Ii-arhente zobuntlola zase-US nezaseBritani ziye zaqhekeka ngempumelelo uninzi lwe-encryption ekwi-intanethi exhomekeke kumakhulu ezigidi zabantu ukukhusela ubumfihlo bedatha yabo yobuqu, ukuthengiselana nge-intanethi kunye nee-imeyile, ngokutsho kwamaxwebhu ayimfihlo aphezulu atyhilwe ngunokontraka wangaphambili u-Edward Snowden.
Iifayile zibonisa ukuba i-Arhente yeSizwe yoKhuseleko kunye nomlingani wayo wase-UK i-GCHQ baye baphazamisa ngokubanzi iziqinisekiso zokuba iinkampani ze-intanethi zinike abathengi ukuba baqinisekise ukuba unxibelelwano lwabo, iibhanki ze-intanethi kunye neerekhodi zonyango ziya kuba zingenakuchazwa kwizigebengu okanye oorhulumente.
Iiarhente, amaxwebhu atyhila, bamkele ibhetri yeendlela kuhlaselo lwabo olucwangcisiweyo noluqhubekayo kwinto abayibona njengenye yezoyikiso ezinkulu kumandla abo okufikelela kwiindlela ezinkulu zetrafikhi ye-intanethi - "ukusetyenziswa kwe-encryption ubiquitous kwi-intanethi" .
Ezo ndlela zibandakanya imilinganiselo efihlakeleyo yokuqinisekisa ulawulo lwe-NSA ekusekweni kwemigangatho yeencryption yamazwe ngamazwe, ukusetyenziswa kweekhompyutha ezinkulu ukophula uguqulelo oluntsonkothileyo โngamandla akhohlakeleyoโ, kwaye โ eyona mfihlelo igadwe ngokusondeleyo kuzo zonke โ intsebenziswano neenkampani zobuchwepheshe kunye nababoneleli benkonzo ye-intanethi ngokwabo.
Ngolu buhlakani bufihlakeleyo, ii-arhente zifake ubuthathaka obuyimfihlo - okwaziwa njenge-backdoors okanye i-trapdoors - kwisoftware yobhalo oluntsonkothileyo.
Iifayile, ezivela kwi-NSA kunye ne-GCHQ, zifunyenwe nguMgcini, kwaye iinkcukacha zikhoyo epapashwe namhlanje ngokubambisana neNew York Times kunye neProPublica. Zityhila:
-
Inkqubo ye-NSA yeminyaka eli-10 echasene nobuchwepheshe bokuguqulela ikhowudi yenza impumelelo ngo-2010 eyenze "imali eninzi" yedatha eqokelelwe ngeetephu zentambo ze-intanethi "zixhaphake".
-
I-NSA ichitha i-250ma yeedola ngonyaka kwinkqubo ethi, phakathi kwezinye iinjongo, isebenze neenkampani zobuchwepheshe "ukuphembelela ngokufihlakeleyo" uyilo lwemveliso yazo.
-
Imfihlo yamandla abo ngokuchasene ne-encryption igadwe ngokusondeleyo, kunye nabahlalutyi balumkisa: "Musa ukubuza malunga okanye uqikelele ngemithombo okanye iindlela."
-
I-NSA ichaza iinkqubo eziqinileyo ze-decryption "njengexabiso lokwamkelwa kwe-US ukugcina ukufikelela okungathintelekiyo kunye nokusetyenziswa kwe-cyberspace".
-
Iqela le-GCHQ lisebenzela ukuphuhlisa iindlela zokungena kwitrafikhi efihliweyo kubaboneleli benkonzo "abakhulu abane", ababizwa ngokuba yiHotmail, Google, Yahoo kunye neFacebook.
Ii-arhente zinyanzelisa ukuba ukukwazi ukoyisa ukufihlakala kubalulekile kwimisebenzi yazo engundoqo yokuchasana nobunqolobi kunye nendibano yobuntlola bangaphandle.
Kodwa iingcali zokhuseleko zabatyhola ngokuhlasela i-intanethi ngokwayo kunye nemfihlo yabo bonke abasebenzisi. "I-Cryptography yenza isiseko sokuthembela kwi-intanethi," utshilo uBruce Schneier, ingcali yokufihla ulwazi kunye nogxa kwiZiko laseHarvard laseBerkman kwi-Intanethi kunye noMbutho. "Ngokujongela phantsi ngabom ukhuseleko lwe-intanethi kumzamo omfutshane wokuva, i-NSA ijongela phantsi eyona nto i-intanethi." Iingqungquthela ezicwangcisiweyo phakathi kwee-arhente zibhiyozela impumelelo yazo "ekoyiseni ukhuseleko lwenethiwekhi kunye nobumfihlo".
