Blue cabinet
The Telecomix Blue Cabinet is a working wiki project to document vendors and manufacturers of surveillance equipment that are used in dictatorships and democracies around the internets.
Blue Cabinet Wiki is PUBLIC.
This means that YOU may add truthful data with sources i.e. urls to where you found it online. Volunteers are welcome.
You can make an pseudonymous account to login with -- by using a fake name/nick and being responsible of your password. In doing so you will not have to provide an email address.
Join Us in the IRC. If you use Tor the address is http://3v7zch6pamxdtrrl.onion/
If you are using an IRC client http://irc.wnh.me:6697 #bluecabinet or connection to the #Bluecabinet chatroom aka the Bureau of Surveillance Research and Exposure.
Media can contact Blue Cabinet's Bureau of Surveillance Research and Exposure (BSRE) by Email: telecomixbsre@tormail.org come to the IRC or Twitter: @TelecomixBSRE
The purpose of the Blue cabinet Wiki Project is to create an overview and to share resources between Telecomix and other projects out there that have the same goal as us; to name, shame and expose those who profit on selling the surveillance equipment that enables the invasion of privacy, targeted intimidation, harassment and assist government dictatorships to identify and locate people they consider dissidents, often leading to detainment, torture and even death.
Everyone with the Blue cabinet Wiki project are volunteers.
Telecomix does NOT accept donations!
If you know of anyone that is requesting money/donations on behalf of Telecomix and/or Blue Cabinet, PLEASE take a screenshot and send it to the e-mail address above.
Thank you <3
NOTE: If you do not find the data you are looking for in the Blue Cabinet, try the ProjectPM Think Tank Wiki that has a greater focus on government contractors conducting surveillance of the public.
How To Participate in the Blue Cabinet Wiki Project
Qualifications
How The Wiki Works
What To Look For
To Do List
Make A New Wiki Page
Internetz Undersea and Terrestrial Cables Info
JADI Link Project (Digital Silk Road)
Cable connections to Syria
Cuba Mystery Cable
SEA-ME-WE 4 main lines in the Mediterranean
Three arrested for trying to cut undersea Internet cable
List of "Think Tanks" Promoting Surveillance Tech & Private Intel Contractors
CENTER FOR A NEW AMERICA SECURITY (CNAS)(US)
List of Surveillance vendor Alliances/Networks/Organizations
While the majority of IT and Telecom companies have "Product Partners," Tech or Business partners, they also belong to Alliances, Networks or Organizations that are cross branding and sharing even their contact companies that help with reselling and distribution.
Although some countries, including the United States and European Union have placed sanctions and bans of technology to Syria, Iran and other government dictatorships, the reality of enforcement becomes more difficult when the Tech companies/Surveillance vendors can cross brand and distribute, for example, from an alliance member company in China or Russia.
Therefore, the Blue cabinet is listing such global "Alliances" in addition to the List of Companies.
Alliance for Telecommunications Industry Solutions
ENISA’s Security Awareness Working Group
Blue cabinet/Security Awareness Working Group
Ensemble Alliance
Blue cabinet/Ensemble Alliance
European Telecommunications Standards Institute
Global Standards Collaboration
High Technology Crime Investigation Association (Worldwide)
Network Intelligence Alliance
Blue cabinet/Network Intelligence Alliance
SCOPE ALLIANCE
Telecommunications Industry Association
3rd Generation Partnership Project
List of "Green Badger" Surveillance Tech Companies
What is a "Green Badger"?
List of companies
ABILITY (Israel)*
ABRAXAS CORPORATION (USA)
Blue cabinet/ ABRAXAS Special page
ACCESS DATA (USA)*
ACCURIS NETWORKS (Ireland) *
ACME Packet (USA) *
ACULAB (UK)
ADAE (Greece)*
AdaptiveMobile (Ireland) *
ADAX (US/UK/CHINA)*
ADVANCED SOFTWARE SYSTEMS, Inc. (USA)
Blue cabinet/ADVANCED SOFTWARE SYSTEMS
Advantech (USA)*
AGNITIO (Spain) *
AKAMAI Technologies (USA)*
Blue cabinet/Akamai Technologies
AKORN TELECOM (UAE/Dubai/Libya/Syria)*
Alcatel-Lucent (France/USA)
ALLOT (Israel)
ALTRON (UA)
AMESYS/Bull (France)
ANONYMIZER (USA)
ANRITSU CORPORATION (Japan)
Blue cabinet/Anritsu Corporation
ANTAMEDIA (Serbia/Russia)
APPIN TECHNOLOGIES (India)
Blue cabinet/APPIN TECHNOLOGIES
AQSACOM (France)
ARBOR NETWORKS ( )
AREA S.p.A. (Italy)
ARYAKA (USA/India)
AS SOLUTIONS (Denmark)
ATIS SYSTEMS (Germany)
A-T SOLUTIONS (USA)
AT&T (US)
ATTENSITY (USA)
AudioCodes (Israel)
AUDIOTEL INTERNATIONAL (UK)
AVISTAR (USA)
AWASI (Canada)
AXXONSOFT / Axxon (Russia/Global)
A10 NETWORKS (USA)
BAIDU INC (China) *
BARBEDWIRE TECHNOLOGIES (US)
BARRACUDA NETWORKS (USA)
Blue cabinet/Barracuda Networks
BASIS TECHNOLOGY (USA)
BDL(Dubai/UAE)
BEA Systems/Oracle (US)
BELKASOFT (Russia)
BERICO TECHNOLOGIES (US)
BLUE COAT SYSTEMS (USA)
BOEING/DRT Inc. (US)
BREAKINGPOINT (US)
BROCADE (USA)
BT (UK)
BULL GROUP (France/Global)
CACI International (USA)
CAMBRIDGE CONSULTANTS (UK)
Blue cabinet/Cambridge Consultants
CARRIER IQ (USA)
CCT / Cecratech (Sweden)
CELLEBRITE MOBILE SYNCHRONIZATION Ltd./SUN (Israel)
Blue cabinet/Cellebrite Mobile
CEM4Mobile (Finland)
The Centre for Secure Information Technologies (UK/N. Ireland)
Blue cabinet/The Centre for Secure Information Technologies
CHECK POINT SOFTWARE LTD. (USA/Israel)
Blue cabinet/CHECK POINT SOFTWARE
CHERTOFF GROUP (US)
CISCO (US)
CLEARSWIFT (UK)
ClearTrail (India)
Click&DECiDE (France)
CLOUDSHIELD (US)
COBHAM (UK)
CommProve (Ireland)
CommuniGate Systems (USA)
Computer Sciences Corporation (USA)
Blue cabinet/Computer Sciences Corporation
COMVERSE TECHNOLOGY (CTI,Verint,Syborg)(US/Israel/Germany)
CONCURRENT TECHNOLOGIES CORPORATION (USA)
Blue cabinet/Concurrent Technologies Corporation
CORERO NETWORK SECURITY (USA/UK)
CORNFIELD ELECTRONICS (USA)
COUNTERTACK (USA)
C-TECH (Turkey)
CREATIVITY SOFTWARE (UK)
Blue cabinet/Creativity Software
CRFS (United Kingdom)
CROSSINGTECH (Switzerland)
CRYPTON-M (Ukraine)
CSIdentity (CSID) / CyberAgent (InvestCorp) (USA)
CSIT (UK)
CUBIC CORPORATION (USA)
CYBEROAM / Elitecore Technologies Pvt. Ltd.(USA/India)
CYBER POINT INTERNATIONAL LLC (USA)*
CYBERSIFT (UK/USA)
CYBERTRUST (USA)
CYMPHONIX (USA)
DAGIR Co (USA)*
DATAKOM (Germany)
DATAMINR Inc. (US)
DATATEC Limited (South Africa)
DATONG (UK)
