[grandalf]

> We should try to think of some concrete steps to resist this. It feels like we have to try, since there's so much at stake.

Great point. One idea I had recently is to start an organization in the same spirit as Open AI called OpenSurveillance that builds and releases all sorts of useful tools for thwarting surveillance efforts or acting as an adversary to an entity with pervasive surveillance power (generally speaking, corrupt regimes around the world).

I think it would entail a combination of social/operational and technological tools, and would be useful for defensive and offensive efforts.

When OpenAI releases a state of the art facial recognition algorithm, it becomes obvious how the technology might be used for good or for evil. The same goal would apply.

Perhaps one utility conducts an analysis of public social media data to determine the best strategy for bribing or compromising an adversary. Another could explain how to use a HackRF YARDStick One to track the movement of an adversary via tire air pressure sensors. Another might utilize an infra-red camera to determine which entrances and exits of a building are slow to close and could offer time to sneak in.

Still other tools might be a user-friendly rootkit installer for easy installation on a spouse or boss's device, etc., or maybe a program that trains a fleet of drones to follow a person all day, causes vehicle engine failure, etc.

The basic idea would be to highlight enough about reality so that the security (and privacy) implications of the policies can be weighed accurately by the public. By putting all the tools in one place and releasing polished, thoughtful products, the organization would help the public understand the privacy/security tradeoffs much better.

Basically a modern Anarchist's Cookbook for the surveillance age.

Disclaimer: It is not the intent of this post to discourage people to break laws, simply to use their vote and influence to peacefully change laws.

[cryptarch]

Do you think such an organization could exist in the light?

I've been considering a comparable project, but more focussed on opsec/infosec in a file sharing context. However, I've felt chilled by the possible legal consequences to me and my family if I enter this arena.

Bootstrapping myself to have great opsec seems like a really tough task. I feel like I'd have to repeatedly burn hardware, houses and identities if I want to stand a chance to reach "opsec heaven" where I can freely persue projects such as the Spook's Cookbook or the Pirate's Cookbook.

[grandalf]

> Do you think such an organization could exist in the light?

I think it could but it would need good legal support and PR support to prevent its actions from being mischaracterized.

> Bootstrapping myself to have great opsec seems like a really tough task

I think it would be incredibly difficult if not impossible in today's world. So I think that an "in the light" approach is much less vulnerable.

[ComodoHacker]

>acting as an adversary to an entity with pervasive surveillance power (generally speaking, corrupt regimes around the world)

>a user-friendly rootkit installer for easy installation >a program that trains a fleet of drones to follow a person all day, causes vehicle engine failure, etc.

I'm afraid corrupt regimes would be the ones who benefit the most from such tools.

[grandalf]

> I'm afraid corrupt regimes would be the ones who benefit the most from such tools.

They already do. But since the tools are under the radar there is not all that much pressure on technology firms to follow best practices.

For example, why don't we have fully auditable filesystems?

[ComodoHacker]

What do you mean by "fully auditable filesystem"?