[Bglug] You have till Dec 15 to tell Canada that lowering national cyber security is a bad idea

Logan Streondj streondj at gmail.com
Tue Dec 6 22:45:41 EST 2016


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Canada wants to lower encryption standards, put in backdoors, force
keeping of arbitrary user data, so it would be easier for foreign
governments and exploiters to take advantage of Canadians, steal their
personal information, emails which may include financial records, and
other private and personal information enough to steal identities.

We have until December 15 to tell them that this is a BAD IDEA!
(link to Canada's Online Consultation at the bottom)

Motivation:

They think it is a matter of National Security that they be given easy
access to the above information, but they forget that it is a National
Cyber Security risk, for that information to be easily available.

My suggestion was that Canada needs a Cyber Security task force, with
high end GPU or ASIC hardware for password cracking, this will give
them all the access they need to whatever they want. Human minds
aren't very good at remembering passwords, so they might just forget
when interrogated.

On the other hand 80+% of people have weak passwords,, so should be
easy to crack.
https://blog.dashlane.com/study-reveals-extremes-people-go-online-protec
tion/

Also there should be a "building code" for cyber security, minimum
standards before any sensitive user data is allowed to be kept.

Because there are over 70 thousand hacked servers available cheap
online, some of them government and otherwise
https://securelist.com/blog/research/75027/xdedic-the-shady-world-of-hac
ked-servers-for-sale/

Basic Subscriber Info ( name, address, telephone number and email
address) can be enough to get into many accounts, and with a few other
pieces (which may be stored alongside) would be sufficient to steal an
identity.

For example once a criminal has that basic information,
It only takes 6 seconds for a criminal to get accurate credit card
information and security code of a target:
http://www.telegraph.co.uk/news/2016/12/02/hacked-just-six-seconds-crimi
nals-need-moments-guess-card-number/

Encryption is essential for securing everyday interactions on the
internet. For instance Hillary Clinton didn't encrypt her email
exchanges, and largely because of it lost the election and almost went
to prison.

Internet exploiters are getting increasingly more sophisticated and
even took down the East Coast recently,
https://www.wired.com/2016/10/internet-outage-ddos-dns-dyn/ So having
good Cyber Security is essential, weakening it to make it easier to
spy on people is a VERY BAD IDEA.

Canada's Online Consultation:

https://www.publicsafety.gc.ca/cnt/cnslttns/ntnl-scrt/thm09-en.aspx

I'm also planning on scheduling a meeting with my MP about this, I
recommend you at least write to them.

- -- 
Logan Streondj,
A dream of Gaia's future.
website: http://joyfullifestyle.ca
twitter: https://twitter.com/streondj

You can use encrypted email with me,
how to: https://emailselfdefense.fsf.org/en/
key fingerprint:
BD7E 6E2A E625 6D47 F7ED 30EC 86D8 FC7C FAD7 2729
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
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=8H9d
-----END PGP SIGNATURE-----




More information about the Group mailing list