Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Perimeter

1/28/2011
01:43 PM
Rob Enderle
Rob Enderle
Commentary
50%
50%

Internet 'Kill' Switch: Balancing Security And Freedom

Why it's important to have controls in place before deploying such a powerful tool

Security and freedom often seem at cross purposes, and that hasn't been any clearer this week than in Egypt where virtually all public communications have been cut off in an attempt to quell an internal uprising. There are good reasons to have an Internet "kill switch" -- reasons that are security-related and have nothing to do with sustaining government control, like stopping the spread of a particularly nasty virus until a remedy can be discovered. Even in the case of an attack either internally by a minority or externally by a foreign power, eliminating services like the Internet or GPS could save lives and protect the legitimate government. But if the tools were misused to protect an illegitimate government or to directly harm the people, then it would be a bad thing.

The question being asked is whether a tool that can be used powerfully for good or evil should be allowed to exist. If the answer is no, then virtually all tools -- from hammers to nuclear energy -- should be eliminated. This suggests the focus on the tool is foolish; the focus should be in on the protections surrounding tools.

This speaks to arguments pro and con about gun purchase and even the exploration of alternative energy sources. But particularly with security tools, which mostly all have a dark side, controls should be in place before they are allowed -- not the other way around. With the Internet kill switch, a discussion of whether there should or should not be one is moot. The benefits of having one are simply too great against what is clearly an increasing risk. However, if the discussion is to have merit, then it needs to change to the protections over such a switch to make sure it isn't used as it was in Iran -- and maybe in Egypt -- against the people it was envisioned to protect.

But this isn't easy because excessive control would likely eliminate its usefulness in its intended purpose, while inadequate controls won't provide the necessary protection. This suggests that the final decision to use such a tool should reside outside of elected government and with a small number of people who would not benefit personally from the misuse of the tool, couldn't be bribed or coerced to act improperly, but could still act quickly enough to stop a real threat. Such an entity might have to be created because existing law enforcement doesn't have the needed independence. While the Supreme Court in the U.S. fits many of the requirements, even that wouldn't likely be able to act quickly enough. The formation of such a group should precede any deployment of tool with this much power.

Security tools often have the ability to both provide great protection and to do great harm. An Internet kill switch is no different, so before it is deployed, controls need to be placed over its use that still make it effective but prevent abuse.

-- Rob Enderle is president and founder of Enderle Group. Special to Dark Reading.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Zero-Factor Authentication: Owning Our Data
Nick Selby, Chief Security Officer at Paxos Trust Company,  2/19/2020
44% of Security Threats Start in the Cloud
Kelly Sheridan, Staff Editor, Dark Reading,  2/19/2020
Firms Improve Threat Detection but Face Increasingly Disruptive Attacks
Robert Lemos, Contributing Writer,  2/20/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
6 Emerging Cyber Threats That Enterprises Face in 2020
This Tech Digest gives an in-depth look at six emerging cyber threats that enterprises could face in 2020. Download your copy today!
Flash Poll
How Enterprises Are Developing and Maintaining Secure Applications
How Enterprises Are Developing and Maintaining Secure Applications
The concept of application security is well known, but application security testing and remediation processes remain unbalanced. Most organizations are confident in their approach to AppSec, although others seem to have no approach at all. Read this report to find out more.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2012-1093
PUBLISHED: 2020-02-21
The init script in the Debian x11-common package before 1:7.6+12 is vulnerable to a symlink attack that can lead to a privilege escalation during package installation.
CVE-2012-0828
PUBLISHED: 2020-02-21
Heap-based buffer overflow in Xchat-WDK before 1499-4 (2012-01-18) xchat 2.8.6 on Maemo architecture could allow remote attackers to cause a denial of service (xchat client crash) or execute arbitrary code via a UTF-8 line from server containing characters outside of the Basic Multilingual Plane (BM...
CVE-2012-0844
PUBLISHED: 2020-02-21
Information-disclosure vulnerability in Netsurf through 2.8 due to a world-readable cookie jar.
CVE-2013-3587
PUBLISHED: 2020-02-21
The HTTPS protocol, as used in unspecified web applications, can encrypt compressed data without properly obfuscating the length of the unencrypted data, which makes it easier for man-in-the-middle attackers to obtain plaintext secret values by observing length differences during a series of guesses...
CVE-2012-6277
PUBLISHED: 2020-02-21
Multiple unspecified vulnerabilities in Autonomy KeyView IDOL before 10.16, as used in Symantec Mail Security for Microsoft Exchange before 6.5.8, Symantec Mail Security for Domino before 8.1.1, Symantec Messaging Gateway before 10.0.1, Symantec Data Loss Prevention (DLP) before 11.6.1, IBM Notes 8....