The Beast of Brussels

'No nickname' Ian writes "If you live in Europe you should definitely read this story about a government supercomputer. It's written by Andy McCue from silicon.com and entitled: IT Myths: Does the 'Beast of Brussels' know everything about us? Basically, in Europe there are rumours of an EU-owned super-computer which stores and process information on every European citizen. The piece debunks the rumour and finds out its roots are actually in a work of fiction - but there is some interesting comment from privacy activists who suggest it may not be too wide of the mark. Simon Davis of Privacy International goes so far as to suggest such computer may have existed - if perhaps not on the same 'three storey-high' magnitude."

How could this story be believed?

[James+A.+A.+Joyce]

In what respect would static data regarding the citizens of Europe be processed continuously? Why would a supercomputer be needed? Is there that much data? How much data would be kept on citizens if the rumour were true? How come it hasn't been exposed? And so on and so forth. The rumour is so vague I'm surprised that anybody would have genuinely believed it on its own 'merit'. It's quite obviously wrong from even a cursory thought about some of its implications; the EU would never get away with such rampant privacy violations.

Re:How could this story be believed?

[Theovon]

Today, with the technology we have, it might actually be possible. In cities around the world, cameras snap pictures of speeders' license plates, and they are automatically mailed speeding tickets. More information could be monitored by numerous distributed computer systems. It's all certainly POSSIBLE.

But that doesn't mean it's actually happening.

Besides, it would take as many people as are being monitored to monitor the data in order to intelligently get anything useful out of the morass of raw data. So, while it certainly could be processed to some extent and stored, it couldn't be used for a whole lot.

Re:How could this story be believed?

[GammaTau]

Today, with the technology we have, it might actually be possible. [...] More information could be monitored by numerous distributed computer systems. It's all certainly POSSIBLE.

What STASI did in East Germany was a lot worse than that. And it was not only possible, it was real.

When people read books like 1984, they often forget that it was criticism aimed at the an existing system and its possible outcomes.

Re:How could this story be believed?

[Frymaster]

And it was not only possible, it was real.

forget staasi. the dod and darpa in the u.s. o' a is working on a total tracking system to track, record and analyze everything about the monitored individual - phone conversations, physical movement, surfing, purchase, even vital signs. it's the "lifelog" project (reference link is here).

of course darpa/dod is saying it's only to be used on people who consent to being monitored.... but then again, j edgar hoover once said the fbi would never use phone taps. administrations and policies change y'know. so, skepticism is warranted.

the only plus side to this is that the software is written by microsoft... so you may have the option to live privately during reboots.

Re:How could this story be believed?

[Lars+T.]

Well, it has happened in the EU - and the US (specifically the NSA and CIA) did it.

Hmm

[Dachannien]

They should get Echelon and the Beast of Brussels networked together.

You know, kinda like this.

Damn.

[Synic]

I thought it said the *breast* of Brussels... how disappointing...

I love that kind of stuff...

[bersl2]

I downloaded a movie about a "beast" of Brussels---oh, wait... it was Amsterdam. Never mind...

Falling on it's own improbability

[WegianWarrior]

Invisible barcodes tattoed on our foreheads? Beeing read by lasers as we shop groceries? And on every single citizen of the world / europe?

It don't take much to debunk a myth like that, it falls flat on it's face from the sheer impossiblity of a) managing to register and tattoing everyone without someone noticing, b) actually correlating all the data, and c) getting usefull information out. In short, the computer - espesially if it was based on the avilable technology in the early 70's - wouldn't been able to coope with the sheer amount of raw data.

I'm sure it's a bureaucrats wet dream to know everything about everyone, but it is beyond the realm of the possible. In order to believe this myth in the first place, you probaly has to be among those who wear tinfoilhats to stop the goverment from spying on you with rays... and if you are, nothing can change your mind on this, or convince you that man has walked on the moon.

News for nerds? Not really. Stuff that matters? Not to me at any rate. Something that made me smile a sunday morning? Sure did, and I needed that.

