Slashdot Mirror
EU Investigates Phorm's UK ISP Advertising System
MJackson writes "The European Commission has opened an infringement proceeding against the UK after a series of complaints by Internet users, and extensive communication with UK authorities, about the use of Phorm's behavioural advertising system, which uses Deep Packet Inspection (DPI) technology, by internet service providers. Phorm works with UK ISPs to monitor what websites you visit for use in targeted advertising campaigns, though its methods have raised more than a few fears about invasions of privacy. Similar services in the USA have caused an equal level of controversy."
Isn't that almost what google do?
Don't get me wrong, I am completely against Phorm's practices. But it seems like it's completely ok for the government and the EU to question companies and individuals about this kind of practice. But when it comes to individuals asking the government about wiretapping etc. it's a completely different thing?
I'm sorry, I know the government is just trying to protect our kids from those drug-dealing maffia-involved sexual predator terrorists.
The BBC has potted history of Phorm & BT's actions in the UK. http://news.bbc.co.uk/1/hi/technology/7619297.stm http://news.bbc.co.uk/1/hi/technology/7959099.stm http://news.bbc.co.uk/1/hi/technology/7988154.stm http://news.bbc.co.uk/1/hi/technology/7998009.stm and on top of that my ISP has stated that they will not use Phorm or anything Phorm like.
I'm still reading all the essays Canada's deep packet inspection education site, but this one seems very topical:
Objecting to Phorm
Bonus - Phorm's 'essay' submission (but more like marketing drivel):
Phorm: A New Paradigm in Internet Advertising
Allowing Phorm to do their thing has awful consequences. We're already in the process of having every phone call, text and email logged in a massive "just looking for terrorists, nothing to worry about" database.
Once a private company is able to execute DPI without your explicit consent, purely for profit, what's to stop the government from doing the same "for everyone's protection"? Surely that's a more worthy abuse of your right to privacy...?
Slippery slope? We're about to hit bottom, ladies & gentlemen.
Meta will eat itself
Fearing invasions of privacy is dated 1948 when Orwell wrote his most famous book. There are even other examples before. Is it now not too late? Otherwise we should roll back Google, Facebook and a lot of other daily friends.
The UK government are with the whipped ISP's collusion, intercepting all websites anyone visits for their log files to prove you're a "terrorist" (by whatever convenient definition they used for terrorist yesterday or decided on today or tomorrow). Phorm are intercepting all your web traffic and serving up different advertising content.
How long before the two join forces and your web pages you looked for are re-written on the fly by the government for more favourable coverage, and to kill off opposition?
The EU is really the EUSSR / Moscow 2.0. The EU are too asking European Internet service providers to log everything. Europe is not free, they just pretend they are fighting for the consumer of the UK, the people with ISP's that have or will use Phorm, but they are all in collusion with each other to snuff out opposition.
The Internet is under attack because of the power of people who can search for what they want, and bypass the whipped and paid for traditional media serving up biased news (BBC bias springs to mind).
Take Nobody's Word For It.
what about taking counter measures like producing senseless traffic? most people (at least the kind of ppl i know) do have a 6-16mbit connection. it shouldnt be too hard to script a spider that just gets page after page from random servers. or to avoid punishing innocent hosters with useless traffic just let it get pages from the isps using phorm.
The INTERNET isn't private. It is PUBLIC. What you do on the internet, what sites you go to, what you look at, what you listen to, what you do, what information you send, what you receive is ALL PUBLIC.
You want privacy? Encrypt everything you don't want anyone else to see. And you better trust the person on the other end to keep your info private, and good luck with that.
Agent K: A *person* is smart. People are dumb, stupid, panicky animals, and you know it.
The big difference between Phorm and Google is Google has consent of the WEB SITES.
Neither really have "user" consent, but Google will only track you on pages which are either hosted by Google itself or derive content from Google (adwords, analytics), which specifically excludes porn etc.
Thus although both have the same objective, they have vastly different mechanisms and Google does have one-party consent, vs Phorm's no-party consent.
Test your net with Netalyzr
The answer is simple really... if your ISP is involved with Phorm then move to one that isn't. The more people that leave the ISP will [hopefully] make them reconsider their involement with Phorm.
All alcoholics quit. Some while they are still alive.
Quite some time ago, i wrote to my local MP regarding this. Specifically, I asked him to back an early day motion opposing Phorm (The Register were running the details at the time).
He wrote back saying that many people didn't realise exactly how the system worked and that supporting this motion would do no real good, but that instead he would question the Cabinet directly. As a result, some time later I had a reply from the Cabinet Minister under whose remit this fell.
And that reply was awful.
Essentially it was Phorm's press release. Not even regurgitated - the documents were straight from Phorm. There was clearly no understanding from the Minister involved what was actually being proposed, and the whole attitude smacked of "there there little one, look - the nice company here has promised they're not doing anything wrong". They'd clearly never even really considered it properly. The Information Commission too was at that time pushing the notion nothing was wrong, a stance they've clearly had to back-pedal on in the face of the E.U. pressure.
