Harvard Secretly Searched Deans' Email

theodp writes "Taking a page from HP's playbook, Harvard University administrators secretly searched the emails of 16 deans last fall, looking for a leak to reporters about a case of cheating. The deans were not warned about the email access and only one was told of the search afterward. Dean and CS prof Michael Smith said in an email Sunday that Harvard will not comment on personnel matters or provide additional information about the board cases that were concluded during the fall term. Smith's office and the Harvard general counsel's office authorized the search, according to a Boston Globe report. Smith's Harvard bio notes that his entrepreneurial experience included co-founding and selling Liquid Machines, where Smith coincidentally invented a software technique designed to keep unauthorized people from reading electronic documents."

Who is Dean?

Dean who?

Re:Who is Dean?

[NibbleG]

Is that you god? Its me Dean...

Re:Who is Dean?

It's a last name, not first. It was Jeremy Dean and he ended up killing himself.

Re:Who is Dean?

[paiute]

It's a last name, not first. It was Jeremy Dean and he ended up killing himself.

You never sausage a horrible thing.

Re:Who is Dean?

[FatdogHaiku]

"The eggs come from real chickens, the cheese comes from real cows, and the sausage comes from Jimmy Dean."
The Hannibal Lecter diet...

All places I worked

[gagol]

It was always made clear to me that my work email could be monitored for any reason. Dean or janitor, you are an employee.

Re:All places I worked

[fuzzyfuzzyfungus]

Apparently, according to TFA this was made explicit contractually for Harvard faculty that they enjoyed greater freedom from intrusion than this,(and more generally, in the traditions of academia) Faculty, tenured ones doubly so, are treated as a very special flavor of employee, one whose independence, so much as it can be preserved while still getting them to show up for scheduled classes and not perv out on undergrads, is considered to be one of their major valuable features.

It's one of the curious tensions of academic structures: the students are 'customers'; but part of the 'product' can consist of giving them what they don't want(shitty grades, failing them for academic misconduct); faculty are 'employees'; but part of the value of a really good and prestigious faculty is the appearance(and ideally the reality) that, while the university signs paychecks and schedules classes and other administrative work, the faculty are free to pursue their research and teaching, and new faculty are 'peer reviewed' through the tenure process, rather than being hirelings beholden to HR.

Re:All places I worked

[93+Escort+Wagon]

It was always made clear to me that my work email could be monitored for any reason. Dean or janitor, you are an employee.

I work at a state university, and we are reminded of this at least once a year. Pretty much everything related to our jobs is available to the public, if the public cares enough to pursue the information.

Harvard's private, but onerous contract language seems to be the norm these days just about everywhere. The deans probably don't have any significant legal recourse. Being faculty, though, I doubt it ever occurred to them anyone would actually dare do this.

Re:All places I worked

[mabhatter654]

Come on Harvard, they should know your boss can revoke his word any time he feels like... Their Business school and Law school wrote the BOOK quite literally on allowing this kind of thing.

Ultimately, it was Harvard-owned email boxes, Harvard is their boss. The matter was involving academic cheating, that's a crime worse than murder. and if professors were aware of it DIRECTLY affects the credibility of the entire institution.

So yes, it was a completely justified response when expelling 60 students to review the professors as well.

Re:All places I worked

[nospam007]

"Faculty, tenured ones doubly so, are treated as a very special flavor of employee, one whose independence, so much as it can be preserved while still getting them to show up for scheduled classes and not perv out on undergrads, is considered to be one of their major valuable features."

But nonetheless they think that these people are dumb enough to use their work email to leak stuff from work?

Re:All places I worked

No, but they could (and should) quit their jobs at Harvard and move to an institution that gives a damn about academic independence.

Re:All places I worked

[Nutria]

The matter was involving academic cheating ,... and if professors were aware of it DIRECTLY affects the credibility of the entire institution.

RTFA. The Deans weren't accused of cheating. Harvard was embarrassed at the scandal and hunted down the leaker, in the guise of "personnel matters".

Re:All places I worked

[93+Escort+Wagon]

Give up tenure at Harvard? Ain't gonna happen.

I'm not arguing it shouldn't... just that it won't.

