Could We Ban Encryption? - Computerphile

Computerphile · Intermediate ·🔐 Cybersecurity ·10y ago

Key Takeaways

The video discusses the reality of banning encryption with Professor Ross Anderson, covering the history and implications of such a ban, and referencing concepts like public key cryptography and the work of Alan Turing.

Full Transcript

well you can't realistically ban encryption because it's the DCT Tech that holds online systems together um it's how you protect your Communications from your browser on your laptop or on your mobile phone to your bank or to a shop where you're shopping it's not just that if you use a prepayment electricity meter for example and you put in a 20-digit magic number when you've gone and bought 20 quids worth of more uh juice then that's cryptography that is enabling you to take that transaction from the shop where you spent the money to the meter where you're going to burn the electricity it's used in hundreds and hundreds of different ways to just hold hold things together encryption we've got politicians at the moment saying we need to get rid of it or be able to be read by our security services or whatever what's the reality of of how that could work or what would happen the reality is that a little bit over 20 years ago there was another attempt to ban cryptography because just after Bill Clinton get elected president of the USA the NS went in to see him and they made the sales pitch that he should bring in key escroll the duty on everybody who uses cryptography to give a copy of the cryptographic key to the NSA and they tried to introduce something called the Clipper chip which had a government backdoor key baked into it but a friend of mine Matt blae brought the Clipper chip which caused Great embarrassment and humiliation to the NSA so they can back with other proposals one they had in Britain U was that we should have to use trusted third parties and that if you're going to use cryptography you would have to have the key certified by someone like you know verisign or Barkley's bank or um BT who would keep a spare copy for the cops in case it was needed to decrit your stuff and we had all sorts of fights about this for example just after Tony Blair got elected he went back on a pre-election promise he promised that he wouldn't ban cryptography and then algor went and talked to him and he changed his mind and so what we did in a hurry was to print the Thousand or so most important cryptographic keys on the internet into a book and I've got a copy here and this is the global internet trust register so we went to see Chris Smith who was the culture secretary and we said Chris your government's about to ban books it's about to ban my book here and we showed them all the cryptographic key material in it we said you're the minister for books what are you going to do about this that at least got it on to the agenda of the cabinet meeting and it didn't just go through on the and there was a huge big Row in kafuffle and it eventually get handed off by DTI who' been pushing it to the home office who were prepared to push it a bit more brutally and it ended up becoming the regulation of investigatory poers uh two act 2000 and in the end all the ACT requires in respect of cryptography is that if the police want to decrypt something um and they believe that you've got the key for it then a chief Constable can sign an order for you to do that decryption and um this was where we thought we had um you know got an agreement on how cryptography and policemen could live happily together now all of a sudden uh the cops are back and they're asking for more so just just to remind me again so that was 20 years ago that was that's right how do they go 20 years and think okay right hang on we'll have another crack at this I wonder I think what's happening in the USA is that FBI director James KY wants to scare apple and Facebook to not use cryptography uh as pervasively and as competently as they do in products like what's Happ in FaceTime um here in Britain I think that David Cameron's just jumping on the bandwagon and he's adopting this in order to look tough and Strat and um appear to be tough and Terror and tough on the causes of Terror uh but in reality um a law like this isn't going to happen because it would have to happen in America for it to have any effect and Congress in America can't make laws at the moment so it's BAS basically Bluff and Bluster and posturing between um American Tech Titans on the one hand and American intelligence agencies on the other all of them seem to be forgetting that even the most mundane of transactions relies on this encryption so it's not just a matter of um transactions relying on encryption in many cases the tech Majors have brought in encryption in order to avoid the problems that are being caused by law enforcement itself now if you're Google one of the big problem problems you face um is that a family court in India um may serve you an order telling you to hand over the Gmail of somebody in Canada who's never been to India and putting on a lifetime secrecy order now how can you simultaneously give believable assurances of privacy to your users in Canada and also employ engineers in India well um what the big firms do at the moment is they just insist that their lawyers in California are involved in approving every single decision to hand over stuff to law enforcement agencies and the police really don't like that the police in Britain for example really don't like the fact that they've got to phone up Facebook's call center of their abuse team in Ireland and say please in order to get access to stuff they would rather be able to serve warrants and tell people to shut up and just hand it over but that's not going to happen in a globalized world you can't have a world where 200 odd countries police forces can all have surreptitious access access your stuff without you ever hearing about it so if you're a tech major how do you deal with this well quite simply you encrypt the traffic end to end and that means that if MI5 comes up with a warrant or the Russian secret police or the Chinese people's Security Police or whatever and they say hand over Ross Anderson stuff um then Facebook or Apple or Google can just shrug and say search us we don't have it that's a cipher text it's only the end points of the key this episode of computer file was brought to you by Squarespace you can start building your website today at squarespace.com if you enter the offer code computer file you'll get 10% off their plans start at $8 a month and if you sign up for a year you'll get a free domain so start your free trial today at squarespace.com you don't even need to put in your credit card details and if you're a real computer file you might want to check out the developers platform developers. squarespace.com just remember that code computer file for 10% off you want to send me a message I don't have to share anything with you you just know my public key encrypt something with my public key send it to me you know I can decrypt it

