hackers were able to access (and then distribute) her private photos, created for her boyfriend and placed on Apple's iCloud, because of poor security.

Your love notes, similarly so. Your "private" journal, where you write ugly thoughts that nobody else should ever read -- also accessible.

Where does it end? The answer is that it doesn't. And just as law enforcement doesn't have back-door, automated access to your personal life today, it shouldn't have back-door, automated access to your business life, either.

Criminals favored
Thankfully, open-source encryption software without back doors has existed for a long time. If we outlaw data encryption and replace it with something that has a back door, we basically declare that law-abiding citizens won't have privacy, but criminals and other malcontents will.

The FBI's Comey says unchecked encryption could lead us to a place in which murderers, child abusers, and other criminals roam free. So are we to believe that murderers and child abusers won't use freely available open-source encryption software to cover their tracks if it's against the law to use strong encryption? Please. The only thing that outlawing data encryption will do is take it out of the hands of law-abiding citizens.

I'm sympathetic to the notion that law enforcement officials need a range of tools to catch the bad guys. And they continue to add new tools: DNA analysis, better systems to search fingerprints and perform forensics, predictive intelligence software, geographic information systems, log correlation, metadata… the list goes on.

Adding access to all US-based encrypted data is tantamount to enabling physical searches without warrants. Proponents will say that law enforcement will use due process, but that's not a given. People notice when a police officer walks into their house and reads their journal. It's a lot harder to notice an officer using a back door for nefarious purposes.

There's no reason to assume that law enforcement officials will be less effective simply because they must stick to tools legally at their disposal. And following Comey's call to outlaw encryption will lead to a police state that most law enforcement officials won't be comfortable with, once they realize the true impact on society.

You've done all the right things to defend your organization against cybercrime. Is it time to go on the offensive? Active response must be carefully thought through and even more carefully conducted. This Dark Reading report examines the rising interest in active response and recommends ways to determine whether it's right for your organization. Get the new Identifying And Discouraging Determined Hackers report today (free registration required).

Jonathan Feldman is Chief Information Officer for the City of Asheville, North Carolina, where his business background and work as an InformationWeek columnist have helped him to innovate in government through better practices in business technology, process, and human ... View Full Bio
We welcome your comments on this topic on our social media channels, or [contact us directly] with questions about the site.
Previous
2 of 2
Next
Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
<<   <   Page 2 / 2
glipham007
100%
0%
glipham007,
User Rank: Apprentice
10/22/2014 | 3:01:34 PM
Agreed
Who watches the Watchmen?
Pablo Valerio
100%
0%
Pablo Valerio,
User Rank: Ninja
10/22/2014 | 11:07:21 AM
Re: Agreed
I cannot agree more! I have been following this issue for many years and, as European, I believe that privacy needs to be protected over the need of accessing information.

Recently the EFF responded to James B. Comey saying that "the FBI is trying to convince the world that some fantasy version of security is possible—where "good guys" can have a back door or extra key to your home but bad guys could never use it"
Laurianne
100%
0%
Laurianne,
User Rank: Author
10/22/2014 | 10:18:13 AM
Agreed
I agree with JF's point-of-view: Too much power, too few safeguards. We need to think hard about what tools, electronic and physical, should be with law enforcement in the first place.
<<   <   Page 2 / 2
News
Top 10 Data and Analytics Trends for 2021
Jessica Davis, Senior Editor, Enterprise Apps,  11/13/2020
Commentary
Where Cloud Spending Might Grow in 2021 and Post-Pandemic
Joao-Pierre S. Ruth, Senior Writer,  11/19/2020
Slideshows
The Ever-Expanding List of C-Level Technology Positions
Cynthia Harvey, Freelance Journalist, InformationWeek,  11/10/2020
White Papers
Register for InformationWeek Newsletters
Video
Current Issue
Why Chatbots Are So Popular Right Now
In this IT Trend Report, you will learn more about why chatbots are gaining traction within businesses, particularly while a pandemic is impacting the world.
Slideshows
Flash Poll