US Government: You Don't Own Your Cloud Data So We Can Access It At Any Time

← Back to Stories (view on slashdot.org)

US Government: You Don't Own Your Cloud Data So We Can Access It At Any Time

Posted by Soulskill on Friday November 2, 2012 @05:40AM from the you-can-trust-us dept.

New submitter jest3r writes "On Tuesday the EFF filed a brief proposing a process for the Court in the Megaupload case to hold the government accountable for the actions it took (and failed to take) when it shut down Megaupload's service and denied third parties access to their property. Many businesses used Megaupload's cloud service to store and share files not related to piracy. The government is calling for a long, drawn-out process that would require individuals or small companies to travel to courts far away and engage in multiple hearings just to get their own property back. Additionally, the government's argument that you lose all your property rights by storing your data on the cloud could apply to Amazon's S3 or Google Apps or Apple iCloud services as well (see page 4 of their filing)."

49 of 531 comments (clear)

Min score:

Reason:

Sort:

So.... by roc97007 · 2012-11-02 05:42 · Score: 4, Insightful

Anyone surprised?

--
Oliver's law of assumed responsibility: If you're seen fixing it, you will be blamed for breaking it.
1. Re:So.... by TheGratefulNet · 2012-11-02 05:43 · Score: 5, Insightful
  
  hey, what's that pressure I feel?
  its the pressure of a boot, stomping on your face. pressing down, always pressing down.
  
  --
  
  --
  "It is now safe to switch off your computer."
2. Re:So.... by oh_my_080980980 · 2012-11-02 05:51 · Score: 4, Insightful
  
  I believe warrantless wire taping started under Bush....*eye roll*
3. Re:So.... by mcgrew · 2012-11-02 05:59 · Score: 5, Insightful
  
  Were the Rolling Stones singing to the US Government? HEY, YOU, GET OFF OF MY CLOUD!
  One more reason to maintain your own data and backups. Like you say, this shouldn't have surprised anyone.
  
  --
  Free Martian Whores!
4. Re:So.... by Vaphell · 2012-11-02 06:01 · Score: 5, Informative
  
  ... and Obama administration went into overdrive with it.
  http://1202013.blogspot.com/2012/09/as-debates-approach.html
5. Re:So.... by Anonymous Coward · 2012-11-02 06:01 · Score: 5, Funny
  
  I believe warrantless wire taping started under Bush....*eye roll*
  What about Hoover? (The FBI guy, not the engineer.) He _started_ the whole surveillance of government subjects thing.
  Of course not, you !(poster.political_alignment) crony. Open your eyes, man! It was clearly getPolitician(!(poster.political_alignment))'s work!
6. Re:So.... by Anonymous Coward · 2012-11-02 06:03 · Score: 5, Insightful
  
  Wonderful how that excuses the continued erosion of our civil rights. "Well Bush did it."
  What a great get out of jail card that is.
7. Re:So.... by Mitreya · 2012-11-02 06:14 · Score: 5, Insightful
  
  I believe warrantless wire taping started under Bush....*eye roll*
  But this is certainly the first one someone claims you lose your rights to data by placing it with an external providers
  I am sure that companies that provide storage lockers are watching this with interest. Next, on suspicion of drugs, seize the entire local U-Store branch... Or the entire contents of bank safebox room. And let the owners come forward and sue to recover if they can prove them own their stuff legally. (and imagine there was a car analogy somewhere in there)
8. Re:So.... by yt8znu35 · 2012-11-02 06:17 · Score: 4, Insightful
  
  It is utterly laughable to attribute this to the imaginary Obama totalitarianism put forth by the paranoid ultra right. DoJ started down this path long ago. Republicans pine for gov't snooping to stop "the terrorists," and Democrats believe in the power of government too much to disagree. Plus there is pointless worry about file sharing. Government snooping would increase substantially under Romney and would continue at at least the current pace under Obama. Government seeks to control. This will continue to get worse no matter which party is in charge. Americans value comfort, not freedom.
9. Re:So.... by Applekid · 2012-11-02 06:25 · Score: 5, Insightful
  
  I believe warrantless wire taping started under Bush....*eye roll*
  An excellent example! It did start under Bush. And Obama, plucky Senator from Illinois, railed against the program.
  Until he became president.
  Merely three days after being sworn in, the tune changed, article here, with citations 1 and 2:
  
  On January 23, 2009, the administration of President Barack Obama adopted the same position as his predecessor when it urged U.S. District Judge Vaughn Walker to set aside a ruling in Al-Haramain Islamic Foundation et al. v. Obama, et al. The Obama administration also sided with the former administration in its legal defense of July, 2008 legislation that immunized the nation's telecommunications companies from lawsuits accusing them of complicity in the eavesdropping program, according to testimony by Attorney General Eric Holder.
  AC's point stands pretty clear with this information, I think.
  
  --
  More Twoson than Cupertino
10. Re:So.... by Hes+Nikke · 2012-11-02 06:26 · Score: 4, Informative
  
  This will continue to get worse no matter which party is in charge
  
  You sound like someone who doesn't realize that there are other parties to choose from then the republicrats.
  http://www.lp.org/
  http://www.gp.org/
  http://www.aipca.org/
  Just 3 off the top of my head that are actively working against the interests of the republicrats. Only *YOU* can stop voting for the same old crap, and choose something different.
  
  --
  Don't call me back. Give me a call back. Bye. So yeah. But bye our, well, but alright we are on a shirt this chill.
11. Re:So.... by Applekid · 2012-11-02 06:27 · Score: 4, Insightful
  
  Kind of irrelevant to the point. The o.p. stated the justice department is out of control under obama ignoring what the justice department did under bush - warrantless wire tapping, water boarding, enemy combatant, suspending Habeas corpus, indefinite detention....the list goes on...
  How do you rectify ignoring one past administration (Hoover) and not ignoring another past administration (Bush)?
  The current Obama DoJ maintained the status quo, the sins of the fathers, by choice.
  
  --
  More Twoson than Cupertino
12. Re:So.... by whoever57 · 2012-11-02 06:33 · Score: 4, Interesting
  
  Or the entire contents of bank safebox room
  This actually happened in the UK. based on some very dubious statistics about the likely contents of the safeboxes.
  
  --
  The real "Libtards" are the Libertarians!
13. Re:So.... by roc97007 · 2012-11-02 06:40 · Score: 5, Insightful
  
  Which just goes to show, you can't grant power to government and confine it only to your own party. Typically, when the other party holds office, they inherit the power. Something to think about when your representatives grant far reaching power to *your* candidate.
  
  --
  Oliver's law of assumed responsibility: If you're seen fixing it, you will be blamed for breaking it.
14. Re:So.... by Artraze · 2012-11-02 06:45 · Score: 5, Insightful
  
  > That would be Romney... good luck there.
  At least luck is a factor. Obama has already proven he's more then willing to run with this crap, and that was in the first term when he'd theoretically be trying to stay enough on the good side of the populace to get reelected.
  > It's like leaving a guy that doesn't worship you enough for one that beats you black and blue every night.
  No, it's like leaving a guy that beats you black and blue every night for a guy that hung out with someone that used to beat you black and blue every night. I'm not going to pretend that Romney would be any better, but realistically given how willing Obama has been picking up where Bush left off, I can hardly consider 'Romney's going to be like Bush because he's from the same faction as Bush' as much of a reason to consider Obama over Romney.
15. Re:So.... by Mitreya · 2012-11-02 06:56 · Score: 5, Funny
  
  And Obama, plucky Senator from Illinois, railed against the program.
  Until he became president.
  Merely three days after being sworn in, the tune changed,
  
  I think the explanation is obvious
  There is a black book at the oval office that explains why the world will end if the people are not watched by a benign dictator that knows what's best. Obama read that manual right after being sworn in and was compelled to switch his position.
  Either that or Obama cynically lied to his supporters throughout his entire campaign.
16. Re:So.... by tattood · 2012-11-02 07:07 · Score: 5, Insightful
  
  Either that or Obama cynically lied to his supporters throughout his entire campaign.
  Isn't that just called running for office?
  
  --
  WTB [sig], PST!!!
17. Re:So.... by cdrguru · 2012-11-02 07:09 · Score: 4, Insightful
  
  The problem is that the major media outlets refuse to acknowledge the existence of other parties. They can hold a rally that 100 people show up for and no news outlet will even mention it. AP and Reuters will ignore it, even if they are handed a press release.
  Is it possible to engage a third party candidate in a debate of any sort with Republican or Democratic candidates? No.
  The major problem is that for the most part the parties have not managed to garner 5% of the vote and until that threshold is met they are deemed to be irrelevant. Part of the problem is they aren't going to get 5% of the vote without being publicized by the media so we have a chicken-and-egg problem.
  The last time there was a realistic third party Presidential candidate was in 1992 with Ross Perot. He did get more than 15% of the vote but the party he was fronting collapsed and has no candidates any longer. So the media's belief that these candidates are irrelevant keeps getting validated.
  In reality the only way out of this situation is for someone from say the Libertarian party to cross over and become the Republican candidate. If they were elected this would go a long way towards making these parties relevant. I think that is the only way they will achieve relevance. Certainly getting 3% (or less) of the vote isn't going to do it.
18. Re:So.... by roc97007 · 2012-11-02 07:20 · Score: 4, Funny
  
  Sssh! You'll spoil the surprise.
  
  --
  Oliver's law of assumed responsibility: If you're seen fixing it, you will be blamed for breaking it.
19. Re:So.... by RabidReindeer · 2012-11-02 07:27 · Score: 5, Insightful
  
  It was NOT all right for Bush to do it and it is NOT all right for Obama to do it. And it will NOT be all right for Romney to do it. Nor was it right for whatever clandestine degree Clinton, Bush Sr, His Holiness Reagan, Carter, Ford, Nixon, etc. etc. etc.
  Screw your petty little partisan sniping. Some of us want to be able to live in the country we say we are, not in the country we've become.
20. Re:So.... by sakshale · 2012-11-02 07:46 · Score: 4, Interesting
  
  Here is an analogy;
  I rent a locker at a local storage locker company.
  The guy with the locker next to mine, fills his with drugs ... and gets caught.
  Police put a crime scene tape around the entire facility and block my access to my stuff.
  Police want to verify that there isn't any drugs in my locker.
  What happens next?
  
  --
  For every problem there is a solution that is simple, obvious and wrong.
21. Re:So.... by whoever57 · 2012-11-02 08:09 · Score: 4, Informative
  
  Care to elaborate? Perhaps a link?
  
  For the Google impaired
  
  --
  The real "Libtards" are the Libertarians!
22. Re:So.... by TooMuchToDo · 2012-11-02 08:17 · Score: 4, Interesting
  
  Own the hardware and host it outside of the US.
  We already had the majority of our equipment in Europe. We're moving the last of our data and processes over the next 60 days from Chicago to Amsterdam.
23. Re:So.... by GSloop · 2012-11-02 08:42 · Score: 4, Insightful
  
  [sarcasm] [cynicism] [dispair]
  If Romney is pres, you can at least expect the Dems to wet their pants in horror over Romney's civil liberties abuses, just like they did with Bush.
  [/sarcasm] [/cynicism] [/dispair]
  Now, is that a better or worse situation than the current one, where Dems seem completely uninterested that a Democratic President is murdering citizens without any due process far from any "battlefield."
  I'm not sure I know - but it certainly throws a wet blanket on the "the Republicans are SO crazy" that electing Romney has to be worse.
  [You may dispute it's murder, but IMO, killing someone without due process and not on a battle-field is murder. There simply is no recognized legal basis for it, and unless it's recognized by law, one should consider it murder.]
  At least, if we could count on Dems cynically using the situation to maximize damage to Romney, and opposing, as they once did such civil liberties excesses, then it might actually be better. Perhaps not better for the reasons you'd have thought, but because of shameless cynicism.
  The downside? That wretched stew can't be good for the country.
  As I see it...we are so screwed, it can only be amusing, in a sick twisted way.
24. Re:So.... by Shoten · 2012-11-02 08:51 · Score: 5, Interesting
  
  Totally irrelevant. But just the same, also factually wrong, so I'll reply:
  Actually, no he didn't...not even close. You can go back a couple of decades to the Black Chamber, or even further back by centuries to Sir Walsingham. You could argue that Sun Tzu was a forerunner, but if I had to pick a single person to actually start the surveillance of citizens by government, I'd choose Walsingham. And you know what? He stopped a number of plots against Queen Elizabeth I that way, and it's really hard to argue that his methods were unnecessary or heavy-handed.
  
  --
  
  For your security, this post has been encrypted with ROT-13, twice.
Does this include backups. by Holi · 2012-11-02 05:43 · Score: 4, Insightful

Does this mean that my backups to Barracuda Networks cloud service are no longer mine? This would kill cloud services.

--
Sorry, teleporters just kill you and then make a copy. A perfect, soul-less copy.
1. Re:Does this include backups. by Anonymous Coward · 2012-11-02 05:50 · Score: 5, Informative
  
  Yes.
  The US gov has long held that your webmail doesn't belong to you either.
  The feds already have full access to your gmail or hotmail account, and everything in it.
gov just destroyed the cloud business by RichMan · 2012-11-02 05:44 · Score: 5, Insightful

Nice move government you just destroyed pretty much all of the cloud computing industry.
Huzzah.
1. Re:gov just destroyed the cloud business by Rob+the+Bold · 2012-11-02 05:50 · Score: 4, Insightful
  
  Nice move government you just destroyed pretty much all of the cloud computing industry.
  Huzzah.
  Yeah. Say you're a business relying on cloud storage/computing:
  1. Use cloud services
  2. Someone else also using cloud service suspected of doing something illegal.
  3. Service provider shut down/seized by feds.
  4. No profit.
  There's not even room for the ambiguity of a "???" in that sequence.
  
  --
  I am not a crackpot.
2. Re:gov just destroyed the cloud business by mlts · 2012-11-02 05:59 · Score: 4, Insightful
  
  Realistically, what might end up happening is that some startup gets off the ground whose sole function in life is to provide an in-house encryption appliance similar to a HSM. Data goes in to the module, encrypted data gets stored in the cloud. All keys are kept in a "physically secure" 1U rack module with a USB port in front so one can back up the keys stored in the device.
  Businesses will buy those encryption appliances, and IT goes on as normal.
3. Re:gov just destroyed the cloud business by X0563511 · 2012-11-02 06:07 · Score: 4, Insightful
  
  It wouldn't be such a problem if they would stop shutting the whole damn thing down whenever someone does something wrong. They don't need to do that. I'm surprised they haven't figured out they could get by without a lot of whining/protesting if they just stop using a bulldozer when a hammer is appropriate.
  
  --
  For large sets, this will be our guide even unto death, for the LORD will work for each type of data it is applied to...
4. Re:gov just destroyed the cloud business by Hatta · 2012-11-02 06:26 · Score: 5, Insightful
  
  Nonsense, there could hardly be a bigger stimulus. If you don't own your data when it's in the cloud, you can't be responsible for it. Just keep all your pirated material in the cloud and watch Amazon get sued for it.
  Wait, you mean you can still get sued for data hosted in the cloud? So it's my data when it's convenient for the government, and it's not my data when it's convenient for the government.
  
  --
  Give me Classic Slashdot or give me death!
5. Re:gov just destroyed the cloud business by X0563511 · 2012-11-02 06:28 · Score: 4, Insightful
  
  Then take an image, and bring it back up (with the suspect accounts suspended). There is no reason to take it all down for so long.
  
  --
  For large sets, this will be our guide even unto death, for the LORD will work for each type of data it is applied to...
Flipside by areusche · 2012-11-02 05:45 · Score: 5, Interesting

Does this mean that all of those copyrighted works I am hosting "in the cloud" are no longer the property of their respected copyright holders? I can see this being argued in all sorts of funny ways.
1. Re:Flipside by Baloroth · 2012-11-02 05:58 · Score: 5, Insightful
  
  Does this mean that all of those copyrighted works I am hosting "in the cloud" are no longer the property of their respected copyright holders? I can see this being argued in all sorts of funny ways.
  No no, see, because those rights holders have lots of very expensive lawyers on retainer. Do you? Thought not.
  
