2013-11-08 20:31:08 +00:00
|
|
|
.. -*- coding: utf-8-with-signature -*-
|
|
|
|
|
|
2012-01-22 14:00:52 +00:00
|
|
|
Statement on Backdoors
|
2012-01-22 13:51:25 +00:00
|
|
|
======================
|
2010-10-15 05:29:13 +00:00
|
|
|
|
|
|
|
|
October 5, 2010
|
|
|
|
|
|
2012-01-22 13:43:19 +00:00
|
|
|
The New York Times has `recently reported`_ that the current
|
|
|
|
|
U.S. administration is proposing a bill that would apparently, if passed,
|
|
|
|
|
require communication systems to facilitate government wiretapping and access
|
|
|
|
|
to encrypted data.
|
2010-10-15 05:29:13 +00:00
|
|
|
|
2012-01-22 13:43:19 +00:00
|
|
|
(login required; username/password pairs available at `bugmenot`_).
|
2010-10-15 05:29:13 +00:00
|
|
|
|
2012-03-13 20:26:54 +00:00
|
|
|
.. _recently reported: https://www.nytimes.com/2010/09/27/us/27wiretap.html
|
2012-01-22 13:43:19 +00:00
|
|
|
.. _bugmenot: http://www.bugmenot.com/view/nytimes.com
|
|
|
|
|
|
|
|
|
|
Commentary by the `Electronic Frontier Foundation`_, `Peter Suderman /
|
|
|
|
|
Reason`_, `Julian Sanchez / Cato Institute`_.
|
|
|
|
|
|
|
|
|
|
.. _Electronic Frontier Foundation: https://www.eff.org/deeplinks/2010/09/government-seeks
|
|
|
|
|
.. _Peter Suderman / Reason: http://reason.com/blog/2010/09/27/obama-administration-frustrate
|
|
|
|
|
.. _Julian Sanchez / Cato Institute: http://www.cato-at-liberty.org/designing-an-insecure-internet/
|
2010-10-15 05:29:13 +00:00
|
|
|
|
|
|
|
|
The core Tahoe developers promise never to change Tahoe-LAFS to facilitate
|
|
|
|
|
government access to data stored or transmitted by it. Even if it were
|
2013-04-09 19:19:58 +00:00
|
|
|
desirable to facilitate such access -- which it is not -- we believe it would
|
|
|
|
|
not be technically feasible to do so without severely compromising
|
|
|
|
|
Tahoe-LAFS' security against other attackers. There have been many examples
|
|
|
|
|
in which backdoors intended for use by government have introduced
|
|
|
|
|
vulnerabilities exploitable by other parties (a notable example being the
|
|
|
|
|
Greek cellphone eavesdropping scandal in 2004/5). RFCs `1984`_ and `2804`_
|
|
|
|
|
elaborate on the security case against such backdoors.
|
2012-01-22 13:43:19 +00:00
|
|
|
|
2012-03-13 20:26:54 +00:00
|
|
|
.. _1984: https://tools.ietf.org/html/rfc1984
|
|
|
|
|
.. _2804: https://tools.ietf.org/html/rfc2804
|
2010-10-15 05:29:13 +00:00
|
|
|
|
2012-01-22 13:43:19 +00:00
|
|
|
Note that since Tahoe-LAFS is open-source software, forks by people other
|
|
|
|
|
than the current core developers are possible. In that event, we would try to
|
2010-10-15 05:29:13 +00:00
|
|
|
persuade any such forks to adopt a similar policy.
|
|
|
|
|
|
|
|
|
|
The following Tahoe-LAFS developers agree with this statement:
|
|
|
|
|
|
2013-03-26 19:23:27 +00:00
|
|
|
David-Sarah Hopwood [Daira Hopwood]
|
2010-10-15 05:29:13 +00:00
|
|
|
|
|
|
|
|
Zooko Wilcox-O'Hearn
|
|
|
|
|
|
|
|
|
|
Brian Warner
|
|
|
|
|
|
|
|
|
|
Kevan Carstensen
|
|
|
|
|
|
|
|
|
|
Frédéric Marti
|
|
|
|
|
|
|
|
|
|
Jack Lloyd
|
|
|
|
|
|
|
|
|
|
François Deppierraz
|
|
|
|
|
|
|
|
|
|
Yu Xue
|
|
|
|
|
|
|
|
|
|
Marc Tooley
|
2010-10-15 05:32:42 +00:00
|
|
|
|
|
|
|
|
Peter Secor
|
|
|
|
|
|
|
|
|
|
Shawn Willden
|
|
|
|
|
|
|
|
|
|
Terrell Russell
|
2020-02-10 20:26:12 +00:00
|
|
|
|
|
|
|
|
Jean-Paul Calderone
|
2020-02-10 20:47:43 +00:00
|
|
|
|
|
|
|
|
meejah
|
|
|
|
|
|
2020-02-10 21:53:35 +00:00
|
|
|
Sajith Sasidharan
|
