How Russian special services monitor citizens online

[Марат]

How Russian special services monitor citizens online.

There are several types of SORM - for listening to phones, for working on the Internet and for collecting information with metadata elements. The SORM box is available to everyone - both from the main operators supervising the central communication channels, and from small providers serving provincial cities. Even Internet services like Mail.ru and VKontakte received a license to create their own hosting, which stipulates a prerequisite for installing the SORM device.
Thanks to the disclosures of Eward Snowden, the world has learned about the American electronic surveillance system PRISM. About how it resembles the Russian SORM system and how it differs from it, one of the authors of the book New Games of Patriots told the Russian Planet publication. Intelligence services are changing the skin. 1991-2004 ”, the chief editor of the Agentura.ru portal Andrey Soldatov.
- Let’s discuss the Russian electronic intelligence program, known as the “Operational Investigation System” (SORM).
- To begin with, the 2008 law regulating the powers of special services to access telephone conversations and correspondence of subscribers of telecom operators, in fact, became a reflection of the order that existed long before that. In fact, the surveillance system in its current form has been operating since the beginning of the 2000s, and began to take shape in the late 1990s.
There are several types of SORM - for listening to phones, for working on the Internet and for collecting information with metadata elements. Everybody has a SORM box - both for the main operators supervising the central communication channels, and for small providers serving provincial cities. Even Internet services like Mail.ru and VKontakte received a license to create their own hosting, which stipulates a prerequisite for installing the SORM device.
Before installing the device, the operator comes to the local FSB department, where he is usually advised on which manufacturer to purchase equipment from. They buy a box, put it, lay a cable to the FSB control and wait for the commission to check from there.
Roughly speaking, after that, any information available to the provider can be removed from the cable by an intelligence officer. This, by the way, means that the same sent letter can be intercepted both on the mail service itself and on communication channels.
Further information can be processed differently. It can also be a targeted search for a specific person: they received a court order for Ivanov, Ivan Ivanich, and fill his surname into the system, collecting all available information. Or, for example, on the eve of Putin’s visit to Tver on the local Internet, a check is underway for the possibility of organizing a terrorist attack - then keywords are used to search.
- Here, for example, a person sends an email where the words “bomb” and “president” are found. Is it immediately put “on a pencil”?
“Here we enter the realm of speculation.” But, as far as I as an external person can judge, this process is not automated. But the Americans have advanced far in it. Of course, the information published by Snowden is not technical documents, but rather presentations; however, judging by them, there the special services achieved great success in automation, although, despite this, they still remove and duplicate all the traffic many times. They have gigantic data warehouses occupying entire fields - the latter is being built in Utah.
- How much is SORM comparable to foreign counterparts like the same PRISM?
- The key is geographic difference. SORM can read only what is hosted on servers in Russia. The situation is similar in the USA, but they host a lot more global services - the same Facebook and Google servers. Therefore, American intelligence agencies may receive their classified information, while Russian intelligence may not. Global mail systems that use the https protocol by default, such as Gmail, are practically impenetrable for SORM.
From communication with technical specialists, I also conclude that SORM operators do not really understand how to monitor what lies in the “clouds”. Another problem for SORM is how to track a telephone conversation if it is being transferred from device to device. In Skype, a call can be forwarded from a regular Skype account to an iPhone or even to a user's TV, and for the usual traditional methods of interception, which SORM has, this is not a very solvable task.
- So, in many ways, SORM is losing to Western electronic intelligence programs?
“That's not entirely accurate.” This is primarily about geographical differences. Many “clouds” are not in airless space; if their servers were located, for example, in Germany, then it would be easier for its special services to work. However, it so happened that most of the major services are still located in the United States, which gives a natural advantage when tracking.
- If foreign services are often impervious to SORM, is this true in the opposite case?
- When you send a letter, say, to the USA, it goes through international communication centers. It has long been known that on all transatlantic cables at several points there are interception systems that mirror traffic and are able to capture all the information coming from Russia. To some extent, this can also be related to internal traffic: the Internet is arranged in such a way that if there are difficulties at some nodes, then traffic is automatically redirected to channels of higher capacity that can pass through the same foreign communication nodes.
- Should we expect that in the future the technical potential of SORM will increase?
- Sure. But what matters here is not the technical moment, but the legislative one. There is Deep Packet Inspection (DPI) technology - it will solve problems with forwarded calls and even, as I was told, will allow you to do something with cloud services.
This is a tool for working in social networks such as Facebook - with it you can replace the pages of protest groups, as is done in Uzbekistan. From any other country, a person simply goes to the Facebook pages he needs, and in Uzbekistan automatically gets to a page where data is collected about those who were interested in the opposition resource.
The problem is that operators buy DPI devices for their needs, and it is impossible to simply hang this box on the SORM box, for which the special services are responsible. Therefore, in the future, the adoption of amendments that will regulate such subtleties and give the special services new powers is expected.
If this happens, it will not be a new type of surveillance for Vasya - from the entrance to what he writes letters. It is about collecting information about what people think and discuss, what events they want to attend.
- How do telecom operators themselves react to such innovations?
- There is a difference in approaches in Russia and in the West. Our operators put a box, fulfilled the conditions and try not to enter that room and think what is going on there anymore. An operator in the United States knows what information is being intercepted and has access to it, because a representative of the special services must show the order before receiving it.
In Russia, it is also necessary to first obtain a court decision, however, special services are not required to show it to operators. As a result, the employee receives a warrant and shows it to himself and his own boss inside the FSB.
If we trust the FSB to 100%, then everything is fine. Well, if we believe that we need at least some external control, then the situation looks a little different. I must say that Western human rights activists were outraged by the fact that because of PRISM the American system began to approach the Russian one. If before they received warrants per person, now - an order to remove all traffic for, say, three months.
- By the way, what structures have the right to access information obtained through SORM?
- There are eight departments (FSB, MVD, FSO, customs, FSKN, SVR, UFSIN and GRU. - RP), but in the 1990s, when SORM was just created, it was entrusted to the FSB, which determines the rules of the game. GRU and SVR have the right to limited access in the framework of their activities.
It should be noted that parallel tracking systems are being built now. As far as is known, the Federal Drug Control Service and the Federal Penitentiary Service already have their own special units. In addition, the public procurement website shows that there is an active acquisition of the necessary software and devices. This will allow them to organize their own systems and act independently, without contacting the FSB.
This, of course, will increase the potential for a potential violation of the right to privacy. Also, one should not forget: the more opportunities for obtaining classified information, the more opportunities for corruption.
- Could it be that some special services officers use personal data of citizens for personal gain?
- We must remember that the FSB has a special status, and I have not encountered criminal cases of illegal wiretapping with the participation of its employees. However, looking through such cases, each time we come across officers of the Ministry of Internal Affairs. If in the 1990s private detective agencies, private security companies and other private owners engaged in wiretapping, now some policemen are selling the capabilities of their equipment to merchants. And this happens quite regularly.
- What about the big internet businesses? Do they cooperate with special services or are they only being monitored by SORM?
- Again, in the West, many Internet companies publish transparency reports, which indicate the number of requests from law enforcement agencies in different countries that they received for a certain period. The Snowden story showed that there were requests that no one knew about, but this is better than nothing.
Our companies are very far from such reports, and I think they will never come to this. This is explained by the law on state secrets, although information about a simple number of requests without specifying specific circumstances for each of them does not apply to state secrets.
I do not see close cooperation between the special services and our services. It is wrong to say that it does not exist at all, but let’s put it this way: there is no direct evidence. It is clear that they usually fulfill the received requests, but nothing more.
It is known that Microsoft is friends with the Russian state, so everyone thought that Skype (in 2011 Microsoft bought Skype for $ 8.5 billion - RP) would be transparent to the FSB. But in those cases when printouts of his chat or recording from the camera were used as evidence, technical analysis indicated the use of a trojan rather than hacking the protocol of the program.
In Anatomy of Protest, there was a moment with Udaltsov and his assistants when they talked on Skype. But, as far as one can judge, here the information was obtained either with the help of a hidden camera that wrote what was happening on the screen, or a trojan that turned the computer into a spy, sending information to the intelligence agency server.
I can say the same thing about our largest social network VKontakte. As far as one can judge from the documents, they are doing what is prescribed for them, but it is not known that they voluntarily transfer moderator rights to special services officers or allow them to use other “backdoors”.
Social networks and so, apparently, are constantly monitored using SORM and other special programs, and they can not do anything about it.

