Hacker Read

Tichy · 2010-02-04 13:07:21

I've been wondering the same thing. But would it be so hard to detect? Presumably the information would have to be sent to some server sometime. While I personally don't really monitor outgoing traffic, I think some people do. So they should have noticed something by now?

iwwr | karma 6079 | avg karma 3.83 · | 2011-08-11 12:45:48+00:00

I'd be interested to see their claim of untraceability tested somewhat. It's hard to believe this sort of traffic can't be profiled.

komali2 | karma 15523 | avg karma 3.04 · | 2017-11-14 18:33:35+00:00

I feel like you could do this just watching network traffic, and judging by the fact that nobody's done it, I also feel like there's some mechanism preventing this that I'm not knowledgeable enough in the subject to be aware of.

mtgx | karma 33272 | avg karma 3.31 · | 2013-07-14 17:27:37+00:00

Oh, I'm sure they can easily collect the traffic. I think any secure service needs to be made with that in mind now. But the question is if they can get the data unencrypted.

witty_username | karma 987 | avg karma 1.08 · | 2016-07-15 17:01:43+00:00

True, but it could be encrypted and it might be only sent when other traffic is occurring so you'd never notice.

JupiterMoon | karma 1306 | avg karma 1.14 · | 2015-06-15 09:13:25+00:00

Surely someone would notice the network traffic if they were (like the bill payers - small businesses tend to be on top of their bills).

DEADMINCE | karma 296 | avg karma 0.64 · | 2024-06-03 13:34:22

If the traffic can't be identified and it isn't a known endpoint, then that's already suspicious.

NorwegianDude | karma 1083 | avg karma 3.7 · | 2021-06-16 15:24:55

They shouldn't know about the end destination, but they'll know your traffic was sent to eg. Cloudflare or whatever.

ratsmack | karma 1849 | avg karma 1.86 · | 2014-12-22 18:13:37

It can be difficult to tell. If the traffic is coming from a botnet, only identifying the Command And Control operators will tell you anything.

drummer | karma 419 | avg karma 0.74 · | 2021-02-04 18:49:35+00:00

They could certainly do this, but they would only see which local IP is trying to communicate with Signal (and thus trace the user). The traffic itself is end to end encrypted so they cant read it.

phaus | karma 3806 | avg karma 2.38 · | 2015-02-28 19:31:30

They are allowed to look into the traffic only as much as they need to in order to maintain quality service. They notice stuff like botnets and piracy because both of these activities have the potential to generate abnormal amounts of traffic. Another reason they are likely to notice these things is because a third party will often notify them about the activity. They would have to monitor your connection/activity in a way that's highly unethical and possibly illegal in order to detect anything that isn't overly noisy.

stephen_g | karma 8194 | avg karma 3.3 · | 2014-07-02 00:09:08

A passive observer that is as big as NSA/GCHQ etc. can correlate traffic to de-anonomise some traffic, some very small amount of the time. It is extremely unlikely that a single ISP would ever have enough information to do that though.

matheusmoreira | karma 22085 | avg karma 2.63 · | 2023-09-13 21:50:08

They don't need to. They can infer based on the size and timing of the transfers. Nothing for a while then suddenly a huge download? Probably a picture. If the sizes are unique enough they might even figure out which.

https://en.wikipedia.org/wiki/Traffic_analysis

To stop this, we'd have to saturate the link 100% of the time even when no useful communications are taking place.

reply

StavrosK | karma 1 | avg karma 0.0 · | 2013-09-15 13:14:16+00:00

Eh, it might be a bit useful if there's a passive adversary on the server. They can read traffic, but not change anything. Pretty unlikely scenario, so it doesn't really buy you much.

pyre | karma 21143 | avg karma 2.37 · | 2011-01-10 09:30:26

There were several papers over the past few years about using traffic analysis to figure out what's going on behind a NAT. I'm sure that the US government could manage to do this with all of the ISP-level snooping gear.

microcolonel | karma 4436 | avg karma 0.84 · | 2019-07-17 21:58:33

All the traffic would be tunneled, so unless they're using heuristics or ML to determine "phoney" and "desktop/laptopy" timing in the packets, they can't really tell what's going on.

windy_willow | karma 2 | avg karma 0.5 · | 2021-05-11 12:35:10+00:00

Hmm, just trying to make sure then. If they can see all traffic would using a tool hide this in combination with Tor help?

emodendroket | karma 21781 | avg karma 1.83 · | 2021-03-14 02:10:55

Seems like you could intercept the traffic with your router.

tinus_hn | karma 7585 | avg karma 1.16 · | 2020-05-03 06:02:54+00:00

Realistically if some party made use of these backdoors regularly someone would probably have noticed the traffic already.

collinmanderson | karma 2158 | avg karma 2.13 · | 2017-11-11 14:09:04+00:00

It's still possible to monitor that traffic, especially at the corporate firewall level, or use a Raspberry Pi, or use an old, pre-ME computer.

Until there is evidence, this is technically just a government conspiracy theory.

reply