Facebook Plunges Again
Tumblr 101: Tips And Tricks To Get Started
Extreme Notebook Makeover - Protecting your notebook from random searches
Small business people don't travel without laptops. On July 24, 2006, the United States Court of Appeals for the Ninth Circuit decided that US Customs and Border Patrol Officers had the right to search and seize a person's laptop computer, computer discs and other electronic media (iPods and more). Personal and proprietary data is at risk, as is your notebook itself (some are not returned). The EFF has recently filed a suit demanding that Homeland Security disclose information on why it chooses to inspect some laptops and other electronic devices at the borders. On the government side is the argument that these search and seizures are aimed at and are helping prevent child pornography.
Most astounding to laptop owners is that the number of searches is increasing but intelligible reasons for the searches remains almost nil. If your machine is searched, expect no justification or details on what they were looking for or what they downloaded. Rummaging through a computer's hard drive, the government says, is no different than looking through a suitcase.
According to ComputerWorld, border agents need no evidence to seize your notebook computer, can search anything and can keep your machine for days or weeks or more. How can a small business owner who likely keeps a lifetime of work on a notebook travel safely anymore?
First Line of Defense
- Clean the cache. Before every trip, be sure to delete all your temporary Internet files and cookies. You can set your browser to delete them after every session but checking temp files is a good follow-up.
- Learn from history. Change your browser settings to delete your browsing history every day. Chances are your kids do this on your home computer just so you can't easily tell where they're browsing.
- Nuke the IM logs. If you use IM (Instant Messaging), change the options so that there are no logs of conversations. Stop logging in AIM.
- Don't make it too easy. Change the preference on your start menu so your most recent documents are not listed in the flyout menu. (How to: right click the start menu and choose "properties").
- Don't store your passwords. Yes, it's inconvenient as all get-out to be out of town without embedded passwords. Unless you want your online email to be fair game, delete all your saved passwords. At this rate, they're probably safer on a piece of paper.
- Really delete files. Deleted files can be recovered unless they are really deleted. Dragging them to the Recycle Bin doesn't qualify as "really" deleting and they can be recovered (it's not even hard). Free Windows utilities here and here to permanently delete files. (Let's be really careful with those registry cleaners, y'hear?)
Extreme Notebook Makeover
- Traveling laptop. Consider purchasing a second, less expensive laptop. Don't keep any confidential of personal information on it. Instead, build a VPN to your company server or home computer. Yes, it will slow things down if your hotel Internet is sluggish, but it will safeguard your data. Configure a Windows VPN in XP
- Image your computer. Create an image of your notebook on an external drive and then format your notebook before traveling. When you return, you can restore the image. Free imaging downloads here and here. Truly a PITA (pain in the ...) but these are extreme solutions.
- Encryption doesn't count. You can be forced to give up your password and/or have your machine confiscated. The government doesn't do well with your trying to hide behind encrypted data. PGP is great but a court will force you to give up the key.
- Unbookmark. I don't know how I would log into all my online accounts to manage servers, antispam services, the admin area of the help desk and more without my bookmarks, but consider moving them to a Flash key (no, that's not safe either, but get one that doesn't look like a USB drive) or put them online on a page whose URL you can remember.
- Work online. Get a password-protected Web page to store certain information you need but don't want to carry with you. Is it 100% safe? Of course not. But it's an extreme alternative.
Comments
22
Subscribe to commentsJordan RunningFeb 15th 2008 4:44PM
Great article, Sue. I'm not sure about the last part of point #3, however. Some courts have ruled that encryption keys are protected under the Fifth Amendment's protection against self-incrimination. A U.S. District Court in Vermont recently ruled this way in the case of Sebastien Boucher, who is accused by the United States of possessing child pornography:
http://www.washingtonpost.com/wp-dyn/content/article/2008/01/15/AR2008011503663.html
The government, of course, is appealing.
Of course, when you're stuck at customs, not turning over your encryption key upon request may be the most principled thing to do, but possibly not the most practical one.
MattFeb 15th 2008 5:01PM
"On the government side is the argument that these search and seizures are aimed at and are helping prevent child pornography."
Yeah that sounds right...Like you can't send pictures and movies via e-mail? Thats the lamest excuse I've ever heard. I have a desktop server at my house that I access from numerous locations. Any idiot can upload pictures and video to some sort of file server before they even leave the country.
