Slashdot Mirror

← Back to Stories (view on slashdot.org)

European Commission Outlines Steps To Restore Trust In EU-US Data Flows

Posted by Unknown on from the mending-wounds dept.

hypnosec writes "The European Commission has outlined steps it believes will pave the way for restoring faith in EU-U.S. data flows following revelations about NSA spying activities under its PRISM program. The EC notes that spying on its citizens, companies, and leaders is unacceptable; and that citizens of U.S. and EU need to be reassured about protection of their data, while companies need to be reassured that the existing agreements between the two regions are respected and enforced. The Commission outlined a total of six areas that it believes require action including swift adoption of the EU's data protection reforms; making Safe Harbor safer; strengthening data protection safeguards in the law enforcement area; commitment from the U.S. for making use of a legal framework; addressing European concerns in the on-going U.S. reform process; and promoting privacy standards internationally."

50 of 75 comments (clear)

  1. We have a reform process in the US? by xxxJonBoyxxx · · Score: 3, Insightful

    >> addressing European concerns in the on-going U.S. reform process

    Really, we have an active privacy reform process in the US? I haven't heard much about that since Obamacare finally went off the rails.

    1. Re:We have a reform process in the US? by Anonymous Coward · · Score: 4, Insightful

      Given your US news I can see why you wouldn't know anything about it really.

    2. Re:We have a reform process in the US? by Anonymous Coward · · Score: 1

      Yes, the reform is in the direction of no-privacy for everyone.

    3. Re:We have a reform process in the US? by TheMeuge · · Score: 2

      Yes, the reform is in the direction of no-privacy for everyone.

      I have to say it, but we should mod up the AC.

      The active privacy reform across the industrial world (yes, EU, UK, AU I'm talking to you as well, not just US) is the assertions that:
      1. there no right to privacy for the citizens
      2. there IS a right to privacy for n, where n=power or money (read: police, government, corporate interests)
      3. noting a vast power unbalance as a result of 1 and 2 makes one a terrorist

    4. Re:We have a reform process in the US? by mlts · · Score: 4, Interesting

      What, you mean the latest news about a four game suspension from the Seahawks isn't news, or Dancing With the Stars new season?

      No wonder why most of the clued Americans end up reading Al Jazeera these days when 5-10 years ago, AJ was joked about as the "terrorist news network". Thanks to an earlier reference, dw.de is another decent source (although all the above have their bias, and one can easily see it in the way their stuff is phrased.)

      On a realistic note, the Europeans have a valid issue about this.

      There are diplomatic solutions (trust, but verify), but there are also technological solutions. One of those could be passthrough encryption in one country before data is stored in another, where if company "A" wants to store data in their home country, the data from country "B" would have to be encrypted in that country by a key only held there. Of course, there is a lot of room to compromise keys (key management is in itself a major undertaking), but done right, it isn't impossible.

    5. Re:We have a reform process in the US? by WillAffleckUW · · Score: 2

      MJ is legal in WA and CO - in terms of the Seahawks being suspended.

      There are no methods to overturn an unjust invasion of Privacy and the constant violations of the US Constitution - nobody ever goes to jail for doing that.

      Ever.

      The revolution is coming fast, you can hear it boiling.

      --
      -- Tigger warning: This post may contain tiggers! --
  2. Isn't that America's job? Restoring trust? by bazmail · · Score: 1, Troll

    lol Euro-weenies always finding an excuse to lick boot

    1. Re:Isn't that America's job? Restoring trust? by fredrated · · Score: 1

      I see you are a coward, good thing since you are clearly mentally disturbed.

  3. We have the solution! by Anonymous Coward · · Score: 3, Insightful

    More lies! This will work this time. We're sure of it!

    You'd be a fool to trust the US anywhere near your data these days. All the stuff revealed lately is just *some* of what's what.
    What we don't yet know.......

    Justice has been severely folded, bent, mutilated, and trampled. It's going to take DECADES to restore even a small percentage of the trust erased lately.

    1. Re:We have the solution! by gmuslera · · Score: 4, Informative

      This. If NSA chief have no problem lying to US congress, and had no consequences after that was found out, what stop them to keep lying to Europe all they want?

      And what was released till now is just the tip of the iceberg (or just a snowflake over it) so far it has been released 500 out of 200000 of the documents that Snowden got.

      There is no reasonable trust anymore, but they can be gullible all they want, or just play this as a theater to keep their population at bay.

    2. Re: We have the solution! by TheRaven64 · · Score: 1

      They're available for most commodity operating systems.

      --
      I am TheRaven on Soylent News
  4. Restore? by Pogue+Mahone · · Score: 1, Insightful

    Difficult to *restore* a faith that was never there.

