FSB plans to decrypt all Internet traffic of Russians in real time
The FSB, the Ministry of Communications and the Ministry of Industry and Trade are discussing a set of technical solutions that will allow deciphering all Internet traffic of Russians in real time. About this with reference to its own sources, the newspaper " Kommersant ".
The published article states that the technology being discussed by the FSB is part of the implementation of the sensational “Spring package”.
One of the discussed options for decryption is the installation of special equipment on the networks of operators capable of performing a MITM attack. Apparently, the SSL / TLS mechanism will not interfere with the execution of the attack, since the certificates will be issued by the Russian certification authority. The article does not say whether it will be necessary to install a root CA certificate for SSL operation on the territory of the Russian Federation, but the position of the FSB hints that it will not do without forcing the installation of certificates.
')
Let me remind you that plans to create a Russian CA for issuing SSL certificates were reported back in February 2016.
For further traffic analysis, it is planned to use DPI systems that are already used by many operators, for example, for URL filtering on lists of prohibited sites.
Given the possibility of creating a Russian training center and forcing the installation of certificates for equipment, storing information about connections as part of the implementation of the “Spring package” does not seem so absurd. Thus, one can observe the next tightening of the screws and tightening of control over the Internet in the Russian Federation.
Perhaps this news should be placed on Geektimes, but personally it seems to me that the information is important enough to be on Habré.
The published article states that the technology being discussed by the FSB is part of the implementation of the sensational “Spring package”.
It does not make sense to store exabytes of encrypted Internet traffic - you will not find anything in it. The FSB is in favor of deciphering all traffic in real-time mode and analyzing it by key parameters, conditionally speaking, by the word “bomb”, and the ministries insist on deciphering traffic only for those subscribers who will attract the attention of law enforcement agencies.
- Source of the newspaper "Kommersant" in the Presidential Administration.
One of the discussed options for decryption is the installation of special equipment on the networks of operators capable of performing a MITM attack. Apparently, the SSL / TLS mechanism will not interfere with the execution of the attack, since the certificates will be issued by the Russian certification authority. The article does not say whether it will be necessary to install a root CA certificate for SSL operation on the territory of the Russian Federation, but the position of the FSB hints that it will not do without forcing the installation of certificates.
')
For the user, this equipment pretends to be the requested site, and for the site - by the user. It turns out that the user will establish an SSL connection with this equipment, and already it will connect with the server that the user has accessed.
The equipment decrypts the traffic intercepted from the server, and before sending it to the user, it will re-encrypt it with an SSL certificate issued by the Russian certification authority (CA).
- Source of the newspaper "Kommersant" in the Presidential Administration.
Let me remind you that plans to create a Russian CA for issuing SSL certificates were reported back in February 2016.
For further traffic analysis, it is planned to use DPI systems that are already used by many operators, for example, for URL filtering on lists of prohibited sites.
Given the possibility of creating a Russian training center and forcing the installation of certificates for equipment, storing information about connections as part of the implementation of the “Spring package” does not seem so absurd. Thus, one can observe the next tightening of the screws and tightening of control over the Internet in the Russian Federation.
Perhaps this news should be placed on Geektimes, but personally it seems to me that the information is important enough to be on Habré.
Source: https://habr.com/ru/post/310576/
All Articles