Domain: prestovivace.biz
Stories and comments across the archive that link to prestovivace.biz.
Stories · 18
-
The Return of CISPA
Presto Vivace sends this news from the Hill: "House Intelligence Committee Chairman Mike Rogers (R-Mich.) and ranking member Rep. Dutch Ruppersberger (D-Md.) said Friday that they plan to re-introduce the Cyber Intelligence Sharing and Protection Act (CISPA) next week during a speech at the Center for Strategic and International Studies in Washington. The bill is aimed at improving information-sharing about cyber threats between government and industry so cyberattacks can be thwarted in real time. ... It would also encourage companies to share anonymous cyber-threat information with one another, and provide liability protection for businesses so they don't get hit with legal action for sharing data about cyber threats. " You may recall CISPA from last year, when it was hailed as being even worse than SOPA, the Stop Online Piracy Act. We discussed why it was a bad bill back then; the new version is reportedly identical, so all of the same reasons will apply. The bill stalled last year against White House plans to veto it. Congressman Rogers said this about privacy fears: "We're talking about exchanging packets of information, zeroes and ones, if you will, one hundred millions times a second. So some notion that this is a horrible invasion of content reading is wrong. It is not even close to that." Don't worry folks; it's just zeroes and ones. -
NSA Targeting Domestic Computer Systems
The NSA was originally supposed to handle foreign intelligence, and leave the domestic spying to other agencies, but Presto Vivace writes with this bit from CNET: "'The National Security Agency's Perfect Citizen program hunts for vulnerabilities in 'large-scale' utilities, including power grid and gas pipeline controllers, new documents from EPIC show.' 'Perfect Citizen?' Who thinks up these names?" "The program is scheduled to continue through at least September 2014," says the article. -
UK Students Protest Biometric Scanner Move
Presto Vivace writes that the UK's Newcastle University is instituting a finger-print based attendance system. From the linked article: "University students may have to scan their fingerprints in future — to prove they are not bunking off lectures. ... Newcastle Free Education Network has organised protests against the plans, claiming the scanners would 'turn universities into border checkpoints' and 'reduce university to the attendance of lectures alone.'" The system is supposed to bring the university "in line with the UK Border Agency (UKBA) and clamp down on illegal immigrants." -
That Was Fast: Leahy Drops Warrantless E-mail Surveillance Bill
Presto Vivace writes "Under the right conditions, online activism can be very effective. U.S. Senator Patrick Leahy has already abandoned his warrantless e-mail surveillance bill we discussed this morning. 'The Vermont Democrat said today on Twitter that he would "not support such an exception" for warrantless access. ... A vote on the proposal in the Senate Judiciary committee, which Leahy chairs, is scheduled for next Thursday. The amendments were due to be glued onto a substitute (PDF) to H.R. 2471, which the House of Representatives already has approved. Leahy's about-face comes in response to a deluge of criticism today, including the ACLU saying that warrants should be required, and the conservative group FreedomWorks launching a petition to Congress -- with over 2,300 messages sent so far -- titled: "Tell Congress: Stay Out of My Email!"" -
NewsCorp/NDS Sets Up Operation To Expose Canadian Pirates; What Could Go Wrong?
