http://www.youtube.com/watch?v=_ABvu1KoE0k


http://www.youtube.com/watch?v=xyHnOCDewuQ

This is not law yet but the gov't is working on it. It is something you should be very aware of if it comes into effect.

Question for MP.Do these commonly available "tunnels" prevent easy access?Known as a VPN I believe?

Yes as long as the machine you're doing it from is secure.
Edit (and IP not from within Canada). The IP you'll have is from the VPN network you're on. I can't elaborate further unfortunately as I can end up in hot water. But the setup is the most important. There are a handful of ways around this. I figure when and if the law passes, there will be a few sites tutoring people how to get around it.


Security mechanisms

Secure VPNs use cryptographic tunneling protocols to provide confidentiality by blocking intercepts and packet sniffing, allowing sender authentication to block identity spoofing, and provide message integrity by preventing message alteration.

Secure VPN protocols include the following:

IPsec (Internet Protocol Security) was developed by the Internet Engineering Task Force (IETF), and was initially developed for IPv6, which requires it. This standards-based security protocol is also widely used with IPv4. Layer 2 Tunneling Protocol frequently runs over IPsec. Its design meet the most security goals: authentication, integrity, and confidentiality. IPsec functions by summarizing an IP packet in conjunction with a surrounding packet, and encrypting the outcome.
Transport Layer Security (SSL/TLS) can tunnel an entire network's traffic, as it does in the OpenVPN project, or secure an individual connection. A number of vendors provide remote access VPN capabilities through SSL. An SSL VPN can connect from locations where IPsec runs into trouble with Network Address Translation and firewall rules.
Datagram Transport Layer Security (DTLS), is used in Cisco's next-generation VPN product, Cisco AnyConnect VPN, to solve the issues SSL/TLS has with tunneling over UDP.
Microsoft Point-to-Point Encryption (MPPE) works with their Point-to-Point Tunneling Protocol and in several compatible implementations on other platforms.
Microsoft introduced Secure Socket Tunneling Protocol (SSTP) in Windows Server 2008 and Windows Vista Service Pack 1. SSTP tunnels Point-to-Point Protocol (PPP) or Layer 2 Tunneling Protocol traffic through an SSL 3.0 channel.
MPVPN (Multi Path Virtual Private Network). Ragula Systems Development Company owns the registered trademark "MPVPN".[2]
Secure Shell (SSH) VPN -- OpenSSH offers VPN tunneling to secure remote connections to a network or inter-network links. This should not be confused with port forwarding. OpenSSH server provides a limited number of concurrent tunnels and the VPN feature itself does not support personal authentication.

The net will be changing dramatically soon. In the US they are trying to set up DNS blocks (firewalls) like China has. In essence block the whole country from accessing a site that is put behind the firewall. Target is supposedly copyright infringement sites but it'll encompass everything they don't want people to have access to.

On a side note: Does anyone know what the Canadian version of Carnivore (now NarusInsight) is called? I stumbled across it a few years ago from a news article and I can't find anything about it again. I know the computers are situated in Ottawa. Using them in conjunction with lawful access laws will be a very effective method for LE. Data packets contain originating IP and destination IP. They target all IP's hitting a specific destination (i.e. site) then use lawful access laws to get who is behind the ips and so on. For those that aren't aware of this possible new law, it may be wise to keep yourself informed.

I believe I have an article concerning this at home.Embedded Computing mag I think.

The only other thing I know about using the tunnel is erasing your cookies before using it.I don't think we need these laws at all.If LE believe you are a terrorist they will have some kind of evidence to support a court ordered surveillance .

that is pretty effed up. seems unnecessary and overly intrusive.

im guessing this legislation would render encrypted email sites (like safe-mail) pretty much useless, correct?

They could monitor your usage from local service providers.Basically,they could collect all addys that visit a site and go from there.Just think how much time will be spent monitoring the population.This after the promises Stockwell Day made.They dismantle the gun registry(after copying the files no doubt) to put people at ease and then do this.Seeds of another Reich.This makes me seriously reconsider my support for the conservatives.

