Monday, January 13, 2014

Out in the Open: An NSA-Proof Twitter, Built With Code From Bitcoin and BitTorrent

This is a great read by KLINT FINLEY.
Anything we can do to stop the NSA from invading our privacy is a huge plus.
I would imagine this will become the norm for folks who want to stop all the prying eyes.

When mass political protests erupted throughout Brazil in June, Miguel Freitas did what countless others did: He followed the news on Twitter. Tweets revealed information he couldn't get anywhere else, including the mainstream media. “Brazilian media is highly concentrated,” says Freitas, an engineer based in Rio de Janeiro. “I have been able to read news that a lot of friends never heard about.”

He believes that Twitter plays a major role in promoting democracy and organizing protests in places like Brazil and the Middle East — and that’s why he was so concerned when former National Security Agency contractor Edward Snowden leaked details about the U.S. government’s massive surveillance of internet traffic and social networks. Almost immediately, Freitas started building a more secure and robust alternative to Twitter, making use of code from two other massively successful online projects: bitcoin and BitTorrent.

Although he gives Twitter credit for resisting government pressure to hand over user data, Freitas remains worried about people putting too much information in the hands of one company. “As much as I like using Twitter for news reading, the possibility of a single entity being able to control this important flux of information made no sense to me,” he says.

His alternative is called Twister. It’s a decentralized social network that, in theory, can’t be shut down by any one entity. What’s more, Twister is designed to prevent other users from knowing whether you’re online, what your IP address is, or who you follow. You can still post public messages a la Twitter, but when you send direct and private messages to others, they’re protected with the same encryption scheme used by LavaBit, the e-mail provider used by Edward Snowdan.

After spending a few months hacking on the project — including a stint coding and backpacking on Trindade Island — Freitas and his collaborator Lucas Leal have completed a test version of the app that runs on Android, Linux, and OSX. Freitas has no plan to create a Windows or iPhone version, but since the code is open source, others are free to port the app to additional operating systems.

Twister is surprisingly easy to use for an application that’s so new, that isn’t controlled by a central authority, and that places so much emphasis on security. Other decentralized alternatives to Twitter and Facebook — such as, Identicaand Diaspora — require that you either operate your own dedicated server or trust someone else to run a server for you. Twister works more like peer-to-peer file sharing software: Launch the app, and it connects with other users. There’s no need for a central server.

It manages this trick through the bitcoin protocol, though not the network that actually drives the digital currency. Basically, the protocol handles user registration and logins. Just as machines — called miners — verify transactions over the bitcoin network to ensure no one double-spends bitcoins and everyone spends only their own coins, a network of Twister computers verifies that user names aren’t registered twice, and that posts attached to a particular user name are really coming from that user.

Posts are handled through the BitTorrent protocol. This lets the system distribute a large number of posts through the network quickly and efficiently, and it lets users receive near-instant notifications about new posts and messages — all without the need for central servers.

Why would anyone operate a miner? On bitcoin, miners compete in a kind of cryptographic lottery to earn the currency. Twister takes a similar approach, but instead of dolling out bitcoins, it gives you the privilege of sending promoted messages — basically ads — to Twister users. At the moment, Twister is designed to show users no more than one promoted message per day. “The mechanism is actually quite democratic,” Freitas writes on the Twister site. “This is effectively an advertising mechanism reaching the entire population of Twister users.” He points out that this could be used not just by commercial outfits, but by non-profit organizations that need to promote a cause.

It’s a great example of how the open source bitcoin software can be repurposed for other applications. The possibilities are almost endless, says Brian Armstrong, the co-founder of Bitcon wallet companyCoinbase. “It’s a fundamentally new invention that has all sorts of applications, just like the internet.”

You shouldn't bet your life on Twister — at least not yet. It’s still under test, and Freitas points out that if someone is monitoring your internet traffic — or mass monitoring internet users — they’d still be able to find your IP address (Freitas suggests those looking for additional protection consider the Tor Project‘s anonymity software).

But what Freitas and Leal have accomplished so far is quite impressive. “When I realized it was a viable idea, I took it as a personal challenge to implement,” he says. “No one is going to be convinced of implementing my idea just because I think it is a neat one. I must do it myself.”

No comments:

Post a Comment