Slashdot Mirror
CFP2000 - Freedom and Privacy by Design
The organizers of the next Computers, Freedom and Privacy conference, to be held April 4-7, 2000, in Toronto, Canada, are issuing a Call for Participation in a workshop entitled "Freedom and Privacy by Design" - how to use technology to bring about strong protections of civil liberties against governments and businesses that would censor or snoop. I plan to attend: give me some ideas!
Tell them the Gpl means everything :)
It seems to me that this is what the whole open source movement is all about. If we can feel that we have the same technology as the governments and big business, then we have much less to fear. I hope to see lots of Oss developers at this one!
"as plurdled gabbleblotchits on a lurgid bee" - Prostetnic Vogon Jeltz. (One man's humorous is another mans flamebait)
Don't use telnet, use ssh. Got any sensitive e-mails? Time for PGP or GPG. (GPGPGP? Ahh!)
:)
Why, you say? I don't have any data anyone would care about? Well, you might be right, but don't use that business e-mail account for personal reasons if you care about your job. And remember that the company might be logging your web access too, checking it against company policy. Chilling, isn't it? It's practically standard procedure nowadays.
Also, if you encrypt your stuff, and you usually have nothing to hide, and others do the same, eventually it gets much harder for anyone to snoop on the internet. They'd generally want to attack people who send unencrypted streams of data... Sucks for them.
Also, some common sense: Don't leave any encryption keys lying around if you care about your identity. In the future, I'm sure this can only get worse, and not just for Sandra Bullock. And saying "encrypt everything" might sound cool, but alas there are a few places where it isn't a good idea for everything. Like slashdot, for example. I wish my user account / password was secure, that would be nice... (the lesson here: have a throw-away password for the WWW, since much of the submissions are in plaintext, or a reasonable facsimilie) But I could care less about the actual content of my posts, they definitely don't need to be encrypted as they are being posted to a public forum! Like so.
---
pb Reply or e-mail rather than vaguely moderate.
pb Reply or e-mail; don't vaguely moderate.
While it probably doesn't need mentioning, encryption is the best use of technology to prevent snooping. The problem with this is twofold, however: 1) governments and large corporations have access to resources far beyond what most folks can muster up, and 2) we really have no realistic idea of what government agencies are truly capable of doing; I mean, who really knows if the NSA hasn't found a way to make PGP its bitch? Yes, the chances are that the large businesses and governments of the world don't have the capability to defeat the encryption that we have access to, but do you want to risk your freedom on a maybe?
:)
With all of the ways that your privacy can be compromised, I really can't think of any other uses for technology that would assist in protecting privacy, especially since technological advances always improve the capability for someone to invade the privacy of someone else; when there are huge companies and governments who can churn out things like spy satellites, wiretaps and shotgun microphones, technology only seems to widen the gap rather than even the playing field. Of course, maybe I'm just paranoid.
Yet somehow I doubt it.
Deosyne
I've noticed that many privacy issues completely ignore the evils of directed marketing. I feel as though some ads drain my soul by desperately trying to grab my consumer dollars... Marketing and advertizing become a Privacy issue when they "taylor" their ads to meet my specific needs. (Instead of tayloring the service or product like they should do in the first place) This way, a marketing company can bend or try to squeeze in a product that would not otherwise fit what I want- so i wouldn't probably buy it. This doesn't apply to the more classic forms of promotions... it's these slimy "hey you... great deal" - "rebate" ... promotions that I feel invates my privacy... and is plane disrespectful. (Almost as low as phone marketing - you know, those ones that call right during dinner, or just as your leaving for work...)
Of course it is a double edged sword (as some entertaining ads I look forward to) - and it does support "psuto-free" entertainment. The biggest issue I have is with the ability for "customized" web sites to sell (and make loads of money) off my internet behavior. (Alladventage at lease tries to pay me for it) I really HATE all those SPAM-like messages that try to entice "get rich quick" schemes that I'm sure many people fall for.
If there was some "tool" that could filter out unwanted marketing techniques (even if it "compensated" the commecial dependant medias for the lack of advertising some how)
- I believe that that as marketing techniques become more advanced... us "privacy" finatics (what are we hiding anyway) are going to be paying alot more attention to who finds their way into our pocketbook through "targeted" marketing, and less attention to those peeping through our email or computer files.
