Author Topic: Legality of ISP's doing MITM on encryption?  (Read 5914 times)

0 Members and 3 Guests are viewing this topic.

Offline Joe

  • B&
  • x86
  • Hero Member
  • *****
  • Posts: 10319
  • In Soviet Russia, text read you!
    • View Profile
    • Github
Legality of ISP's doing MITM on encryption?
« on: September 30, 2008, 12:05:53 am »
I was talking with Sidoh involving avoiding packet shaping by using an SSH tunnel, and I mentioned that they could MITM your tunnel and shape the packets that way. Does anyone know of the legality of MITM'ing your encrypted connections (SSH / HTTPS / etc)?
I'd personally do as Joe suggests

You might be right about that, Joe.


Offline rabbit

  • x86
  • Hero Member
  • *****
  • Posts: 8092
  • I speak for the entire clan (except Joe)
    • View Profile
Re: Legality of ISP's doing MITM on encryption?
« Reply #1 on: September 30, 2008, 08:12:41 am »
It depends.  By ECPA, they aren't allowed to interfere with any information in transit until it reaches its destination server, but due to the way that TCP/IP works, it's fairly likely that the data will go through at least one of their servers (as a legit "destination"), which makes ECPA pretty much worthless.  Even then, they can usually get away with it because MITM is really hard to detect.

Offline Joe

  • B&
  • x86
  • Hero Member
  • *****
  • Posts: 10319
  • In Soviet Russia, text read you!
    • View Profile
    • Github
Re: Legality of ISP's doing MITM on encryption?
« Reply #2 on: September 30, 2008, 12:58:57 pm »
I'll probably exchange fingerprints with iago via AIM / text message and check that out. :)
I'd personally do as Joe suggests

You might be right about that, Joe.


Offline iago

  • Leader
  • Administrator
  • Hero Member
  • *****
  • Posts: 17914
  • Fnord.
    • View Profile
    • SkullSecurity
Re: Legality of ISP's doing MITM on encryption?
« Reply #3 on: September 30, 2008, 01:39:25 pm »
Your ISP just phoned me up, something about wanting me to give them their public key instead of my own..


Offline Newby

  • x86
  • Hero Member
  • *****
  • Posts: 10877
  • Thrash!
    • View Profile
Re: Legality of ISP's doing MITM on encryption?
« Reply #4 on: September 30, 2008, 03:17:38 pm »
Can't you verify fingerprints... ?

Really, SSH seems to be built to prevent this.
- Newby
http://www.x86labs.org

Quote
[17:32:45] * xar sets mode: -oooooooooo algorithm ban chris cipher newby stdio TehUser tnarongi|away vursed warz
[17:32:54] * xar sets mode: +o newby
[17:32:58] <xar> new rule
[17:33:02] <xar> me and newby rule all

I'd bet that you're currently bloated like a water ballon on a hot summer's day.

That analogy doesn't even make sense.  Why would a water balloon be especially bloated on a hot summer's day? For your sake, I hope there wasn't too much logic testing on your LSAT. 

Offline Sidoh

  • x86
  • Hero Member
  • *****
  • Posts: 17634
  • MHNATY ~~~~~
    • View Profile
    • sidoh
Re: Legality of ISP's doing MITM on encryption?
« Reply #5 on: September 30, 2008, 04:07:35 pm »
Can't you verify fingerprints... ?

Really, SSH seems to be built to prevent this.

If you've received the server's key across a trustworthy medium, then you're almost definitely in the clear.  SSH complains loudly if it gets a conflicting key.  Otherwise, MITM is still easily possible, I think.

For SSL, there are CAs that verify the authenticity of a third party's public key.  However, I don't think there's anything that prevents the ISP from being the MITM in that exchange as well.  Am I wrong?

Offline iago

  • Leader
  • Administrator
  • Hero Member
  • *****
  • Posts: 17914
  • Fnord.
    • View Profile
    • SkullSecurity
Re: Legality of ISP's doing MITM on encryption?
« Reply #6 on: September 30, 2008, 05:05:35 pm »
Can't you verify fingerprints... ?

Really, SSH seems to be built to prevent this.

If you've received the server's key across a trustworthy medium, then you're almost definitely in the clear.  SSH complains loudly if it gets a conflicting key.  Otherwise, MITM is still easily possible, I think.
That's correct. That's why Joe talked about exchanging keys through a different medium (aim, text message), which is why I made the joke about his ISP phoning me. :)

For SSL, there are CAs that verify the authenticity of a third party's public key.  However, I don't think there's anything that prevents the ISP from being the MITM in that exchange as well.  Am I wrong?
You have the CA's public key stored locally, and you verify the signature when you connect to it. So if somebody is MITMing that, you know.