Homeland Security just wants a few new MacBook Airs and what the hell, while they're at it, why not save money and take CD's, DVD's, and iPods (make a good gift for their daughters). They're probably the people on eBay selliing the "Brand New iPod iTouch!!! (freshly confiscated from innocent citizens)
Pr0crastFeb 15th 2008 5:04PM
A better solution than all listed above is to use Truecrypt, the newest version of which allows you to encrypt an entire system drive, and I believe create a "plausible deniability" situation where you have two passwords, one that decrypts your REAL data and one that decrypts your DUMMY data (which could be a folder of useless docs, a fresh xp install, etc).
JackFeb 15th 2008 5:12PM
TrueCrypt allows you to create a encrypted container that has two passwords. One password opens the "outside" part of the TrueCrypt container (which you put dummy files in). The second (the one you don't give if someone forces you to unlock it) password can open the "inside" part of the container. This way, you can't be forced to give your secret password (and you confidential files) away.
Sue PolinskyFeb 15th 2008 5:34PM
Pr0crast, I included technical solutions that give the notebook owner a fighting chance. I am not yet ready to cede that Homeland Security agents won't see the Truecrypt solution, but it's certainly one to consider.
Truecrypt: http://www.truecrypt.org/
Sue PolinskyFeb 15th 2008 5:47PM
Jordan, you're right: the encryption issue isn't resolved yet. Check this link from the UK: http://tinyurl.com/yr9vad.
This is the seminal Vermont case: http://tinyurl.com/2zrl7g
Given that the jury is still out, I vote for an extreme alternative of which "jail time" is not in the possibilities.
PeterFeb 15th 2008 5:56PM
Just another example of the government chipping away at our freedoms and rights in the name of "security."
The really absurd thing is how all these "security" measures to catch "terrorists" have done nothing so they recast them as measures to catch illegal aliens, drug smugglers and child porn. What a farce.
I find it hard to believe they can actually keep the items with providing any renumeration. How is that legal?
If I was traveling with a laptop, I'd get a cheap one, Truecrypt the entire drive and let them keep it before I decrypt it for them. No way I am letting the government search my data at their leisure. Get yourself a warrant or even probable cause and then we'll talk. This is illegal search and seizure.
archpopeFeb 15th 2008 6:55PM
Another advantage of TrueCrypt with its "plausible deniability" is that you can name the data file anything you want. If, for example, you want to encrypt your bookmarks into a small file, you can name that file something like "mscache.dat" or even "excel.dll" and stuck in the windows folder. As long as it's not suspiciously large, it will almost certainly be assumed that it's one of the thousands of system files that are supposed to be there and summarily ignored.
mccandFeb 16th 2008 7:47AM
There are lots of options here, especially if you want to make things complex for the poor sod who thinks he has to search your computer.
1) Leave a Linux live CD in your CD-ROM drive. When you computer is powered on, presto, clean system. Bonus: border agent may not be familiar with Linux, giving you a free pass. (Maybe)
2) You can setup a dual boot system, preferably using windows as your "Clean OS," (so as not to set off any red flags)
Just make sure that the boot loader only appears briefly, most people won't recognize it. As an added bonus, several linux filesystems cannot be read from windows.
3) Encrypt the partitions containing your hidden OS. You can always claim that it is unpartitioned space.
4) Try to be helpful, but constantly forget your passwords. Make lots of suggestions. This allows you to make a case that you "forgot" several of them.
5) (this is a risky one) carry a copy of your medical records in your encrypted files. Tell the agent that you are forbidden by law (HIPPA) from disclosing this information to any third party without proof of HIPPA compliance. There are several variations on this: Protected by Attorney-client privilege, "It's illegal for you to copy those MP3s (The RIAA says so! Say, don't you guys work for them?)"
6) Use keyfiles to unlock encrypted containers. send someone through the check point ahead of you, with the keyfiles. Or just tell the agents that you did,
Here are a few other things that are not quite in the same vein, but are lots of fun.
a) Carry lots of doggy treats for any police dogs.
b) Carry a voice recorder in your pocket. (If you are paranoid, carry 2, and hide one.) Do make sure that you tell the agent (be nice now!) that you are concerned about maintaining your civil rights, and that you will be recording all proceedings.
c) take down names and badge numbers.
No matter what you do, be prepared. If someone tries to pull a fast one, make sure that they know that you are not going to let them get away with it.
mccandFeb 15th 2008 10:01PM
There are lots of options here, especially if you want to make things complex for the poor sod who thinks he has to search your computer.
