The NSA: Capabilities and Countermeasures

Presented at ShmooCon X (2014), Jan. 18, 2014, 3 p.m. (60 minutes).

Edward Snowden has given us an unprecedented window into the NSA's surveillance activities. Drawing from both the Snowden documents and revelations from previous whistleblowers, I will describe the sorts of surveillance the NSA does and how it does it. The emphasis is on the technical capabilities of the NSA, not the politics of their actions. This includes how it conducts Internet surveillance on the backbone, but is primarily focused on their offensive capabilities: packet injection attacks from the Internet backbone, exploits against endpoint computers and implants to exfiltrate information, fingerprinting computers through cookies and other means, and so on.

I will then talk about what sorts of countermeasures are likely to frustrate the NSA. Basically, these are techniques to raise the cost of wholesale surveillance in favor of targeted surveillance: encryption, target hardening, dispersal, and so on.


Presenters:

  • Bruce Schneier
    Bruce Schneier is an internationally renowned security technologist, called a "security guru" by The Economist. He is the author of 12 books--including Liars and Outliers: Enabling the Trust Society Needs to Survive--as well as hundreds of articles, essays, and academic papers. His newsletter and blog are read by over 250,000 people. Schneier is a fellow at the Berkman Center for Internet and Society at Harvard Law School, a program fellow at the New America Foundation's Open Technology Institute, and a board member of the Electronic Frontier Foundation.

Similar Presentations: