[leeoniya]

If your hardware contains unflashable firmware with a back door to direct memory access, then there is no encryption you can trust to perform on the device itself. For example, your baseband processor in your mobile phone which is a binary blob, protected/signed so not to violate FCC regulations and disrupt networks.

Such firmware can be mandated from manufacturers without outlawing encryption directly but making it useless nevertheless.

[AnthonyMouse]

> Such firmware can be mandated from manufacturers without outlawing encryption directly but making it useless nevertheless.

So the obvious first response to this is that it doesn't actually work. Have you seen the security of these vendors? Apple takes it more seriously than most because they're using it to maintain control over the App Store and yet people still root iPhones. Mandate it by law on vendors who don't even want to do it and it will be completely broken in two days. And completely broken against not only the user. Let's not forget the situation with wifi routers -- "only the manufacturer can issue updates" quickly turns into "security updates are not available from anyone anymore" with the consequent catastrophic nightmare following directly.

But let's pretend we're uninformed pedestrians who don't know that for a minute. How is this idea not even more outrageous than banning encryption to begin with?

[peatmoss]

> uninformed pedestrians

Using "pedestrians" as a pejorative is something I've not seen in a while. What century is this?

[leeoniya]

it is politically more palpable and "sounds" less outrageous to the public than outlawing encryption. which means it is more likely to make it into law and get support.

[riscy]

The ability for any software to reliably recognize whether an encryption algorithm is being performed or not is not possible (not computable). It can always be hidden.

[leeoniya]

you don't need to detect encryption. with full memory access, you just take the plaintext.

[ntucker]

My point is that you don't have to do the encryption on the device. You can send/store encrypted data via compromised devices and channels.

[mirimir]

Yes. And you can obfuscate it. You can even encode it using packet timing, which is very hard to detect. It's also very inefficient, on the order of 1%, but that's enough for text over HD video. See True Names by Vernor Vinge.

[DanBC]

You can't trust the device - it's compromised. So even if you use encryption with that compromised device the plain text still leaks.

[mirimir]

Not if the encrypted text was created on a trusted device.

Consider that, as it is now, encrypted data on the Internet traverses numerous untrusted devices.

For an extreme example, see https://github.com/maqp/tfc-otp

[DanBC]

> Consider that, as it is now, encrypted data on the Internet traverses numerous untrusted devices

And those untrusted devices leak considerable amounts of that data! You know that it doesn't matter how good the encryption is if one of the computers in the chain is full of malware.

I genuinely don't understand the point you're making, especially in reference to this parent: https://news.ycombinator.com/item?id=11271745

For your OTP example: I know what the cipher text is. I slurped that. I don't know what the key is, or the plain text is, until you decrypt it, at which point I know both because I have access to your memory because your computer is compromised.

[plugnburn]

There still are some encryption schemes that can be run with nothing more than a pencil and paper. See SMSPP for example: https://gist.github.com/plugnburn/6b50ceee3a89893a9e48

You can also use straddling checkerboards if you can do some very simple math.

[mirimir]

Well, then you get proper hardware.

[qb45]

Where are you sourcing those "proper" cell phone radios which don't contain secret binary blobs? I want one too.

[mirimir]

You nuke the radio, and use a standalone cell modem. The cell modem may be compromised, but it can't touch the device that's handling encryption.

[narrowrail]

Speaking of which, where is the flip phone with integrated 4G modem and wifi that can be used as a hotspot?

[plugnburn]

Why doesn't a cheapest Android smartphone with a 3G modem (say Alcatel 4009D) fit?

Because it's not 4G? Well, here's the real tradeoff: security, comfort, cheapness. Pick two.

[narrowrail]

Mostly because I believe the device can be more cheaply made if it does not have to run a full-featured OS such as Android. No browser, no color screen, just like my old Nokia candy bar phone; no GPU at all would be required.