Re:All places I worked

[Cederic]

How the fuck does an employer scanning emails relate remotely to academic independence?

Your employer reads your emails. Expect it, accept it, don't use their email system for anything you don't want them to know.

It's been the simple truth for two fucking decades.

Re:All places I worked

[stephanruby]

Besides, this is nothing like the HP case, unless this involved their personal email accounts, or their personal cell phone records.

With work email, there is absolutely no expectation of privacy whatsoever.

Re:All places I worked

[Culture20]

Everything relates to academic independence. It's the diplomatic immunity of the academic world.

Re:All places I worked

[mjwalshe]

Thats not how tenured academics will see it

Re:All places I worked

[Aighearach]

There is no "guise," unauthorized leaking in violation of company policy is always a personnel matter.

Re:All places I worked

[Aighearach]

I disagree entirely. I think you're misapplying the freedoms that professors are expected to have to deans. Why does a dean need protections? Is that a position where unpopular positions are advantageous to the process of education? I think an unpopular dean is more likely a problem manager than anything.

Re:All places I worked

[jkflying]

Except that it's not a private company. Harvard is taxpayer subsidised. Just as the shareholders of a company would expect to be informed of an internal company scandal that involved over 100 employees being severely disciplined/fired, so can the general public expect to be informed of the goings-on within a publicly funded university.

Re:All places I worked

Ultimately, it was Harvard-owned email boxes, Harvard is their boss.

Yes, and hence Harvard should also be allowed to send emails from any and all of their email-boxes. I mean, you are just an employee.

Re:All places I worked

[dkf]

I think you're misapplying the freedoms that professors are expected to have to deans.

Deans are professors. The senior ones with lots of management/budget responsibility. Dean is what you try for after you have tenure, assuming you're interested. Lots of professors aren't though, because it's a lot of work. (My old boss described it like this: it's assumed you put in 50% of your time doing teaching, 50% doing research, and 50% doing administration...)

Re:All places I worked

[i+kan+reed]

Harvard is a private university with a huge endowment. So large, I've heard, that they only charge tuition to preserve their exclusivity. What's your source on them being subsidized?

Re:All places I worked

[MechanicJay]

Oh for a Mod point. This is exactly it.

Among the employees of a University, Faculty are the 1st class citizens. Us staff folks are not. We are subject to all the normal stuff that you would expect of any employer. Faculty just have a different relationship with their employer. Not making a judgment call on this, I'm just stating the reality of the situation.

As faculty, I would expect that my email would not be ready without my knowledge and that there would be some sort of committee to determine if HR had the right or reasonable cause to search my email before it happened.

As staff, every bit I generate is subject to search and inspection...including these made on "company time".

Re:All places I worked

At the university where I work, the faculty are explicitly not to be referred to as "employees." Janitors are staff, faculty are faculty. Complete with different employment policies that apply to each group.

Re:All places I worked

[nebosuke]

No, they do not charge to preserve exclusivity--they practice need-blind admission and provide need-based financial aid (up to and including essentially waiving tution for lower-income students). The exclusivity comes from the rigorous selection process.

Re:All places I worked

It was always made clear to me that my work email could be monitored for any reason. Dean or janitor, you are an employee.

I work at a state university, and we are reminded of this at least once a year. Pretty much everything related to our jobs is available to the public, if the public cares enough to pursue the information.

Harvard's private, but onerous contract language seems to be the norm these days just about everywhere. The deans probably don't have any significant legal recourse. Being faculty, though, I doubt it ever occurred to them anyone would actually dare do this.

I work at a private pharmaceutical company and we are notified every day when we logon that email and our internet use is not private (and they know I'm posting at Slashdot!!!!). If I was leaking something, it certainly wouldn't be from work...duh! SDPatricia

Re:All places I worked

[Nutria]

Did the leaker provide a list of names, or just that there was a cheating investigation?

Re:All places I worked

[Cederic]

..and yet. You use an email system, you have to expect that the administrators can and will read your email.

Don't like that? Don't use it. Faculty should be more than capable of sourcing their own email service.

Re:All places I worked

[steveg]

Not here. Deans are former professors. They live on the administrative side of the house. Chairs of departments are professors, but not deans.

There was no unauthorized access.

