Saturday, August 10

Facebook implementing Advanced HTTPS to minimize NSA Interception

For years the National  Security Agencyhas successfully shielded its surveillance programs from any real public scrutiny. There have been a lot of news stories about NSA surveillance programs following the leaks of secret documents by Edward Snowden.

        


We have learned that the NSAis collecting millions of Americans’ phone records on adaily basis, that it operates a program called PRISMinvolving the surveillanceof Internet communications, including Email,Facebook posts, and instant messages.

The NSA is allowed to record the conversations of non-Americans without a specific warrant for each person monitored, if at least one end of the conversation isoutside of the U.S. It is also allowed to record the communications of Americans ifthey are outside the U.S. and the NSA first gets a warrant for each case.


Because Facebook is using outdated Web encryption, which cryptographers say the NSA could penetrate reasonably quickly after intercepting the communications using master key.
But now, Facebook is working on implementing an security measure that would would make eavesdropping on your encrypted traffic with the website extremely difficult. Facebook uses encryption keys with a length of only 1024 bits with HTTPS connection and now planning to change the length of the keys on all of its SSL  certificatesto 2048 bits.


SSL is the encryption system that’s used to secure Web transmissions between clients and servers. The change in key length makes it much harder for an attacker to useknown methods to break the key.


This new technique is an advanced form of HTTPS that throws away the master key and essentially makes a new key every time someone connects.


The technique has been around yet very few websitesuse it and  Google implemented this in 2011 i.e Web companies including Apple, Microsoft, Twitter, Dropbox, and even Myspace have switched to exponentially more secure 2048 bit keys.


Metadatais a sensitive topic because there is great potential for abuse.


Thanks

No comments:

Post a Comment

Enter your Comment...