Wednesday, March 22, 2017

internet privacy

Matt and I are doing a small workshop on internet privacy this weekend, which I've been meaning to blog about previously, so that seems like a good excuse.

The idea that we should be ok with broad-stroke internet surveillance as long as we have nothing to hide is one of the most ridiculous ideas that I hear propagated by large numbers of reasonable people. Legend* credits Bruce Schneier with the best way of putting it:
Guy defending surveillance: "Why should I care about internet surveillance? I have nothing to hide!"
Bruce Schneier: "What's your wife's favorite position?"
But if that isn't obvious:
  1. Privacy is a core value enshrined in the constitution**, for self-evident reasons. I don't want to live in a glass house and I don't want anyone reading over my shoulder for the 12 hours a day I spend on my computer, not because I'm a criminal or a terrorist but because privacy is a valuable thing in and of itself. 
  2. We don't live in an ideal world where laws and black and white and perfectly enforced. Just as you should never make any statement to police even if you are completely innocent, you should expect any information collected about you will be used against you in whatever distorted form is necessary as soon as it's convenient for anyone who has access to it. This is not paranoia. Elaborating with examples*** would lead me down a day-long rabbithole so you can look them up yourself if you're skeptical; you won't have to search long. 
  3. You should care for altruistic reasons. Right now usage of tor is small enough that its mere usage legally gives the U.S. (and other) governments reason enough to surveil increase their surveillance of you. There are millions of people in the world who do have something to hide for very good reasons, and normalizing the usage of anonymizing and/or encrypting technology makes it easier for them to do so.
  4. Even if you are an exhibitionist who wants to live in a glass house and broadcast your internet browsing activity in Times Square, surely you don't think this should be required. Especially without consent or notification that it's happening. Rights atrophy if not exercised and the right to privacy is being actively attacked, so stand up for it.
So with that said, here are some tools you should ALL be using****:
  1. Signal: This is a drop-in replacement for your text messaging app that works exactly like your normal text messaging app. But, if the person you're texting is also using signal, your communication will be private (encrypted and authenticated). You can also use the chrome extension to talk to your signal contacts from your computer.
  2. Privacy Badger: A browser extension that prevents websites (mostly advertisers) from tracking your browsing activity. If (or should I say when) you've been creeped out by websites like facebook knowing about something you were reading about on a completely different site, it's because they are tracking you and storing your data without your permission. Privacy badger forces them to stop. You can easily view and change detailed settings.
  3. HTTPS everywhere: A browser extension that forces websites to use secure (authenticated and encrypted) communication protocols whenever possible.
  4. Syncthing: A replacement for dropbox with encrypted file sharing. Data stored by dropbox is unencrypted and therefore vulnerable to misuse or theft. Syncthing is a replacement for dropbox that encrypts and authenticates all file transfers. Files are sent directly from one computer to another and are not stored by any third party, so 1) both computers need to be online at the same time for file transfer to be completed, and 2) there is no limit on how much data you can share! It's easy to use and also allows you to customize how each device saves backup versions of files.
  5. Tor browser: A web browser that disguises the source of internet activity by sending it through a random network of computer around the world. This prevents website from knowing who you are and it prevents your ISP from monitoring what you are looking at. Browsing is slowed down, but I try to at least use it for casual web surfing (see 3 above).
You can read more at ssd.eff.org or prism-break.org.

~~~~~~~

* I can't find a source; let me know if you have one.

** Unfortunately not well enough to be robust to modern technology...

*** I thought this was a particularly hard-hitting one, though.

**** And here is the flyer Matt and I made to hand out. It is in the public domain so please use it however you like. You can email me for the svg files.