[girlinatrainingbra]

re: "...Smith coincidentally invented a software technique designed to keep unauthorized people from reading electronic documents." [emphasis mine]
.
Since the Deans and Faculty members are technically employees of the Harvard Corporation / Harvard University, then there was no unauthorized access, since I am sure that Harvard reserves the right to peruse and otherwise scrounge through the work product of its employees. Whether it can do that to its students, though, may be another matter.
.
Anyone here have direct access to a Harvard Faculty / Administration Employment Manual or Employee Agreement or Contract? That's the only way to be sure: look at the actual contract.

Re:There was no unauthorized access.

[Kupfernigk]

The point is whether, given the supposedly Enlightenment ideals of the Western idea of a university, they should have done. If they are just a corporation that educates people for money, that is one thing. If they are a university set up to stand for the possibility of a better society, that is another. Personally I prefer universities when they fight corporatism, not when they support it.

Re:There was no unauthorized access.

Rules seem to be "staff email can be read, faculty email cannot be read". The administration is now pretending professor that becomes dean are no longer faculty but staff.

Harry Lewis thoughts

Re:There was no unauthorized access.

[khallow]

Personally I prefer universities when they fight corporatism

You do realize that almost all universities (including Harvard) are corporations? Corporatism is hard to fight when it is the default organizational style for everything beyond the size of a few people.

Re:There was no unauthorized access.

[gl4ss]

really? so technically at&t could read your sms backlog since it's employees would be doing the reading?

where I live it would have been unauthorized access, they had no business searching through those mails.
the police could have done it with proper authorization(and that would not have come from the faculty).

at most they could have seen email headers - after permission from the judical system.

of course, I don't live in the states... ( and you know, this is not something you can just blanket sign away on the contract).

Re:There was no unauthorized access.

[mabhatter654]

The ACCUSATION OF CHEATING at the level of Harvard is a professional "death sentence". Frankly, the accusations by the expelled students were probably cause to look at the professors.

If this went WRONG these Professors would have found out when security locked them out of their offices... And escorted them off campus. This wasn't going through the union, board, require process... This was Academic "Sudden Death". Be glad they ONLY searched your email!

They can be upset and outraged all they want, but they dodged a bullet they didn't even know about. That kind of thing happens in life more than you'd care to admit.

Re:There was no unauthorized access.

[Kupfernigk]

I note I was down-nodded for an honest statement of opinion. It looks like a lot of people on /. approve of Big Brother. But you miss the point. Corporatism is giving rights to corporations that supersede what we in Europe call human rights. The existence of corporations does not imply corporatism if individual rights are protected.

As an example, the Netherlands has an army but is not militaristic. North Korea has an army, and it is.

Re:There was no unauthorized access.

Um... no. That is not how academia works at all.

Re:There was no unauthorized access.

Anyone here have direct access to a Harvard Faculty / Administration Employment Manual or Employee Agreement or Contract? That's the only way to be sure: look at the actual contract.

Don't you have protection against this type of insanity? This would be a gross violation of privacy, considered very much illegal in Europe. Contract clauses aiming for these things are only allowed in circumstances and must be specified and motivated.

Re:There was no unauthorized access.

I'm not aware of any rights a corporation has that the people who make up the corporation don't also have. That is the sole argument for corporations having rights: You can't take away rights from people just because they are in a group.

The problem is with the responsibilities. Corporations absolve individuals of responsibility. That's where it becomes a problem. But this is all wildly off topic.

Re:There was no unauthorized access.

Why are you answering to me? I'm not a Harvard professor. My email wasn't searched.

Re:There was no unauthorized access.

No, you were modded down because your opinion is invalid. Universities do not and never did "fight corporatism," whatever that means.

Re:There was no unauthorized access.

[Kupfernigk]

I don't think you understand how the moderation system is supposed to work. There is no 'disagree' moderation. And your opinion, Anonymous Coward, is no better than mine. (however, I would submit, having seen collegiality in action fighting an attempt to corporatise an academic institution, that you are wrong.)

Re:There was no unauthorized access.

The point is whether, given the supposedly Enlightenment ideals of the Western idea of a university, they should have done.