Of course, if the cert was compromised and revoked, odds are you'd never know because nobody checks the revocation lists.

Offline Sidoh

  • x86
  • Hero Member
  • *****
  • Posts: 17634
  • MHNATY ~~~~~
    • View Profile
    • sidoh
Re: Legality of ISP's doing MITM on encryption?
« Reply #7 on: September 30, 2008, 05:22:53 pm »
You have the CA's public key stored locally, and you verify the signature when you connect to it. So if somebody is MITMing that, you know.

Of course, if the cert was compromised and revoked, odds are you'd never know because nobody checks the revocation lists.

Ah, sure.  Of course this all assumes you're visiting sites which have certificates signed by a CA.  I guess this is usually the case, but I've seen a number of sites of "lesser caliber" that have self-signed certs.

Offline Joe

  • B&
  • x86
  • Hero Member
  • *****
  • Posts: 10319
  • In Soviet Russia, text read you!
    • View Profile
    • Github
Re: Legality of ISP's doing MITM on encryption?
« Reply #8 on: September 30, 2008, 05:26:41 pm »
You have the CA's public key stored locally, and you verify the signature when you connect to it. So if somebody is MITMing that, you know.

Unless they compromised the Firefox installer I downloaded over non-HTTPS.
I'd personally do as Joe suggests

You might be right about that, Joe.


Offline rabbit

  • x86
  • Hero Member
  • *****
  • Posts: 8092
  • I speak for the entire clan (except Joe)
    • View Profile
Re: Legality of ISP's doing MITM on encryption?
« Reply #9 on: September 30, 2008, 09:58:40 pm »
You have the CA's public key stored locally, and you verify the signature when you connect to it. So if somebody is MITMing that, you know.

Of course, if the cert was compromised and revoked, odds are you'd never know because nobody checks the revocation lists.

Ah, sure.  Of course this all assumes you're visiting sites which have certificates signed by a CA.  I guess this is usually the case, but I've seen a number of sites of "lesser caliber" that have self-signed certs.
Or maybe they are self signed because people don't feel like shelling out $700 to a signing company for a "legitimate" SSL cert.  Also, by that logic, VeriSign is a "lesser caliber" site, since it's signed its own cert.

Offline Sidoh

  • x86
  • Hero Member
  • *****
  • Posts: 17634
  • MHNATY ~~~~~
    • View Profile
    • sidoh
Re: Legality of ISP's doing MITM on encryption?
« Reply #10 on: September 30, 2008, 11:11:07 pm »
You have the CA's public key stored locally, and you verify the signature when you connect to it. So if somebody is MITMing that, you know.

Of course, if the cert was compromised and revoked, odds are you'd never know because nobody checks the revocation lists.

Ah, sure.  Of course this all assumes you're visiting sites which have certificates signed by a CA.  I guess this is usually the case, but I've seen a number of sites of "lesser caliber" that have self-signed certs.
Or maybe they are self signed because people don't feel like shelling out $700 to a signing company for a "legitimate" SSL cert.  Also, by that logic, VeriSign is a "lesser caliber" site, since it's signed its own cert.

It's not that much.  When I purchased one for a client, it was <$100.  If you're a big company, having the ability to ensure your customers that their information is kept safe in-transit is extremely important, and I don't think it's wise to undermine that importance.

Your last inference is flawed.  I didn't say every site that doesn't have a cert signed by a CA is of "lesser caliber".  I said there exist "lesser caliber" sites that don't have certs signed by a CA.

Offline Camel

  • Hero Member
  • *****
  • Posts: 1703
    • View Profile
    • BNU Bot
Re: Legality of ISP's doing MITM on encryption?
« Reply #11 on: October 01, 2008, 02:46:23 pm »
I think this is moot: The FCC forbade Comcast from looking at data to determine how to shape it. They are allowed to shape, but not based on what the data is, only on the quantity.

So, if your ISP is shaping, an encrypted tunnel will not help you.

<Camel> i said what what
<Blaze> in the butt
<Camel> you want to do it in my butt?
<Blaze> in my butt
<Camel> let's do it in the butt
<Blaze> Okay!

Offline Sidoh

  • x86
  • Hero Member
  • *****
  • Posts: 17634
  • MHNATY ~~~~~
    • View Profile
    • sidoh
Re: Legality of ISP's doing MITM on encryption?
« Reply #12 on: October 01, 2008, 03:34:32 pm »
I think this is moot: The FCC forbade Comcast from looking at data to determine how to shape it. They are allowed to shape, but not based on what the data is, only on the quantity.

So, if your ISP is shaping, an encrypted tunnel will not help you.

Ah, that is interesting.