Working with the EC

[Osrin]

I've done a lot of work with the EC over the last 10 years or so... the existence of the "beast of Brussels" would be a surprise for many reasons, not least of which several people would have had to have reached consensus to build the thing.

Totally impossible.

Well i live in Europe (Belgium)...

[Interfacer]

and most people - including me - think nothing of it. in Belgium it is mandatory for us to carry an official ID card (no library card or drivers license. a real ID card).

we need to show that to open a bank account, a library card, a rent-a-video store,... well basically everywhere.

for health care we have a unique number in a national database, and since a few months everyone who has a mortgage is in another database.

We don't care. i mean why should't the governement know where you live, or which bank accounts i have.
the only reason i can come up with is if you are a fraudster.

for example tracking people with a mortgage on a national level is done so that not-so-bright people do not get a second mortgage if they already are at their financial limit with the first one.

the most important reason i don't mind is that we have a law that applies to any place where personal information is stored about you.
basically the law says that you have to get total access to all information about you, and that if it is incorrect the keeper of that information needs to change it.
i know from several examples that this law is used and that is works ok.

at least we can review and cghange information about ourselves.

kind regards,
Interfacer.

Re:Well i live in Europe (Belgium)...

Well, I live in Belgium too, and I do care. Belgium is full with people in local and national politics who think they are technocrats who use IT for good purposes, and then turn around and do the worst things without realizing the implications to their constituents, or to the IT market/industry/whatever.

Banksys/proton (a private company, being the only one that has the full picture of money flowing nation-wide), the new ID-card with your own personal certificate on-a-chip (nevermind that it's done by a private company - sun - and that the keys are pre-generated, so any of the intermediaries can escrow it), the e-voting problems, the e-tax return with the associated delays, the list goes on and on. Fuckups ranging from trivial to monumental, but all fuckups nonetheless.

I've just got the impression that everyone in this country likes to think they're 'down' with technology, but they're all basically clueless. Half of the things they do are solutions to problems that never existed, the other half, really bad implementations.

Sad thing is: I think Belgium is at least trying to do the right thing, I've heard stories that leave me far more cynical about other countries.

To get more to the point (sorry for all the ranting): I agree with you that an ID card is not necessarily a bad thing. But I'd like to avoid having data about me being gathered and correlated unnecessarily. If you have a ton of data on real people, and analyse that data for certain patterns, you're bound to have a statically significant number of false positives, which will have consequences for the same real people.

And I really hate the remark you've given: "the only reason i can come up with is if you are a fraudster". I don't want to be put in the position where I have to justify my (legal) behaviour, just because otherwise it might seem that I'm hiding something (you're using encryption? you must be a drug dealer, tax evader, child molester, ...)

Yea, maybe I'm a bit paranoid, but it's far easier to have your rights slowly eroded, than it is to regain them.

Re:Well i live in Europe (Belgium)...

[Yokaze]

> but I'd like to avoid having data about me being gathered and correlated unnecessarily.

Well, that's is why there is the European Union Privacy Directive, which regulates what kind of data may be stored and processed, and what other rights you have on your data.
Here is a summary from the US point of view.

Re:Well i live in Europe (Belgium)...

You've rather missed the point, I'm afraid.

Essentially, you're saying that it's okay for him to trust his government because it's not broken. But what if today he trusts his government, tomorrow he gives away a bunch of rights because he trusts his government, and the next day his government is suddenly broken? What happens the day after that? The answer is he gets fucked in the ass, that's what.

The point here is that you don't give away your power and your rights to a government just because you trust it or because you're happy or because the economy is good or the economy is bad or because there are terrorists out there and you want your government to protect you. You NEVER give these things away because it may take the blood of your sons and daughters to get them back. So what if you government doesn't fuck you today? Since when has today been a promise of tomorrow?

I personaly don't mind if you sell your rights and freedoms for a pack of chewing gum. The problem is you want to give up my rights too.

I will sell my rights and freedoms more dearly (expensively) than you are willing to sell yours. You can sell yours for safety, or health care, or whatever you choose.