In an ideal world, Privacy should be maintained by the privatee, not the "higher power"
Perspective is to Science what Interpretation is to Religion. Obama + Paul FTW
can be undone, as well.
Not that we shouldn't still make use of technological solutions where practical, but technology isn't really going to make a dent in the real threats to privacy, i.e. the end points of the chain.
Encrypting the transmission media (for example) won't do much good if the other end of the transmission has no scruples about the distribution of the information that they receive.
Unfortunately, privacy isn't about technology, but about respect. By and large, technological solutions aren't much more than stopgap measures, and will ultimately fail, unless we address the fact that to have privacy, others need to respect that privacy (and we need to respect the privacy of others, as well).
I tend to be loathe to suggest any kind of government intervention, but in some cases, only the force of law will address the worst of the issues.
By all means, we should use all technical means at our disposal to help protect our rights to privacy, such as encryption, some kind of provable authentication that doesn't require your life history to prove your identity, etc., but without a proper social framework that provides for privacy, and meaningful penalties for those that violate it, technology will be of only limited use.
Nunc Tutus Exitus Computarus.
Seriously though I think there's going to be a need for anonymized access to web sites and other net resources - so we can give away our email address without getting spam, our credit card information without getting ripped off, our home address to get something shipped without getting paper spam, our IP address so we're not being tracked around the net, use our SSN without it being being passed around, use our DNA without it affecting our medical insurance rates etc etc
And it has to be done a way that's proactive from our point of view - ie we don't depend on other people that we have to business with, (like the medical insurers, or the retailers or ....) who don't put our best interest ahead of theirs, to be nice to us and respect our confidentiality - gotta start using protocols (net, commercial, social, ...) that don't give them any option
These are difficult technical and social problems.
I suspect that what it comes down to is that we're going to need some reputable 3rd parties (those datahavens) to proxy our transactions for us.
At some levels we already have these - the big companies that sell financial (credit) and medical information about us - today they don't have our interests at heart either - somehow we have to find a way to take back ownership of our data.
I know Europe has stricter privacy laws than the US - anyone want to enlighten us on how they work?
As others have already said, encrpyt, encrypt and encrypt.
May I also suggest some personal firewall type software, such as the late Atguard. (Now another part of Symantec)
Cheers
Life is just a bowl of All Bran - Small Faces
We have to make crypto easier to use, even if we sacrifice some security in doing so. Sure, for my most private communications I'd rather verify the public key myself or through a PGP-like Web of Trust, but for most mails it's still far better if I trust some DNSSEC-based database to bind an email address to a public key than if I don't use encryption at all.
Of course, by "sacrifice some security" I don't mean we should start using shorter keys - the cost of long keys is not very much so we might as well use them - I mean "allow some possible attacks that more secure approaches might deny", such as trying to substitute a fake public key for the intended recipient's keys. These attacks are still far more expensive and difficult than pure eavesdropping attacks, which are relatively easy to thwart.
Oh, and we shouldn't use SSH everywhere - SRP is the Right Thing for remote passwords, and again it's far more convenient for the users.
When security measures become inconvenient, people circumvent them in ways that utterly defeats any security gained - like by telling people their password over the telephone. We have to make security so convenient people don't even realise it's there, and do the best we can in the environment that has real users in it. Those who know what they're doing can of course do better, but on the other hand those who know what they're doing are vastly outnumbered by those who *think* they know what they're doing.
--
Xenu loves you!
Code is hard. Programmers are expensive. The sacrifices for civil-liberties efforts are substantial and the rewards meager, especially compared to the riches of attending to the needs of corporations.
We all know "Crypto Good". Now what?