    --
    Every bloody emperor has his hand up history's skirt [Peter Hammill/VdGG]
    1. Re:Restore? by Teun · · Score: 1

      Trust me, the trust was there, last week it was some 50 years it started to fade...

      --
      "The likes of Facebook and WhatsApp are free to those whose privacy is of zero value."
  5. Restore trust?? by fustakrakich · · Score: 3, Insightful

    Heh, that's a good one. How do you restore trust in a system that is corrupt by design, not by defect? You cannot ever trust any system to works on concentrated authority. It is impossible to acquire adequate oversight.

    --
    “He’s not deformed, he’s just drunk!”
  6. "EU won't suspend data sharing accords with U.S." by dcollins · · Score: 4, Informative

    That's the more concise headline today at Reuters -- http://www.reuters.com/article/2013/11/27/us-eu-us-security-idUSBRE9AQ0F120131127

    The European Union backed down on Wednesday from threats to suspend agreements granting the United States access to European data, rejecting calls for a tougher stance over alleged U.S. spying.

    The move marks an abrupt about-turn for the European Commission, the EU executive, after warnings it issued in July to U.S. officials following revelations that Washington had spied on European citizens and EU institutions.

    Cecilia Malmstrom, the EU's commissioner for home affairs, said she had found no proof of U.S. wrongdoing, either in the sharing of flight passenger records or in the tracking of international payments...

    Sophie in 't Veld, a Dutch Liberal member of the European Parliament, criticized the Commission's move.

    "They are putting diplomatic relations ahead of citizens rights. The Commission is being extremely timid to the Americans," she told Reuters.

    "They have done an investigation and concluded that everything is hunky dory. This is not serious," she said, adding that taking the United States at its word was naive.

    --
    We know where leadership by an anti-intellectual "strongman" who scapegoats minorities and likes boisterous rallies goes
  7. Humans not citizens by Anonymous Coward · · Score: 1

    The EC notes that spying on its citizens, companies, and leaders is unacceptable; and that citizens of U.S. and EU need to be reassured about protection of their data

    Either you don't spy on everybody or don't even bother making a statement. Humans are humans whether citizens of your country or not. As long as you make a distinction between your own citizens and others you generate ill will towards yourselves, which creates enemies, which forces you to get defensive.

    Your forefathers made proclomations about Human Rights, not citizen rights. Listen to them, they had the right idea, do the right thing and treat all humans equally.

  8. This will be swept under the rug by arcite · · Score: 1

    When the NSA offers to sell the EU the technology at reduced prices. :)

  9. They'll just continue spying anyway by 2phar · · Score: 3, Interesting

    When we have flaps like this that occur, you know, something will change, and I expect we'll get some sort of announcement that will - that the Europeans can point to as a curtailment and as a change. But as time goes by, flaps blow over, and the permanent interests of ourselves and our allies reassert themselves.

    Paul Pillar, 28-year veteran of the CIA

  10. Trust in USA? What's that? by coder111 · · Score: 4, Insightful

    Who in their right mind could trust USA? Unicorns are more real than trust in USA. Spying, 2 wars based on lies and deceit, lots of profiteering at everyone's expense, patent trolling and other IP based litigation nonsense, shoving harmful legislation down everyones throats- all of that is coming from US.

    Well, unless it's "trust" as in "I trust US to screw everyone at every opportunity".

    --Coder

  11. Re:"EU won't suspend data sharing accords with U.S by bob_super · · Score: 2

    If the EU had at least the same size balls as Brazil, they would demand reciprocity.
    Let's see how long the Americans would tolerate their data being "safely shared" with Europe's governments.

    What? A storm during thanksgiving? Snow at Christmas! Playoffs? The superbowl !!!!! (5, for insanity)
    What was the topic again, Obamacare?

  12. Europe has battered wife syndrom by Nyder · · Score: 2

    "The USA isn't always like that, only when I do something wrong. I love the USA, I could never stop being it's partner." - EU

    --
    Be seeing you...
  13. One Step by Anonymous Coward · · Score: 1

    1. Trust No One

    That's it. Cryptography has always and will always run on jungle rules.
    Either you break it and get the cleartext, or you can't break it and you don't get the cleartext.
    There is no middle ground. They can read your messages and spy on you or they can't.
    If your "allies" can read your messages, they will. Full stop.

    1. Re:One Step by cpghost · · Score: 1

      How do you prevent traffic analysis by using end-to-end encryption (only)? We need more than just encryption, we also need to hide the traffic somehow using obfuscating routing algorithms on a very wide scale. Ideally, everyone should participate in this activity, but that will remain a pipe dream of privacy advocates.