DECISION GROUP (Taiwan)
DELL SONICWALL (USA)
DELMA MSS (UK)
DELTA SpE (Ukraine)
DETICA (UK)
DIALOGIC (USA)
DigiTask (Germany)
DigiVox B.V. (Netherlands)
Dreamlab Technologies AG (CH)
Blue cabinet/Dreamlab Technologies
EBS-Electronic GmbH (Germany)
EDGE INTELLIGENCE LLC (ABRAXAS) (USA)
ELAMAN GAMMA (Germany)
ELCOMSOFT (Russia)
ELISRA Group (Israel)
ELTA SYSTEMS Ltd. (Israel)
EMIRCOM (UAE/KSA)
ENDACE (New Zealand)
ENDGAME SYSTEMS LLC (USA)
ERA IT Solutions AG (CH)
ERICSSON (Sweden/Global)
ERICSSON-SAUDI (Saudi Arabia/KSA)
ETI (Denmark)
ETSI (France)
EVIDIAN (Bull Group)(France)
EXFO (Canada)
EXINDA (USA)
EXPERT SYSTEM S.p.A. (Italy)
FACEBOOK (US/Global)
FireDigit (BE)
FORTINET (USA/Global)
Fox-IT (Netherlands)
FLUKE (USA)
GAMMA GROUP (FINFISHER) (UK/Germany)
Blue cabinet/Gamma Group (FinFisher)
GENERAL DYNAMICS (USA)
GENERAL ELECTRIC (aka GE) (USA)
Blue cabinet/General Electric (GE)
GENETEC (Canada)
GfK (Germany)
GIGAMON GIGABIT (USA)
GITA TECHNOLOGIES Ltd. (Israel)
Blue cabinet/Gita Technologies
GLIMMERGLASS (USA)
GoS NETWORKS (Ireland)
GRIFF COMM Ltd (UK)
GROUP2000 (Netherlands)
GTEN DATAKOM (Germany)
GUIDANCE SOFTWARE ENCASE (USA)
Blue cabinet/Guidance Software
HBGary (USA)*
HACKING TEAM (Italy)
HARRIS CORPORATION / STINGRAY (USA)
HEWLETT-PACKARD (HP) (USA)
HIDDEN TECHNOLOGY SYSTEMS INTERNATIONAL Ltd (UK)
Blue cabinet/Hidden Technology
HISILICON TECHNOLOGIES CO., Ltd. (China)
Blue cabinet/Hisilicon Technologies Co., Ltd.
HUAWEI TECHNOLOGIES (China)
HUTCHINSON-WHAMPOA LTD (CHINA/Global) *
Blue cabinet/Hutchinson Whampoa Limited ("3")
IBH Impex (Germany)
IBM / ISS (US/Global)
IDEAL TECHNOLOGY CORPORATION (USA)
ImageWare Systems ( )
IMMUNITY / Aitel (USA)
INCOGNITO (Canada/Ireland)
INEOQUEST TECHNOLOGIES Incorporated (USA)
Blue cabinet/Ineoquest Technologies Incorporated
INFRAWORKS (USA) *
INNOVA S.p.A. (Italy)
INTELLIGENTIAS Inc. (USA)
INTELLIGENT SERVICES SOLUTIONS (ISS) (Egypt)
Blue cabinet/Intelligent Services Solutions
INTERANET (Russia)
INTERCOM APP (USA)
INTERGRAPH CORP / INTERGRAPH GOVERNMENT SOLUTIONS (HEXAGON AB) (USA/SWEDEN)*
INTRACOM (Greece/Syria/US/Russia)
Blue cabinet/ CONKLIN INTRACOM
INVEA-TECH (CZ)
INVESTCORP (Bahrain/UK/USA)
INVESTOR AB (Sweden/Global)
Intelligence & Public Security (IPS) S.p.A. (Italy)
INVICTA NETWORKS (USA)
IP FABRICS (US)
IPOQUE GmbH (Germany)
IQT (In-Q-Tel) (USA)
IST (Dubai,UAE)
JDS Uniphase Corporation (USA)
Blue cabinet/JDS Uniphase Corporation
jetNEXUS (UK, US, Malaysia)
JUNIPER NETWORK (USA)
JumpGen Systems (USA)
KAPOW SOFTWARE (USA)
KBI Optronics GmbH (Germany)
KERIO (US/Global)
KEYW (USA)
KINGFISHER SYSTEMS (USA)
Kommlabs Dezign Pvt. Ltd. (India)
L3 Communications (USA) *
Blue cabinet/L3 Communications