It's not my quote. It's Larry Niven's. (And if you don't know Niven, head on over to library/bookstore. Go ahead. I'll wait.) My point is this: Lest we lose sight of the Big Picture, there are, in fact, several GOOD reasons why the government wants to invade privacy. In the worst-case scenario, people could operate covertly virtually under everyone's noses. I don't believe that a great number of people would want to give terrorists the opportunity to blow everything they have up merely because they felt insecure that the government was looking over their shoulder. I certainly do not advocate that the government (or any agency) should have ultimate power and be able to know absolutely everything about me. However, people must also consider the reasons behind the government's actions. To completely lock observers out of the loop is as dangerous as giving the government carte blanche. Who is to say where that limit should be? Before everyone gets in a uproar about encryption and how everything needs to be encrypted, and how we should keep Big Brother from looking over our shoulder, they should think what the consequences of such an action may be. As a final note, Niven has noted that the constant is not the same for each individual, or even for individual governments. If technology can find a way to increase the constant, I'm all for it.
Where the wind blows, the tumbleweed goes.
Also, if you encrypt your stuff, and you usually have nothing to hide, and others do the same, eventually it gets much harder for anyone to snoop on the internet. They'd generally want to attack people who send unencrypted streams of data... Sucks for them. :)
People who lurk around sniffing out plaintext messages and attacking them are usualy bored script kiddies. They are not something to worry about, unless you annoy your younger brother whos idea of a great retaliation is to post your logfile showing your access to www.spank-me-harder.com.
Against serious attacks, be they privacy or denial of service, the average user has no defence except anonymity. To hide in the masses is a cowardly concept but it works. If noone knows you're there they wont seek you out and attack you. And before you ask, yes I am quite familiar with the 'It's not the voices of the evil but the silence of the good' reasoning and I agree with it. But on the net, if you want to stay somewhat safe, don't stick out. Just take a look at how many attacks are made on the FBI's net resources and how many on John Doe's@Xoom. Anonymity works.
This brings us to the next point. Defending privacy on the net is not only a question of cryptography. The main problem is the usage of information that is gathered. If I wish to post in alt.binaries.terrorists that's my concern, but any ISP can, without threat of legal reprimand, enter my log and punish me by declining me their services. And that's a sanctioned privacy breech.
The same goes for push marketing (see the article further down). It's the companies that log access that choose how they will use their information. And use it they do. Just check AltaVista, the ads they show are tailored based on which country suffix you're connecting from. This is a mild form of push marketing, but it's concievable that someone would store information on what you search for and correlate it against which ads you're most liable to click-trough. And once such databases are in place they become a real threat to the integrity of the average joe.
But I do not believe that the situation is as bad as people are painting it up to be. If one thinks back to the 50s and the Communist paranoia, the 60s and the 'big brother' and later atomic war paranoia and the 70s with its drug wars, none of these problems were as bad as they were made out to be. The privacy issue on the internet will most likely go the same way, it's going to be present, and potentialy dangerous, but it will be forgotten for newer fears.
Phase 1: Where do you want to go today? Phase 2: This is where you want to go today. Phase 3: You're not going any
Don't allow the coppers and such to be able to wiretap ipv6! Also it would be nice if the feds in both canada and the us outlawed building wiretapping into routers
I keep reading a lot of vitriol being expended toward those companies that keep data on transactions that people perform with them. What I don't here is anyone defending the companies rights.
Don't get me wrong here. I get irritated at corporate intrusion, too. The other day I had to threaten an AT&T telemarketer with a lawsuit. I was getting at least two calls a day from people wanting to know who my long-distance carrier was (as if it were any of their business).
But think about it. If I buy a widget from Joe Schmoe, do I have a right to tell everyone that I bought a widget from Joe Schmoe? Can I tell people that the widget was good/bad/cheap/expensive... (e.g., can I give a review in a magazine)? Can I state publicly that Joe Schmoe was easy/hard to deal with? Free countries throughout the world claim the ability to do a product review as a basic right of free speech.
If I can talk about a transaction that I have with Joe Schmoe, Inc., why can't Joe Schmoe, Inc. talk about it? You can say that it isn't fair because Joe Schmoe, Inc. profits from the information, but don't product reviewer's profit from the information they provide? How do we justify taking the right of freedom of speech from Joe Schmoe, Inc.?
Aah, change is good. -- Rafiki
Yeah, but it ain't easy. -- Simba
This idea may seem harmful but I believe it is not. In fact a very similar thing is done now to hunt bugs in the commercial software. What if to launch several open-source projects aimed at making software to penetrate privacy. I mean, for example, developing toolkits and application for massive e-mail filtering, keystroke sniffing, instant messages interception and blah-blah-blah. I am sure that there are lots of people on /. who have ideas on what to do in technical terms. These should be classical open-source projects under least restrictive licenses and with good docs. As a result almost anybody will get an ability to penetrate privacy of almost anybody. But then counter-action will follow and various anti-eavesdropping software and hardware will be developed both by the open-source, commercial and government communities. And it will be much easier to do it than now because many of the attack methods will be known and well studied. Obviously, protection software will be able to fight not only open penetrating methods but also ones that are used now. This scenario can be extended to hardware specifications too. To avoid legal hassle the projects can be based in countries that would not preculed such activities (like in case with the encryption software).
Most of the posts I see here are concentrated on one issue or another, not looking at the big important issue. What it comes down to is this, we will not be free online until two things happen. A) When online we are granted the same freedom as we have walking down the street. B) We have the same rights involving our electronic data and communications that we have over our physical property and traditional communitcations media ie. the mail.
The problem with assuming the internet is an unassailable bastion of liberty, that it inherently "routes around censorship" and so forth, is that its human users reside in the physical world and are subject to physical coercion, such as losing their jobs, their homes, their freedoms, or (in extreme cases, in extreme locations) their lives.
Others have mentioned the importance of very strong, easy to use encryption. This is important. However, I think a far better approach would be to design the underlying protocols to allow for transparent use of strong encryption, strong authentication, and double-blind anonymouty.
This may sound at first absurd, the idea of having both strong authentication capabilities coupled with (ideally) unassailable anonymouty. However, the key is that one's cyberspace handle, while an authenticable on-line identity, should not be able to be matched up with a real-world, physical being without that person explicitly identifying themselves willingly and deliberately.
Project's like "freenet" are important, though I would suggest going further and redesigning the lower protocols (e.g. an ip protocol - perhaps a variant of ipv6) which would incorporate these characteristics at the lowest level. Obviously this is not a panacea -- traffic analysis could for example be used to trace messages to a particular, physical location despite whatever electronic anonymouty has been designed into the system. These and other problems would of course need to be addressed. Even if they couldn't all be solved, a great many of our existing difficulties and vulnerabilities would be alleviated.
I think that, as long as the technology makes an all-intrusive, omnipotent state possible, it is only a question of time (apparently not a very long time at that) before such becomes a reality. Echelon, the litigation of the RIAA and MPAA, the censorship imposed by the Scientologiest on their critics, and so forth, are only the tip of an emerging iceberg. Redisign the technology to make that sort of thing impossible, very, very difficult, or unacceptably expensive, and you go a long way toward preventing it from ever happening. After all, what good is a court order if the physical and logical infrastructure make it impossible to carry out?
The Future of Human Evolution: Autonomy
1. Because Joe Inc has no freedom of speech. Thats right, corporations do not have the same rights as individuals. The twisted american legal system may consider corporations to be individuals, but I certainly don't. In any society, there needs to be a balance of power to keep the strong from preying on the weak. Making a clear distinction between people (natural entities) and corporations (synthetic groups of people that have no interest but to profit at the expense of people) is one way to keep strong companies from crushing individuals.
2. The right to freedom of speech is not without limits. You can't say anything at all that you may like about people with impunity. In particular, you can't say "fire" in a crowded theatre and you can't slander people. The notion that anyone can say anything about anyone at anytime reflects an extremely naieve understanding of the bill of rights.
3. Because I don't give my consent. Information has financial value and if you take information from me without my consent and then turn around and sell it, that's tantamount to stealing. If you want to take the information from me, you're going to have to mention it upfront and compensate me. Product reviews are different entirely. They involve people commenting on products and ideas that are available for everyone to see.
If you truly feel bad about limiting big corporation's "fredom of speech", then presumably, you wouldn't mind your health insurance company publishing every detail about your medical history on the internet. Or is that a problem for you?
I think that Slashdot itself had a fine idea when it started the points system--it preserves the right of anonymity but lends more credibility to "signed" things. E-mail and other electronic communication should be the same way: one should have the right to post anonymously.
