Eric Schmidt: To Avoid NSA Spying, Keep Your Data In Google's Services

jfruh writes Google Chairman Eric Schmidt told a conference on surveillance at the Cato Institute that Edward Snowden's revelations on NSA spying shocked the company's engineers — who then immediately started working on making the company's servers and services more secure. Now, after a year and a half of work, Schmidt says that Google's services are the safest place to store your sensitive data.

Or better yet

[NeoGeo64]

Just keep everything on your hard drive on a computer that is *not* connected to the Internet.

Re:Or better yet

[nitehawk214]

Nope, that wont help you. [fanpop.com]

Re:

[Anonymous Coward]

Yes. Scientologists dropping out of the ceiling and stealing one's data. We have to have a protocol to deal with this. Meeting in my office in one hour...

Re:

[Woldry]

That's easy. Just don't have ceilings!

IGNORANCE IS STRENGTH

[Jeremiah Cornelius]

Mwahhhahaahaaahaaaa!
-- Eric Schmidt

Re:

[RavenLrD20k]

Damn it! Now I have to recalculate where to put my Evil Bunker(tm) so that no one will ever find it! Thank you very much! Shame too... Would have been perfect for my Shark Mounted Laser research. I mean, not even Branson [slashdot.org] would have been able to find it for quite a while!

Re:

[rvw]

At the bottom of the ocean.

On another planet

In another dimension

Re:

[Anonymous Coward]

At the bottom of the ocean.

On another planet

In another dimension

With voyeuristic intention

Re:Or better yet

[Zanadou]

"Beware of the leopard."

Under US Jurisdiction?

[xophos]

They will be immediately forced to hand over everything and be silent about it.
Until US laws are fixed AND respected, data going to a US Corporation can by definition not be safe.

Re:Under US Jurisdiction?

[Overzeetop]

Tell that to SpiderOak.

Re:

[bingoUV]

They will. Like they told that to Lavabit and SilentCircle.

Under US Jurisdiction?

[Anonymous Coward]

That just shows how evil google is. Eric Schmidt is lying throught his teeth when he is saying sensitive data is safe with him.

Re:

[bickerdyke]

Well, at least according to the summary, he never spoke of "safe". He said "safest" Big difference.

And I'd even go further and say that he might be right. Unless I'd go completly offline, I can't afford half the brainpower and expertise that Google buys for their datacenter to keep my desktop machine clean and safe. (to be honest. I couldn't afford hiring a single person from their security department)

Re:Under US Jurisdiction?

[shaitand]

No but if you got a government request for your keys you'd know about it. If google gets such a request you wouldn't know you were compromised.

It isn't like they are sending l33t hackers to break in and get the data.

Re:Under US Jurisdiction?

[non0score]

While the major providers can't talk about it, not all gov't requests get served. The point is that yes, there is always that possibility that your account gets handed a request, but at least with Google services, you won't get picked up in random dragnet-style surveillance. That's difficult to claim for all the other major providers, and is precisely what Eric Schmidt is claiming.

Re:Under US Jurisdiction?

[shaitand]

The government doesn't need to request your account, they can request google's own keys and never tell google what they are actually looking at.

Re:

[IamTheRealMike]

The point of forward secrecy is there are no such keys to seize. The "master keys" are only used for identification, not encryption. So whilst a gov could theoretically seize Google's keys, this does not help them decrypt wire traffic. They'd have to do a large MITM attack, and to get everything? They'd have to decrypt and forward ALL Google's traffic. Not feasible.

Good use of applied cryptography means that realistically the only way for a government to get data out of it means requesting it specifically f

Re:

[IamTheRealMike]

No but if you got a government request for your keys you'd know about it.

The government "request" would come in form of customised malware and you'd never even know you got hacked.

If google gets such a request you wouldn't know you were compromised.

You aren't gonna know, no matter what.

It isn't like they are sending l33t hackers to break in and get the data.

Schmidt isn't an idiot, despite how the press like to portray him via selective quoting (note that TFA does not provide much context for this quote). Wh

Re:Under US Jurisdiction?

