Close
  • Latest News
  • Cybersecurity
  • Big Data and Analytics
  • Cloud
  • Mobile
  • Networking
  • Storage
  • Applications
  • IT Management
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Menu
Search
  • Latest News
  • Cybersecurity
  • Big Data and Analytics
  • Cloud
  • Mobile
  • Networking
  • Storage
  • Applications
  • IT Management
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Home Cybersecurity
    • Cybersecurity

    The Internet Plays Role of Stupidity Amplifier

    By
    Wayne Rash
    -
    November 20, 2012
    Share
    Facebook
    Twitter
    Linkedin

      I knew that the level of stupidity among government officials had reached a new all-time high when I couldn’t find a Demotivators poster at Despair Inc. that fit the situation. But sometimes there is a level of total absence of thought, such cluelessness, that mere words fail. But with that in mind, we’ll talk about the general and his email anyway.

      By now you have probably figured out that I’m talking about the former head of the Central Intelligence Agency, who carried on an illicit affair for months using Google’s Gmail as the medium for their secret communications. Leaving aside the warning I delivered recently since anyone clueless enough to use Gmail for secrets is probably too clueless to read eWEEK, you’d think that the head of the CIA would know with deep certainty how insecure email is.

      But apparently the lesson went unlearned, so for you spymasters and others who haven’t figured this out, here it is again. Pay close attention: Email is not secure. See, I even used bold print so you’d notice. To put it another way, do not use email for anything that you don’t want to see on the front page of The Washington Post.

      I’d like to say that this is a recent revelation, but I first wrote this warning in a column I wrote in Byte Magazine back in the mid-1980s. Email’s lack of security hasn’t changed, and I don’t think it is ever likely to change.

      While it’s true that many email systems encrypt the email they carry between the time it leaves your computer or smartphone and arrives at their email server, that’s all there is when it comes to security. There’s a good chance that the email on your company’s server is also encrypted, but there’s no guarantee. And you have no way of knowing whether the email service that’s being used by the recipient of your email has any encryption at all.

      That’s bad enough, but it gets worse. Depending on your email client, there’s a pretty good chance there’s a copy of most of your email on your computer, and that includes email you’ve sent, email that you’ve received and even email that you thought you’d erased. There’s also a copy of everything you’ve sent or received on the servers of your email provider and on the servers and computers of the person at the other end. All of that email might be hard for you to find, but trust me when I tell you it’s only a subpoena away.

      But, of course, it gets worse than that. Let’s assume, for now, that the various government officials involved in recent email scandals weren’t sending clear text messages while using the open WiFi at their local coffee shop. That email still has to go to someone else, and you have to trust that the someone else you’re sending email to will never decide to share it.

      As is the case with most security issues, the people involved are the least secure part of the equation. So let’s say you send a deeply personal email message to someone in a situation where that message or the fact that you sent it would be perceived as a Bad Thing. Now suppose that the recipient, being deeply touched by whatever personal feelings you shared, decides to save the message.

      How do they save this message? Just leaving it in their inbox is bad enough for your secrets, but maybe they wanted something more permanent. So they saved it as a file on their hard disk, where it’s backed up. Or they printed the email and stuck it to the fridge with a magnet. Or maybe, so overwhelmed by what a sensitive feeling person you are, decided to share it with their best friend. Or maybe they share it with all of their friends. On Facebook.

      Or maybe, after the initial ardor has cooled they share it with their lawyer. Or they share it with The Washington Post. Or the FBI. Or maybe you have to take your computer in for service and the guy at the computer repair place wants a few brownie points with the feds. You see where this is going.

      The fact is that sharing secrets by email has so many points of failure that it’s easy to lose count. So don’t use it for secrets unless you have a very good means of encryption and actually use it to encrypt your email.

      There are a couple of other things you can do to keep the world from finding out how stupid you were. First, if you do something dumb, don’t talk about it and don’t email it. Second, if you must communicate about it, do it in writing on paper where you’ve created the text by hand. If you can’t wait long enough to write a letter, then discuss the situation verbally in person after you’ve confirmed that the other person doesn’t have a listening device (a cell phone for example) in range.

      Does this sound really paranoid? It should, but if you persist in doing dumb things then either be prepared for them to become public, or make sure they stay secret by not discussing them. And yes, the CIA can intercept email. Don’t you think the director would know that?

      Avatar
      Wayne Rash
      Wayne Rash is a freelance writer and editor with a 35 year history covering technology. He’s a frequent speaker on business, technology issues and enterprise computing. He covers Washington and is Senior Columnist for eWEEK. He is the author of five books, including his most recent, "Politics on the Nets". Rash is a former Executive Editor of eWEEK and Ziff Davis Enterprise, and a former analyst in the eWEEK Test Center. He was also an analyst in the InfoWorld Test Center, and Editor of InternetWeek. He's a retired naval officer, a former principal at American Management Systems and a long-time columnist for Byte Magazine.

      MOST POPULAR ARTICLES

      Android

      Samsung Galaxy XCover Pro: Durability for Tough...

      Chris Preimesberger - December 5, 2020 0
      Have you ever dropped your phone, winced and felt the pain as it hit the sidewalk? Either the screen splintered like a windshield being...
      Read more
      Cloud

      Why Data Security Will Face Even Harsher...

      Chris Preimesberger - December 1, 2020 0
      Who would know more about details of the hacking process than an actual former career hacker? And who wants to understand all they can...
      Read more
      Cybersecurity

      How Veritas Is Shining a Light Into...

      eWEEK EDITORS - September 25, 2020 0
      Protecting data has always been one of the most important tasks in all of IT, yet as more companies become data companies at the...
      Read more
      Big Data and Analytics

      How NVIDIA A100 Station Brings Data Center...

      Zeus Kerravala - November 18, 2020 0
      There’s little debate that graphics processor unit manufacturer NVIDIA is the de facto standard when it comes to providing silicon to power machine learning...
      Read more
      Apple

      Why iPhone 12 Pro Makes Sense for...

      Wayne Rash - November 26, 2020 0
      If you’ve been watching the Apple commercials for the past three weeks, you already know what the company thinks will happen if you buy...
      Read more
      eWeek


      Contact Us | About | Sitemap

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Property of TechnologyAdvice.
      Terms of Service | Privacy Notice | Advertise | California - Do Not Sell My Information

      © 2021 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

      ×