Original Description

10% off at Squarespace: http://squarespace.com/computerphile Secret services want to read people's communications, politicians talk about terrorists, but what's the reality of banning encryption? Ross Anderson, Professor of Security Engineering at the Computer Laboratory, University of Cambridge explains how history repeats itself. The Dress: https://youtu.be/Tw0PlGpaqy4 The VR Cave: https://youtu.be/STMcWUtQr1Y Public Key Cryptography: https://youtu.be/GSIDS_lvRv4 Alan Turing and Enigma: http://www.youtube.com/playlist?list=PLzH6n4zXuckodsatCTEuxaygCHizMS0_I http://www.facebook.com/computerphile https://twitter.com/computer_phile This video was filmed and edited by Sean Riley. Computer Science at the University of Nottingham: http://bit.ly/nottscomputer Computerphile is a sister project to Brady Haran's Numberphile. More at http://www.bradyharan.com
Watch on YouTube ↗ (saves to browser)
Sign in to unlock AI tutor explanation · ⚡30

Playlist

Uploads from Computerphile · Computerphile · 0 of 60

← Previous Next →
1 Follow the Cookie Trail - Computerphile
Follow the Cookie Trail - Computerphile
Computerphile
2 EXTRA BITS - Follow the Cookie Trail - Computerphile
EXTRA BITS - Follow the Cookie Trail - Computerphile
Computerphile
3 Musical Floppy Drives - Computerphile
Musical Floppy Drives - Computerphile
Computerphile
4 The Hair Algorithm - Computerphile
The Hair Algorithm - Computerphile
Computerphile
5 Getting Sorted & Big O Notation - Computerphile
Getting Sorted & Big O Notation - Computerphile
Computerphile
6 Quick Sort - Computerphile
Quick Sort - Computerphile
Computerphile
7 Hyper History and Cyber War - Computerphile
Hyper History and Cyber War - Computerphile
Computerphile
8 Entropy in Compression - Computerphile
Entropy in Compression - Computerphile
Computerphile
9 Original Elite on the BBC B - Computerphile
Original Elite on the BBC B - Computerphile
Computerphile
10 IP Addresses and the Internet - Computerphile
IP Addresses and the Internet - Computerphile
Computerphile
11 A Career in Video Games - Computerphile
A Career in Video Games - Computerphile
Computerphile
12 Error Detection and Flipping the Bits - Computerphile
Error Detection and Flipping the Bits - Computerphile
Computerphile
13 Programming BASIC and Sorting - Computerphile
Programming BASIC and Sorting - Computerphile
Computerphile
14 Birthplace of the World Wide Web - Computerphile
Birthplace of the World Wide Web - Computerphile
Computerphile
15 Punch Card Programming - Computerphile
Punch Card Programming - Computerphile
Computerphile
16 Programming Paradigms - Computerphile
Programming Paradigms - Computerphile
Computerphile
17 CERN Computing Centre (and mouse farm) - Computerphile
CERN Computing Centre (and mouse farm) - Computerphile
Computerphile
18 Error Correction - Computerphile
Error Correction - Computerphile
Computerphile
19 Home-Made Code - Computerphile
Home-Made Code - Computerphile
Computerphile
20 Security of Data on Disk - Computerphile
Security of Data on Disk - Computerphile
Computerphile
21 Gesture Controls - Computerphile
Gesture Controls - Computerphile
Computerphile
22 How Intelligent is Artificial Intelligence? - Computerphile
How Intelligent is Artificial Intelligence? - Computerphile
Computerphile
23 Encryption and Security Agencies - Computerphile
Encryption and Security Agencies - Computerphile
Computerphile
24 Virtual Machines Power the Cloud - Computerphile
Virtual Machines Power the Cloud - Computerphile
Computerphile
25 Hacking Websites with SQL Injection - Computerphile
Hacking Websites with SQL Injection - Computerphile
Computerphile
26 How Huffman Trees Work - Computerphile
How Huffman Trees Work - Computerphile
Computerphile
27 Cracking Websites with Cross Site Scripting - Computerphile
Cracking Websites with Cross Site Scripting - Computerphile
Computerphile
28 Cloud Computing (Cloudy with a Chance of Pizza) - Computerphile
Cloud Computing (Cloudy with a Chance of Pizza) - Computerphile
Computerphile
29 Texting Cabbage with a Recorder - Computerphile
Texting Cabbage with a Recorder - Computerphile
Computerphile
30 Hashing Algorithms and Security - Computerphile
Hashing Algorithms and Security - Computerphile
Computerphile
31 How YouTube Works - Computerphile
How YouTube Works - Computerphile
Computerphile
32 How NOT to Store Passwords! - Computerphile
How NOT to Store Passwords! - Computerphile
Computerphile
33 A New Golden Age of Video Games - Computerphile
A New Golden Age of Video Games - Computerphile
Computerphile
34 A Universe of Triangles - Computerphile
A Universe of Triangles - Computerphile
Computerphile
35 Cross Site Request Forgery - Computerphile
Cross Site Request Forgery - Computerphile
Computerphile
36 The True Power of the Matrix (Transformations in Graphics) - Computerphile
The True Power of the Matrix (Transformations in Graphics) - Computerphile
Computerphile
37 The Great 202 Jailbreak - Computerphile
The Great 202 Jailbreak - Computerphile
Computerphile
38 EXTRA BITS - Printing and Typesetting History - Computerphile
EXTRA BITS - Printing and Typesetting History - Computerphile
Computerphile
39 Triangles to Pixels - Computerphile
Triangles to Pixels - Computerphile
Computerphile
40 The Problem with Time & Timezones - Computerphile
The Problem with Time & Timezones - Computerphile
Computerphile
41 The Visibility Problem - Computerphile
The Visibility Problem - Computerphile
Computerphile
42 Lights and Shadows in Graphics - Computerphile
Lights and Shadows in Graphics - Computerphile
Computerphile
43 The Penguin Barcode - Computerphile
The Penguin Barcode - Computerphile
Computerphile
44 Typesetters in the '80s - Computerphile
Typesetters in the '80s - Computerphile
Computerphile
45 The Font Magicians - Computerphile
The Font Magicians - Computerphile
Computerphile
46 The Little Mac with the Big Bite - Computerphile
The Little Mac with the Big Bite - Computerphile
Computerphile
47 EXTRA BITS - More on the Original Mac at 30 - Computerphile
EXTRA BITS - More on the Original Mac at 30 - Computerphile
Computerphile
48 XP to Ubuntu with an 8yr old Hacktop - Computerphile
XP to Ubuntu with an 8yr old Hacktop - Computerphile
Computerphile
49 EXTRA BITS - Hacktop Real-Time Boot Comparison - Computerphile
EXTRA BITS - Hacktop Real-Time Boot Comparison - Computerphile
Computerphile
50 EXTRA BITS - Making a Bootable USB in Linux - Computerphile
EXTRA BITS - Making a Bootable USB in Linux - Computerphile
Computerphile
51 EXTRA BITS - Installing Ubuntu Permanently - Computerphile
EXTRA BITS - Installing Ubuntu Permanently - Computerphile
Computerphile
52 The Dawn of Desktop Publishing - Computerphile
The Dawn of Desktop Publishing - Computerphile
Computerphile
53 What is Bootstrapping? - Computerphile
What is Bootstrapping? - Computerphile
Computerphile
54 Reverse Polish Notation and The Stack - Computerphile
Reverse Polish Notation and The Stack - Computerphile
Computerphile
55 Home-Made Z80 Retro Computer - Computerphile
Home-Made Z80 Retro Computer - Computerphile
Computerphile
56 Should Everybody Learn to Code? - Computerphile
Should Everybody Learn to Code? - Computerphile
Computerphile
57 Programming in PostScript - Computerphile
Programming in PostScript - Computerphile
Computerphile
58 Heartbleed, Running the Code - Computerphile
Heartbleed, Running the Code - Computerphile
Computerphile
59 YouTube's Secret Algorithm - Computerphile
YouTube's Secret Algorithm - Computerphile
Computerphile
60 YouTube Search & Discovery - Computerphile
YouTube Search & Discovery - Computerphile
Computerphile

