09-08-2013, 18:18 #1
[EN] Provedores de e-mail seguro encerram operações nos EUA
Silent Circle, que tem entre seus clientes chefes de estado, alegou que está encerrando o serviço de e-mail como ação preventiva. O governo americano tem usado medidas questionáveis pretensamente visando a segurança nacional para obter e-mails de "pessoas de interesse". A forma encontrada para proteger os clientes de eventuais abusos de autoridades americanas foi a destruição do hardware usado para armazenar as mensagens criptografadas.
Two major secure e-mail service providers on Thursday took the extraordinary step of shutting down service.
A Texas-based company called Lavabit, which was reportedly used by Edward J. Snowden, announced its suspension Thursday afternoon, citing concerns about secret government court orders.
By evening, Silent Circle, a Maryland-based firm that counts heads of state among its customers, said it was following Lavabit’s lead and shutting its e-mail service as a protective measure.
Taken together, the closures signal that e-mails, even if they are encrypted, can be accessed by government authorities and that the only way to prevent turning over the data is to obliterate the servers that the data sits on.
Mike Janke, Silent Circle’s chief executive, said in a telephone interview late Thursday that his company had destroyed its server. “Gone. Can’t get it back. Nobody can,” he said. “We thought it was better to take flak from customers than be forced to turn it over.”
The company, in a blog post dated Friday, Aug. 9, said it had taken the extreme measure even though it had not received a search order from the government.
Ladar Levison, the owner of Lavabit, suggested — though did not say explicitly — that he had received a search order, and was opting to shut the service so as not to be “complicit in crimes against the American people.”
“After significant soul searching, I have decided to suspend operations,” he wrote. “I wish that I could legally share with you the events that led to my decision. I cannot. I feel you deserve to know what’s going on — the First Amendment is supposed to guarantee me the freedom to speak out in situations like this. Unfortunately, Congress has passed laws that say otherwise. As things currently stand, I cannot share my experiences over the last six weeks, even though I have twice made the appropriate requests.”
The gag order could refer to a secret court order from the Foreign Intelligence Surveillance Court or a National Security Letter. Both prohibit the recipient from saying anything about it.
Silent Circle, which has been in operation for less than a year, said it would continue its phone and text messaging service, which are encrypted end-to-end. E-mail, by its very nature, Mr. Janke said, “is within the reach of any government.”
“We’d considered phasing the service out, continuing service for existing customers, and a variety of other things up until today,” the company’s blog post continued. “It is always better to be safe than sorry, and with your safety we decided that the worst decision is always no decision.”
The announcements spread fast on social media, drawing praise, anxiety and donations to Lavabit’s legal defense fund.
Lavabit’s Facebook page had lit up with comments from frustrated, angry users. “please re-open the servers just that we can recover th info!!!” wrote one.
Mr. Levison described how his service worked in a lengthy post in 2009, saying that Lavabit had 140,000 users, including 70 companies. The security researcher Mikko Hypponen posted a link to his post on Twitter earlier Thursday.
The Electronic Frontier Foundation late Thursday reiterated its call for “more transparency” over government court orders for Internet users information.
“Lavabit’s ominous note and the lack of information about this case is especially concerning for users of large communication service providers like Facebook and Google that may well have been subject to similar pressure, and we hope they will continue to fight for the user in the face of government demands, even if not recognized for years,” it said in a blog post. “Moving forward, we need more transparency so the public can know and understand what led to a 10-year-old business closing its doors and a new start-up abandoning a business opportunity. Hopefully Congress will get concerned, especially when there are American jobs at stake. ”
Última edição por 5ms; 09-08-2013 às 18:23.
09-08-2013, 18:31 #2
Posted on August 9, 2013 by joncallas
To Our Customers
We designed our phone, video, and text services (Silent Phone and Silent Text) to be completely end-to-end secure with all cryptography done on the clients and our exposure to your data to be nil. The reasons are obvious — the less of your information we have, the better it is for you and for us.
Silent Mail has thus always been something of a quandary for us. Email that uses standard Internet protocols cannot have the same security guarantees that real-time communications has. There are far too many leaks of information and metadata intrinsically in the email protocols themselves. Email as we know it with SMTP, POP3, and IMAP cannot be secure.
And yet, many people wanted it. Silent Mail has similar security guarantees to other secure email systems, and with full disclosure, we thought it would be valuable.
However, we have reconsidered this position. We’ve been thinking about this for some time, whether it was a good idea at all. Today, another secure email provider, Lavabit, shut down their system lest they “be complicit in crimes against the American people.” We see the writing the wall, and we have decided that it is best for us to shut down Silent Mail now. We have not received subpoenas, warrants, security letters, or anything else by any government, and this is why we are acting now.
We’ve been debating this for weeks, and had changes planned starting next Monday. We’d considered phasing the service out, continuing service for existing customers, and a variety of other things up until today. It is always better to be safe than sorry, and with your safety we decided that the worst decision is always no decision.
Silent Phone and Silent Text, along with their cousin Silent Eyes are end-to-end secure. We don’t have the encrypted data and we don’t collect metadata about your conversations. They’re continuing as they have been. We are still working on innovative ways to do truly secure communications. Silent Mail was a good idea at the time, and that time is past.
We apologize for any inconvenience, and hope you understand that if we dithered, it could be more inconvenient.
