EFF in the News
"This is an extremely serious cryptographic vulnerability caused by the use of insufficiently good random numbers when generating private keys" for HTTPS, SSL and TSL servers, said Peter Eckersley, senior technologist at the Electronic Frontier Foundation. The EFF contributed data for the research.
Join Rebecca MacKinnon and Jillian York, two internet theorists on the forefront of this debate, for a discussion the complex power dynamics amongst governments, corporations and citizens in cyberspace.
The Electronic Frontier Foundation's SSL Observatory is a research project that gathers and analyzes the cryptographic certificates used to secure Internet connections, systematically cataloging them and exposing their database for other scientists, researchers and cryptographers to consult.
According to the Electronic Frontier Foundation, ACTA would not only allow for foreign e-commerce sites to easily shutdown its competitors in the U.S., it would also grant the government the ability to track and record your Internet activity through a mechanism called the Universal Internet ID.
To perform their study, the researchers used several databases of public keys, including one at the Massachusetts Institute of Technology and another created by the Electronic Frontier Foundation, a Internet privacy rights group. The foundation’s database results from a project, known as the SSL Observatory, originally intended to investigate the security of the digital certificates that are used to protect encrypted data transmitted between Internet users and Web sites.
Similar monitoring by the U.S. Department of Homeland Security has already stoked considerable privacy concerns. Groups such as the Electronic Privacy Information Center (EPIC) and the Electronic Frontier Foundation have called for more transparency and oversight of such monitoring activities.
In a joint amicus brief filed Friday, the Electronic Frontier Foundation, the Internet Archive, the American Library Association and others urged the St. Louis-based federal appeals court to accept a reduced damage award against Jammie Thomas-Rasset.
That warning comes by way of the Electronic Frontier Foundation (EFF), a non-profit group devoted to protecting digital rights. According to the organization, numerous dating sites--which are for-profit businesses, after all--sell data on their customers to third parties, including Google and Facebook. Furthermore, many online dating sites suffer from poor information security practices and may not delete profiles or images in a timely manner.
EFF points out six major weak points in the security and practices of online dating sites, most of which appeared first among Facebook's menu of privacy eroding and were universally panned, but have never been eliminated.