Browse Definitions :
Definition

going dark

Contributor(s): Ivy Wigmore

Going dark is military lingo for the sudden termination of communication. The term used to describe a scenario in which communication appears to have ceased, but in reality has just moved from a public communication channel, where it could be monitored, to a private communication channel that prevents eavesdropping.

The term has been adopted by law enforcement to describe digital communication that cannot be monitored because of strong encryption. Mobile apps that use end-to-end encryption (E2EE) are designed to protect data at rest and in transit and keep the end user's text messages, emails and video chats private and secure. The same encryption technologies that protect end users from intruders, however, can prevent law enforcement and government agencies with the legal right to monitor transmissions from being able to do so.

In the United States, the question of how much help law enforcement and national security agencies should expect from vendors to make decryption upon demand available is under debate. The National Security Agency (NSA) has proposed vendors use split-key encryption to solve the problem of law-breakers and terrorists going dark.

In a split key encryption approach, also known as secret sharing, the technology vendor or service provider retains half the master key and law enforcement retains the other half. This approach places responsibility for deploying encryption in a way that supports lawful access on the vendor or service provider; it also provides a level of transparency, requiring the participation of both parties in order for lawful access to occur.

Opponents of this approach maintain that it would be prohibitively complex to implement and the complexity would provide points of entry that would ultimately endanger user data security. Another approach, which has been used in the past, is called lawful device hacking. In this scenario, the responsibility for decrypting dark communication is placed on law enforcement and government agencies, who must use exploits and/or external hardware/software to access the content of locked devices.

This was last updated in October 2017

Continue Reading About going dark

Join the conversation

1 comment

Send me notifications when other members comment.

Please create a username to comment.

Just read your definition of "going dark" and learned a few things. You guys are doing a great job!
Cancel

SearchCompliance

  • risk assessment

    Risk assessment is the identification of hazards that could negatively impact an organization's ability to conduct business.

  • PCI DSS (Payment Card Industry Data Security Standard)

    The Payment Card Industry Data Security Standard (PCI DSS) is a widely accepted set of policies and procedures intended to ...

  • risk management

    Risk management is the process of identifying, assessing and controlling threats to an organization's capital and earnings.

SearchSecurity

SearchHealthIT

SearchDisasterRecovery

  • call tree

    A call tree is a layered hierarchical communication model that is used to notify specific individuals of an event and coordinate ...

  • Disaster Recovery as a Service (DRaaS)

    Disaster recovery as a service (DRaaS) is the replication and hosting of physical or virtual servers by a third party to provide ...

  • cloud disaster recovery (cloud DR)

    Cloud disaster recovery (cloud DR) is a combination of strategies and services intended to back up data, applications and other ...

SearchStorage

  • RAM (Random Access Memory)

    RAM (Random Access Memory) is the hardware in a computing device where the operating system (OS), application programs and data ...

  • business impact analysis (BIA)

    Business impact analysis (BIA) is a systematic process to determine and evaluate the potential effects of an interruption to ...

  • M.2 SSD

    An M.2 SSD is a solid-state drive that is used in internally mounted storage expansion cards of a small form factor.

Close