Of course they should have done it. Every opportunity to make academics realize that they are not above the law and not any better or any different from everybody else should be taken. They need to be reminded that they are not special little snowflakes.

Re:There was no unauthorized access.

[khallow]

Corporatism is giving rights to corporations that supersede what we in Europe call human rights.

It's worth noting that the start of the "corporate personhood" legal fiction in the US was an attempted grab of Dartmouth College by the legislature of New Hampshire. So the start in the US of what is currently called "corporatism" was the defense of a college.

Re:There was no unauthorized access.

[Jah-Wren+Ryel]

I note I was down-nodded for an honest statement of opinion. It looks like a lot of people on /. approve of Big Brother.

I don't think they necessarily approve of big brother, but rather they have a mechanistic view of the universe and have picked a certain set of nerd-attractive rules to define their view of the universe. Those rules tend to have big brother as an end-game.

I say that because I used to have that sort of viewpoint myself, but the end result convinced me that maybe I should re-evaluate my opinion of the universe. Took me 15+ years to get to that conclusion, so I am not surprised that many of my fellow slashdotters have not (yet) made a similar conclusion.

Re:There was no unauthorized access.

[sjames]

Individual makes a conscious decision that kills 1000 people, gets put under the jail. Corporation does the same thing, pays a fine amounting to less than 1% of their income, basically a speeding ticket.

Argue semantics if you will, but in the colloquial sense, the corporation's rights supersede the individual's.

Re:There was no unauthorized access.

I'd share it but leaking it would mean they'd investigate my internet usage.

Re:There was no unauthorized access.

Sounds like someone was mad that their professor didn't like the Fight Club reference in their thesis statement.

Re:There was no unauthorized access.

There is a big difference between inspecting firewall traffic to defend a network from malware and doing Signals Intelligence (or let's call it SPYING) on someone's email account. I am all for traffic inspection to detect malicious traffic (data exfiltration and the like), but I don't think a university should run their own SIGINT operation because of P.R. Embarassment.

They are spineless scumbags and should be indicted for unlawful interception of mail, in my opinion. But, alas, these days the rich and powerful have special rules.

I bet you go to jail if you spy on your spouse's email account, but they certainly won't even get a slap on the wrist.

Re:There was no unauthorized access.

Your local security agencies will have granted all of the 177 US security agencies full access to your data, though.

How is this a /. story?

[eyenot]

We're all supposed to be geeks, here, especially computer geeks.

Computer geeks are supposed to be the ones who have to repeat ad nauseum and hammer home the fact that no, email is not secure (or private).

Shouldn't the story just be "shrug [link]"?

Shouldn't the comments just be all speculation about how the fact that this made "news" could possibly mean we face further uninformed and draconian measures in legislation?

Re:How is this a /. story?

[qubezz]

Some of the finest minds in tech didn't graduate from there.

Re:How is this a /. story?

We're all supposed to be geeks, here, especially computer geeks.

And speaking as a geek who has a bachelor's degree, I'm certainly interested in academic freedom and intrusions into privacy.

Though they are employees and the university has a legal right to search their email, Deans should have some kind of independence to ensure a free exchange of ideas.

The fact that the search was to track down a whistleblower is incredibly depressing.

Re:How is this a /. story?

[skids]

I'm more concerned that the title correctly used an s-apostrophy. When that happens I'm deeply suspicious that Slashdot has been taken over by a secret cabal of English majors.

Re:How is this a /. story?

I'm more concerned that the title correctly used an s-apostrophy. When that happens I'm deeply suspicious that Slashdot has been taken over by a secret cabal of English majors.

Whose vine ripened mod points hang menacingly over us.

Re:How is this a /. story?

[idontgno]

Shouldn't there be a hyphen in the compound-word adjective "vine-ripened?"

<sotto voce>Um. Rats. Cabal rules say I shouldn't comment to correct, only moderate.</sotto voce>

Umm.. and there is no English major cabal!

Why would you use your work email?

If I want to leak something, it'll be over an SSL encrypted webmail account (ie Gmail).

Re:Why would you use your work email?

[gagol]

...sent from a specially created account while hooking up on unencrypted wifi connection from my car.

"HP's Playbook"

[Kupfernigk]

That would seem to be the new HP tablet that looks like a BlackBerry PlayBook but with a worse display and camera. What has that got to do with Harvard seeming to have forgotten the difference between a university and a corporation?

Re:"HP's Playbook"

[kinko]

That would seem to be the new HP tablet that looks like a BlackBerry PlayBook but with a worse display and camera. What has that got to do with Harvard seeming to have forgotten the difference between a university and a corporation?

Some years ago, HP's board of directors approved spying on some of their own top executives to try to find the source of a leak. "Playbook" was supposed to be a metaphor for "game plan", not a product name :)

Thoughts on this from former Harvard College Dean

[haus]

Here is Harry Lewis thoughts on the matter...

http://harry-lewis.blogspot.com/2013/03/email-privacy-at-harvard.html

For those not familiar, Harry Lewis was not only the Dean of Harvard College for a number of years, he is also a Professor of Computer Science.

anyone stupid enough

[v1]

to leak something USING the source's computers deserves to get caught. Just sayin'

Re:anyone stupid enough

[girlinatrainingbra]

just look at what happened to (and is still happening to) Bradley Manning... Whistle-blowers beware...

Re:anyone stupid enough

[mabhatter654]

Normal whistle blowers have legal protection... When you whistle blow THE LAW that's what you get. They probably will push to execute him. The military doesn't have provisions for whistle blowing against the civilians.. Spreading secrets is treason... Even if when people label their own treason "secret".

Re:anyone stupid enough

Yes, but think of it... They are searching someone's email to detect leaking. There has to be a certain amount of hypocrisy involved here.

How else can you leak it?

[betterunixthanunix]

You realize that if you leak anything that is on a computer, you need to access that computer at some point.

Re:How else can you leak it?

It was the fact of the investigation taking place at all and the number of students suspected and the disciplinary actions taken that were leaked. All of this could have been done without the use of electronic documents. For example, a professor could have discussed the findings of the investigation board with a reporter. He or she might have used handwritten notes.

Enough about Dean

What about Hank's?

inomni satanas

LVX INRI

Assume far more than your email is read

[onyxruby]

When you work for someone you need to assume that your email is read, your website are logged, your SSL traffic decrypted and your computer inventoried. It is also a fairly safe assumption that login, logoff times, screenshots and keyboard strokes as well as mouse movements are all routinely captured.

Depending on your place of employment many of these big brother activities are demanded by law (SEC etc). It's not a question of whether or not you like or the IT department likes it, because neither of you do. It's a question of someone /way/ up your food chain has made the decision to perform that level of monitoring. If your going to get mad, get mad at the VP, the legal team, the SEC, or other person typically at the VP level that had the power to demand the level of logging to begin with.

To illustrate my point on how these things are often driven by and watched from the top you need only look at Yahoo. Their new CEO looked at the VPN logs when she saw the parking lot emptier than she thought it should be. She concluded people were slacking off and not really working and ended telecommuting for everyone at Yahoo. This was a data driven decision based on the logs that Yahoo's servers kept and their CEO reviewed.

I'm not justifying this, I'm not defending this, I'm simply explaining how these things work in the real world.

Re:Assume far more than your email is read

You're deluded if you think the Yahoo CEO is being at all honest about the telecommuting policy. It's a stealth layoff.

Re:Assume far more than your email is read

[evil_aaronm]

At my last corp job, I brought in my own laptop and Sprint wireless modem. My work machine was for nothing but work, and they had no idea how much time I spent surfing /.. If I'd had something to whistle-blow, I'd have just copied it to a flash drive from my work machine, and sent it from my personal laptop.

Re:Assume far more than your email is read

To illustrate my point on how these things are often driven by and watched from the top you need only look at Yahoo. Their new CEO looked at the VPN logs when she saw the parking lot emptier than she thought it should be. She concluded people were slacking off and not really working and ended telecommuting for everyone at Yahoo. This was a data driven decision based on the logs that Yahoo's servers kept and their CEO reviewed.

I'm not justifying this, I'm not defending this, I'm simply explaining how these things work in the real world.

Watch Yahoo's market value go down the toilet. That is also how the real world works....your kids or grandkids won't know what the hell a Yahoo was.

