Why Lavabit Shut Down: interview with Ladar Levinson

by
Anonymous Coward
in legal on (#3MG)
Ladar Levinson has given an exclusive interview to the Guardian, discussing the saga that led to his decision to shut down Lavabit , the encrypted email provider that shut operations rather than betray the contents of users' inboxes to federal agents.

Metafilter provides some interesting, ensuing commentary . In particular, there's an interesting assertion in the comments, by "jacobian":
"The lesson we've learned, over and over again, from the Snowden revelations is that the NSA hasn't been able to actually break cryptography: choose a good algorithm and a strong key, and no amount of technical work will break that crypto. What does break a cryptosystem are people. People choose bad passwords. People practice bad computer hygiene."
Is that really all it takes? Because I get the distinct impression the NSA has broken Internet encryption protocols and is busy getting all up in your stuff. Is that just what they want you to think? What's the real deal on encryption on the Internet?
Reply 3 comments

They wouldn't need the keys if they had broken the math (Score: 2, Insightful)

by mth@pipedot.org on 2014-05-20 20:56 (#1T6)

Because I get the distinct impression the NSA has broken Internet encryption protocols and is busy getting all up in your stuff.
The fact that they pressured Lavabit to give them the private keys suggests that they couldn't just break the crypto using only their math skills.

Re: They wouldn't need the keys if they had broken the math (Score: 1)

by bryan@pipedot.org on 2014-05-20 21:37 (#1T7)

Not all SSL algorithms support PFS . If they did, at least forced private key revealing wouldn't compromise past sessions.

Re: They wouldn't need the keys if they had broken the math (Score: 1)

by zafiro17@pipedot.org on 2014-05-20 23:17 (#1T9)

Interesting and good point. First time I've even heard that acronym, but I'm not a crypto guy, either. Should be probably, the way things are going. Best I've got so far is Michael Lucas' GPG book (and it's not that good).