[Framboise]

Google is investing massively abroad, such as in Zurich, Switzerland, where privacy laws are especially strong. Expect that if US laws continue to have negative effects on Google income, the company is going to be more and more international.

Re:Under US Jurisdiction?

[Anonymous Coward]

It's not going well for Microsoft. They are requesting data from the servers in Ireland.

Re:Under US Jurisdiction?

[oldmac31310]

They're after me lucky charms! - Bill Gates

Re:Under US Jurisdiction?

[Registered Coward v2]

Google is investing massively abroad, such as in Zurich, Switzerland, where privacy laws are especially strong. Expect that if US laws continue to have negative effects on Google income, the company is going to be more and more international.

Which is pretty much irrelevant when it comes to a US Court requiring them to turn over the data if they have it. It used to be, in the age of paper, that stuff could be kept off-shore making it essentially unreachable; especially since no one might even now it existed unless someone told the authorities. Now, a US corporations data is essentially one big collection of stuff to be made available on demand; and refusal to turn it over could result in fines and contempt charges. In the end, he with the biggest stick wins.

Re:

[account_deleted]

Comment removed based on user account deletion

Re:Under US Jurisdiction?

[tinkerton]

They will be immediately forced to hand over everything and be silent about it.

Who says they need to be forced? They'll protect their interests but they seem to be fully in sync with the state. You know, the good guys.

Re:

[tinkerton]

The main problem is not whether they're really good guys. The main problem is that when a system of checks and balances gets skewed you don't even need really bad guys to make the system turn ugly.

Re:

[gweihir]

Indeed. What is a bit worrying is that this has to be told to people time and again.

Re:Under US Jurisdiction?

[kheldan]

Amplifying the OP here. I know people in general seem to be getting dumber and dumber with every passing decade, but have people reached the point where Google can say stupid shit like this and really expect everyone to believe it? You may as well just call the FBI, NSA, CIA, DHS, and whoever else wants to snoop on everyone, and ask them to create a share on their servers for your most-personal, most-important data, and store it in the clear, at least that way you'd save some tax dollars. For fuck's sake people, 'the cloud' is a bad joke. You want to keep your personal data safe from snooping? Do as at least one other commenter on this story has said: Put it on a storage device not connected in any way to the Internet. We do not live in a day and age where the government gives a flying fuck about your 'right to privacy', if these bastards had their way we'd all be living in a world where George Orwell's 1984 would look warm and fuzzy by comparison.

Re:

[digsbo]

Except for the fact that the government works for the corporations.

Re:

[HiThere]

It's not a one-way street.

Re:

[kheldan]

Would you care to expand on that statement, since I don't see how it relates to what I said?

Re:

[digsbo]

Yeah. I mean war is the health of the state. And really that's all driven by the military-industrial complex. Surely, Lockheed, Northrop-Grumman, etc., are not going to let war policy hurt business. Why, in this time of transferring warmaking to the digital landscape, would we think that the government policy will be detrimental to those who are best positioned to take advantage of government contracts for digital warfare (covert or otherwise)?

June 1, 2015 is it

[bigpat]

They will be immediately forced to hand over everything and be silent about it. Until US laws are fixed AND respected, data going to a US Corporation can by definition not be safe.

Yes, but I think you mean until US laws EXPIRE on June 1, 2015. The most egregious parts of the Patriot Act are still set to expire on June 1, 2015. After that it appears that demanding ALL the records from a business or institution (or person?).... including phone records, email logs, text message logs, web site visitor logs, library records etc etc... will again require an actual constitutionally valid warrant naming the cause, the person and the things to be seized.

Re:

[bigpat]

Hah -- good one!

Yes. But this time, all it would take for good to triumph is for good people to do nothing.

Re:

[Shadow IT Ninja]

The fix could be legislation or it could be a firm Supreme Court decision. The Court could, at some point, decide that the Fouth Amendment applies to cloud services exacly the same way that it does to rental property in the physical world. Renters have the same rights as home owners under the Fourth Amendment. A landlord is not allowed to just let the police into your appartment to search without a warrant. So far, online storage has been treated as information in the possession of a third party rather

Re:Under US Jurisdiction?