This is Outrageous.

[wisnoskij]

Only the little people are supposed to be pissed on.

When will we learn

[FuzzNugget]

To self-encrypt everything?

What good does crypto do?

[betterunixthanunix]

They are looking for a whistleblower. An encrypted message to the press is a big red flag that says, "I am a whistleblower," unless all the deans are in the business of communicating with the press. A message to an anonymous remailer is equally incriminating.

The real answer here is to take the documents out of Harvard on a thumb drive and mail them from an Internet cafe or somewhere else that cannot be monitored by the administration.

Mixed Messages

[the+eric+conspiracy]

Harvard has a problem because of THIS:

Harvard University Information Security

FAS Policy Regarding the Privacy of Faculty Electronic Materials

The Faculty of Arts and Sciences (FAS) provides the members of its faculty with computers, access to a computer network and computing services for business purposes, and it is expected that these resources will be used in an appropriate and professional manner. The FAS considers faculty email messages and other electronic documents stored on Harvard-owned computers to be confidential, and will not access them, except in the following circumstances.
First, IT staff may need access to faculty electronic records in order to ensure proper functioning of our computer infrastructure. In performing these services, IT staff members are required to handle private information in a professional and appropriate manner, in accordance with the Harvard Personnel Manual for Administrative and Professional Staff. The failure to do so constitutes grounds for disciplinary action.
Second, in extraordinary circumstances such as legal proceedings and internal Harvard investigations, faculty records may be accessed and copied by the administration. Such review requires the approval of the Dean of the FAS and the Office of the General Counsel. The faculty member is entitled to prior written notice that his or her records will be reviewed, unless circumstances make prior notification impossible, in which case the faculty member will be notified at the earliest possible opportunity.

They were not notified according to this policy.

Could get messy.

Re:Mixed Messages

This is what I came here to say; the summary completely missed the point. Reading the emails was a direct violation of established University policy. Usually it's the cover-up that causes more trouble than the original crime; here the attempt to find a cover-up is going to be the biggest problem for Harvard.

Re:Mixed Messages

>The faculty member is entitled to prior written notice that his or her records will be reviewed, unless circumstances make prior notification impossible, in which case the faculty member will be notified at the earliest possible opportunity.

This is how Harvard will slide: you could drive a truck through this loophole; "Oh, well, then, we're informing you now."

Re:Mixed Messages

Essentially they ran their own little version of NSA/CIA/DHS, as they intercepted in secret and did not disclose afterwards. For that, the persons who did it should go to jail, plain and simple.
But you know what ? All the sophisticated ideals of "due process", "rule of law", "civility" will mean absolutely nothing if a circle of mildly powerful people feel pissed. As soon as people have a minimal amount of power, they are typically protect and abuse it by all sorts of nasty means. It means absolutely nothing that they were "hippies" or "protestors" in their youth. The lefties are especially nasty, actually. At one point if their lifes most of them have something to lose and will consent with all the dirty tricks of the private eyes and shady government departments.
Be very careful and have something against them, which you can release. Never, ever trust these lefty shitballs with a semi-terrorist past. They will be the first to run nasty police states. Just look at what Obama ordered how they should abuse Bradley Manning.

Re:Thoughts on this from former Harvard College De

The man is living in the past, a kinder and gentler age where the university was "like family". We are now in the age of the Internet and education as big business with "brands" that can ebb and flow with the news.

A judicious approach

First I was like, "yeah, he speaks sense"

The matter was involving academic cheating, that's a crime worse than murder.

...then I was like, "Poe's Law."

That is, of course, unless you're talking about murdering a clown. *That's* a community service worthy of a medal. Creepy John Wayne Gacy motherfuckers.

No privacy

[Emperor+Tiberius]

When are people going to learn that they have no privacy on their employer's computer systems? Geeks and IT folks seem to have the biggest problem with this. If you really need that privacy, go out to your car on your lunch hour and use your smartphone. At the end of the day, it's your employer's power, bandwidth, space, and equipment. If they want to monitor their systems, they have every right to do so. Now obviously, some monitoring is a huge gray area when it comes to moral and ethical issues. So why not simply side step the issue by using your own person accounts, devices, and access?