The cost of my rights and freedoms is blood. The only question is whose blood.

Re:Well i live in Europe (Belgium)...

[Omestes]

It really is too bad you posted this A.C., since you DO bring up a valid point.

What you said is a serious dillema, I think that you have to go with the national vibe, if you have a good liberal government, with a precendent of being virtuous to the people, think I'm guessing that you just have to trust them. Some governments have a solid history of being good guys, and there is no option but to trust them. Constant paranoia, no matter how justified, is too stressful in a state that does not warrant it.

Americans have a reasons (some justified, some not) to be paranoid. And American culture is based on a healthy sense of paranoia, it is just part of the country. Woven into the fabric, if you will. And please mind, we're not talking of terrorism, or economy, we're talking of pure practicality, to tell the truth a national ID makes sense, it has less possibility of fraud than giving out your social (though the risk is still there). I personally wouldn't really be that upset if America issued a national card, different thanyour social/drivers liscence, being that these cards are essencially ill-planned national IDs already.

Please mind that I am very proud to be an American, even with all its nasty faults (and their multiplying like rabbits), and I am scared of my government. But this does NOT make Americans typical of the rest of the world. And most of the time I happen to agree with the EU, and not my home country.

But, back OT, the actual myth of a giant computer tracking everything is scary, to everyone I hope. Since that is a MASSIVE violation of personal freedom/privacy. But I was only posting about Belgiums national ID, not big brother. While I'm sure America would LOVE big brother computers, I doubt most of the governments of the world would actually stand up for it.

Privacy is key to freedom

[nuntius]

You ask why the government shouldn't have access to this info. I ask why they should.

When designing a secure system, you try to minimize priviledges - if someone doesn't need access, then it is denied to them.

Likewise we need to be ever vigilant in protecting our freedom. If someone (e.g. the government) doesn't need knowledge or power, then we shouldn't let them have it.

In your example, you mention that the government now can decide when someone has exceed their financial limits. Why is that a good thing? Let the lenders sort it out and take the hit if a borrower defaults.

The more information others have about you, the more subtly they can manipulate you. Detailed information is usually used to take advantage of someone. That's why stalking is illegal in many countries. You'd find it creepy if your neighbor knew this information; why doesn't it bother you that hundreds of government beaurocrats know this for an entire country?

Re:Shortest book I ever read

[bdeclerc]

Oh, shut up. You're so full of it... Those little Belgian War Heroes managed to keep the German army (from a country 10 times bigger) from capturing all of Belgium in the first World War, and in the second World War, they managed to resist the German Blitzkrieg for all of 18 days, where the Germans had expected to be at the North-Sea coast in only two or three days...

In both cases, you 'mericans only showed up a couple of years later...

By the way, have they found any WMD's yet in Iraq? Didn't think so...

Re:Gee....

[slantyyz]

Not as disappointed as me. I thought this thread was going to be about Jean Claude Van Damme's latest effort!

Beastly Conspiracy Theory

[JWSmythe]

This sounds like great material for every conspiracy theorist to work with..

It's perfectly possible, and concievable, but the question is, does it really exist?

I saw a few comments on here. So what if someone sees your license plate? Lets go through an easy path for the feds to follow. I'm basing this off of the US. I'm sure similiar stuff applies in Europe.

Your car is spotted in a particular area..

1) Run the plate. Now they have your name, address, SS#, age, height, weight, hair and eye color, and your history of driving.

2) Check the credit bureau's and Chex Systems. Now they know all your bank accounts, credit cards, etc, etc.. Even if your bank doesn't exactly report that you have an account, you'll show up when they checked your credit (or with Chex).

3) Have you ever bought groceries or gas with your ATM/Debit card or credit cards? Do you use the grocery store's "discount" cards? Even if you bought your groceries with cash, if you used your discount card it's easy enough to track your purchases.

So, was the driver of the car you? Sure. You bought gas a few miles away on your credit card.

*IF* (that's a big if) they have a tracking system put together to keep all this information in the same place, it'd be easy to track any single person. Even if the police were interested in tracking an individual, it wouldn't be very hard.