[bickerdyke]

Thus far, the most popular way for companies to circumvent this pressure is to try and design encryption systems where they (the corporation) do not hold the ability to decrypt user data.

At that point, law enforcement can ask all they want, legally or otherwise.

The grey bearded nerds here may still remember the legend of yore about a company called lavabit and how they tried exactly that....

Re:

[oldmac31310]

it wasn't that long ago, was it?

Re:

[bickerdyke]

Long ago for that AC to forget about it.

And in a related note: If we have to discuss if and how to avoid supporting law enforcement, something went really, really wrong.

Re:

[Ash Vince]

Long ago for that AC to forget about it.

And in a related note: If we have to discuss if and how to avoid supporting law enforcement, something went really, really wrong.

Exactly.

Who gives a shit about storing your data with google or anyone else, at this point we should be storming the Pentagon / White House / Senate en masse to demand and take real freedom. There is no terrorist threat that actually warrants this level of intrusion, our own police seem to be better at killing defenceless citizens than terrorists anyway over the last year.

Re:Under US Jurisdiction?

[Grishnakh]

at this point we should be storming the Pentagon / White House / Senate en masse to demand and take real freedom. There is no terrorist threat that actually warrants this level of intrusion, our own police seem to be better at killing defenceless citizens than terrorists anyway over the last year.

The problem is that most Americans are perfectly happy with the police acting this way. Yes, there's a minority of Americans who are outraged, but most of them thing it's just fine. Just look at the online comments any time one of these incidents happens; most Americans think the victim got what he deserved.

Re:

[Ogi_UnixNut]

Grey beards? So what of us who remember them as nerdshack.com? Before the great rebrand?

Fossils... right? :-)

But yeah, on the topic, I go out of my way now to not store data on US servers, nor do business with US based companies. It is rather hard in the IT world, but slowly and steadily I'm making progress on it.

Re:

[Guy From V]

Antediluvians. (Not the vampiric kind).

Re:Under US Jurisdiction?

[Shadow IT Ninja]

As I remember, Lavabit was intended to not have the ability to decrypt user data but, in fact, there were at least two ways unanticipated by the designers. One way is to wait until a user logs on again and capture their key. The mistake here was that encryption is performed on the server and not on the user's own machine before sending to Lavabit. The other thing, which is apparently what was requested in the court order, was to give up their private SSL key which the government agencies would then use to decrypt previously captured network traffic and recover the keys of, potentially, every Lavabit user. One issue here is the same as before. They were sending keys over the internet when the only safe way to do it is to keep the storage encryption process entirely client side. The other thing was that they were not using Perfect Forward Secrecy, which would have created a different temporary key for each SSL session and discarded it after transfer. They were using traditional SSL where every transfer going to the server is encrypted with the one public key matching the site's SSL certificate.

Levison (owner of Lavabit) also made the big mistake of trying to answer the court order himself without getting a lawyer first. He bolloxed the legal argument which is why he ended up getting finded.

Re: Under US Jurisdiction?

[dhjdhj]

Crashplan lets you use an encryption key that (I assume) they can't decrypt.

Re:

[aaaaaaargh!]

They also have unrestricted root/administrator access to your machine.

Re:Under US Jurisdiction?

[willy_me]

But Google makes money from targeted advertising - and they need to see your data for that. Google will always have the ability to view data stored on their servers because that is their basic business model. One has to pay for what you described. Apple claims to provide such a service. You pay for this indirectly by purchasing an Apple device.

So unless you shell out some cash there is no way to get free stable encrypted storage. The idea is nice, but economically unfeasible.

Re:

[IamTheRealMike]

But Google makes money from targeted advertising

Google makes significant sums of dough from paying corporate customers who use Google Apps. These clients can switch off advertising if they like. These are also the places where some of the most sensitive data is stored.