      --
      cpghost at Cordula's Web.
  14. Re:Screw the EU by jones_supa · · Score: 1

    Of course there are surveillance plans running in EU also, but not necessarily anything as massive and intrusive that NSA is conducting.

  15. What's wrong with cutting the wire? by erroneus · · Score: 1

    Seriously? We just don't need to share that much information. There's no "reform" unless the US stops breaking ITS OWN LAWS. That's where reform starts.

    As much as I would hate an even "worse" US life, I think it'd be for the best that the way government here is doing business ceases to be profitable.

    1. Re:What's wrong with cutting the wire? by cpghost · · Score: 1

      There's no "reform" unless the US stops breaking ITS OWN LAWS.

      Even if the US abode by its own laws, spying on foreigners, including EU Citizens, would still be allowed, under those laws. Changing laws to include EU Citizens in the list of persons not to be spied upon would be a confidence building measure... but we all know that the US won't stop snooping in Europe. There are way too many juicy trade secrets there to steal, so a no-spy rule w.r.t. Europe won't make it through Congress.

      --
      cpghost at Cordula's Web.
    2. Re:What's wrong with cutting the wire? by erroneus · · Score: 1

      The US constitution is a limit of what government can do. Not just a limit on what the government can do to people living in the US. The very idea that it only applies to the people of the US is a twist of interpretation. The constitution is how this government should behave MORALLY. If it's immoral to do it in the US, it's still immoral to do it to other people.

    3. Re:What's wrong with cutting the wire? by WillAffleckUW · · Score: 1

      There is no penalty for the NSA to break our own US laws, and all the EU-US treaties or US-Canada treaties signed.

      Everyone knows that, especially those of us who have worked in the belly of the beast.

      No penalty - none. Nobody is going to jail for breaking the law, except those who tell the truth.

      --
      -- Tigger warning: This post may contain tiggers! --
    4. Re:What's wrong with cutting the wire? by thrich81 · · Score: 1

      According to the WikiLeaks/Manning revelations, the French are the worst industrial spies in Europe. "France is the country that conducts the most industrial espionage on other European countries, even ahead of China and Russia, according to leaked U.S. diplomatic cables, reported in a translation by Agence France Presse of Norwegian daily Aftenposten's reporting."
      Another quote, "In October, 2009, Berry Smutny, the head of German satellite company OHB Technology, is quoted in the diplomatic note as saying: "France is the Empire of Evil in terms of technology theft, and Germany knows it.""
      http://www.cbsnews.com/news/wikileaks-france-leads-russia-china-in-industrial-spying-in-europe/

    5. Re:What's wrong with cutting the wire? by newcastlejon · · Score: 2

      The US constitution is a limit of what government can do.

      Evidently not.

      --
      If God forks the Universe every time you roll a die, he'd better have a damned good memory.
  16. Step One: Destroy the NSA Data Center in Utah by Anonymous Coward · · Score: 1

    Preferably by a drone strike. US can't collect data if it has nowhere to store it.

    1. Re:Step One: Destroy the NSA Data Center in Utah by cpghost · · Score: 1

      Even without Utah, the NSA can still access all data at Google, Facebook, Yahoo!, Amazon, SWIFT, et al. data centers through back doors. There should be no need to mirror all this at their own facilities. NSA's data centers will collect the remaining scraps, like phone calls, metadata etc, and for this, they don't need Utah, they have enough capacity of their own already. Utah is for future growth, but that's another story.

      --
      cpghost at Cordula's Web.
  17. Re:"EU won't suspend data sharing accords with U.S by neo-mkrey · · Score: 5, Insightful

    So the EU rolls overs and is a good bitch for the US again? Pathetic! I don't know what is worse, the fact the US has no morals, or the fact the EU has no balls?

  18. Re:Screw the EU by cpghost · · Score: 1

    Of course there are surveillance plans running in EU also, but not necessarily anything as massive and intrusive that NSA is conducting.

    Who knows? At least CGHQ has been doing some pretty heavy surveillance and spying on an international level too in recent years. Never underestimate the capacity of a government hellbent on eavesdropping everything that is being sent down the wire.

    --
    cpghost at Cordula's Web.
  19. For the US/NSA trust is a one way street by schwit1 · · Score: 4, Insightful

    The EU tried going the trust route and it got burned. This situation is indicative of the scorpion and the frog.

  20. Two Easy Steps : by jxander · · Score: 1

    Step 1 : Dismantle the NSA, and file criminal charges against their leadership.

    Step 2 : There is no step 2.

    --
    This signature is false.
    1. Re:Two Easy Steps : by cpghost · · Score: 1
      You must be new here. There, fixed that for you:

      Step 1: Dismantle the NSA...
      Step 2: ???
      Step 3: Profit!