Law Enforcement Associates Corp. (AKA LEA-AID) (USA)*
LIGHTSPEED SYSTEMS (USA)
Blue cabinet/Lightspeed Systems
LM TECHNOLOGIES LTD (UK)*
LOOKINGGLASS CYBER SOLUTIONS LLC (USA)
LOQUENDO (Italy)
M86 Security/8e6 Technology (aka TRUSTWAVE) (UK/USA)
MACRO SYSTEM (Poland)
MANTARO (USA)
MANTECH INTERNATIONAL CORPORATION INC (USA)*
MARCONI ( )
MARKMONITOR Dtecnet (USA/Denmark)
Blue cabinet/MARKMONITOR Dtecnet
MEDAV GmbH (Germany)
MegaFon (aka Metrocom Inc.) (Russia)
MERA / ALOE SYSTEMS, Inc. (USA)
METASWITCH (UK)
MICROSOFT (US/Global)
MICRO SYSTEMATION AB (Sweden)
Blue cabinet/Micro Systemation
MISSING LINK SECURITY / PHYLEO (USA)
MOBILE ARTS (Sweden)
MOBILE TELECOMMUNICATION CO of IRAN (MTC Iran)
MOBITEL ( )*
MORPHO companies (see list below) - SAFRAN GROUP (France)
Blue cabinet/Morpho Detection, Inc.
MOTOROLA - NETOPIA (USA)
MTN Group (S. Africa)
MTN Irancell (Iran)
MTN Syria (Syria)
NAPATECH (USA)
NARUS (USA)
NETAGENT (JAPAN)
NETAPP (USA)
NETI (Hungary)
NETLOGIC (USA)
NET OPTIC (USA)
NETQUEST CORPORATION (USA)
NETRONOME NETWORKS (USA)
Blue cabinet/NETRONOME NETWORKS
NETSCOUT (USA) *
Blue cabinet/NetScout Systems Incorporated
NETSWEEPER (Canada)
NETVEDA (USA)
NETWITNESS (USA)
NETWORK CRITICAL (UK/USA)
Network Intelligence Alliance (France/Global)
Blue cabinet/Network Intelligence Alliance
Neuralitic Systems (Canada)
Blue cabinet/Neuralitic Systems
NEUSTAR (USA)*
NEWPORT NETWORKS (UK)
NEXT GENERATION IDENTIFICATION (NGI)(Global)
NICE SYSTEMS (Israel)
Nokia Siemens (Finland/Germany)
NORTHROP GRUMMAN (USA)
NSO Group (Israel)
NTREPID (USA)
Blue cabinet/ Ntrepid Incorporations
OMNI Wildpackets (USA)
OMRON CORPORATION
Blue cabinet/Omron Corporation
@ONE IT GmbH (Germany)
ONPATH Technologies (USA)
Blue cabinet/ONPATH Technologies
OPENET (Ireland)
OPNET (USA)
OPTENET (Spain/USA)
OXYGEN SOFTWARE COMPANY (Russia)
PACKET FORENSICS (USA)
PAD Datentechnik GmbH (Germany)
PAESSLER (Germany)
PALADION NETWORKS (India)
PALANTIR TECHNOLOGIES (USA)
PALO ALTO NETWORK (USA)
PANASONIC Corporation (Japan)
Blue cabinet/Panasonic Corporation
PANOPTECH (United Kingdom)
PEARLSOFT (USA)
PEN LINK (USA)
PHOENIX (USA)
PHONEXIA S.R.O. (CZ)
PINE DIGITAL SECURITY (Netherlands)
Blue cabinet/PINE DIGITAL SECURITY
PINION SOFTWARE Inc. / (USA)*
PK-Electronic (Germany)
PLATH GmbH (Germany)
POLARIS WIRELESS (USA)
PRAESCIENT ANALYTICS (USA)
PREDPOL INC PREDICTIVE POLICING (USA)
PROCERA NETWORKS (USA)
PROLEXIC (USA)*
PROOFPOINT (USA)
PROTEI (Russia/Jordan)
QinetiQ Mission Solutions Group (USA)
Blue cabinet/QinetiQ (Cyveillance)
QOSMOS (France)
Q1Labs / IBM (USA)
RADISYS (USA)
RADWARE (Israel)
RAINSTOR (USA/UK)
RANTEK (Denmark)
RAYTHEON BBN TECHNOLOGIES (USA)
Blue cabinet/Raytheon BBN Tech