So Google have both the financial means and incentive to solve the end to end crypto problem for such clients. The difficulty is not financial. It's technological. Matching even just the feature set of Gmail with end to end crypto is insanely

Re:

[Stan92057]

But Google makes it living spying/ collecting of our data and emails so they must be able to decrypt user data. Plus they do store everything for at least 18-24 months. So if they have the ability to decrypt then the government will also. I have 3 hard drives I store and save everything on my own PC its not that expensive to add multi hard drives AND I don't waste any internet bandwidth uploading. so it just boggles my mind why people use theses services its a waste of bandwidth, its not save, its not priva

Re:

[Anonymous Coward]

For the purposes of the US legal system, every person and corporation is American.

For the purposes of the Constitution, none are.

Re:

[oldmac31310]

ah, sure begorrah, pull the other one, it's got bells on, bejaysus.

Re:

[vux984]

Google is not a US corporation. Last I heard they were Irish.

All the employees and assets within US borders are under US jurisdiction.

Renting a mailbox in ireland and calling it your primary residence doesn't give you the equivalent of diplomatic immunity.

(Although it does give you some tax advantages if your big enough, until / unless they close the loophole.)

For sure.

[ruir]

Why not keep the data in the police station? I am sure it would work better than at googles. Is this article a freaking joke? It is not the 1st of April yet last time I checked.

Re:For sure.

[TheGratefulNet]

google: "we're upping our doublethink. so, up yours!"

this is a 'trust me, the sky is green' moment for google. they have had lots of those, lately, too.

This is a good business model ...

[CaptainDork]

... encrypted phones that self-destruct in the wrong hands, near realtime incremental cloud backups to anonymous sites, anonymous Facebooking, etc.

There's a new market for privacy on the Internet.

Re:

[CaptainDork]

I am anonymous on Facebook. I enjoy the benefits of having a forum, venue, and a way to keep in touch with family and friends and fellow IT enthusiasts.

I think it's a serious mistake for anyone to use their real name on Facebook.

Facebook thinks I am using my real name.

I am not.

As Bender would say...

[Anonymous Coward]

To quote Bender:

HA HA HA HA HA HA!

Oh wait! You're serious. Then let me laugh even harder!

HAAAHAAAAHAAAAAAAAAAAAAAAAA

Re:

[nitehawk214]

That is the most real, authentic, hysterical laugh of my entire life.

The cloud is...

[Anonymous Coward]

...about control.

Them moment you put ANYTHING in the cloud, you are relinquishing control of your data. PERIOD.

Who gives a shit if they are reading your stuff....if you are that concerned about it, it does not take much to make it unreadable via encryption....

The real issue is you are basically giving the keys of your kingdom to somebody else.....Encrypted or not, they can block your access to it and shut you down. Any time they want. PERIOD. And if/when it happens THERE WILL BE NOTHING YOU CAN DO ABOUT IT. Sure you can sue and spend years in court, but I do not know any company that can survive years and years without producing/selling anything until this mess is sorted out.

Offline copies you say? Then you basically got suckered into paying for services for a cloud provider AND keep your own infrastructure.....
Pay 2 cloud providers? At that point I think it is cheaper to simply not pay anybody and build your own infrastructure.....

The cloud is an interesting idea, hardly new concept though: we are essentially transitioning back to the days of big powerful central mainframes that companies such as IBM had a stranglehold on and had their clients paying "protection" money that would make the mafia green with envy....

Re:The cloud is...

[mlts]

The cloud is more than just storage, but usually people use the storage functionality for this.

Realistically, the cloud needs to be treated as another storage medium, just like optical, tape, floppy disks, HDDs, SSDs, and everything else. You plan for media failure, and you build in anti-compromise measures.

The cloud is the same way. If you are an enterprise, you turn on encryption in NetBackup or other program, create a storage pool, and have a mirror on other media (be it an Avamar, a tier 3 disk, or a LTO-6 silo.)

If you are a home user, you encrypt your cloud backups, either by storing things in an encrypted container (TrueCrypt, BitLocker protected windows image, Mac Disk Image, LUKS, PGP Disk volume, etc.), or using a backup program that encrypts. At the worst, there are utilities like BoxCryptor which act similar to CryptFS and map an encrypted layer on top of the cloud drives. Any of this is better than nothing.

Of course, with encryption comes the major bugaboo -- key management. You may have the data securely stashed on the cloud... but without keys, it will be inaccessible. I like having several printed out physical notebook with keys in it, as well as archive grade optical media, and a USB flash drive. Each copy of the notebook goes with a key person (corporate officer), and there is one kept in the local tape safe. This way, if the data center gets completely flattened, it may take days to weeks, but data is still recoverable. This also helps if there is an audit or motion of discovery.

The cloud has its big issues... but treat it as its own piece of media, and it can come in handy. To be more specific, treat each cloud offering as its own media. Amazon Glacier is great for long term archiving, but one needs to well index it, to minimize the stuff retrieved, and Glacier should be the absolute last resort if data is needed, due to the charges for fetching data.

Re:

[HiThere]

Not totally true. If *you* encrypt the data before you store it in the cloud, it's a decent backup mechanism...provided you have a totally separate backup mechanism for your keys. A couple of unlabelled usb keys in two separate places, one of which you remember, and one of which you document in a sealed letter held by your attorney (or some other place that it can be retrieved from in case you forget). You might also have a couple of dummies. ("Well, that used to be the key. I must have forgotten to up

Do no evil, right?

[Noryungi]

Here is my problem: Google has a long history of cooperating with NSA.

Don't believe me? Fine: read these links instead... Yahoo News article about cooperation between Google and NSA [yahoo.com], Guardian article [theguardian.com], Tom's Guide article [tomsguide.com].

Even if Google does not/did not/will not cooperate with NSA, Eric Schmidt himself has been cooperating with the US Government, which cast serious doubts about his desire to protect the private information of Google clients.

Again, don't believe me? Fine, read this instead: Julian Assange on Eric Schmidt [huffingtonpost.com]. Or (even better) this transcript [wikileaks.org].

Even if Eric Schmidt does not cooperate with the US Government, he has said himself, repeatedly, that privacy is dead and that it's something for hackers.

Don't believe me? Fine, read this instead: EFF article [eff.org], Gawker article [gawker.com].

In other words, a company that cooperated with the NSA, led by a man who does not care about your privacy (but cares very much about his) is telling you that there is nothing to see here, sure we are protecting your privacy, please buy our products, we are safe and professionals and there is nothing to be afraid of.

Seriously? How come this gasbag is a freaking CEO, paid millions of dollars a year?

No - Keep Your Data Home

[pubwvj]

No, if you want to avoid NSA spying then keep your data out of the cloud and off the web. Keep your data at home. It's that easy.

Re:

[Anonymous Coward]

Actually it's not. If they really wanted to, they can still access it. It's just much more expensive to do so because they would need to send a team to monitor your movements, figure out when you are not home, break in, copy and analyze at HO.

That is assuming your hardware such as keyboard and mouse was not already compromised and already sending data back wireless to them.....

They are quite good at what they do, they have been at it for a long time and got all the angles covered.

We, as a people, can only d

Re:

[oldmac31310]

Are you...an angel?...God? My morning has been transformed. Speak to us, anonymous deity.

Re:

[pubwvj]

Email is a postcard.
Did you ever really believe postcards were secure?

Re:

[NoOneInParticular]

You don't understand how mail servers work, do you?

Re:

[pubwvj]

You assume too much and you make too much ado about nothing.

comments like that...

[Cardoor]

can discredit anything and everything you have ever said before publicly. then again, i wonder if it's reached the point of kabuki theatre such that he's trying to deliberately be ridiculous to communicate in the only way he can. kind of like when a hostage deliberately oversells his 'newfound devotion' to his captors' cause to try and communicate that there's a gun pointed at his head.

Absurd

[artlu]

As anyone knows, Google receives several federal subpoenas, and it attempts to cooperate with as many as possible. It has to as a public, U.S. based entity. It seems ludicrous that Schmidt would make this claim, but unless someone has gone through this system like I have (read my story here The Market is not Random [amazon.com]), I guess they wouldn't know everything the governments are capable of doing.