Presto Vivace writes "Murdoch's Pirates is a business book that reads like a thriller. The chapter excerpted in the Sydney Morning Herald explains how Operation Duck, an effort to discover the identify Canadian pay TV pirates, went horribly wrong. 'By October 25 Oliver had been in Toronto four days and had programmed a swag of pirate cards, using a program he had ripped off another pirate hack. And he had been paid a lot of money. That evening, he met with two piracy dealers in a car and programmed a few cards for them with his portable programmer box, to demonstrate that it worked. The following night Oliver received a call from a friend in London, a partner in his old piracy ring, who was sleeping with a woman who worked for Federal Express. 'He told me, these guys [from the previous night] sent a parcel to Larry Rissler,' Oliver recalls. Rissler was a former FBI agent who headed the Office of Signal Integrity—the operational security division—of DirecTV, and he had been hunting Oliver for some time. One of the dealers Oliver had met was a Rissler informant and he had despatched a re-programmed smartcard by FedEx to his boss. The parcel would be with Rissler early the next morning—if it wasn't already there.' The story reads like some perverse blend of James Bond and the Pink Panther. It is just amazing." -
Riot Breaks Out At Foxconn
Presto Vivace writes with news (as reported by Engadget) of a riot at Foxconn's Taiyuan plant, reportedly over guards beating up a worker, and writes "Something is going on at Foxconn. Do any Slashdotters know of a good source for news about Chinese labor disputes?" Reports of the riot are also at Reuters, TUAW, and CNBC, to name a few. -
No Smiles At NJ Motor Vehicle Commission
Reader Presto Vivace blesses us with news that the state of New Jersey "has banned motorists from making big smiles [for their license pictures] because such expressions don't work with facial recognition software." Now that passports are by decree grim and glasses-free, I'm expecting the next phase to involve the banning of facial hair, lips, and any hair that blocks the ears. -
Election Tech: In Canada, They Actually Count the Votes
Presto Vivace writes with this outline of what voting can look like while remaining countable and anonymous — and how it does look north of the U.S. border. "In Canada, they use hand-marked paper ballots, hand counted in public. Among other things, that process means that we can actually be sure who won. And if the elections of 2000 and 2008 are any guide, and the race stays as close as the pollsters sat it is, we might, on Wednesday, November 7, not be sure who won." Any Canadians among our readers who want to comment on this?" -
News Corp/NDS Forces DocumentCloud To Take Down Emails
Presto Vivace writes "When the Australian Financial Review published its series on News Corp's pay TV pirates, it asked DocumentCloud to host the internal NDS emails which documented the allegations. Last week DocumentCloud was forced to take down the emails when NDS threatened legal action and the Financial Review declined to indemnify it. The Financial Review reports that: 'DocumentCloud is a free service operated by journalism organization Investigative Reporters and Editors at the University of Missouri. It aims to enable newspapers, websites and broadcasters to host documents supporting investigative reports. The website uses open source – or community developed – technologies to scan and index information, allowing users to quickly search hundreds or even thousands of pages for references to people, places, dates,company names and key terms.' The NDS emails are available as zip files at the Financial Review's server. Because DocumentCloud uses open source software, 'any news organization — or anyone else — is free to use DocumentCloud's code to build its own hosted version, on its own secure server, with many of the same capabilities, Aron Pilhofer, DocumentCloud's co-founder told me. Pilhofer, who is also interactive news editor at The New York Times, said that provides a little bit of breathing room for news organizations whose lawyers may be wary of exposing newspapers to risk through partnering with a third-party.'" -
Murdoch Faces Allegations of Sabotage
Presto Vivace writes "Neil Chenoweth, of the Australian Financial Review, reports that the BBC program Panorama is making new allegations against News Corp of serious misconduct. This time it involves the NDS division of News Corp, which makes conditional access cards for pay TV. It seems that NDS also ran a sabotage operation, hiring pirates to crack the cards of rival companies and posting the code on The House of Ill Compute (thoic.com), a web site hosted by NDS. 'ITV Digital collapsed in March 2002 with losses of more than £1 billion, overwhelmed by mass piracy, as well as technical restrictions and expensive sports contracts. Its collapse left Murdoch-controlled BSkyB the dominant pay TV provider in the UK.' Chenoweth reports that James Murdoch has been an advocate for tougher penalties for pirates, 'These are property rights, these are basic property rights,' he said. 'There is no difference from going into a store and stealing a packet of Pringles or a handbag, and stealing something online. Right?'" -
Amateur UAV Pilot Exposes Texas River of Blood
Presto Vivace writes "Carlton Purvis of Security Management News reports that a tip from an amateur UAV enthusiast 'is what led Texas authorities to open a major criminal investigation into the waste practices of a Dallas meat packing plant.' The photo shows a river of blood." -
Data Miners Scraping Away Our Privacy
