Matt BlazeOct 5, 2024
We’ve been warning about this for literally three decades, ever since CALEA mandated wiretap-ready telecom infrastructure. And this is merely the latest example of how these dangerous interfaces can be turned against us by our adversaries.
https://mastodon.social/@fj/113253726161428151
Show threadMatt BlazeOct 5, 2024
Tl;dr: creating one-stop shopping for attackers is a bad idea.
Show threadMatt BlazeOct 5, 2024

Exploits of "lawful access" interfaces, such as the Chinese attack reported today by the WSJ, appeared almost immediately after they became standardized in the 90's. The most famous example is the case known as "the Athens Affair" https://spectrum.ieee.org/the-athens-affair .

It was a bad idea then, and still a bad idea now.

The Athens Affair

How some extremely smart hackers pulled off the most audacious cell-network break-in ever

IEEE Spectrum
Show threadMatt BlazeOct 5, 2024
The Athens Affair is interesting for a number of reasons, but it's particularly notable that the switch that was compromised didn't actually have the CALEA option installed from the factory (since it wasn't then required in Greece). But it was added through a software update (induced by the attacker), and then exploited.
Show threadMatt BlazeOct 5, 2024
Anyway, my "told you so" muscles are pretty weary at this point.
Show threadMatt BlazeOct 5, 2024
Also, I'd be remiss if I didn't note that all the reasons that "lawful access" features in telecom infrastructure are risky apply at least equally to the periodically revived proposals for "key escrow" backdoors in cryptographic systems. Fortunately, we've mostly held back the tide on those, but they come up every few years. It would be a security disaster if they're ever mandated.
Show threadMatt BlazeOct 5, 2024

Mandated wiretap interfaces and cryptographic backdoors are *expensive*, both in terms of money and, more importantly, exposure to risk. Worse, those burdens are borne inequitably.

Overall, almost no one is the subject of a lawful wiretap, even in places where wiretapping is an important investigative tool. Most people aren't suspects. But these mandates degrade security (and impose other costs) for *everyone*, the vast majority of whom will never be wiretapped.

Show threadMatt BlazeOct 5, 2024
A far more equitable, more secure, and less expensive approach is to devote law enforcement resources to targeting actual suspects, e.g., by the traditional methods such as informants and technical approaches such as "lawful hacking". While these aren't particularly pleasant for those targeted by warrants, they have the great virtue of allowing law enforcement to do its work without degrading security or privacy for the rest of us.
Show threadMatt BlazeOct 5, 2024
Every now and then the police execute search warrants on physical places. It would certainly be *easier* if we mandated that everyone keep their doors unlocked. But that would be crazy; in the name of solving crimes, we'd be vastly increasing the burglary rate. A much better approach - the one we use - is to buy the police lockpicks and battering rams for use in the relatively small number of cases where they're needed.
Show threaddexter
@mattblaze Has the government ever proposed a master physical key for all locks?
Oct 5, 2024 at 10:47pmWeb
Show threadMatt BlazeOct 5, 2024
@dexter Well, there are those TSA-approved luggage locks, which every baggage handler in the world has master keys for.
Show threadJustin ScholzOct 5, 2024
@mattblaze @dexter and everybody with a 3d printer as well as the keys were leaked in a photo on a wired covers story and somebody put the 3d print files on github.
Show threadChrist van WillegenNov 3, 2024
@dexter
IIRC East Germany had locks where both halves of the pins in them could be over-lifted into the non-rotating part of the cylinder, so putting in a special tool looking like some kind of comb could push all the pins out of the way and apply torque.
@mattblaze