Raytheon Intelligence and Information Systems (ISS)(USA)
RAYTHEON TRUSTED COMPUTER SOLUTIONS, INC. (USA)
Blue cabinet/Raytheon Trusted Computer Solutions
RCS (Italy)
RECORDED FUTURE (USA)
RESI GROUP (Italy)
RETENTIA (USA)
REUTER (Germany)
RIMON INTERNET (Israel)
RIVERBED (USA)
ROHDE & SCHWARZ (Germany)
RSA / EMC2 (USA)
RTI Systems (Russia)
SAGEM (France)
SALIENT FEDERAL SOLUTIONS (USA)
SANDVINE (Canada)
SAP (Germany/USA)
SASKEN (Finland/India/China/USA)
SAS INSTITUTE ( )
SCAN & TARGET (France)
SCIENCE APPLICATIONS INTERNATIONAL CORP. (SAIC)(USA)
SEANET TECHNOLOGIES (USA)
SEARTECH (South Africa)
SECURITAS / PINKERTONS (Sweden)
SECURITY SOFTWARE INTERNATIONAL (SSI) ( )
SELECTRONIC (Germany)
SELEX (Italy)
SEPTIER COMMUNICATION LTD (ISRAEL/INDIA)
Blue cabinet/SEPTIER COMMUNICATION
SERCO (USA/UK)
SERPIKOM (FRANCE)
SevOne (USA)
SHOGI COMMUNICATIONS (India)
Blue cabinet/SHOGI COMMUNICATION
SIEMENS / NOKIA (Germany)
SILVERTAIL SYSTEMS (USA)
SIMURGH (Iran)
SINGTEL (Singapore)*
SINICINFO ( )
SITRONICS / SISTEMA (Russia)
Subsidiary Companies
SKYCOM TECH CO Ltd / Huawei (Iran)
SMOOTHWALL (UK)
SOLERA NETWORKS (USA/JAPAN)
SOPHOS (United Kingdom)
SPECTORSOFT (USA)
SPECTRONIC SYSTEMS A/S (Denmark)
Blue cabinet/Spectronic Systems A/S
SPEECH TECHNOLOGY CENTER LTD. (Russia)
Blue cabinet/Speech Technology Center
SPEKTRA SRL (Italy)
SPIRENT COMMUNICATIONS (UK/USA}
Blue cabinet/Spirent Communications plc
SPYTECH SOFTWARE and DESIGN,INC. (USA)
SR7 (Australia)
SS8 (USA)
SST ShotSpotter (USA)*
STRATIGN (UAE)
SUBSENTIO (USA)
SUNTECH INTELLIGENCE (Brazil)
Blue cabinet/SUNTECH INTELLIGENCE
SURIZON TECHNOLOGIES (UK)
SYBORG (Germany)
SYMANTEC (USA)
SYMBIAN LTD / NOKIA (UK)
SYRIATEL (Syria)
TADIRAN ELECTRONIC SYSTEMS Ltd.(Israel)
TAMARA ELECTRONIC Ltd (Turkey)
Blue cabinet/Tamara Electronic Ltd
TAMOSOFT (New Zealand)
TEEL TECHNOLOGIES (USA)
TEKTRONIX INCORPORATED (USA)
Blue cabinet/Tektronix Incorporated
TELECOMMUNICATION COMPANY of IRAN (TCI)(IRAN)
TELEKOM AUSTRIA / MOBITEL
TELESOFT TECHNOLOGIES (United Kingdom)
Blue cabinet/TELESOFT TECHNOLOGIES
TELETEL ADVANCED TECHNOLOGY (UAE/USA)
Blue cabinet/Teletel Advanced Technology
TELETEL (Greece)
TELIASONERA (Sweden)
THALES (France)
The SI ORGANIZATION INC (USA)
TIBCO SOFTWARE (USA/EU/JP/Worldwide)
TILERA
TRACESPAN COMMUNICATIONS (USA/Israel)
Blue cabinet/TraceSpan Communications
TRANSTEK (Syria)
TRAPWIRE (USA)
Blue cabinet/ TRAPWIRE additional data
TRESYS TECHNOLOGY (US, UK, Australia)
Blue cabinet/Tresys Technology
TROVICOR GmbH (Germany)
UDILIGENCE (USA)
ULTRAREACH (USA)
UNISPEED A/S (Denmark)
UNTANGLE (USA)
UNVEILLANCE (USA)*
UTIMACO (US/Germany)*
VEDICIS (France)*
VASTECH (South Africa)*
VERINT - subsidiary of COMVERSE (Israel/USA)*
