[opendtv] Re: F.C.C. Proposes Privacy Rules for Internet Providers - The New York Times
- From: "Manfredi, Albert E" <albert.e.manfredi@xxxxxxxxxx>
- To: "opendtv@xxxxxxxxxxxxx" <opendtv@xxxxxxxxxxxxx>
- Date: Sat, 19 Mar 2016 01:15:25 +0000
Craig Birkmaier wrote:
as my e-mail is encrypted when it leaves my devices and remains
encrypted until it reaches your e-mail server.
So first off, this is the explanation:
https://support.apple.com/en-us/HT202303
"iCloud secures your data by encrypting it when it's sent over the Internet,
storing it in an encrypted format when kept on server (review the table below
for detail), and using secure tokens for authentication. This means that your
data is protected from unauthorized access both while it is being transmitted
to your devices and when it is stored in the cloud."
So, within this iCloud, it is encrypted, *BY APPLE*. It's hardly secure, Craig.
Apple has access to it. It might be secure from "unauthorized" hosts on the
iCloud, but it is not secure end to end. You have no guarantee that someone
isn't reading it, either Apple, or when it goes outside the iCloud. You are
blindly trusting Apple and other ISPs to not snoop.
The same happens if an ISP claims to encrypt your email. You might naively
think, aha, they encrypt my email, so DPI won't work. Really? If the ISP is
encrypting that email, they can just as easily decrypt it. And never mind when
that email leaves the ISP network.
In short, unless you have laboriously set up your own email client, and those
you want to communicate with, your email is not secure. If you do encrypt
properly, end to end, then Apple, or the ISP, will not be able to snoop.
Under normal circumstances, you, the user, do not have control
over what is encrypted properly. Sure, if you go to your bank's
web site, you'll see the content is encrypted end to end. If
you go to a search engine, it won't be. Any site you browse
that does not require credit card payment will generally be
unencrypted.
All true.
Finally! So there you have it. Allowing ISPs to use deep packet inspection is
giving them carte blanche to tap into your broadband comms. Exactly like
wiretapping your telephone. If you happen to be using iCloud, perhaps your
local Cox ISP won't be able to use DPI effectively, but Apple can, as can any
other DPI-using ISP hosting any non-iCloud servers or subscribers you're
dealing with.
Bert
----------------------------------------------------------------------
You can UNSUBSCRIBE from the OpenDTV list in two ways:
- Using the UNSUBSCRIBE command in your user configuration settings at
FreeLists.org
- By sending a message to: opendtv-request@xxxxxxxxxxxxx with the word
unsubscribe in the subject line.
Other related posts: