Tor at the Heart: GlobaLeaks
During the month of December, we're highlighting other organizations and projects that rely on Tor, build on Tor, or are accomplishing their missions better because Tor exists. Check out our blog each day to learn about our fellow travelers. And please support the Tor Project! We're at the heart of Internet freedom. Donate today!
GlobaLeaks
GlobaLeaks is an open source whistleblowing framework that empowers anyone to easily set up and maintain a whistleblowing platform. GlobaLeaks focuses on portability and accessibility and can help many different types of users—media organizations, activist groups, corporations and public agencies—set up their own submission systems. It is a web application running as a Tor Hidden Service that whistleblowers and journalists can use to anonymously exchange information and documents. Started in 2011 by a group of Italians, the project is now developed by the Hermes Center for Transparency and Digital Human Rights.
One of the main goals of GlobaLeaks is to provide a configurable system to meet the needs of under-resourced groups and activists who are communicating in their native languages. By default the platform enforces a strict data deletion policy, encryption of file content on disk, and routing of all network requests through the Tor Network. But configurability allows implementing organizations to make choices about how they engage in the process. The tool makes it easy to choose what languages to use, how long data is stored on the system, and the questions a source must answer before they create a submission.
To date over 60 organizations in more than 20 languages have used GlobaLeaks to set up whistleblowing systems. Investigative journalists are using it to produce evidence in controversial stories, NGOs and public agencies are using it to better handle their communication with sources, and we have even seen businesses adopt the tool to handle internal corruption reporting.
At the end of 2015 Ecuador Transparente, a GlobaLeaks user, uncovered political manipulation by state organizations. MexicoLeaks has produced award winning journalism while fighting local corruption with the help of the software. You can even see how the Elephant Action League uses the software to combat wildlife crime in the documentary The Ivory Game.
NGOs also use GlobaLeaks to manage the communication process with sources. Organizations like Transparency International Italy and Amnesty International rely on the system to provide a communication channel off email and telephone networks. The PubLeaks project in the Netherlands uses it to provide a contact point for over 42 Dutch media groups.
A project that uses GlobaLeaks has even helped provide the justification for improving legal protection for whistleblowers. The Serbian parliament recently passed a legal framework for whistleblower protection. Pijstrka.rs was acknowledged by the prime minister of Serbia at an anti-corruption conference in Belgrade for its exemplary role in protecting Serbians reporting on corruption.
In all of these contexts, it is crucially important for sources to remain anonymous. Without the work of the Tor Project, the existence of the Tor Network and the larger Tor community, none of this work would be possible.
Going forward, the development of the project is focused on making it easier to install and maintain a node and improving the resilience of the platform to attacks. If you would like to get involved, you can help translate the project, hunt for bounty, author new code, or donate to the project.
This series is so awesome!
This series is so awesome! Thanks.
One theme which I hope Tor media team will bear in mind: currently whistleblowing sites (particularly Wikileaks) are under intense political attack from US politicians (mostly Democrats) who insist (counterfactually) that Julian Assange was a willing collaborator with Putin in disseminating DNC/DCCC campaign documents during the recent US elections, resulting in major loses for the Democratic Party. Since Wikileaks helped publish the Panama Papers, which exposed a massive international money laundering operation by intimates of Putin, such claims are absurd on their face, but the US mainstream mass media has nonetheless enthusiastically endorsed the view that Wikileaks is "anti-American" [sic], even a terrible threat to US "national security" [sic].
It cannot be repeated often enough: attribution of cyberattacks is difficult. In the case of the intrusions into DNC/DCCC (and Republican counterparts), many rival intelligence services are quite cognizant of Fancy Bear and Cozy Bear habits, and thus in a position to manipulate an adversary nation into attributing their own cyberwar activity to a mutual adversary such as RU--- and intelligence agencies frequently attempt to do just this. (I do not however endorse the somewhat amusing viewpoint of John Bolton, who is being considered for a high level national security post by the incoming DJT administration, that the Democrats hacked their own party and is trying to get the Russians blamed, or something to that effect.) The attribution to RU is plausible, but Occam's Razor does not apply here with the same force as it would if extremely devious actors were not involved, and on the basis of evidence published so far, the attribution to RU could be fairly said to be suggestive, but hardly conclusive.
The enthusiastic acceptance by US mainstream mass media of the attribution to Russia and the too easy acceptance of the proposition that whistleblowing generally and leak sites generally pose a "clear and present danger" [sic] to US "national security" [sic] is dangerous to all leak software developers and all leak sites. For decades, the USG has been in the habit of pressuring governments (e.g. Spain, Poland) to pass oppressive legislation enabling the brutal suppression of all domestic political dissent, and the new administration has stated they intend to do this with even greater ferocity than any previous administration. We must be prepared for rapidly expanding political and legal hazards, even as we try to overcome technical attacks.
At the same time, USG is overhauling one of it's major "soft propaganda" arms, BBG, and it appears that in future BBG will refocus on propaganda targeting US persons rather than people in RU, CN, VN, DPRK, etc:
http://www.politico.com/story/2016/12/donald-trump-voice-of-america-232…
Trump to inherit state-run TV network with expanded reach
A provision tucked into the defense bill guts the Voice of America board, stoking fears that Trump could wield a powerful propaganda arm.
Tara Palmeri
12 Dec 2016
> President-elect Donald Trump is about to inherit a newly empowered Voice of America that some officials fear could serve as an unfettered propaganda arm for the former reality TV star who has flirted for years with launching his own network.
https://www.salon.com/2016/12/12/will-donald-trump-have-complete-contro…
Will Donald Trump have complete control of America’s propaganda arm?
Changes to the Broadcasting Board of Governors could allow Trump to build a propaganda arm — paid for by taxpayers
Taylor Link
12 Dec 2016
> Thanks to the National Defense Authorization Act that passed last week, President-elect Donald Trump could have the power to transform the Broadcasting Board of Governors — an independent U.S. agency that runs Radio Free Europe, Radio Free Asia, the Middle East Broadcast Networks and Voice of America — into a state-sponsored propaganda arm of the White House.
Tor Project has in the past relied upon BBG funding, so these changes show which way the wind is blowing in the US, and underline the critical need for the Project to diversify funding sources so that it is never again reliant upon USIC-tied sources such as BBG. (The CIA was deeply involved in Radio Free Europe from the beginnings of US soft propaganda in the very early years of the CIA's existence as a "intelligence" [sic] and "covert" [sic] action agency. See Tim Weiner's book Legacy of Ashes.)
One nation which may be moving in a more encouraging direction may be Iceland, which could be a suitable world headquarters for development of whisteblower protection systems during the next few years. Newly authoritarian nations like USA, UK, and too many other "Western" nations would on the other hand appear to be very unsuitable places to do this kind of work, which is *already* effectively illegal in overtly repressive nations like RU, CN, SA.
http://www.katoikos.eu/interview/icelandic-minister-who-refused-coopera…
Ögmundur Jónasson: The Icelandic minister who refused cooperation with the FBI
7 Dec 2016
> Katoikos spoke to Mr. Jónasson about whistleblower protection, countering the rise of populism and Iceland’s unique approach to the financial crisis...