VERIZON (USA/Belgium)
VERVIS COMINT SERVICES GmbH (Germany)*
Blue cabinet/VERVIS COMINT SERVICES
VIGITRUST (Ireland)*
VINEYARD NETWORKS (BC Canada)*
Blue cabinet/VINEYARD NETWORKS
VISIBLE TECHNOLOGIES (USA/UK)
Blue cabinet/VISIBLE TECHNOLOGIES
VISLINK GROUP (UK)*
VIXTEL (CHINA)
VOCAL TECHNOLOGIES Inc. (USA)*
Blue cabinet/VOCAL TECHNOLOGIES
VSS MONITORING (USA)*
VUPEN SECURITY (France)*
WASEELA (KSA/Jordon/Dubai) *
WATCHPOINT / WildPackets (USA)*
WEBSENSE (USA)*
WEDGE NETWORKS (Canada/US/China) *
WORLD SURVEILLANCE GROUP INC (USA)
Blue cabinet/WORLD SURVEILLANCE GROUP
WORLD TECH COMPANY (Syria)
XALTED Inc. (USA/India)*
XROADS NETWORKS (USA)
YOKOGAWA ELECTRIC CORPORATION (Japan)*
Blue cabinet/Yokogawa Electric Corporation
ZTE (China)
007 Spygear (Brasil)
3iMIND (Swiss) *
3M (Germany)
3VR (USA)*
6WIND (France)
Conferences & Meetings
ISS World Training
ISS World Training are a set of global conferences for the lawful intercept industry, a.k.a. government surveillance. ISS is produced by Telestrategies. Individual sponsor pages are a who's who of the Pinkerton rat bastards and mother f*ckers in this industry. The next one is in the Middle East
Guardian Article in which Jerry Lucas of ISS says outrageous things. Good background.
@ioerror was thrown out of the Washington DC conference this year. Security research & cool dude Chris Soghoian was fired from a job at US FTC for using his government ID to attend covertly.
Security Trade Missions
[1] Jan 30 - Feb 2, 2012 The Safety and Security Trade Mission to Mexico will provide U.S. safety and security manufacturers and service providers a timely, efficient and cost effective opportunity to explore current business prospects in Mexico.
Frequently Asked Questions? (FAQ?)
What is "Surveillance" and why should I care, since I'm not doing anything criminal?
- What is "Surveillance? Wikipedia
- Why should I care?
Most people, living in democratic countries, have the Constitutional Right to Privacy. This Right is being taken from you and sold for corporate profit. To the Corporation you and your data are a commodity. To the government you are a "terrorist suspect" until they have gathered enough data about you and analyzed the existing data to find that you are no longer "suspect." The data they analyze includes who you associate with online i.e. "Friend" on Social Networks.
- See also "McCarthyism" and Hollywood Blacklist and "Blacklisting" that in computing terms may also be considered a form of "Censorship."
"In computing, a blacklist is an access control system which denies entry to a specific list (or a defined range) of users, programs, or network addresses."
What is "Persona Management" Software?
In short it is a software technology employed by the military, governments, politicans and blue chip corporations to create fake identities aka "sock puppets" for surveillance of opponents and the dissenting public, most often on social media.
Project PM and Operation Metal Gear began researching and exposing such online surveillance activities in 2011, as explained further in this video prior to the creation of The Telecomix Blue cabinet. One example of a company that has contracted with the US Military to provide Persona Management Software is Blue cabinet/Ntrepid
Example Patent application Persona management system for communications
What about cell phones?
Cell phones are easily tracked by Law Enforcement Agencies (LEA), that can find your location through the internal GPS battery like cell inside the phone. Even if you remove the GPS tracker, your cell phone can expose your location through sound waves and so-called "Lawful Intercept" surveillance products available to LEAs. It is even possible for LEAs to turn on the remote mic in your cell and home phones. If you are trying to have a private discussion in person, make sure that phones have the batteries removed. There are numerous online publications and videos on this subject. If you find a good one, please add it here. <3
- UnLockMe Blacklisted, Barred and Blocked Handsets.
- Commercial Software available to the public.
- The American Dream blog Some cell phones record your location hundreds of times a day.
What is Commercialized Spying?
Here is a great video "The World of Commercialized Spying" explained by Julian Assange, publisher with the nonprofit organisation, WikiLeaks Disclose.tv and "Marriage From Hell" by Dr. Evgeny Morosov Key Note Speaker at 28c3 conference
What is NFC?
Near Field Communication is explained by arstechica
How can you fight online Government Spying?
2009 Electronic Frontier Foundation (EFF) launched its Surveillance Self-Defense project-- an online how-to guide for protecting your private data against government spying. You can find the project at http://ssd.eff.org.
What is Network Intelligence?
Network Intelligence technology is an emerging category of technology to reveal the critical details of the data locked inside network traffic and transactions. See Wikipedia
What is Lawful Interception (LI)?
Packet capture can be used to fulfill a warrant from a law enforcement agency (LEA) to produce all network traffic generated by an individual. Internet service providers and VoIP providers in the United States of America must comply with CALEA (Communications Assistance for Law Enforcement Act) regulations. Deep Packet Capture provides a record of all network activities.[3] Using packet capture and storage, telecommunications carriers can provide the legally required secure and separate access to targeted network traffic and are able to use the same device for internal security purposes. DPC probes can provide lossless capture of target traffic without compromising network performance.[9] However DPC appliances may be unable to provide chain of evidence audit logs, or satisfactory security for use in this application. Collection of data from a carrier system without a warrant is illegal due to laws about interception. [2]
Are printers used for surveillance?
Yes they are. Several printer companies are listed in this Response Letter from U.S. Department of Homeland Security and Secret Service]
What can I do to help ban or limit the expansion of surveillance technologies?
Although there are pros and cons of these technologies, the cons are certainly outweighed when being used against the rights of humans and privacy. One simple way to fight back is to expose the vendors and people financially profitting from the technologies. You can do this by adding more info and content to this Blue Cabinet wiki and coming to the irc #bluecabinet. Also, listen to this 2011 keynote presentation video by Evgeny Morozov for additional info and ways to take action.
What is a Point of Presence?
An Internet point of presence is an access point to the Internet. It is a physical location that houses servers, routers, ATM switches and digital/analog call aggregators. It may be either part of the facilities of a telecommunications provider that the Internet service provider (ISP) rents or a location separate from the telecommunications provider. ISPs typically have multiple PoPs, sometimes numbering in the thousands. PoPs are also located at Internet exchange points and colocation centres. [3].
How is surveillance equipment installed?
Surveillance equipment is usually installed at a POP and the traffic is further encapsulated by protocols such as MPLS (Multiprotocol Label Switching) in the backbone. This makes it possible to route the traffic from Proxy servers, which may decrypt the traffic, making it possible to monitor in realtime or reconstruct its stored sessions.
How to protect yourself?
Encryption does protect against surveillance when it is based on public/private key encryption, such as when using SSL/TLS. Surveillance methods can use man-in-the-middle attacks, such as using a proxy to present a fake SSL certificate which the user must thrust. One recommended proxy is TOR
Are there vulnerabilities in Lawful Intercept Solutions?