Next time I think I'll cut out the middle man and go to the Commission directly. Says nothing good about the state of our democracy, does it? An unelected quango in the Commission does the investigative work, whereas the actual democratic representatives completely ignore voter's enquiries and fob them off with press releases.
Mind you, well done to my local MP for taking the correct action in getting me a response from literally the highest level available on the subject in the UK.
Cheers,
Ian
Nobody likes advertising. The world would be a better place with out it, completely. No more billboards cluttering up highways and ghetto streets. No more web banners for porn on children's sites.
Is there anyone that doesn't agree? OK, except people getting paid for advertising.
So it's settled then. No more advertising and we'll all be happy.
If this ISP is doing what it does with advertising injection, are they now officially liable for any illegal content sent through it? I know it's not in the USA, but it seems to me if you have your hand in the content delivery(web data, and so forth), the ISP could be sued for pirated mp3s, illegal content, etc.
I'm extremely concerned by Phorm.
Effectively it gives the ISP the ability to remove the adverts that fund 60% of our costs and replace them with adverts for which they would receive the entire revenue stream.
My site is funded by adverts (60%) merchandise (30%) and donations (10%).
I'm fairly sure that the community would step up and purchase more stuff and donate more, but I don't think it's realistic that this could be sustained, whereas the advertising revenue is reasonably constant.
I believe that if Phorm becomes ubiquitous that I would have to question seriously how to find the website, and would probably have to remove all adverts and to seek to have the costs covered exclusively through other means. As I'm unsure of the feasibility of this, I would have to say that in my case the loss of that revenue would threaten my ability to continue running the site, especially under the risk of redundancy in the near/mid future.
I've already implemented the Phorm opt-out cookies, and written to my local MP (who couldn't care less from the generic response I got), so it's great to see the EU step up where the UK seems to have failed.
Here we go again:
Unlimited connections on static IPs. Secure VPN exit in Switzerland. No download or upload limits. No content filtering. No port blocking. No packet shaping. No transparent web caches. No fair usage policy. No Phorm. No IWF. No censorship. No small print. No call centres. No lock in period.
I'll get me coat.
Super Awesome Broadband
You are arguing a false dichotomy here. While it may be true to say that the Internet is not private, it is not public either. Public means that anyone can gain access to your Internet activity. I cannot see what websites you visit -- only your ISP can see that and a subset of your Internet activity can be seen by other entities that carry the packets to/from the websites you visit.
As has been said before, the nearest real life equivalent is sending postcards, and I don't think people consider postcards to be public -- just not private.
The real "Libtards" are the Libertarians!
Actually, you can't without serious browser hackery:
Its not google recording your searches that are your problem, its that EVERY page with Google Analytics or AdWords or Doublclick on it tells google what you are viewing.
Test your net with Netalyzr
Learn to use your computer software. Use a browser such as Firefox or SeaMonkey that supports an ad blocker extension, selective cookie blocking and accepting temporary session cookies. Clear out cookies regularly. If your Internet service is ADSL or similar with shared IP addresses, reset the modem periodically to get another IP address assigned to your account. If everybody were to do this, it would turn Phorm's database into a pile of garbage and they'd stop doing it.
If you are so concerned, do yourself and your users a favour and switch to https. All website owners should do it.
If only Phorm really replaced website owners ads (it does not), then they would be much more willing to switch to https. As it is now the hurt is only for the users so there is not enough incentive for the website owners to make the switch.
A big day for privacy in the UK. Here is NoDPI's response to the EU Commission's statement : https://nodpi.org/2009/04/14/eu-commission-starts-legal-action-against-uk-gov-over-phorm/
My browsing habits have value - whether it is Google tracking my searches or Tesco tracking my transactions with a loyalty card.
However, I think Google gives me great value in exchange for my browsing habits: a fatastic search engine and the best web based email browser. Tesco send me money off coupons, and I can collect points for even better stuff.
Phorm steals my browsing habits and offers me nothing. If they want to make money from my browsing habits, which have value to advertisers, then I want a slice of the pie. Intercepting my web traffic for personal gain seems immoral and unethical.
Ian Tomlinson was pushed to the ground by a police officer after strolling into the scene of the biggest violent protest in recent London history. He died of a pre-existing heart condition soon after, likely caused by the stress of the incident - this was tragic, and the officer involved should feel guilt at his actions.
However, where the hell do you get that he was "beaten"?! It helps no one to muddy the facts.
I was going to moan about the description of De Menezes death as "murder" based on my understanding of the circumstances (terror suspect running from police on day of bombing), but I've just read Wikipedia's coverage of the evidence. Bloody hell, that really was a scary cock-up, even if it's difficult to hold one individual culpable.