"Kwiminyaka elishumi edlulileyo, i-NSA ikhokele [i-sic] inzame enobundlobongela, eneendlela ezininzi zokophula itekhnoloji yokufihla i-intanethi esetyenziswa ngokubanzi," utshilo uxwebhu lwe-GCHQ ka-2010. "Izixa ezikhulu zedatha ye-intanethi efihliweyo esele ilahliwe ngoku iyasetyenziswa."
Imemo ye-arhente yangaphakathi yaphawula ukuba phakathi kwabahlalutyi baseBrithani babonise umboniso malunga nenkqubela phambili ye-NSA: "Abo bebengachazwanga ngaphambili bafakwe i-gobsmacked!"
Ukuphumelela, okungazange kuchazwe ngokweenkcukacha kumaxwebhu, kuthetha ukuba ii-arhente zezobuntlola zazikwazi ukujonga "iimali ezinkulu" zedatha ehamba ngeentambo ze-fiber-optic zehlabathi kwaye zaphule i-encryption yayo, ngaphandle kweziqinisekiso ezivela kubaphathi beenkampani ze-intanethi ukuba le datha yayiyiyo. ngaphaya kokufikelela kurhulumente.
Icandelo eliphambili ledabi le-NSA elichasene ne-encryption, intsebenziswano yayo kunye neenkampani zeteknoloji, ichazwe kwi-US ye-intelligence community yase-US kwi-top-secret ye-2013 yesicelo sohlahlo lwabiwo-mali phantsi kwesihloko esithi "Sigint [signals intelligence] eyenza".
Inkxaso-mali yenkqubo - i-$ 254.9m yalo nyaka - incinci yenkqubo ye-Prism, esebenza ngexabiso le-20ma yeedola ngonyaka, ngokuhambelana namaxwebhu angaphambili e-NSA. Ukusukela ngo-2011, inkcitho iyonke kwi-Sigint yenza ukuba ibe ngaphezulu kwe-800 yezigidi zeedola. Inkqubo "ibandakanya amashishini e-IT aseMelika kunye namazwe angaphandle ukuba abe nefuthe elifihlakeleyo kunye/okanye asebenzise ngokugqithisileyo uyilo lweemveliso zorhwebo", litsho uxwebhu. Akukho nanye kwiinkampani ezibandakanyekayo kwintsebenziswano enjalo ebizwayo; ezi nkcukacha zigcinwe ngamanqanaba aphezulu okuhlela.
Phakathi kwezinye izinto, inkqubo yenzelwe "ukufaka ubuthathaka kwiinkqubo zokurhweba ze-encryption". Oku kuya kwaziwa yi-NSA, kodwa akukho mntu wumbi, kubandakanywa nabathengi abaqhelekileyo, ekubhekiselwa kubo ngokuphandle kolu xwebhu ngokuthi "ngabachasi".
"Olu tshintsho loyilo lwenza ukuba iinkqubo ezithintekayo zisetyenziswe ngokuqokelelwa kweSigint ... ngokuqonda kwangaphambili ukuguqulwa. Kubathengi kunye nabanye abachasi, nangona kunjalo, ukhuseleko lweenkqubo luhlala luqinile."
Olu xwebhu luchaza ngokucacileyo iinjongo ezibanzi zeprogram, kubandakanywa ukwenza isofthiwe ye-encryption yorhwebo "iphatheke ngakumbi" ekuhlaselweni kwe-NSA "ngokubumba" indawo yokuthengisa yehlabathi kunye nemigudu eqhubekayo yokungena kwi-encryption esetyenziswa sisizukulwana esilandelayo seefowuni ze-4G.
Phakathi kwezinto eziphunyeziweyo ze-2013, i-NSA ilindele ukuba inkqubo ifumane ukufikelela "kwidatha ehamba nge-hub yomboneleli omkhulu wonxibelelwano" kunye "nenkqubo enkulu ye-intanethi ye-peer-to-peer voice and text communication system".
Iinkampani zobugcisa zigcina ukuba zisebenza nee-arhente zobuntlola kuphela xa zinyanzelwa ngokusemthethweni ukuba zenze oko. I-Guardian iye yaxela ngaphambili ukuba iMicrosoft isebenzisane ne-NSA ukuthintela uguqulelo oluntsonkothileyo kwi-imeyile ye-Outlook.com kunye neenkonzo zencoko. Inkampani yagxininisa ukuba inyanzelekile ukuba ithobele "iimfuno ezikhoyo okanye ezisemthethweni zexesha elizayo" xa iyila iimveliso zayo.
Amaxwebhu abonisa ukuba i-arhente sele ifezekise enye yeenjongo ezibekwe kwisicelo sohlahlo lwabiwo-mali: ukuchaphazela imigangatho yamazwe ngamazwe apho iinkqubo zokubethela zithembele.
Iingcali zokhuseleko ezizimeleyo sele zikrokrela ukuba i-NSA iye yazisa ubuthathaka kwimigangatho yokhuseleko, into eqinisekisiweyo okokuqala ngqa ngolunye uxwebhu oluyimfihlo. Ibonisa ukuba i-arhente isebenze ngokufihlakeleyo ukufumana inguqulelo yomgangatho wokhuseleko oyilwayo okhutshwe yi-US National Institute of Standards and Technology evunyiweyo ukuba isetyenziswe kwihlabathi jikelele ngo-2006.
โEkugqibeleni, i-NSA yaba nguye yedwa umhleli,โ litsho eli xwebhu.
Igama lekhowudi ye-NSA yenkqubo yayo yokuguqulelwa kwekhowudi, iBullrun, ithathwe kwidabi elikhulu lemfazwe yamakhaya yaseMelika. Iqabane layo lase-Bhritane, u-Edgehill, libizwe emva kwendibano yokuqala enkulu yemfazwe yamakhaya yamaNgesi, ngaphezulu kweminyaka engama-200 ngaphambili.
Isikhokelo sokuhlela sabasebenzi be-NSA kunye neekontraka kwi-Bullrun sichaza ngokubanzi iinjongo zayo.
"Iprojekthi ye-Bullrun ijongene nezakhono ze-NSA zokoyisa i-encryption esetyenziswa kwiiteknoloji ezithile zonxibelelwano lwenethiwekhi. I-Bullrun ibandakanya imithombo emininzi, yonke into enobuthathaka kakhulu." Olu xwebhu lubonisa ukuba i-arhente inamandla ngokuchasene neeprothokholi ze-intanethi ezisetyenziswa ngokubanzi, ezifana ne-HTTPS, i-voice-over-IP kunye ne-Secure Sockets Layer (SSL), esetyenziselwa ukukhusela ukuthengwa kwe-intanethi kunye neebhanki.
Olu xwebhu lukwabonisa ukuba iZiko le-NSA leZisombululo zezoRhwebo, ekubonakala ukuba iqumrhu apho iinkampani zobuchwepheshe zinokuvavanywa kwaye zinikezelwe kwabo baza kuthenga urhulumente, linenye indima efihlakeleyo.
Isetyenziswa yi-NSA "ukuphucula ubudlelwane obunobuntununtunu, intsebenziswano kunye namaqabane athile oshishino" ukufaka ubuthathaka kwiimveliso zokhuseleko. Abasebenzi baye balunyukiswa ukuba olu lwazi kufuneka lugcinwe luyimfihlo ephezulu "ubuncinci".
Isikhokelo sohlelo lwe-NSA ngokubanzi sityhila iinkcukacha ezithe kratya kubudlelwane obunzulu be-arhente kunye noshishino, kunye nokukwazi kwayo ukulungisa iimveliso. Ilumkisa abahlalutyi ukuba iinyani ezimbini kufuneka zihlale ziyimfihlo enkulu: ukuba i-NSA yenza uhlengahlengiso kwisoftware yobhalo kunye nezixhobo "ukubenza basebenziseke", kwaye i-NSA "ifumana iinkcukacha ze-cryptographic zeenkqubo zokhuseleko lolwazi lwe-cryptographic ngobudlelwane boshishino".