- DefCon presentation video
- BlackHat presentation video
What is Deep Packet Inspection (DPI)?
- zdnet Deep Packet Inspection - What you should know.
- Firewall Expansion - Deep Packet Inspection by Ido Dubrawsky
"Invented by Check Point Software Technologies in the mid-to-late 1990s stateful inspection quickly became an industry standard. Stateful inspection provides for the analysis of packets at the network layer as well other layers (typically the transport layer in the OSI model but the firewall may look at layers above that as well) in order to assess the overall packet. By combining information from various layers (transport, session, and network) the firewall is better able to understand the protocol it is inspecting. This also provides for the ability to create virtual sessions in order to track connectionless protocols such as UDP-based applications as well as RPC-based applications..."
Full/deep packet capture of entire populations is now possible. The only limitation is storage space. This means that all traffic from a user/subscriber is captured and stored in realtime to a data centre. It can lates be played back or reconstructed. One product which does this is RSA NetWitness. Normally a full capture is only performed by technicians for troubleshooting network connectivity problems.
"Deep Content Inspection is considered the evolution of Deep Packet Inspection with the ability to look at what the actual content contains" wikipedia
"Deep Content Inspection v. Deep Packet Inspection" http://www.wedgenetworks.com/resources/technology/deep-content-inspection-with-wedgeos.html
What is Data Carving?
Data carving (Antonio Merola, Data Carving Concepts, SANS Institute 2008) is the process of extracting a collection of data from a larger data set. Data carving techniques frequently occur during a digital investigation when the unallocated file system space is analyzed to extract files. The files are "carved" from the unallocated space using file type-specific header and footer values. File system structures are not used during the process.
Data carving is done on a disk when the unallocated file system space is analysed to extract files because data cannot be identified due to missing of allocation info, or on network captures where files are "carved" from the dumped traffic using the same techniques. One drawback of this process on disks or images is that file-carving tools typically contain many false positives, hence tests must be done on each of the extracted files in order to check its consistency. This is not the case with network-dumped files where files are within the dump (if the dump is complete) and is just matter of doing extraction. There are many powerful automated forensic analysis tools available for use. There are no standard techniques for the tools to perform common investigative tasks, such as recovering a deleted file.
Where can I get additional information about Spy technologies?
Bugged Planet, ProjectPM and some news publications have special sections on IT and mobile phone surveillance (see Bloomberg, WSJ and Forbes. In addition, Wikileaks have released The Spy Files which contains a large collection of documents related to Spy technologies. The collection can be obtained from The Pirate Bay [4].
What can I do to help ban or limit the expansion of surveillance technologies?
Although there are pros and cons of these technologies, the cons are certainly outweighed when being used against the rights of humans and privacy. One simple way to fight back is to expose the vendors and people financially profitting from the technologies. You can do this by adding more info and content to this Blue Cabinet wiki and coming to the irc #bluecabinet. Also, listen to this 2011 keynote presentation video by Evgeny Morozov for additional info and ways to take action.
What about government sanctions on technology?
- United States of America
CBSNews reports Obama levies new tech sanctions on Syria, Iran
President Barack Obama's Executive Order 13606 13606 pdf version blocking the property and suspending entry into the United States of certain persons with respect to grave human rights abuse by the governments of Iran and Syria via information technology. The lead departments are the US Department of Treasury in consultation with the US State Department.
Although some EU countries and the USA have agreed to sanctions the enforcement is lacking. Especially when other countries do not have sanctions where distributors/resellers are providing the surveillance tech to government dictatorships. How to hold the manufacturers, sellers and shippers accountable has not been simple. Most likely there is a black market.
- European Union
- EU proposals raise the ante for non-compliant companiesForbes 12.12.11
- Sweden stopped EU sanctions against Syria - Ericsson factor Stockholm News 12.2.11
- Other Sanctioned Countries
- US keeps sanctions on Myramar/Burma,while EU eases theirs
More data on Sanctions see Sactions wiki