Re:No privacy

You do when policy clearly states a degree of confidentiality and due process for breaching it, both which were not followed. This will likely become a big deal, with the administration coming down hard to Protect The Brand.

Re:No privacy

[Solandri]

I'm of the opinion that there's no one right answer to this. Some companies will treat their employees like prisoners and monitor them every minute they're at work (and maybe even try to when they're not at work). Some will give them complete privacy. And the rest will do something in between. IMHO you do not have a fundamental right to privacy when someone is paying you for that time. But you are free to negotiate with the person writing the checks exactly how much privacy you wish to have. Companies with unusually strict monitoring hurt themselves by decreasing the pool of prospective employees. People with unusually high expectations of privacy hurt themselves by decreasing the number of prospective employers.

Privacy of government employees OTOH is something where the electorate needs to decide what constitutes the "one right answer".

Re:No privacy

[dkf]

You do when policy clearly states a degree of confidentiality and due process for breaching it, both which were not followed. This will likely become a big deal, with the administration coming down hard to Protect The Brand.

It's particularly a big deal when you do it to a substantial number of Deans. I'd assume that a number of people in the administration will be without jobs before too long, and maybe also a change of general counsel too. Not that anyone will say anything nasty; there will just be a general agreement that some people need to... well... move on; personality clashes, changing priorities, that sort of thing. And that perhaps it is time to ring the changes with who provides legal advice. No fault implied. No public link with this incident at all.

In a commercial organization, I'd expect more recriminations in public for spying on the executive members of the board (damn close to what's happened here, in explicit contravention of their own policies). Universities tend to prefer to keep things a bit quieter. But no amount of union membership or past history of good relations is likely to save those responsible for authorizing this. A key rule of university politics is this: unless you have cast-iron evidence of wrong-doing, you DO NOT MESS WITH ANYONE WHO CAN TAKE YOUR BUDGET AWAY. Or who can replace the person with that power.

Pass the popcorn. I'm going to enjoy watching this from afar.

/., I am disappoint

Here we have a story about how students, generally of wealth and privilege, being caught cheating, and being handed less severe sentences then are handed out by low ranking local state schools. Adding to that, the school's biggest concern now seems to be to get whomever had the audacity to air Harvard's dirty laundry.

Slashdot reaction? Silly noobs, e-mail is insecure. Employers have the right to search company e-mail.

Hey guys, how about concern about what these people are teaching the kids who, let's face it, will be future congresscritters and other leaders. Hey, it's OK to cheat, just don't get caught, or else you'll get a slap on the wrist. Oh, and be sure to exact revenge on whoever lets the plebs know.

Re:Thoughts on this from former Harvard College De

[mabhatter654]

He mentions scientific fraud, but when the school is EXPELLING 60 students over ONE incident, they are looking at the "academic death sentence" if they find professors involved in any way.

Having professors involved would be the WORST possible outcome the University would have. They were looking for blood, there is probably a secret organization that would have "suicided" the offending professors... After they were pubically tarted and feathered (Harvard has old traditions) Privacy was the least concern.

If you found it in his Deanmail...

[JoshDM]

... he could always claim he had Changnesia.

Pelton

[xstonedogx]

This would never happen at Deandale! I mean Greendale!

End-to-End Encrpytion

[tapspace]

I think we're going to finally see end-to-end encryption popularized for email. You can now mod me funny.

Re:Thoughts on this from former Harvard College De

[dkf]

After they were pubically tarted and feathered (Harvard has old traditions)

Tarted and feathered? Is this some reference to an old punishment of dressing up academics like they were performers in the Moulin Rouge? That would be... well, rather eccentric and would make an absolutely wonderful punishment really. You'd only have to do it once and people would behave for the best part of a century (except for those who are secretly extreme exhibitionists and who want to do that sort of thing in public anyway; different strokes for different folks, and all that). Or were you talking about turning them into meat tarts? (I really think that sort of thing would be illegal. Gross too.) Or putting a custard pie in their face perhaps?

When you get right down to it, with an old tradition about you can never really tell.

Amateur...

These guys are for real

The Harvard effort is amateurish...

How Is this news?

