Encryption & New Zealand Law

Forums › ICT Policies and Regulation › Encryption & New Zealand Law

1080p

1000 posts

Ultimate Geek

Topic # 114320 15-Feb-2013 16:32
I am interested in hearing from someone involved in criminal 'cyber' law or any related fields and/or computer forensics professionals. I also expect a few IANAL posts too ;-) I was wondering about encryption the other day and am interested to know how New Zealand law would or has handled cases in which alleged computer criminals have encrypted their hard drives with TrueCrypt or something similar. Can (or has) a judge compel a person provide the keys required to decrypt the contents of the hard drive assuming it was evidence or potentially evidence? How well would a "lol, I forgot da password" defence go down with a court? Is there really any way to punish someone (e.g. contempt of court) if it is impossible to tell whether they are lying or not? As with many crimes of an electronic nature, if the evidence is on the encrypted drive in a computer and you have 'forgotten' the password would the case have to be dropped? I remember reading about this case in which the police went to incredible lengths to secure an offender's computer while it was on and decrypted so they were able to analyse its contents. Would this mean a judge could not have ordered the drive's decryption or simply that the police wanted an easier time gathering evidence? My interest is based on the rising number of crimes being committed online, from hacking to child pornography to copyright infringement, and the technical inability to crack such encryption systems when administered correctly. TIA for any insight :) Workstation: Intel DH67CL ~ i5-2500 ~ 4GB Corsair RAM (x2) ~ Intel X25-M 80GB SSD Laptop: Dell Inspiron 1564 ~ i5-520M ~ 4.00GB RAM ~ 500GB SATA HDD ~ Win7 Home Premium x64 Common misconceptions.

1 | 2 | 3

395 posts

Ultimate Geek

Subscriber

Reply # 763291 15-Feb-2013 23:40
A judge has an awful lot of power! If they issue a warrant ordering you to comply and you refuse or fail to comply - then you will be held in contempt. At that point, they have significant leeway to deal with you for failing to comply with the warrant. They are also not best known for their sense of humour! In the circumstance that you refer to, whilst the case that might depend on the content of an encrypted disk might fail due to lack of evidence, that may not actually help you, because the consequences of the failure to comply with the warrant will probably be worse than the original issue. Cheers Mike

kyhwana2

2155 posts

Uber Geek

Reply # 763304 16-Feb-2013 00:43
As part of the Search and Surveillance Bill you are required to give up your encryption keys (or else!).. SO yeah, great, thanks National for slipping that one through.. See http://techliberty.org.nz/jailing-people-for-remaining-silent/

muso

23 posts

Geek

Reply # 765223 18-Feb-2013 15:58
kyhwana2 is correct. See section 130 of the Search and Surveillance Act.

russelo

57 posts

Master Geek

Reply # 765607 19-Feb-2013 10:08
Don't we have like a fifth amendment equivalent here in NZ?

Klipspringer

1298 posts

Uber Geek

Subscriber

Reply # 765619 19-Feb-2013 10:28
kyhwana2: As part of the Search and Surveillance Bill you are required to give up your encryption keys (or else!).. SO yeah, great, thanks National for slipping that one through.. See http://techliberty.org.nz/jailing-people-for-remaining-silent/ Very true. Thats why truecrypt has the "Hidden Volume" feature: As far as I know its not possible for anyone to determine if the encrypt volume has a hidden volume or not. It may happen that you are forced by somebody to reveal the password to an encrypted volume. There are many situations where you cannot refuse to reveal the password (for example, due to extortion). Using a so-called hidden volume allows you to solve such situations without revealing the password to your volume. The principle is that a TrueCrypt volume is created within another TrueCrypt volume (within the free space on the volume). Even when the outer volume is mounted, it should be impossible to prove whether there is a hidden volume within it or not, because free space on any* TrueCrypt volume is always filled with random data when the volume is created** and no part of the (dismounted) hidden volume can be distinguished from random data. Note that TrueCrypt does not modify the file system (information about free space, etc.) within the outer volume in any way. http://www.truecrypt.org/docs/ So you give them the password to the normal volume which contains stuff like your CV, etc.. Offense can never be given, only taken ...

BlueShift

571 posts

Ultimate Geek

Reply # 765639 19-Feb-2013 10:58
russelo: Don't we have like a fifth amendment equivalent here in NZ? The US one hasn't stopped people being compelled to give up their passwords.

dolsen

622 posts

Ultimate Geek

Subscriber

Reply # 765649 19-Feb-2013 11:18
I have a few that I have genuinely forgotten the passwords to (not that there was anything bad on there, just email backups). What happens then, I'm held in contempt for something that I have no ability to comply with? Sadly, there is no way to prove that I don't remember so I have to wait until the Judge changes his mind?