Careful, Mr. Schmidt.

Re:

[jaseuk]

No not absurd. If there systems are designed so they have no access to this information, then they can't hand it over. They can't be compelled to re-engineer their systems.

Apple and Microsoft can most likely offer similar assurances soon, but probably won't.

Now - none of this helps you if the spies have certs + network TAPs, but a lot better than how things were sounding before.

Jason.

Re:

[artlu]

I see your point, but the problem is that the government can gain access to any information it wants. In fact, if you are dealing with commodity/futures data/accounts, the CFTC was given blanket subpoena power after the 2008 crash.

the more i think about it

[Cardoor]

the more i think that maybe eric shmidt is trying to do the right thing, and so making such an outrageous statement to communicate the OPPOSITE. in other words, 'to avoid NSA spying, NEVER store ANYTHING in google services.' this might be the only way he can 'say' it with a gun at his head.

I feel safer with NSA than Google

[david.emery]

All things considered, I trust the NSA more with my data. At least they're not in the business of selling it.

Re:I feel safer with NSA than Google

[Kardos]

Google won't torture you by mistake. Well, as far as we know, anyhow.

Re:

[david.emery]

Neither will NSA. You have your Three Letter Agencies mixed up.

Re:

[greg1104]

Google won't torture you by mistake.

That's what I used to think, until I tried to decipher my first AdWords bill.

Re:

[digitig]

I want to avoid Google spying on me. Does the NSA have some servers I can use?

Re:

[david.emery]

"it is believed" - conspiracy theorists will believe anything that supports their theories.

Last time I checked, I'm not an oil&gas company.

Here's a clue

[jbrown.za]

From the original article:

Back doors are a bad idea, Schmidt said. “It’d be great, if you’re the government, to have a trap door, but how do we at Google know that the other governments are not taking over the trap door from you?” he said.

He is not saying the government (presumably the US government) shouldn't have a backdoor. He is only expressing a concern that other governments might find ways to exploit it.

Bottom line ... it still seems like Google will hand over any data the US government wants.

Great News!

[neurovish]

I was wondering what I could do to keep the NSA from spying on me. I'm glad that Google has it figured out. Time to upload all of the documents I have stored locally on my desktop to the Google servers so that they can keep a watchful eye on them. I was worried that this was going to be hard and require a lot of dilligence.

I'm going to tell my boss that we need to move away from all of these Microsoft products to and only use Google cloud services for security.

...or an alternative view

[neurovish]

Fast forward to the year 2017.
Headline: NSA outsourced to Google
In a cost cutting move, the US Government has outsource all NSA activity to Google. In a statement from President Hillary, she gives the reasoning that "[they] recognized a duplication of data collection efforts between the NSA and Google and decided to take advantage of those synergies."

Comment removed

[account_deleted]

Comment removed based on user account deletion

Re:

[tinkerton]

I would not reduce someone like Eric Schmidt to someone who's just in it for the money. This underestimates how ideology and interests tend to blend. I suspect that for someone like Schmidt working together with the NSA just feels morally right. And people who want to hide things from the NSA well, they're doing something they oughtn't to be doing.

Ha hee hee ha ha ha

[EmperorOfCanada]

And then they are one court order away from being unlocked.

Seeing that it turns out that nobody's tinfoil hat was big enough, I am going to make a prediction. It will turn out that Google was sharing data with the NSA as part of a deal where the NSA would share software patent data from potential foreign competitors with google so that google could keep the market on just about anything it wanted.

I wonder how many foreign companies went to file a patent only to find that an American company that was friends with the NSA had filed the patent days before? Siemens filing patents only find that GE had done so the day before?

The NSA would only have had to monitor a very few IP lawyers' offices to vacuum up a huge number of patents. This would then give the NSA something that they could afford with which to trade and it would "Protect" US commercial interests; as it would be a complete disaster for the next facebook or Google to be in a country that isn't friendly with the NSA.