1) Leave a Linux live CD in your CD-ROM drive. When you computer is powered on, presto, clean system. Bonus: border agent may not be familiar with Linux, giving you a free pass. (Maybe)
2) You can setup a dual boot system, preferably using windows as your "Clean OS," (so as not to set off any red flags)
Just make sure that the boot loader only appears briefly, most people won't recognize it. As an added bonus, several linux filesystems cannot be read from windows.
3) Encrypt the partitions containing your hidden OS. You can always claim that it is unpartitioned space.
4) Try to be helpful, but constantly forget your passwords. Make lots of suggestions. This allows you to make a case that you "forgot" several of them.
5) (this is a risky one) carry a copy of your medical records in your encrypted files. Tell the agent that you are forbidden by law (HIPPA) from disclosing this information to any third party without proof of HIPPA compliance. There are several variations on this: Protected by Attorney-client privilege, "It's illegal for you to copy those MP3s (The RIAA says so! Say, don't you guys work for them?)"
6) Use keyfiles to unlock encrypted containers. send someone through the check point ahead of you, with the keyfiles. Or just tell the agents that you did,
Here are a few other things that are not quite in the same vein, but are lots of fun.
a) Carry lots of doggy treats for any police dogs.
b) Carry a voice recorder in your pocket. (If you are paranoid, carry 2, and hide one.) Do make sure that you tell the agent (be nice now!) that you are concerned about maintaining your civil rights, and that you will be recording all proceedings.
c) take down names and badge numbers.
No matter what you do, be prepared. If someone tries to pull a fast one, make sure that they know that you are not going to let them get away with it.
Mark StevensFeb 17th 2008 11:05PM
There's nothing at all in HIPAA that would make it illegal for YOU to release YOUR medical information, so claiming it would be illegal for you to release that info is a non-starter.
kyleFeb 16th 2008 8:07AM
if you have something you don't want them seeing, keep it on an sdhc card in your wallet. the chances of them finding it are slim to none.
LeeHFeb 16th 2008 10:29AM
I understand that the border service sometimes just copies the hard drive and then, at their leisure, crunches it through powerful software that is designed to find certain words and phrases and to identify and crack encrypted files (whether or not the filename is disguised). This makes me a little leery of Truecrypt and the plausibility deniability option. Maybe it can withstand the codebreaking software and maybe the plausible deniability option gives you a technical way out but you could still be flagged as someone who encrypts their software using TrueCrypt and MAY potentially be hiding something with the second password. Don't expect your next trip to be so smooth.
FyrewerxFeb 16th 2008 1:55PM
Any court decision preventing a person from exercising their Constitutional Rights within the framework of the 5th Ammendment is only the U.S. government's start. Once that is out of the way, there will be no stopping them from dismissing any other formerly "inalienable" rights. The U.S. government will make China, North Korea, and Cuba look like angels.
WammoFeb 17th 2008 7:55AM
Although I share your general concerns, I think you are making a significant overstatement. First, we are talking about the Fourth Amendment protections against unreasonable searches and seizures. Modern jurisprudence has interpreted the Fourth Amendment to provide significant protections based on privacy expectations generally requiring a showing of probable cause on the part of state actors. Unfortunately, these protections have never applied to the border. At most, there has been a fight over whether or not a reasonable suspicion standard is needed for a border search. Put quite simply, your rights have not been stolen in the night by [pick your bad guy]. You are just learning that you don't have all the protections you think you have. This is a good thing. Not many drug smugglers have raised a fuss as their cars were dismantled on the border. I am sure this will not be the case for the tech community.
FyrewerxFeb 17th 2008 12:47PM
No... actually I am talking about the 5th Ammendment -- that is, regarding "Self Incrimination". Giving up a password to an encrypted drive, so that the Gestapo can search it is "potentially" self-incriminating.
chrisFeb 16th 2008 4:38PM
Won't be long before they start scanning the contents of your brain, using their logic, once the technology is available. Your grey matter is no different than a hard-drive, after all.
tobin92Feb 17th 2008 1:51PM
Unlawful Searchs FTL.....I could understand if they were search a foreigners laptop.....but US citizens are off limits
AlexFeb 19th 2008 6:03PM
The US is one shitty country. The land of the suspect and home of the guilty.
RocketboyFeb 17th 2008 1:11PM
And your country run by libertarians is what?