To Our Customers | Silent Circle Blog
09-08-2013, 18:33 #3
Our Unique Story
Silent Circle’s team is a unique and eclectic mix of world-renowned cryptographers, Silicon Valley software engineers, German VoIP engineers, Latvian system analysts and former US Navy SEALs & British Special Air Service (SAS) security experts.
We are Silent Circle: a melting pot of talent founded upon a shared vision of bringing private and secure communications to the citizens of the world; an off-shore, international company with the goal of building the world’s first commercial custom-built encrypted communications network. This goal has included building our own security software suite and our own e-commerce platform, plus the creation of databases, security measures and internal software programs from the ground up, all with one fundamental principle in mind: SECURITY. We are putting a stake in the ground for your right to have private conversations and to conduct business without fear of compromise.
Combined, we are made up of an astrophysicist, an Internet Hall of Fame inductee, a Silver Star awardee, privacy advocates, British Special Forces communicators, a best selling author, celebrated software engineers, mathematicians, VoIP network inventors, a former SEAL sniper and one seeing-eye-dog named Sully.
We want to fight for your right to privacy. We are pushing back against the tide of surveillance. We don’t like oppressive regimes, indiscriminate wiretapping, big brother, data criminals, intellectual property theft, identity thieves or governments that persecute their citizens for saying or writing their opinions.
We understand the importance of “backing up our words with actions”, of an “awesome customer experience” and of your right – as a paying customer – to transparency. We are up front about who we are, what we have built and why it will change the way you communicate. We take these ideas seriously. We publish our source code for peer review. We believe in honest transparency, and protecting individual and business privacy. We will post the requests we get from Government, Law Enforcement and worldwide legal entities for users data. We feel strongly about telling you what we can and cannot protect you from upfront. We are a unique company made up of unique and passionate people. We know that we’ll have a target painted on us from day one – just ask Phil Zimmermann what that feels like. Finally, we promise to continually improve our products, our proprietary network and your experience of our service. You are our paying customer and our allegiance is to you. Period. Get in the Circle.
Our Unique Story | Silent Circle Blog
09-08-2013, 18:37 #4
Se esse pessoal jogou a toalha, já viu o clima que está nos EUA ...
09-08-2013, 18:45 #5
- Data de Ingresso
- Oct 2010
- Rio de Janeiro
Ah, se banda aqui não fosse tão cara...
09-08-2013, 18:59 #6
Aqui a Serasa Experian pega os dados direto de bancos de dados oficiais. Ninguém vai levar fé. Mas quem sabe o Paraguai... la garantia soy yo.
Hoje, eu ficaria entre Ucrania e Irã para hospedar o serviço
Última edição por 5ms; 09-08-2013 às 19:07.
09-08-2013, 19:22 #7
- Data de Ingresso
- Sep 2010
10-08-2013, 00:56 #8
Deutsche Telekom, WEB.DE and GMX launch initiative "email made in Germany"
Automatic encryption of data on all transmission paths
Secure storage on the proposition of Germany
Marking safe addresses
Berlin, 9 August 2013혼다 Deutsche Telekom and United Internet launched an industry initiative to secure email communication in Germany. With "email made in Germany" the partners put a further level of security, which for the first time enables automatic encryption of data on all paths users of GMX, T-Online.de, WEB.DE and assures that the data only in accordance with German data protection are processed. The encryption occurs automatically by the provider, so that technical expertise or additional work are not required on the part of the customer. All data is stored in secure data centers in Germany. Also introduces a labelling E-Mail address, so that users from sending mail to know whether the selected recipient addresses conform to the safety standards of the mail network.
WEB.DE, GMX and T-Online is encrypted to starting immediately the emails between their data centers. The path from the device to the mail server is already encrypted for all customers that use a mail application of the partner or have enabled in your E-Mail program (E.g. Outlook) SSL encryption. By early 2014, the partners for safety reasons be transport consistently is SSL encrypted mails, so that traffic to all paths in the mail is safe.
"The recent reports of possible access to communications data have greatly unsettled the Germans. With our initiative, we take into account these concerns and overall safer E-Mail communication in Germany. The protection of the private sphere is a great asset,"says René Obermann, CEO of Deutsche Telekom AG.
"Due to our strong common customer base the initiative provides secure communication two-thirds of the German Gmail users as a whole.""Email made in Germany" is open to other providers who are committed to the standards of our initiative. In addition to encryption and identification of emails, a third corner point is the data processing and storage in Germany. This ensures the validity of the strict German data protection", says Ralph Dommermuth, CEO of United Internet AG.
"Email made in Germany" is to create an orientation as well as the technical protection, where communication via secure transmission takes place. Therefore secure addresses are in accordance with the surfaces of mail applications of GMX, T-Online.de, WEB.DE of "email made in Germany" standards today marked with a security seal. Information to the industry initiative is available on the Internet at https://www.e-mail-made-in-germany.de .
10-08-2013, 01:04 #9
- Data de Ingresso
- Oct 2010
- Rio de Janeiro
Salsichões Brancos! Mas quão fácil deve ser invadir a Alemanha em pleno 2013/2014... Não tem mais o Adolfão lá pra proteger!
10-08-2013, 12:02 #10
- Data de Ingresso
- Sep 2010
mas considerando o site só e apenas em Alemão, é mais um Kemeda que não podemos usar?