Censorship in the Age of Large Cloud Providers – Lawfare

12694039135 ab40003688 b ProxyEgg Censorship in the Age of Large Cloud Providers - Lawfare

Internet censors have a new strategy in their bid to block applications and websites: pressuring the large cloud providers that host them. These providers have concerns that are much broader than the targets of censorship efforts, so they have the choice of either standing up to the censors or capitulating in order to maximize their business. Today’s internet largely reflects the dominance of a handful of companies behind the cloud services, search engines and mobile platforms that underpin the technology landscape. This new centralization radically tips the balance between those who want to censor parts of the internet and those trying to evade censorship. When the profitable answer is for a software giant to acquiesce to censors’ demands, how long can internet freedom last?

The recent battle between the Russian government and the Telegram messaging app illustrates one way this might play out. Russia has been trying to block Telegram since April, when a Moscow court banned it after the company refused to give Russian authorities access to user messages. Telegram, which is widely used in Russia, works on both iPhone and Android, and there are Windows and Mac desktop versions available. The app offers optional end-to-end encryption, meaning that all messages are encrypted on the sender’s phone and decrypted on the receiver’s phone; no part of the network can eavesdrop on the messages.

Since then, Telegram has been playing cat-and-mouse with the Russian telecom regulator Roskomnadzor by varying the IP address the app uses to communicate. Because Telegram isn’t a fixed website, it doesn’t need a fixed IP address. Telegram bought tens of thousands of IP addresses and has been quickly rotating through them, staying a step ahead of censors. Cleverly, this tactic is invisible to users. The app never sees the change, or the entire list of IP addresses, and the censor has no clear way to block them all.

A week after the court ban, Roskomnadzor countered with an unprecedented move of its own: blocking 19 million IP addresses, many on Amazon Web Services and Google Cloud. The collateral damage was widespread: The action inadvertently broke many other web services that use those platforms, and Roskomnadzor scaled back after it became clear that its action had affected services critical for Russian business. Even so, the censor is still blocking millions of IP addresses.

More recently, Russia has been pressuring Apple not to offer the Telegram app in its iPhone App Store. As of this writing, Apple has not complied, and the company has allowed Telegram to download a critical software update to iPhone users (after what the app’s founder called a delay last month). Roskomnadzor could further pressure Apple, though, including by threatening to turn off its entire iPhone app business in Russia.

Telegram might seem a weird app for Russia to focus on. Those of us who work in security don’t recommend the program, primarily because of the nature of its cryptographic protocols. In general, proprietary cryptography has numerous fatal security flaws. We generally recommend Signal for secure SMS messaging, or, if having that program on your computer is somehow incriminating, WhatsApp. (More than 1.5 billion people worldwide use WhatsApp.) What Telegram has going for it is that it works really well on lousy networks. That’s why it is so popular in places like Iran and Afghanistan. (Iran is also trying to ban the app.)

What the Russian government doesn’t like about Telegram is its anonymous broadcast feature—channel capability and chats—which makes it an effective platform for political debate and citizen journalism. The Russians might not like that Telegram is encrypted, but odds are good that they can simply break the encryption. Telegram’s role in facilitating uncontrolled journalism is the real issue.

Iran attempts to block Telegram have been more successful than Russia’s, less because Iran’s censorship technology is more sophisticated but because Telegram is not willing to go as far to defend Iranian users. The reasons are not rooted in business decisions. Simply put, Telegram is a Russian product and the designers are more motivated to poke Russia in the eye. Pavel Durov, Telegram’s founder, has pledged millions of dollars to help fight Russian censorship.

For the moment, Russia has lost. But this battle is far from over. Russia could easily come back with more targeted pressure on Google, Amazon and Apple. A year earlier, Zello used the same trick Telegram is using to evade Russian censors. Then, Roskomnadzor threatened to block all of Amazon Web Services and Google Cloud; and in that instance, both companies forced Zello to stop its IP-hopping censorship-evasion tactic.

Russia could also further develop its censorship infrastructure. If its capabilities were as finely honed as China’s, it would be able to more effectively block Telegram from operating. Right now, Russia can block only specific IP addresses, which is too coarse a tool for this issue. Telegram’s voice capabilities in Russia are significantly degraded, however, probably because high-capacity IP addresses are easier to block.

Whatever its current frustrations, Russia might well win in the long term. By demonstrating its willingness to suffer the temporary collateral damage of blocking major cloud providers, it prompted cloud providers to block another and more effective anti-censorship tactic, or at least accelerated the process. In April, Google and Amazon banned—and technically blocked—the practice of “domain fronting,” a trick anti-censorship tools use to get around Internet censors by pretending to be other kinds of traffic. Developers would use popular websites as a proxy, routing traffic to their own servers through another website—in this case Google.com—to fool censors into believing the traffic was intended for Google.com. The anonymous web-browsing tool Tor has used domain fronting since 2014. Signal, since 2016. Eliminating the capability is a boon to censors worldwide.

Tech giants have gotten embroiled in censorship battles for years. Sometimes they fight and sometimes they fold, but until now there have always been options. What this particular fight highlights is that internet freedom is increasingly in the hands of the world’s largest internet companies. And while freedom may have its advocates—the American Civil Liberties Union has tweeted its support for those companies, and some 12,000 people in Moscow protested against the Telegram ban—actions such as disallowing domain fronting illustrate that getting the big tech companies to sacrifice their near-term commercial interests will be an uphill battle. Apple has already removed anti-censorship apps from its Chinese app store.