 

[Детектив-Юг]

Marat!
Aber du bist genau wie Snowden!

 

[Андрей Захаров]

Marat!
Aber du bist genau wie Snowden!

: lol: -Nur russisch .... Danke Marat)))

 

[Матушкин Андрей Николаевич]

Vielen Dank.
Interessant.

 

[Детективное агентство. Мангуст. Уфа.]

Vielen Dank. Interessant.

 

[Арсен]

Danke Marat!

 

[Детективное агентство. Инициатива. Самара.]

Vielen Dank. Interessant. Aber ich schlage vor, eine Open Source unter solchen Artikeln zu unterzeichnen, deren Autor wir zitieren.

 

[Роберт]

Der Bundeszolldienst und der Bundesgefängnisdienst haben ebenfalls unabhängige Einheiten, und im Zoll ist das technische Unterstützungsniveau am höchsten. Sie waren die allerletzten, die Untertanen der Horde wurden und die modernste Ausrüstung dafür kauften.
Die Kontrolle der Staatsanwaltschaft über die Umsetzung der Rechtsvorschriften ist jedoch sehr eng. Es gibt genügend Möglichkeiten, Verstöße gegen die Verfassung der Russischen Föderation festzustellen. Die Technologie selbst zur Organisation solcher Arbeiten hat mehrere Kontrollebenen.
Es gibt Beispiele dafür, wenn sie Opern ins Gefängnis bringen.
Soweit ich weiß, ist in den Staaten für ein einfaches Abfangen keine gerichtliche Entscheidung mehr erforderlich. Sie dort dieses Gesetz nach dem 11. September, erlaubten alles. Deshalb sind alle auf die Ohren gekommen!
Die US-Geheimdienste standen vor dem Problem, keine Sanktionen für jedermanns Simpleton zu erhalten, sondern eine Methode zur Verarbeitung von Informationen, wenn alle zuhören. Und sie haben dieses Problem fast gelöst. Und hier ist Snowden !!!
Das hat der Hund durchwühlt!

 

[Краев Евгений Леонидович]

Sehr interessante Informationen, danke!

 

[Турабян Владимир]

WAS ZU SAGEN, SO MUSSTE ES SEIN! OHNE DIESE AKTIVITÄT UND OHNE ZUGRIFF AUF INFORMATIONEN SIND SONDERDIENSTLEISTUNGEN KEINE DIENSTLEISTUNGEN, ABER NUR STATISTISCHES MANAGEMENT.