Getting Data Past Borders

Bruce Schneier uses reports that Sudan is searching all laptops being brought into the country to sound a warning: “Your privacy rights when trying to enter a country are minimal, and this kind of thing could happen anywhere… If you’re bringing a laptop across an international border, you should clean off all unnecessary files and encrypt the rest.”

Some commenters take the discussion a bit further, pointing out this may not be enough. Officials may demand you decrypt your files, so a better way would be to encrypt your data in an unpartitioned portion of your hard drive using something called TrueCrypt, which creates a “virtual encrypted disk” within a file (for Windows and Linux.)

Others suggest that this might not be enough, and that it may be better to use some kind of steganography (hiding data within innocent data, like a photo or music file.) It goes without saying that whatever you do encrypt you should have backed up somewhere safe back home. Another option is not to have anything on your laptop and to download what you need once you’re in country, but unless you have a private network you can do this on, chances are your downloads will be monitored.

This is all not as fanciful or infrequent as it sounds. One poster, Abbas Halai, said he had on three occasions entering the U.S. been asked to login to his laptop and then leave the room.

14. September 2006 by jeremy
Categories: Privacy, Security, Storage | Tags: , , , , , , , , , | 1 comment

One Comment

  1. kinda terrible isn’t it? i’m crossing the border again tonight. this time not with my laptop. i’ll keep you posted if anything extraordinary happens.