|
Internet Privacy Myth
by Tek-Tips |
|
The battle for privacy continues to make more U-turns as FBI Director, Robert Mueller claims he "called for data retention on the part of Internet providers, and emphasized the point two years later when explicitly asking Congress to enact a law making it mandatory. But it had not been clear before that the FBI was asking companies to begin to keep logs of what Web sites are visited, which few if any currently do." In addition, CNN lists most other policing agencies concurring, ostensibly meaning they will have access to all of "our" data as well. While we’re in favor of doing whatever it takes to bring down all sorts of predators, it’s not entirely clear if Congress can frame a law that will hold up and that it will be used legally.
Which Side Of The Barbed Wire Are We On?
In case you weren’t aware, "Federal regulations in place since at least 1986 require phone companies that offer toll service to "retain for a period of 18 months" records including "the name, address, and telephone number of the caller, telephone number called, date, time and length of the call." Now they will know where all the porn addicts live, work, watch and how often they go online to get off. They will also know every web site you visit and every user name you use. If you store videos, photos or tunes online, they will see those, and if walk your dog, they will be able to watch you from satellites. But wait, there is a group looking out after our purported interests: "At Thursday’s meeting of the Online Safety and Technology Working Group, which was created by Congress and organized by the U.S. Department of Commerce, Greg Motta, the chief of the FBI’s digital evidence section "stressed that the bureau was not asking that content data, such as the text of e-mail messages, be retained."
Reminds me of a bunch of gearheads back in the mid-nineties trying to imagine "2010" coming and how much storage capacity you would need to store even a week’s worth of emails, then sort on them. The theory now being, of course, that if the police find activity they feel fits a particular pattern, which would easily be predicted robotically, then they get a warrant and look at everything. Reports on that alone boggle the mind when you consider how many sickos have been uncovered.
| - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - | ||
 |
Information Leakage - the enemy is within | |
| - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - | ||
John Seiver, an attorney at Davis Wright Tremaine who represents cable providers, said one of his clients had experience with a law enforcement request that required the logging of outbound URLs, "Eighteen million hits an hour would have to have been logged." Nothing much is clear on this, but forces are trying to figure out how to do the right thing, and it sure perks our ears up. Let us know if you have any tips or insights please.
From a technology point-of-view, "if you were do to deep packet inspection to see all the URLs, you would arguably violate the Wiretap Act." This is another aspect of it all and there are lots of great technologies out there like Procera Networks and iPogue and Ciena with innovations that are needed to move information faster and more securely. The issue appears more semantics than to do with privacy as the Internet continues to grow rapidly. If the people on both sides committed to improving communications, the Internet and all its users would be better off. If you use the Internet regularly, you ought to know that anything you do is out there. Somewhere, for all to see.
This entry was posted on Friday, February 5th, 2010 at 12:22 PM and is filed under Community Manager. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.
|
| Making The Buy For Trust Seal For ease of access, we have added a 'Buy' button to the very top of the Trust Seal landing page. This helps to ensure that it is easily visible and accessible to users and that it doesn't get missed further... VeriSign At SES The VeriSign Authentication team was at SES last week talking up the VeriSign Trust Seal which was recently launched in February, and Seal-in-Search - a service where search engine users can see the VeriSign Trust Seal next to sites protected... VeriSign Now a Symantec Company We are very excited to be a Symantec company! If you haven't already heard, VeriSign has been acquired by Symantec. The deal was made official on August 9, 2010. We are very excited about new opportunities for increasing and offering... |
|
| PayPal UK Launch Security Key - Guest Posting from PayPal I am happy to say they are using VeriSign Identity Protection to deliver this, which means that PayPal Customers will be able to use their token at other sites who join the VIP network. PayPal are the first UK members of the network, but there are around 30 other members in different countries around the world so you can expect to see more places where you can use your token in the UK appearing shortly. Facebook scam - Part 2 This just in from the BBC web site, Symantec have identified a virus that steals user names and passwords, nothing new there. But, if I understand this right, it is delivered through a Facebook invitation from someone you don't know and delivers malware which can then steal user names / passwords and also keylog credit card info. Survey finds passwords are not secure - well d'uh! I don't think the vendor community has been crying wolf about the problems that stronger authentication solves, more like highlighting that this problem is here and growing. Well the discussion I have had recently with many different organisations across many different industries are now resulting in more and more consumer projects in this area |
|
| Cloud Identity, Trust and the Liability Elephant. I have been involved with a couple similar initiatives around certification for identity and thought it would be interesting to explain the logic behind these efforts. The first initiative is led by the Open Identity Exchange and is based on... Greek Heroes, Facebook and Trust When Achilles was a baby, the oracle predicted that he would die in battle from an arrow. Thetis, Achilles' mother who did not want her son to die decided to dip Achilles' body into the water of a river that... PCI for the Cloud For most enterprise and security vendors, the cloud is fascinating both as a technology and a business disruptor. In fact, SAAS CEOs such as Successfactor, SalesForce and NetSuite are hot shots in Silicon Valley these days. Yet, most of us... |
|
