kickingtyres

This week saw, what should be, a triumph of human rights over ill-applied and overzealous policing of stop-and-search under Section 44 of the anti terrorism act. The full ruling can be read at the European Court of Human Rights website.

The gist of it is that Kevin Gillan and Pennie Quinton were stopped and searched under Section 44 of the Anti Terrorism Act 2000 for doing nothing more than going about their daily business. This law gives police powers to stop any individual within “designated areas” and search them for material related to terrorist actions without having to show “reasonable cause” to justify their actions. They believed the stopping and searching of them for no good reason was a violation of their rights, and took the case to the European Court of Human Rights.  The court ruled that a stop and search without reasonable grounds, suspicion nor  evidence was unlawful and also commented on the fact that the law itself is very wooly in how it is enforced.

The court ruling should have been a triumph of human rights and common sense over an ill thought-out piece of legislation that has been abused time and again since it was brought in, but it wasn’t.  The Government’s response to the ruling is that nothing will change and they will continue to stop and search people in spite of it being illegal.  Their reasoning? even if a particular law is “unlawful” an official acting in compliance with that law would not themselves be acting unlawfully. In other words, they are only following orders, so can’t be held responsible.

“Only following orders”?  I wonder where similar defences were last used?

Heroin-addicted serial burglar walks free from court – Telegraph.

“Dean Weaver, 24, stole from homes, cars and businesses in a bid to feed his habit.

At Gloucester Crown Court yesterday (FRIDAY), he admitted three specimen charges of stealing from a house, a pharmacy and a car, and asked for 142 other offences to be taken into consideration”

and then…

http://news.bbc.co.uk/1/hi/scotland/tayside_and_central/7892881.stm

“A man who said he stormed into a drug dealer’s home and flushed heroin down a toilet has been jailed for two months.

Peter Drummond claimed he took the law into his own hands after hearing that his brother-in-law had been to John Nellies’ flat to buy drugs.”

I really do wonder what sort of state the legal system is in this country!

This was brought to my attention from The Magistrate’s Blog

Police set to step up hacking of home PCs – Times Online.

I’d be very interested to see how they intend carrying this out.  Both from the legal and technical perspectives.

THE Home Office has quietly adopted a new plan to allow police across Britain routinely to hack into people’s personal computers without a warrant.

…

The hacking is known as “remote searching”. It allows police or MI5 officers who may be hundreds of miles away to examine covertly the hard drive of someone’s PC at his home, office or hotel room.

While the new powers might well enable them to do the searching “without a warrant”, I’d like to know how they intend to actually DO the searching.

He said the authorities could break into a suspect’s home or office and insert a “key-logging” device into an individual’s computer. This would collect and, if necessary, transmit details of all the suspect’s keystrokes. “It’s just like putting a secret camera in someone’s living room,” he said.

Police might also send an e-mail to a suspect’s computer. The message would include an attachment that contained a virus or “malware”. If the attachment was opened, the remote search facility would be covertly activated. Alternatively, police could park outside a suspect’s home and hack into his or her hard drive using the wireless network.

Okay, let’s address the three possible vectors they suggest.

1. Breaking into a property: While the ‘hacking’ might be done without a warrant, I doubt very much that breaking and entering could be.  Not to mention that coming home to find your door smashed in is hardly “covert”.  Where do they intend installing a key-logger on my macbook Air, or my work laptop? Am I going to ignore some anonymous USB item, or dongle that’s suddenly appeared on my machines?
2. Sending a ‘virus’ or malware: Most email systems are designed to quarantine and protect from viruses, so it’s unlikely that a significant proportion of the population would ever see this email, never mind actually open it, or it’s attachments.  In my case, even if the email somehow got through my mail-server’s spam and virus checking, as well as the local, client based virus and spam, checking, and then I was stupid enough to open it, AND run the attachment, can someone tell me how much damage this single attachment is going to do to either my Macbook or my work laptop running Ubuntu?  Are they intending sending three attachments  (or more), with one for each OS the suspect might be running?
3. Scanning via a wireless network:Most wireless networks are running WEP or WPA.  Yes, WEP can be cracked, but it takes a while and requires a significant number of packets to be sniffed to gain enough information to crack the key.  On a domestic network, I doubt that enough traffic would be sent to make this a quick or trivial task.  WPA is much mroe secure, and is unlikely it would ever be breached in a practical timescale.  Even if they managed to get onto the local wireless network, they then need to activate the aforementioned software to allow them access to the drive, or hope that someone’s shared their entire drive contents on the local network. Again, those of us running Linux or OSX would have to do something rather silly to enable this level of access to a guest user.  even moreseo, in my case, they’d have to access one of the laptops via SSH locally, and with my own username and password as both the drives and user partitions are encrypted.

On top of that, all these steps require the machine in question to be turned on and connected to the network in the firstplace, and that the information they seek is stored on the machine they are accessing, and not on another machine on the network which doesn’t use email or have outside access.

Police say that such methods are necessary to investigate suspects who use cyberspace to carry out crimes. These include paedophiles, internet fraudsters, identity thieves and terrorists.

Now bear in mind that the 3 points I address above are for me, with my standard setup.  The individuals they are targeting,  especially the latter 3 types, are likely to be running a far more secure system than my relatively simple setup.  I think the police and the home office are under the rather dated impression that everyone is running unpatched versions of Windows, on unsecured wireless networks with no virus or spam checking.  Now this might well be true for a fair proportion of the population, but I doubt that those being targetted would be as naive or illeducated in IT security.  This is potentially a massive project, both in terms of cost and it’s potential for infringing human rights, that will offer VERY little return in terms of convictions.