Iiarhente azikaqhekezi zonke iitekhnoloji zokufihla, nangona kunjalo, amaxwebhu acebisa. U-Snowden ubonakale eqinisekisa oku ngexesha le-Q&A ephilayo nabafundi be-Guardian ngoJuni. "I-Encryption iyasebenza. Iinkqubo eziqinileyo ze-crypto eziphunyezwe ngokufanelekileyo ngenye yezinto ezimbalwa onokuthembela kuzo, "wathi ngaphambi kokulumkisa ukuba i-NSA inokufumana rhoqo iindlela ezijikelezayo ngenxa yokhuseleko olubuthathaka kwiikhomputha kuyo nayiphi na isiphelo sonxibelelwano.
Amaxwebhu asasazeke ngezilumkiso malunga nokubaluleka kokugcina ubumfihlo obupheleleyo malunga nesakhono se-decryption.
Izikhokelo ezingqongqo zaye zabekwa kwi-GCHQ complex e-Cheltenham, eGloucestershire, ngendlela yokuxoxa ngeeprojekthi ezinxulumene nokuguqulelwa kwekhowudi. Abahlalutyi bayalelwa: "Musa ukubuza malunga okanye ucinge ngemithombo okanye iindlela ezixhasa iBullrun." Le informaton yayigadiwe ngokusondeleyo, ngokutsho kolunye uxwebhu, kangangokuba kwanabo babenokufikelela kwiinkalo ezithile zolu cwangciso balunyukiswa: โAkusayi kubakho โkufuneka kwaziweโ.โ
Ii-arhente bekufanele ukuba "zikhethe apho iikontraka zinikwa ukuvezwa kolu lwazi", kodwa ekugqibeleni yabonwa ngu-Snowden, omnye wabantu abangama-850,000 e-US kunye nemfihlo eyimfihlo. Uxwebhu lwe-GCHQ luka-2009 luchaza iziphumo ezibalulekileyo ezinokuthi zibe kho kuko nakuphi na ukuvuza, kuquka "umonakalo kubudlelwane boshishino".
"Ukuphulukana nokuzithemba ekukwazini kwethu ukuthobela izivumelwano eziyimfihlo kuya kukhokelela ekuphulukaneni nokufikelela kulwazi olunokugcina ixesha xa siphuhlisa isakhono esitsha," abasebenzi bobuntlola baxelelwa. Into engabalulekanga kangako kwi-GCHQ yayiyintembeko yoluntu eyayiphawulwe njengomngcipheko ophakathi, uxwebhu lwatsho.
"Ezinye iimveliso ezisebenzisekayo zisetyenziswa luluntu ngokubanzi; ezinye izinto ezibuthathaka ziyaziwa umz. amathuba okufumana amagama ayimfihlo akhethwe kakubi," yatsho. "Ulwazi lokuba i-GCHQ ixhaphaza ezi mveliso kunye nobukhulu besakhono sethu siya kuphakamisa ulwazi loluntu luvelise upapasho olungamkelekanga kuthi kunye neenkosi zethu zezopolitiko."
Iinzame zokuguqulelwa kwekhowudi zibaluleke kakhulu kwi-GCHQ. Uncedo lwayo olucwangcisiweyo kwinkqubo yayo yeTempora - iitephu ezithe ngqo kwiintambo ze-transatlantic fibre-optic zamaqumrhu amakhulu onxibelelwano-yayisemngciphekweni wokukhukuliseka njengoko ziya zisanda iinkampani ezinkulu ze-intanethi zifihla i-traffic yazo, zisabela kwiimfuno zabathengi zobumfihlo obuqinisekisiweyo.
Ngaphandle kwengqwalasela, uxwebhu lwe-GCHQ lwe-2010 lulumkise, i-UK's "Sigint utility iya kuthotywa njengoko ulwazi luhamba utshintsho, izicelo ezitsha ziphuhliswa (kwaye zihanjiswe) ngesantya kunye nokusabalalisa i-encryption kuba yinto eqhelekileyo." Amaxwebhu abonisa ukuba injongo yokuqala ye-Edgehill yayikukucacisa i-traffic encrypted eqinisekisiweyo yinkampani ezintathu ze-intanethi ezinkulu (ezingenamagama) kunye neentlobo ze-30 ze-Virtual Private Network (VPN) - ezisetyenziswa ngamashishini ukubonelela ngokukhuselekileyo okukude kwiinkqubo zabo. Ngo-2015, i-GCHQ inethemba lokuba iqhekeze iikhowudi ezisetyenziswe ziinkampani ze-intanethi ze-15 ezinkulu, kunye ne-300 VPNs.
