This is not law yet but the gov't is working on it. It is something you should be very aware of if it comes into effect.
Lawful Access Law Canada
This is not law yet but the gov't is working on it. It is something you should be very aware of if it comes into effect.
Question for MP.Do these commonly available "tunnels" prevent easy access?Known as a VPN I believe?
Yes as long as the machine you're doing it from is secure.
Edit (and IP not from within Canada). The IP you'll have is from the VPN network you're on. I can't elaborate further unfortunately as I can end up in hot water. But the setup is the most important. There are a handful of ways around this. I figure when and if the law passes, there will be a few sites tutoring people how to get around it.
The net will be changing dramatically soon. In the US they are trying to set up DNS blocks (firewalls) like China has. In essence block the whole country from accessing a site that is put behind the firewall. Target is supposedly copyright infringement sites but it'll encompass everything they don't want people to have access to.Security mechanisms
Secure VPNs use cryptographic tunneling protocols to provide confidentiality by blocking intercepts and packet sniffing, allowing sender authentication to block identity spoofing, and provide message integrity by preventing message alteration.
Secure VPN protocols include the following:
IPsec (Internet Protocol Security) was developed by the Internet Engineering Task Force (IETF), and was initially developed for IPv6, which requires it. This standards-based security protocol is also widely used with IPv4. Layer 2 Tunneling Protocol frequently runs over IPsec. Its design meet the most security goals: authentication, integrity, and confidentiality. IPsec functions by summarizing an IP packet in conjunction with a surrounding packet, and encrypting the outcome.
Transport Layer Security (SSL/TLS) can tunnel an entire network's traffic, as it does in the OpenVPN project, or secure an individual connection. A number of vendors provide remote access VPN capabilities through SSL. An SSL VPN can connect from locations where IPsec runs into trouble with Network Address Translation and firewall rules.
Datagram Transport Layer Security (DTLS), is used in Cisco's next-generation VPN product, Cisco AnyConnect VPN, to solve the issues SSL/TLS has with tunneling over UDP.
Microsoft Point-to-Point Encryption (MPPE) works with their Point-to-Point Tunneling Protocol and in several compatible implementations on other platforms.
Microsoft introduced Secure Socket Tunneling Protocol (SSTP) in Windows Server 2008 and Windows Vista Service Pack 1. SSTP tunnels Point-to-Point Protocol (PPP) or Layer 2 Tunneling Protocol traffic through an SSL 3.0 channel.
MPVPN (Multi Path Virtual Private Network). Ragula Systems Development Company owns the registered trademark "MPVPN".[2]
Secure Shell (SSH) VPN -- OpenSSH offers VPN tunneling to secure remote connections to a network or inter-network links. This should not be confused with port forwarding. OpenSSH server provides a limited number of concurrent tunnels and the VPN feature itself does not support personal authentication.
On a side note: Does anyone know what the Canadian version of Carnivore (now NarusInsight) is called? I stumbled across it a few years ago from a news article and I can't find anything about it again. I know the computers are situated in Ottawa. Using them in conjunction with lawful access laws will be a very effective method for LE. Data packets contain originating IP and destination IP. They target all IP's hitting a specific destination (i.e. site) then use lawful access laws to get who is behind the ips and so on. For those that aren't aware of this possible new law, it may be wise to keep yourself informed.
I believe I have an article concerning this at home.Embedded Computing mag I think.
The only other thing I know about using the tunnel is erasing your cookies before using it.I don't think we need these laws at all.If LE believe you are a terrorist they will have some kind of evidence to support a court ordered surveillance .
that is pretty effed up. seems unnecessary and overly intrusive.
im guessing this legislation would render encrypted email sites (like safe-mail) pretty much useless, correct?
Last edited by #8; 24-11-2011 at 11:13 PM.
Never give up a cabinet!!
They could monitor your usage from local service providers.Basically,they could collect all addys that visit a site and go from there.Just think how much time will be spent monitoring the population.This after the promises Stockwell Day made.They dismantle the gun registry(after copying the files no doubt) to put people at ease and then do this.Seeds of another Reich.This makes me seriously reconsider my support for the conservatives.
Those that voted for Harper asked for this, I am not a conservative supporter but I support this legislation. Harper is for a police state, if you don't want that don't vote for him.
There is a legitimate need for this that isn't presented in that youtube video. The Canadian Criminal Code is outdated and High Tech Crime investigators are at a serious disadvantage.
Nowadays any one can use free programs that offer proxy chaining to hide their IP, free encryption software, virtual machines embedded in virtual machines with hidden encrypted partitions... The software is free, there are tutorials out there and you don't have to be an expert anymore to get this to work.
People are nervous and upset because they think the state will be spying on them, the state doesn't have the resources or the interest to do that. They are severely under-staffed and under-funded. High Tech Investigators spend most of their time investigating child sexual exploitation and supporting traditional crimes like Murders, Sexual Assaults, Drugs (not AAS) that have an electronic evidence component. They don't even have the resources to investigate Hacking most of the time.
Policing is based on priorities, they can't do everything so they focus on the most vicious stuff so don't worry no ones going to be snooping on you to find out which songs you are downloading or what sort of porn you are browsing unless of course it's contraband porn.
Police need these laws to stop pedophiles which are the most technically sophisticated criminals out there, that's the truth. If you aren't breaking any laws you have nothing to worry about.
If you are downloading copyrighted songs/movies and not uploading them you aren't doing anything criminal in Canada. You can still be sued civilly by the parties you are infringing on but Canadian authorities have no interest in helping them with their civil lawsuits.
For the record I am not a COP or a NARC.
If it's not hard it's not worth doing...
http://www.hyperforce.net/ <---Team Hyperforce
http://www.facebook.com/HyperforceStrength <--- Follow Hyperforce on Facebook
^^ yes this part I understand. I do not want to see any massive fire walls erected however that automatically sensor content online. That is completely unnecessary and seemingly unconstitutional.
the first video seemed a bit too Pro NDP for my liking.
Never give up a cabinet!!
The gov could stop outside news organizations from being accessed.I'm sure child exploitation is a priority,from my understanding from a tech article they can already trace visitors to sites that deal with child porn.Increase the penalties.With this law any politician or gov official could express a concern to a friendly cop,to start looking into the lives of people and abuse the info.So they aren't looking for aas now?That could change quick.
tor
Posting Permissions
Reply With Quote