Those that voted for Harper asked for this, I am not a conservative supporter but I support this legislation. Harper is for a police state, if you don't want that don't vote for him.

There is a legitimate need for this that isn't presented in that youtube video. The Canadian Criminal Code is outdated and High Tech Crime investigators are at a serious disadvantage.

Nowadays any one can use free programs that offer proxy chaining to hide their IP, free encryption software, virtual machines embedded in virtual machines with hidden encrypted partitions... The software is free, there are tutorials out there and you don't have to be an expert anymore to get this to work.

People are nervous and upset because they think the state will be spying on them, the state doesn't have the resources or the interest to do that. They are severely under-staffed and under-funded. High Tech Investigators spend most of their time investigating child sexual exploitation and supporting traditional crimes like Murders, Sexual Assaults, Drugs (not AAS) that have an electronic evidence component. They don't even have the resources to investigate Hacking most of the time.

Policing is based on priorities, they can't do everything so they focus on the most vicious stuff so don't worry no ones going to be snooping on you to find out which songs you are downloading or what sort of porn you are browsing unless of course it's contraband porn.

Police need these laws to stop pedophiles which are the most technically sophisticated criminals out there, that's the truth. If you aren't breaking any laws you have nothing to worry about.

If you are downloading copyrighted songs/movies and not uploading them you aren't doing anything criminal in Canada. You can still be sued civilly by the parties you are infringing on but Canadian authorities have no interest in helping them with their civil lawsuits.

For the record I am not a COP or a NARC.

^^ yes this part I understand. I do not want to see any massive fire walls erected however that automatically sensor content online. That is completely unnecessary and seemingly unconstitutional.

the first video seemed a bit too Pro NDP for my liking.

The gov could stop outside news organizations from being accessed.I'm sure child exploitation is a priority,from my understanding from a tech article they can already trace visitors to sites that deal with child porn.Increase the penalties.With this law any politician or gov official could express a concern to a friendly cop,to start looking into the lives of people and abuse the info.So they aren't looking for aas now?That could change quick.

tor

tor

http://en.wikipedia.org/wiki/Tor_(anonymity_network)

Apparently info can be gleaned.

I believe I have an article concerning this at home.Embedded Computing mag I think.

The only other thing I know about using the tunnel is erasing your cookies before using it.I don't think we need these laws at all.If LE believe you are a terrorist they will have some kind of evidence to support a court ordered surveillance .

Did the article mention the name of the program?

I will look it up when I get home.

Here is one article,it contains a reference to the earlier one which I cannot access for some reason.Calea.

http://pdf.cloud.opensystemsmedia.com/advancedtca-systems.com/SftwreCorner.Feb08.pdf

From my understanding CALEA is a mandate/act. Communications Assistance for Law Enforcement Act. In other words forcing Voice Over IP and Internet Providers to be compliant or face fines. The link you provided is very interesting and very technical. Now one can understand why the news rarely reports on it because it is difficult to understand if you are not in the field. The stuff they are working on will be able to monitor Level 2 to 7 of the OSI Model which is quite significant.

They are working on better software that will be released in the near future. The IP Fabrics DeepSweep Lawful Surveillance product seems to be the one they are working with at the moment.

Thanks for the link. Good info in there. Might be worth the read for those interested. Near the end is where you'll see some of the interesting stuff. The article is for the US but there is no stopping Canada from licensing it and/or creating their own.

I stumbled across something called Echelon during my research. Not much info on it http://en.wikipedia.org/wiki/Echelon_%28signals_intelligence%29
It's situated in New Brunswick so it's not the original computer/program I had read about as it was situated in Ottawa. Also listed as "cannot be clearly established" so not much known about the station but it is suspected of being part of Echelon.

If I remember correctly, I read about it on an article about the Toronto 18 and how they discovered them. So little info out there on what is going on in Canada with surveillance of the internet.

Addition to above. This might be it. CFS Leitrim http://en.wikipedia.org/wiki/CFS_Leitrim

Recently it was reported a prof at the UofSherbrooke came up with a way to quickly do deep packet inspection on internet communications.A very demanding and highly paying field.From what I remember about the other article,gleaning info about who visits a known internet site is child's play.