This video explores the feasibility and consequences of banning encryption, delving into historical context and expert insights from Professor Ross Anderson.

Key Takeaways
  1. Understand the basics of encryption and its role in cybersecurity
  2. Analyze the historical context of encryption and its development
  3. Evaluate the implications of banning encryption on cybersecurity and individual privacy
💡 Banning encryption would have significant and far-reaching consequences for both cybersecurity and individual privacy, and understanding its history and development is crucial for informed decision-making.

Related Reads

📰
Como impedir que um plugin de IA roube seus dados
Learn how to prevent AI plugins from stealing your data and why it matters for your online security
Dev.to AI
📰
Bitwarden vs 1Password: Which Password Manager Should You Use?
Compare Bitwarden and 1Password to choose the best password manager for your needs
Dev.to · stack_versus
📰
I put a WAF on the front door. The spam wasn't using the front door.
Learn why a Web Application Firewall (WAF) may not be enough to prevent spam and how to take additional measures to secure your site
Dev.to · Jun
📰
SSH Port 22: Custom Ports, Port Forwarding Security, and Production SSH Hardening
Learn how to secure your SSH connection by moving off port 22, disabling root login, and implementing port forwarding security
Dev.to · Matt Keib, Tech Ed
Up next
Stop Hackers Getting Into Your Website By Updating Old Plugins
Josiah Roche — Google Ads + SEO Training
Watch →