1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
|
title: Chaos Computer Club analyzes new German government spyware
date: 2011-10-26 11:00:00
updated: 2011-10-31 16:33:59
author: presse
tags: update, pressemitteilung, staatstrojaner, 0zapftis
previewimage: /images/0zapftisdiffed_1.png
The Chaos Computer Club (CCC) has recently received a newer version of the "Staatstrojaner", a government spyware. The comparison with the older version, already analyzed by the CCC with the actual Sniffer-code from December 2010, revealed new evidence. Despite the claims of the responsible parties, the Trojan can still be remote-controlled, loaded with any code and also the allegedly "revision-proof logging" can be manipulated. The CCC is calling for a complete waiver of Trojans in pre-trial investigations.
<!-- TEASER_END -->
On October 8th 2011, the CCC published the documentation and binary data
regarding a German "Staatstrojaner". \[0\] This was used for the
officially called computer infiltrations, trivially called
"source-telecommunication surveillance". Its application in pre-trials
and law enforcement meanwhile was admitted by many states.
Although the CCC has published solid technical evidence, the authorities
responsible for internal affairs, as well as the manufacturer DigiTask,
denied the existence of any illegal functionalities \[1\],\[2\],\[10\],
and pleaded that the analyzed Trojan was allegedly an outdated software
version.
The excuses vary from "trial" to "prototype", DigiTask still insisted on
October 11th 2011 to its governmental customers, that almost all
problems are being solved in newer versions. The manufacturer DigiTask
and the authorities view the functionality of code-reloading as a
"natural need", for which the implication of fundamental rights
violation is relative in any way. It serves a purpose, and therefore the
aim justifies the means.
Therefore, the CCC now presents a more detailed technical documentation
of a newer version of the "Staatstrojaner" from the year 2010. \[3\] The
testimony of DigiTask \[10\] is the basis of a detailed report that
serves as a euphemistic attempt to conceal its illegal nature. At the
same time, both disassembled versions of the Trojan, commented by the
CCC, were made publicly available in order to ensure the traceability of
the findings and to facilitate further research by interested parties.
\[4\]
„Even during the last three years, the authorities and their providers
were clearly not capable of developing a "Staatstrojaner" which would
meet the minimum of requirements for juridical evidence, basic law
compliance and security against manipulation”, a CCC spokesperson summed
up the new findings. “By these concrete and principal reasons, it is
logical not to expect that this would succeed in the future."
The diagnosis of the new CCC report presents a strong contrast to the
claims by the Interior Secretary Ole Schröder, who was the one who
apparently had drawn the short straw and be the one to justify and
answer questions of the parliament. There, he claimed: "The software is
designed for each individual case and previously checked, so that it
can't do more than it is allowed to." \[8\] Under the previously
mentioned conditions, it is evident that the test wasn't very intense –
how could it, without available source code.
## Links:
- \[0\] The first press release regarding the "Staatstrojaner": [Chaos
Computer Club analyzes government
malware](http://www.ccc.de/en/updates/2011/staatstrojaner "Erste Pressemitteilung")
- \[1\]
<http://netzpolitik.org/wp-upload/174366-Bericht-BKA-Prasident-Ziercke_TOP-24a-24c_53.-InnenA-Sitzug.pdf>
- \[2\]
<http://www.bundestag.de/dokumente/protokolle/plenarprotokolle/17132.pdf>
- \[3\] German: [Technical
Report](http://www.ccc.de/system/uploads/83/original/staatstrojaner-report42.pdf)
- \[4\] [Dissamblies with comments of both version of the
trojans](http://www.ccc.de/system/uploads/85/original/0zapftis-release-2.tbz)
and the
[binaries](http://www.ccc.de/system/uploads/84/original/0zapftis-3.6.44-binaries.tbz)
- \[5\] Videos: <http://haha.kaputte.li/0zapftis-2_lowres-final.mov>\
<http://haha.kaputte.li/0zapftis-2_922x578-final.mov> (medium
resolution)\
<http://haha.kaputte.li/0zapftis-2_1230x770-final.mov> (high
resolution)
- \[6\] Frank Braun: „[0zapftis – (Un)Zulässigkeit von
,Staatstrojanern‘](http://www.kommunikationundrecht.de/delegate/resources/dok751.pdf?fileid=dok751.pdf_kur&type=asset)“.
In: Kommunikation & Recht 11/2011, S. 681-686
- \[7\] [FAQ zum
Staatstrojaner](http://pi10.tumblr.com/post/11835810799/faq-zum-staatstrojaner)
- \[8\] [Plenarprotokoll 17/132 des Deutschen
Bundestages](http://www.bundestag.de/dokumente/protokolle/plenarprotokolle/17132.pdf), 19.
Oktober 2011, S. 15604,
- \[9\] Ulf Buermeyer, Matthias Bäcker: [Zur Rechtswidrigkeit der
Quellen-Telekommunikationsüberwachung auf Grundlage des § 100a StPO,
HRRS](http://www.hrr-strafrecht.de/hrr/archiv/09-10/index.php?sz=8)
- \[10\] [testimony of
DigiTask](http://www.ccc.de/system/uploads/80/original/Stellungnahme_DigiTask.pdf)
|