Think about what you did today. Using the simple outline I gave today, they know just about everything you did.

I'm out of town. So, they know when I bought my plane tickets online from what IP, which is tracable back to my home. My home Internet provider would give up my info in a heart beat, including what checking account I pay my bill with. They know when I got on the plane, who I was with, and were I got off. Checking either with the rental car places at the airport or my credit cards, they know what car I'm driving. They know I went to a department store and bought kid toys and party supplies(for a kids birthday), a grocery store and bought a good bit of beer (for myself).

Based on that, they could easily know where I am. I didn't get a hotel, and I haven't purchased gas yet, I'm probably still in the area, so who do I know in the area (phone records, previous contacts). They could go as far as to ask my cell phone provider what tower is my closest contact. That'll narrow me down to 4 miles.

Based on that, they probably know what house or apartment I'm in, and it wouldn't take much creativity to figure out what's here (phones, Internet).

So (oh my goodness), the big brother system knows what house I'm in, that I'm drinking beer and reading/writing on Slashdot. If they're really good, they can see two SSH connections back to one of my servers too.

4:30am, he's drinking beer, working on servers, and on /.

But you have to ask yourself, why would they track me? They wouldn't. I'm rather boring. No warrants, not a suspect in anything (right now).

If the big brother system was this good, it may actually be a good thing. Got someone with a warrant? Wait til they show up anywhere, and voila, send the cops to pick them up. *AND* if say something happens in my home city (where I'm not at right now), it would be obvious that it wasn't me.

Ybor City, in Tampa Florida, put together a more difficult system. It was facial recognition, where it would check against NCIC and try to guess pedestrians with warrants. From what I've read in the press, it failed miserably. Why hope that someone will walk past a camera and hope to get a cop there before he gets away? You could wait for him to go grocery shopping, and have a patrol car show up while he's still loading the car.

Would a big brother system be good? Probably not. The detectives now are overworked, underpaid, and don't have the time to make a few phone calls (outlines in the first few steps) to track dow

Actually it does exist . . .

[OverlordQ]

. . . but it was built by some hyperintelligent pandimensional beings (whose physical manifestation in their own pandimensional universe is not dissimilar to our own). Downside, is it's busy calculating 'The Answer', whatever that is . .

Statistics Denmark

[Guanix]

In Denmark we've had a civil registration system for hundreds of years, and in the 1960's it became centralized. A wide range of information about births, deaths, marriages, divorces, jobs, education, and other information that the government collects is referenced by the CPR number, which is a national ID number for all Danish residents.

These databases are controlled by a fairly strong Data Protection Act which prohibits cross-referencing different databases using the CPR number, except in special circumstances, and any such special permit is always made public.

There is, however, one exception: the Statistical Bureau. They have access to most public databases and are allowed to cross-reference them in order to compile statistics. We don't have a census in Denmark because all the information is already available.

This is a very powerful tool for researchers. They can ask a question like "How many males who graduated from this particular primary school subsequently went on to be convicted of a serious crime?", and have it answered by the Statistical Bureau within a couple of weeks. They simply have to type in an SQL query. It's also much easier to find relationships between schools, workplaces and illnesses like cancer. They can also ask questions such as "How many people whose parents were divorced will go on to have a divorce?" with a simple SQL query, instead of the extensive surveys that are required in other countries.

The RISKS, on the other hand, are obvious.

Myth and reality

[Xenna]

Well, with today's technology the government/EU certainly could collect a lot of information about it's citizens.

I had a funny experience with a Dutch central government agency that is supposed to do all wiretapping for the police. They contacted me because they wanted to tap one of our customer's e-mail domains on tax fraud suspicions.

It took them two weeks to figure out who was handling the mail for the suspicious company's domain (us). Then they wanted us to forward all mail to a mailbox at a free mail provider. This mailbox almost immediately filled up and started sending 'mailbox full' messages to the original senders.

Big brother has a lot to learn...

X.

(BTW: I changed the sender addresses as a precaution ;-)