  --
  "None can love freedom heartily, but good men; the rest love not freedom, but license." --John Milton
Bullshit. by bmo · 2012-11-02 05:45 · Score: 5, Informative

>Additionally, the government's argument that you lose all your property rights by storing your data on the cloud
Bullshit. I don't lose the rights to my property if they are in the temporary posession of a third party. If it was so, then nobody could rent anythiing ever or even check a coat.
Hurr.
--
BMO
1. Re:Bullshit. by oh_my_080980980 · 2012-11-02 05:55 · Score: 5, Interesting
  
  Actually you do for cloud services. Read the contracts that Google has....so the government can argue you don't have any expectation of property rights if you waive them with the cloud carrier. Then again, you could argue, the contract is between you and google and not the government. Therefore the government cannot assume it gets the same rights, as set force in the contract, as the cloud carrier.
  
  Oooo the arguments....
2. Re:Bullshit. by scsirob · 2012-11-02 05:56 · Score: 4, Interesting
  
  This is like the government saying that your car no longer belongs to you when you park it on a public road. Bullshit indeed.
  
  --
  To Terminate, or not to Terminate, that's the question - SCSIROB
3. Re:Bullshit. by bluefoxlucid · 2012-11-02 06:17 · Score: 4, Insightful
  
  Actually, this is wrong. IANAL, but I *am* a right-wing logician so everything I say makes extreme amounts of sense.
  What you need to understand here is that data stored "in the cloud" is data stored in leased property. That is, you store the data in property owned by someone else who has conferred to you access rights to use their property for storage--in fact, Web services like AWS hosted servers could be considered similar to living and operating space.
  To the point, in one model you lease a home--house, apartment--or a building or office area in a building. Legally, leases make you a tenant, which gives you rights of occupancy. As such, the property is yours--the landlord is not legally capable of conferring to police the right to enter the property; the landlord cannot even enter the property himself without your consent, except in emergency situations (including property damage--leaking pipes etc). Thus you have legal ownership of everything in the rented space, and legal jurisdiction over such.
  Cloud services similarly confer tenancy onto a customer. Certain facilities are turned over to the customer, keys made (login accounts), leases billed. The facilities are owned by the cloud service provider; however there are terms of lease, there is an expectation of control over facilities, an expectation of non-intrusion. Loading your data into "the cloud" doesn't confer the right for the provider to happily peruse your data. Your data could contain customer personal information, which would place the provider into a situation of high liability for casually perusing.
  Counter-arguments about terms-of-service and other such things can be made here; but consider simply what would happen if a service provider chose to data mine through customers' private data. Think of the civil and criminal possibilities. We quickly realize that, in practice, such behavior would result in severe suits. If we surmise that the courts would judge against the provider, then we admit that a cloud service is a tenancy, a lease to resources and to space, and that it comes with tenant assumptions such as residency in said space--privacy, control, ownership.
  This complicates things. On the other hand, it creates more resistance than grey area: it makes it ... difficult to argue that a service provider has the right to turn over data of a customer, or that the police can order suspension of services to tenants through the service provider without an order to the tenants. It provides that ownership must be seized from tenants--search and seizure of the general service provider is potentially not legal, and could cause uncomfortable, difficult, complicated court battles.
  
  --
  Support my political activism on Patreon.
Safe Deposit Boxes? by mveloso · 2012-11-02 05:51 · Score: 5, Interesting

Shouldn't the EFF argue that a cloud service is the equivalent of a bank's safe deposit box? Someone else holds your property on your behalf. For SDBs, the government needs a warrant...just like if your stuff was in the cloud.
DUH. It never was yours by SuperKendall · 2012-11-02 05:52 · Score: 4, Insightful

Does this mean that my backups to Barracuda Networks cloud service are no longer mine?
I don't get where supposed rational technical people on Slashdot of all places, think that any data they transmit over public networks NEVERMIND then storing said data on hard drives owned and physically controlled by someone else, was ever YOURS.
Forget law. The physical reality of the thing is that by definition, any data you are keeping on devices controlled by someone else is never really yours. You just might be able to access it, and even that is never guaranteed.
Cloud backups are great as a cheap last offsite resort but are not the same as backups that you physically control. You should never have data you care about recovering on a cloud service that you do not also have in multiple copies on devices you own.
Any other notion is just fantasy.

--
"There is more worth loving than we have strength to love." - Brian Jay Stanley
I've made this argument for *years* by oneiros27 · 2012-11-02 05:57 · Score: 5, Informative

The courts established a long time ago that you don't have the same property rights under the 4th amendment when it's stored with a third party.
I've raised this issue whenever I hear that a legal office has outsourced their mail service (do they still have attorney-client privilege if the information has been 'shared' with the ISP?)
There are two issues -- (1) does it require a warrant and (2) do they have to notify you of the warrant (so that you can contest it) or only the party holding the information?
There was an article on the topic in the Journal of Consitutional Law a couple of years ago. One of the key things -- ECPA considers any email stored for 180 days can be obtained from an ISP without notifying the user. There was a case in 2008 that found that argued against it and the court agreed, but the case was overturned on other issues so the decision never stood as a precident. It has some interesting things to consider, such as the issues with using a cloud-based thing client without knowing it (in the example, a kid setting up a computer for his uncle), and losing their fourth amendment rights.

--
Build it, and they will come^Hplain.
Re:DUH. It never was yours by Anonymous Coward · 2012-11-02 05:59 · Score: 5, Insightful

By your logic the money we keep in the bank isn't ours either.
Re:DUH. It never was yours by Kahlandad · 2012-11-02 06:01 · Score: 5, Funny

or, for that matter, the skulls in my safety deposit box...
GovCloud by bWareiWare.co.uk · 2012-11-02 06:04 · Score: 4, Interesting

Dose it apply to http://aws.amazon.com/govcloud-us/
Re:DUH. It never was yours by Anonymous Coward · 2012-11-02 06:20 · Score: 4, Insightful

Of course it isn't. The banks can keep you from your money any time they want. They've actually done it in the past. The only thing keeping them from just right out claiming your money is a fragile social contract...
Why do you think it is? by SuperKendall · 2012-11-02 06:28 · Score: 4, Informative

By your logic the money we keep in the bank isn't ours either.
Sorry to go all Eliza on you, but what makes you think it is?
If there is a run on the bank, and you are not fast enough - you do not get your money. Simple as that.
You may get re-imbursed by FDIC, but that doesn't change what happened.
There is a vast difference between what is yours by law and what you can practically access. All I am saying is everyone should realize there is a difference and be prepared.
In the case of the server I have zero pity for anyone who kept data only on the servers that were seized. Yes it is there data, but they also had responsibility if that data was important to keep it somewhere they controlled.

--
"There is more worth loving than we have strength to love." - Brian Jay Stanley
Re:DUH. It never was yours by Bob9113 · 2012-11-02 06:41 · Score: 4, Insightful

I don't get where supposed rational technical people on Slashdot of all places, think that any data they transmit over public networks NEVERMIND then storing said data on hard drives owned and physically controlled by someone else, was ever YOURS.
Depends on your definition of "YOURS". Most people in modern Western civilizations recognize a distinction between posession and ownership.
The physical reality of the thing is that by definition, any data you are keeping on devices controlled by someone else is never really yours.
Shall I assume, by that definition, that you never park your car anywhere except on your own property, and that you never leave it in the custody of an auto repair or maintenance facility? Similarly, have you never left your coat at a coat check, or let your dry cleaner have posession of your clothing?
Your statement is both valid and poignant regarding the risk of a custodian unlawfully distributing or granting access to your information. This argument, however, claims you have no legal standing regarding the information in the first place, like saying you no longer own your street clothes when you leave them in the gym locker.
Cloud backups are great as a cheap last offsite resort but are not the same as backups that you physically control. You should never have data you care about recovering on a cloud service that you do not also have in multiple copies on devices you own.
Your advice is sound, particularly in the current legally uncertain context. But it does not imply that the government's argument is reasonable or excusable. It is our responsibility to the future of our nation to protect its information security from these misguided government officials. We must raise our voices against this sort of behavior precisely because our legal right to our information is not yet rooted in statutory bedrock.

--
Stop-Prism.org: Opt Out of Surveillance
As Kim Dotcom Just Heard That by nick_davison · 2012-11-02 06:42 · Score: 4, Funny

US Government: "You don't own anything stored in the cloud."
Kim Dotcom: "Sweet. The US government has declared cloud stored data is not 'owned.' If you don't own it, if it's not yours, how could you possibly be liable for it? Everyone please subscribe to my new service fuMPAAItsAllInTheCloud.com!"