Google's end-to-end key distribution proposal

[denom]

More to the point, what is the truth? Google leadership post 9/11 knew what "certifying" their communication systems meant and took the money to do it. Whether they knew that the program was named Prism is irrelevant, in my opinion.

[skj]

Google responds to legal requests for information. The whole PRISM scandal was indicating that the NSA had some kind of direct link into the databases themselves. This assertion is what Google denied, and still denies.

There's been a bit of a wandering definition for PRISM, from "they have NSA software with root access to all machines!" to "they receive LEO requests for information, which they review, and sometimes fulfill." The former is untrue, and the latter is true.

[ChrisAntaki]

> The whole PRISM scandal was indicating that the NSA had some kind of direct link into the databases themselves.

Though, as Google and Yahoo later found out, the NSA was directly tapping cables between their data centers [1].

[1] http://www.wired.com/2013/10/nsa-hacked-yahoo-google-cables/

[skj]

That appears to be several things:

1) True.

2) Consistent with statements made by Google.

3) Quickly mitigated by Google when it began encrypting traffic between data centers.

[blueking]

Go look at the slides. The NSA isn't lying in its own internal documents. Of course google is in on it. Do you get how huge this infrastructure is ? Its a massive engineering effort to manage that kind of information flow.

What has happened here is google has got scared. Because without trusting users all their business models fall apart. So they are lying. Its that simple.

[skj]

> Do you get how huge this infrastructure is ? Its a massive engineering effort to manage that kind of information flow.

Which is why it could never happen without it being well known inside Google.