Presto Vivace writes "Twig, writing for Corrente, reports on data scrapers. They are not looking for passwords and such; scrapers are looking at blogs and forums searching for material relevant to their corporate clients. We are assured that the information is 'anonymized' to protect the identities of forum participants. However, a tool called PeekYou permits users to connect online names with real world identities. No worries, though — if you have a week to spare, you can opt-out of some of the larger data banks." -
White House Unveils Plans For "Trusted Identities In Cyberspace"
Presto Vivace writes with news that the Obama administration's cyber-security coordinater, Howard Schmidt, yesterday unveiled a national plan for "trusted" online identities. Schmidt wrote, "The NSTIC, which is in response to one of the near term action items in the President’s Cyberspace Policy Review, calls for the creation of an online environment, or an Identity Ecosystem as we refer to it in the strategy, where individuals and organizations can complete online transactions with confidence, trusting the identities of each other and the identities of the infrastructure that the transaction runs on. For example, no longer should individuals have to remember an ever-expanding and potentially insecure list of usernames and passwords to login into various online services. Through the strategy we seek to enable a future where individuals can voluntarily choose to obtain a secure, interoperable, and privacy-enhancing credential (e.g., a smart identity card, a digital certificate on their cell phone, etc.) from a variety of service providers — both public and private — to authenticate themselves online for different types of transactions (e.g., online banking, accessing electronic health records, sending email, etc.)." You can read the full draft of the plan (PDF), and the White House is seeking public comments on it as well. -
Verizon Makes Offering Service Blocks a Fireable Offense
Presto Vivace sends in a report from David Pogue at the New York Times, who learned from a Verizon customer service representative that the company has implemented a policy of punishing employees who suggest certain service blocks to customers looking to avoid unwanted or accidental fees. According to the representative, offering (for example) a web access block or premium SMS block without the customer asking for it can now lead to a reprimand or outright termination. The CSRs have also been directed to avoid issuing credits for such charges. "Essentially, we are to upsell customers on the $9.99 25mb/month or $29.99 unlimited packages for customers. Customers are not to be credited for charges unless they ask for the credit. And in cases such as data or premium SMS, where the occurrences may have gone months without the consumer noticing, only an initial credit can be issued." -
RIAA Wants Limits On Net Neutrality So ISPs Can Police File Sharing
Presto Vivace writes "Reporting for Computer World, Grant Gross writes that the RIAA is asking the FCC not to make the net neutrality rules so strict that they 'would limit broadband providers' [flexibility] to "address" illegal online file sharing.' It seems the RIAA is unclear on the concept of the Fourth Amendment. 'The FCC should not only avoid rules prohibiting ISPs from blocking illegal file trading, but it should actively encourage ISPs to do so, the RIAA said. ... Other groups called on the FCC to stay out of the copyright enforcement business. If ISPs are required to check for copyright infringement, they could interfere with legal online activities, said six digital rights and business groups, including Public Knowledge, the Consumer Electronics Association and the Electronic Frontier Foundation.'" -
New York MTA Asserts Copyright Over Schedule
Presto Vivace writes "Greater Greater Washington reports that 'The New York Metropolitan Transit Authority's lawyers are going after a local blogger, and attempting to block an iPhone application showing Metro-North railroad schedules. The blog StationStops writes about Metro-North Commuter Railroad service north of New York City, and often criticizes its operations. Its creator, Chris Schoenfeld, also created an iPhone application to give Metro-North riders schedule information. Now the MTA is insisting he pay them to license the data, and at one point even accused the site of pretending to be an official MTA site.' I can't believe that this the MTA's actions are going to go over well with the public." -
Does Your Vendor Issue Gag Orders?
Presto Vivace writes to tell us that CIO has an interesting article about customer "gag orders" that some ERP vendors are trying to impose contractually. "The effect: customers will be prevented from working with peers and others in the software company's "ecosystem" to help with technical issues or compare pricing options. 'In addition,' Wang adds, 'the customer now lacks the proper checks and balances in pressuring a vendor to deliver on promised capabilities or address severe security issues, and cannot go to the media as a last resort, if needed.'" What other questionable practices (and potential solutions) have others had to work with? -
NASA Patents To Be Auctioned
Presto Vivace writes to tell us that as a continuing push to commercialize NASA-funded technology a group of 25 NASA patents will be auctioned off this coming October. "The sale, which will include rights to signal processing, GPS for spacecraft and sensor technologies, is the first auction under a partnership announced earlier this month between Goddard's Innovative Partnerships Program (IPP) and Ocean Tomo Federal Services LLC. Ocean Tomo provides a marketplace for intellectual property, which NASA wants to leverage in commercializing its technology."