Data Retention Categories - GSM/3G secret session keys ?

[Ian G Batten]

On Thu, 13 Mar 2003, Brian Beesley wrote:

> > Does this really mean no that "Blind Carbon Copy" addresses need to be
> > retained then ?
> 
> No, it just means they forgot to include them. In any case it's pointless as 

And anyway, the logs almost certainly don't know the difference.  They
usually just log what was presented as RCPT TO: in the SMTP transaction.

> > Is this a sneaky way of intercepting the content of phone calls or SMS
> > messages without a proper warrant ?
> 
> It's either that, or stupidity again.

Whichever, it's certainly not the first.  Of all the ways one would go
about nefariously capturing mobile phone calls given that one is the
local government, taking the airside radio stream and later using a
seized key has to be one of the most inefficient.

> If the Government really wants to prevent criminals & terrorists from 
> exploiting communications technology then they should be up front and make a 
> case for _banning_ use of telephones, computer networks etc. After all, life 

Hmm, I don't think that's their argument (and I'm probably as cynical as
you about their motives).  The vehicle that someone drives is sometimes
used to trace their presence at a crime scene, and that is not
isomorphic to a demand to ban cars.

> My feeling is that if Joe Public were informed as to the true extent
> of invasion of privacy which the proposed legislation enables, he
> would be no more keen to see the legislation passed than he would be

I've afraid that ``those with nothing to hide...'' is the prevailing
meme.  I always find asking people what position(s) they used when they
last had sex, and then accusing them of sex-crime when they refuse to
answer, works well.

ian