In 1993, John Gilmore famously said that “The Internet interprets censorship as damage and routes around it.” That was technically true when he said it but only because the routing structure of the Internet was so distributed. As centralization increases, the Internet loses that robustness, and censorship by governments and companies becomes easier.

Source of this news: https://www.lawfareblog.com/censorship-age-large-cloud-providers

Related posts:

Five secret Signal tips and tricks you might not know about - The Indian Express
Signal is one of the more popular messaging applications right now. While it isn’t the most feature-packed app, like its rivals WhatsApp and Telegram, Signal is big on all things privacy. The app’s m...
Hiding IP Address Behind A Proxy: Is It A Smart Move? - Todayuknews - Todayuknews
We all love the immense benefits and convenience that comes with quickly accessing the internet. Some people are never concerned about the inherent danger caused by identity theft and data security b...
How To Get A New Netflix Series On Your Subscription? - Film Threat
There are also some problems in getting new Netflix series on your subscription because of geo-restriction. If you are not in the USA then you still can’t get new Netflix series on your subscription....
ShotCut 21.09.20 - Neowin
Shotcut is a free, open source, cross-platform video editor for Windows, Mac and Linux. Major features include support for a wide range of formats; no import required meaning native timeline editing...
Chinese APT group IronHusky exploits zero-day Windows Server privilege escalation - Reseller News
Credit: Dreamstime One of the vulnerabilities patched by Microsoft has been exploited by a Chinese cyber-espionage group since at the least August. The attack campaigns targeted IT companie...
Trump Tweet On ‘Chinese Virus’ Sparked Rising Use Of Anti-Asian Hashtags, UCSF Study Discoveries - C...
SAN FRANCISCO (CBS SF) – A tweet before former President Donald Trump in the early days of the COVID-19 pandemic has been attributed to one precipitous rise in anti-Asian hashtags on the social m...
NexuStorage says blocks and files can come from object storage – Blocks and Files - Blocks and Files
NexuStorage’s Nexfs software serves block and file data from an object-backing store using sub-file chunking to reduce data movement and help data tiering, and claims great tier-one storage cost savi...
How to Bypass Bandwidth Limit Restrictions in 2021 [Full Speed] - Cloudwards
How to Bypass Bandwidth Limit Restrictions (ISP Throttling) There are various reasons why ISPs limit your bandwidth (which we’ll talk about later). The gist of it is that it sees you using a lot of ...
Turning Thousands Of Minecraft Players On The Same Server - Hackaday
Multi-threading was the approved go-to technique for extracting good deal more performance from a machine for quite some time. These days it’s all about horizontal scaling or adding more electron...
Charting market rotation, S&P 500 presses record territory - MarketWatch
Technically speaking, the major U.S. benchmarks continue to trend higher amid rotational market price action. Against this backdrop, the S&P 500 has challenged its range top early Tuesday, risin...
Infrastructure deal on brink - Axios
Senate negotiators are finalizing how to pay for the $579 billion bipartisan infrastructure package, tapping everything from unused 2020 COVID-relief funds to targeting the Medicare rebate rule, peop...
Fix Netflix Error NSEZ-40 properly once and for all - TheWindowsClub
Netflix Error NSEZ-403 occurs on Windows 11/10 when you try to play a video. In fact, as per users, the error message appears mainly when trying to play specific videos. Continue with the troubleshoo...
404 and 503 decoded: Here's what those pesky internet error fails really mean - CNET
You might see an error message on websites because there's a problem with the site or an issue on your end.  CNET It was Feb. 16 and I had two alarms set on my phone for Beyoncé's Formation tou...
As to the reasons do you need a VPN when on Public Wi-Fi? a substantial South Florida Caribbean News...
Whenever you are connected to populace Wi-Fi, you must think twice initially using that connection. You will probably be thinking that if your device is always connected to the internet, then it to...
Waikato cyberattack: Servers in question not culprit, DHB says - RNZ
A set of Waikato District Health Board servers were at end-of-life and unpatched when hackers struck in the early hours of 18 May, a source claims. A sign at Waikato Hospital in May. Photo: RNZ /...
SolarWinds hackers have a whole may of new tricks for fast compromise attacks - Ars Technica
reader remarks 63 with 46 posters joining Percentage this story Almost exactly a year ago, surveillance researchers uncovered one of the worst document breaches during modern ...
Apple Kills Open Rate Metrics – Focus on Link Analytics Instead - Business 2 Community
Apple has positioned itself at the forefront of consumer privacy over the years. The company can always be relied upon to deploy new tweaks and improvements with data protection in mind. While this i...
ProxyLogon flaw, evil emails, SQL injections used to open backdoors on Windows boxes with The Regist...
ESET and TrendMicro have identified a world wide and sophisticated backdoor concept that miscreants have ended up onto compromised Windows computers or laptops in companies mostly about Asia but als...

IP Rotating Proxy Onsale

SPECIAL LIMITED TIME OFFER

00
Months
00
Days
00
Hours
00
Minutes
00
Seconds
First month free with coupon code FREE30