Enye inkqubo, ebizwa ngokuba yi-codenamed Cheesy Name, ijolise ekukhetheni izitshixo ezifihliweyo, ezaziwa ngokuba 'zizatifikethi', ezinokuthi zibe sesichengeni sokuqhekezwa ziikhompyuter ezinkulu ze-GCHQ.
Abahlalutyi beprojekthi ye-Edgehill bebesebenza kwiindlela zokunxibelelana nababoneleli be-webmail abakhulu njengenxalenye yeprojekthi yokucima. Uhlaziyo lwekota ukusuka kwi-2012 iphawula iqela leprojekthi "liyaqhubeka nokusebenza ekuqondeni" ababoneleli bonxibelelwano abane abakhulu, ababizwa kuxwebhu njengeHotmail, Google, Yahoo kunye ne-Facebook, bongeza "umsebenzi ugxininise kakhulu kule kota kwiGoogle ngenxa yokufikelela okutsha. amathuba ayaphuhliswa".
Ukunceda ukukhusela inzuzo yangaphakathi, i-GCHQ iphinde yaseka iQela leMisebenzi ye-Humint (HOT). I-Humint, imfutshane yegama elithi "ubukrelekrele bomntu" ibhekisa kulwazi olufunyenwe ngqo kwimithombo okanye kwiiarhente ezifihlakeleyo.
Eli qela le-GCHQ, ngokutsho koxwebhu lwangaphakathi, "lijongene nokuchonga, ukukhangela kunye nokuqhuba ii-arhente ezifihlakeleyo kwishishini lehlabathi jikelele lonxibelelwano."
"Oku kwenza ukuba i-GCHQ ikwazi ukujongana nezinye zezona njongo zicelomngeni," yatsho ingxelo. Iinzame ezenziwe yi-NSA kunye ne-GCHQ ngokuchasene netekhnoloji ye-encryption inokuba neziphumo ezibi kubo bonke abasebenzisi be-intanethi, iingcali zilumkisa.
"Iindlu zangasemva zingquzulana nokhuseleko olulungileyo," utshilo uChristopher Soghoian, ingcali yetekhnoloji kunye nomhlalutyi wemigaqo-nkqubo kwi-American Civil Liberties Union. "I-Backdoors iveza bonke abasebenzisi benkqubo esemva, kungekhona nje ekujoliswe kuyo kwi-arhente yezobuntlola, ukunyusa umngcipheko wokuthotyelwa kwedatha." Oku kungenxa yokuba ukufakwa kwee-backdoors kwimveliso yesoftware, ngakumbi ezo zinokusetyenziselwa ukufumana unxibelelwano lomsebenzisi ongafihlwanga okanye idatha, kwandisa kakhulu ubunzima bokuyila imveliso ekhuselekileyo. "
Lo ibingumbono ochazwe kuwo Iphepha lakutshanje nguStephanie Pell, owayesakuba ngumtshutshisi kwiSebe lezoBulungisa lase-US kunye nomntu ongeyena umhlali kwiZiko le-Intanethi kunye noKhuseleko kwiSikolo soMthetho saseStanford.
"[Isistim] yonxibelelwano olufihliweyo olunocango olungemva olusemthethweni lunokubangela ilahleko enkulu yobumfihlo bonxibelelwano kunenkqubo engazange ikwazi ukufikelela kunxibelelwano olungafihlwanga lwabasebenzisi bayo," utshilo.
Amagosa ezobuntlola acele i-Guardian, iNew York Times kunye neProPublica ukuba ingalishicileli eli nqaku, isithi inokuthi ikhuthaze iithagethi zangaphandle ukuba zitshintshele kwiindlela ezintsha zokufihla okanye unxibelelwano oluya kuba nzima ukuliqokelela okanye ukulifunda.
Le mibutho mithathu isuse ezinye iinyani ezithile kodwa yagqiba ekubeni ipapashe ibali ngenxa yexabiso lengxoxo kawonke-wonke malunga nezenzo zikaRhulumente ezenza buthathaka izixhobo ezinamandla kakhulu zokukhusela ubumfihlo babasebenzisi be-intanethi e-US nakwihlabathi jikelele.
I-ZNetwork ixhaswa ngemali kuphela ngesisa sabafundi bayo.
Nikela