SaltyNZ

2100 posts

Uber Geek

Trusted

Subscriber

Reply # 765652 19-Feb-2013 11:29
dolsen: I have a few that I have genuinely forgotten the passwords to (not that there was anything bad on there, just email backups). What happens then, I'm held in contempt for something that I have no ability to comply with? Sadly, there is no way to prove that I don't remember so I have to wait until the Judge changes his mind? Correct; if you've genuinely forgotten, you're stuffed: otherwise 'I forget' would just get everyone off scott free. iPad + iPhone 4S + 2degrees 3G data 4tw! These comments are my own and do not represent the opinions of 2degrees.

PaulBrislen

167 posts

Master Geek

Trusted

TUANZ

Reply # 765655 19-Feb-2013 11:31
We lost the "right to remain silent" as such many years ago, following the 911 attacks in the US. At the time the new cyber-terrorism bill (as it was called) included a section on encryption that was passed into law without any problem whatsoever (only terrorists keep secrets, you see). Judge David Harvey told me about it in 2003: No right to silence for computer users. Basically it works like this: Police officer (or similar) serves you with a warrant to search your PC. Finds encrypted file in a drive somewhere. Demands you decrypt it. You say "beats me, I have no idea what that is". Officer says "you must now accompany me to the station where you will be detained..." etc. Great way to upset your buddies and get them locked up - install some encrypted file while they're not looking then dob them in. Hilarity ensues! Compare this with a police officer serving a warrant in the real world. Officer serves you with a warrant to search your house. Officer searches your house, fails to find a secret room/locked cupboard/obvious collection of guns. Officer leaves and you go on about your business. There is no requirement that you incriminate yourself UNLESS you have a computer. how ridiculous.

timbosan

472 posts

Ultimate Geek

Reply # 765670 19-Feb-2013 11:42
Judge David Harvey told me about it in 2003: No right to silence for computer users. I wish Judge Harvey was a member here on Geekzone, the guy is very smart and really sets the stage for how the legal system in NZ can embrace and understand technology. If you ever have a chance, read his papers.

muso

23 posts

Geek

Reply # 765686 19-Feb-2013 11:59
Just to play devil's advocate here for a bit - Putting a piece of evidence into a safe will not generally put it beyond the reach of a search warrant. Why should an encrypted disc be any different?

SaltyNZ

2100 posts

Uber Geek

Trusted

Subscriber

Reply # 765693 19-Feb-2013 12:07
muso: Just to play devil's advocate here for a bit - Putting a piece of evidence into a safe will not generally put it beyond the reach of a search warrant. Why should an encrypted disc be any different? Because generally speaking in a democratic society, you cannot be forced to incriminate yourself. If you refuse to open a safe because it would incriminate you, the police can probably take to it with an oxy torch. If you refuse to unlock an encrypted volume [and it was done right] then there is in theory no chance it could be unlocked in less than the age of the universe. In other words your cooperation is not needed to gain access to safe. It is needed to gain access to an encrypted file. iPad + iPhone 4S + 2degrees 3G data 4tw! These comments are my own and do not represent the opinions of 2degrees.

BlueShift

571 posts

Ultimate Geek

Reply # 765695 19-Feb-2013 12:10
muso: Just to play devil's advocate here for a bit - Putting a piece of evidence into a safe will not generally put it beyond the reach of a search warrant. Why should an encrypted disc be any different? Beacause if you lose, or refuse to hand over, the key/combo to a safe, they can (if they really want to) brute-force it - lock picks, drills, dynamite, etc. Brute-forcing decent encryption with current tech can take hundreds of years or longer, depending on how paranoid the encryptor is.

BlueShift

571 posts

Ultimate Geek

Reply # 765696 19-Feb-2013 12:12
SaltyNZ: In other words your cooperation is not needed to gain access to safe. It is needed to gain access to an encrypted file. OTOH - this: http://xkcd.com/538/

muso

23 posts

Geek

Reply # 765698 19-Feb-2013 12:19
I'll rephrase: if you accept that the police are entitled to seize a safe (and the key, if its there, or if not, break the safe open), why shouldn't they be able to compel you to open an encrypted drive?

1 | 2 | 3