[viperidaenz]

If you change the title to reflect reality
Company does what it said it may do in employment contract/IT policy amendment.
It's really not so scandalous

Re:How Is this news?

[the+eric+conspiracy]

Except they didn't. Harvard's policy is a bit more respectful of faculty privacy than the average company. At least they are supposed to notify you.

Yes, it's OK to cheat, just don't get caught.

[porky_pig_jr]

That's *the American* way, dude.

Re:Yes, it's OK to cheat, just don't get caught.

[guruevi]

And you think that's not the way anywhere else? No-one that has made a name for themselves has done this with a completely clean conscience or even a legally clean track record. You can't make money being honest.

Re:Yes, it's OK to cheat, just don't get caught.

You can't make money being honest.

Wow! Is it depressing being that cynical?

Re:Yes, it's OK to cheat, just don't get caught.

And you think things should stay this way?

Re:the real world

You mean the portion of the real world that is you and people like yourself.

Property

Property owned by Harvard.

No illegal searching at all.

This covers all faculty, staff and students, including all Administration employees and board members and chancellors as the structure may be.

If there is a 'concern' among faculty, staff and students then re-direct to a pseudonym e-mail.

Re:Thoughts on this from former Harvard College De

Well, they do that whole Hasty Puddings Theatrical crossdressing burlesque thing....

University or Brand

Is Harvard still a university, or has it now become a brand?

Seems to me its become all about its brand...

Liquid Document Control?

[dgharmon]

"In June 2010, Liquid Machines was acquired by Check Point Software Technologies Ltd, an Israeli Internet and data security company best known for its ZoneAlarm firewall software."

You have got to be shitting me ! ! !

Re:Liquid Document Control?

You have got to be shitting me ! ! !

I shit you not ! ! !

Delicious irony

Only at some white tower like Harvard would faculty members be surprised that they have no expectation of privacy. Just like everyone else at any other organization — commercial or otherwise – anywhere.

And good luck getting a “private” email account. What are you going to use? Gmail? Hotmail? Yahoo? Any of those places will drop trou the moment someone with a badge shows up, and ask questions later, specifically because the federal government has retroactively made it legal to do basically anything they want with digital communications.

Cell traffic instead? We just found out that the FBI's been snooping it and dodging the legal questions for 20 years. Well whaddya know? Since the technology was invented. Who'd've guessed?

Maybe Harvard professors should think twice before they produce the next generation of jurists, presidents, senators, and congressmen that continue to erode our Constitutional rights, and the limp-wristed “journalists” and news “anchors” that let them get away with it.

Re:Thoughts on this from former Harvard College De

For those not familiar, Harry Lewis was not only the Dean of Harvard College for a number of years, he is also a Professor of Computer Science.

He was a real dean. Turns out, the "deans" in this story are just people in charge of residence halls. Calling them deans and houses is just ivy league bullshit.

PLUS

Traffic inspection at the firewall should come with tough ethical standards such as "if there is no data leaked, the inspector must keep EVERYTHING he sees for himself". Running your own SIGINT operation for other purposes than securing a network or ACTUAL corporate secrets is the province of slimy and corrupt "private eyes".
There are also a couple of rules regulating who can do SIGINT in almost every country. Generally speaking, only the state is allowed to perform that and you normally go directly to jail if you run your private SIGINT operation. Then, of course, exceptions apply to rich, powerful and connected people and organizations.

YEAH !

The KGB only does good things to protect good citizens. Nothing to hide, nothing to fear, etc etc.

Journalist Hit in HP Spygate Chimes In On Harvard

[dawnkawamotodice]

Hey, I couldn't help but comment when I saw this Harvard Dean post - especially since it drew a comparison to the HP pre-texting spygate scandal. I was one of the reporters HP targeted in this scandal, when I worked at CNET. They hired private investigators who hacked into my *PERSONAL* cell and home phone records to see who I was speaking with. That's a big difference than what Harvard did. Unfortunately, employers are allowed to rifle through your company email - because it *is* their property you are using. Now that I work at Dice, where we ask readers to feel free to send us tips on company layoffs and hirings, I'll say the same thing here as I do there: "please, please, please, use your personal email address and *not* your traceable company email." Take care, Dawn Kawamoto, Dice Associate Editor