      --
      cpghost at Cordula's Web.
    2. Re:Two Easy Steps : by WillAffleckUW · · Score: 1

      Step 1 : Dismantle the NSA, and file criminal charges against their leadership.

      Step 2 : There is no step 2.

      Step 4. Profit from selling EU private data to US corporations!

      --
      -- Tigger warning: This post may contain tiggers! --
    3. Re:Two Easy Steps : by scotts13 · · Score: 1

      Step 1 : Dismantle the NSA, and file criminal charges against their leadership.

      Step 2 : There is no step 2.

      Sure there is, and more. Restoring trust at this point would entail the above, plus destroying the office facilities, computers, equipment, and network infrastructure used by the NSA. Followed by a decade or two of unlimited access and inspection of any similar government assets by a neutral outside party. Then, maybe, someone will trust USA, data, and security in the same sentence.

  21. Re:"EU won't suspend data sharing accords with U.S by Carewolf · · Score: 2

    The European Union backed down on Wednesday from threats to suspend agreements granting the United States access to European data, rejecting calls for a tougher stance over alleged U.S. spying

    Alleged? What part of the official U.S. policy and actions they have admitted to, apologized for but vowed to continue, is alleged?

    That is not a neutral story. I wouldn't trust it.

  22. Those "accidental" undersea cable breakages? by whoever57 · · Score: 1

    Remember how undersea cables kept getting broken by anchors? Was the NSA behind this? It could happen in at least 2 ways:
    1. Break the cable, the repairer installs interception device.
    2. Break the cable, tell the operator that breaks will keep happening unless the operator allows access to its network.

    --
    The real "Libtards" are the Libertarians!
  23. I would never trust EU-US data flows by WillAffleckUW · · Score: 1

    I for one would never trust EU-US data flows - the US side will always ignore any treaties about privacy and steal the personal information of EU citizens.

    Always.

    Without question.

    This is why the US is 31st in download speeds - we reward insanity.

    --
    -- Tigger warning: This post may contain tiggers! --
  24. Re:Screw the EU by Teun · · Score: 1
    Some EU member countries are bad, no discussion necessary.

    Here we're talking about the EU and they have two branches of government, the commission that backed down and the parliament that wants stronger action.

    The EU commission is made up of lackeys of the member countries, the EU parliament is very much 'of the people' and they have to share power.
    Give it some time and we'll see who wins, the establishment in the countries or the people of the EU.

    This is one of the reasons I am very much pro-EU unity.

    --
    "The likes of Facebook and WhatsApp are free to those whose privacy is of zero value."
  25. Re: Waste of time by Anonymous Coward · · Score: 1

    Can operate with secrecy: i assume your definition of "secrecy" include being front page of every decent newspaper?

  26. But Senator! by Runaway1956 · · Score: 1

    I can't understand why the Senator is shocked that our spies lied to him. They are SPIES, after all! Do you really expect that spies are going to tell you the truth about anything?

    --
    "Windows is like the faint smell of piss in a subway: it's there, and there's nothing you can do about it." - Charlie Br
  27. Not sure about that. by Runaway1956 · · Score: 1

    We have some equipment at work, with factory and maintenance access codes. Those codes change, seemingly at random, until you know the secret. Date and time determines the proper access codes. I suppose that it would be a fairly simple matter to only allow access within certain time frames - that is, simply to null xx% of the now-valid codes.

    This isn't a new system, by any means. The machinery runs SysV dated late 1990's.

    --
    "Windows is like the faint smell of piss in a subway: it's there, and there's nothing you can do about it." - Charlie Br
  28. correction by Mister+Liberty · · Score: 1

    Restore the (mistaken) /belief/ that you can trust the US.
    I.o.w.get some sense of naievete back.

    I fear that's gonna be a cinch. Apathy has been a high
    demand US export item for longer than just the past year.

  29. Reassure me all you goddamn want by weilawei · · Score: 2

    But following that up by saying you want to protect existing agreements seems to imply to me: We're going to keep spying on you and blackmailing you, but we're going to hide it better, promise!

    Same shit, different day.

  30. Punish the guilty by SoftwareArtist · · Score: 1

    It's great they're talking about reforms to prevent this happening again, but there's one critical element no one is talking about: prosecuting people for the crimes they already committed. The NSA has been breaking laws on a massive scale all over the world, but there hasn't been one single prosecution of anyone for any of them. Until they see the law applies to them too, they'll have no reason to not just keep ignoring it. And then all the reforms in the world will be nothing but paper, things to ignore just like everything else they find inconvenient.

    --
    "I'm too busy to research this and form an educated opinion, but I do have time to tell everyone my uninformed opinion."
  31. Re:Simple enough by Cederic · · Score: 1

    "will be" ? Already is.