Even within the US I suspect that it would be easier to not have to negotiate a new data access deal with even domestic companies so why not hand their patents over as well.

Think of it this way. If a company were to come up with a better search algorithm (one that didn't always bring up yellow page directories for every damn search, or spammy product sales sites) and I said you should try boobla.com (I made that up) as a search engine and you tried it and it was so much better, would you ever use google search again? How fast would you tell all your friends about boobla? Thus how long before google was seeing 40% month on month drops in search traffic? Unlike companies like Ford where a better car coming along doesn't get you to dump your ford and immediately buy the better car google can see the rug swept out from under them. If they lost search then all their other services combined would not be able to prop up the company. Plus there is no reason that boobla.com can't be Chinese, Korean, Icelandic, German, or Tanzanian?

Re:

[EmperorOfCanada]

I am thinking of a whole new algorithm; just like Google did to lycos, yahoo, altavista, etc. Basically with those search engines you looked up gravel and got porn, looked up bird watching and got porn, looked up pictures of cute pandas and got porn. Then suddenly google came along and you would search gravel and get gravel. Now with google you search gravel and get a wiki page on gravel (which any idiot could build) and then you get things like yellow pages and other aggregate sales sites; basically SEO po

Spit Take

[CimmerianX]

... well almost anyway. This was the funniest thing I read this morning and that includes my daily romp through the funnies.

Out of the frying pan, into the fire

[bkr1_2k]

Seriously?

I trust google with my data even less than I trust the government. It's why I no longer use any of their services. This article is not for anyone with a functional brain, it's for the masses that believe what they're told to believe. I'd also suspect this wasn't something Schmidt said without some "guidance" or "suggestions" from some of his high powered friends in the government.

Someone has to say it.

[spacefight]

What a fucking asshole.

Just laughable

[oldmac31310]

So it takes a year an a half to get something done at one of the biggest tech companies there is and in all that time bugger all said about that company's failures before that? It is really a tacit admission of failure and collusion and should not be construed by any means of any change in the status quo. Schmidt is a bullshitting rich asshole who will at this point say anything that sounds like his shit doesn't stink. But it does and we know it.

distributed raid

[delvsional]

Can someone design me a distributed raid app that encrypts and splits the data between all the major cloud options? It would be pretty hard to decrypt if they only have a fifth of it.

Re:

[Hillgiant]

Implement true one way encryption by sending everything to /dev/null

Saves on disc space, too!

I believe him

[Opportunist]

They will fight any NSA letter tooth and claw to resist handing over your data.

After all, they still want to sell it.

Hmm..

[tyroneking]

I know I'll get s**t for this but ... Google and you-and-your-own-PC are not so different, a single court order and both have to give up any and all information requested; but in Google's case they have more lawyers than you do.

Terrorists and Pedophiles

[Guy From V]

I remember a quote from a security whitepaper which basically says something to the effect of "Unless your security method is being utilized by the worst of the worst criminals, say pedophiles, human traffickers and terrorists...then assume it is compromised."

Now, how one would find out what those sorts of people use for data security, you got me...but it seems like a good assumption.

PRISM

[manu0601]

Nobody commented on PRISM? It is nice to have inter-datacenter encryption, but if the NSA can directly tap the data from the datacenter, the privacy claim is overstated.

Re:"safe"

[rossdee]

"Ah, this is obviously some strange use of the word safe that I wasn't previously aware of.” - Arthur Dent

Re:

[TheGratefulNet]

"you either die a hero, or live long enough to turn into one of the bad guys"

yet another Dent quote that is quite fitting for this subject.

google is not going to die a hero.

Re:

[king neckbeard]

The CIA and NSA are bosom buddies who only withhold information from each other when there's an actual threat. But if it's just an ordinary citizen, they'll be more than happy to double-team you.

Re:

[znrt]

It should be obvious, but in order to protect your data (), you have to keep it from companies ().

It is a no-brainer actually.

ftfy. yw.

Re:

[Stoutlimb]

If the service is free, that means that someone else is the customer.