At the same time, there must be such a thing as a digital signature that is not traceable back to a real person. This is the sort of strength that anonymous remailers have--or used to, before the "church" of Scientology coerced the Swedish (I think) government into confiscating the identities of an anonymous remailer's system. In order to protect political speech, there must be a way to sign things verifiably but privately. Prior to the American Revolution, the influential Federalist Papers were published as a series of pamphlets, all signed by "Publius". In this modern age, if anyone can sign "Publius" to any document, the real message would be drowned out by spam, mockery, satire, and possibly even subverters of Publius's message. On the other hand, if Alexander Hamilton and James Madison had to sign their own, real names to their works, they would have been arrested, shipped to England and hung as treasoners after the first pamphlet was published. Always remember that several of the signers of the Declaration of Independence were arrested; of them, a few were tortured or executed, or died in prison. That's what can happen when you chose to speak out against a government, but use your own true name.
So, how do we protect the right of safe free speech without having meaningful speech drowned out by spam?
--
This is not my sandwich.
Since it seems that goverments & corporations have the resources & inclination to collect any and all information they can about the general populace, regardless of whether the populace likes it or not, it seems like the only real alternative to defend our own rights is to fight fire with fire - collect, organize & share information on those who would attempt to be our "overlords", continually audit their behavior & organize "corrective" behavior where warranted.
The media somewhat fulfills this role, but the mainstream media seems to have been greatly corrupted by the influence of their sponsors (i.e., business) and the resultant coverage tends to be biased to avoid offending those sponsors. (It defies common sense that a media outlet will REGULARLY defy their sponsors - they might occasionally run something to show their independence, but in general they will not risk the revenue stream which allows them to exist.)
There are lots of little advocacy & watchdog groups which are attempting this function - but they aren't working together & the general populace is not taking an active part in supporting their activities, therefore their overall effect is somewhat insignificant.
I guess an effective system would provide a way a way to organize & tie together the efforts of these groups, including generating reports for & accepting input from the general populace. It would be decentralized & have some kind of builtin self-checking feedbacks to resist corruption of the information. Anonymous whistleblowing would be a necessity, along with validation through cross-reference & investigation, to try and dig out the dirty "secrets" that students of Machievelli (sp?) are so adamant about hiding.
*sigh* nice daydream, eh?
Assuming people really wanted to do this, what I'd love to see in a standard is a means for me to control my own information. It would go something like this:
1) One of these "anonymizing sites", or even my own server, would be recognized as the authoritative source of personal information about me.
2) I could establish my own rules for access to my information: how much, by whom, when it's available, and how it could be used.
3) There has to be a mechanism for one-time access to certain info -- I'll give my address to company X to ship me something, but the mechanism kicks in and erases my address once they've printed the label.
4) All information that might persist on someone's database would be date-stamped, so that it would be clear that the info may no longer be accurate.
Even a limited version of this system would sure stop a lot of the credit-bureau misidentification nonsense -- the credit bureaus would have a place to go to verify changes to data, and data that had long since been identified as inaccurate wouldn't come creeping back in, as happens today.
If you think this would be impossible to enforce, ask yourself: who but you knows your new phone number, or a new address, or when your child is born, or what your blood tests said? Lots of people know each item individually, most of them already are or could easily be bound by law to keep it secret, and virtually no one but you knows all of these things, until you let them.
Of course, if we all just paid in cash (need digital cash!), much of this would be unnecessary.
"You can't get something for nothing." - my grandfather, on the stock market and Reaganomics.
people should have the technical capability to maintain control over their encryption keys, and to be held accoutnable.
The latter is to prove innocence as well, not to allow people to be punished by big brother.
Without accountability, we are ghosts in the misted, only partially trutsed in what we say and do.
Accountability includes the wiretappers - sys admins and law enforcement etc are the main offenders. Lyal
OK, so electronic commerce is pushing the internet in the direction of greater regulation. There will either be regulation by government or by corporations, or by some Borg combo. Each has a legitimate roll, so the real question to me is whether we want decisions being made by programmers and product managers, or by an open political process. Of course I'm concerned about personal identifiers embedded in products...yes, I want my anonymity protected...but the poor record of legislators at grasping what they have already proposed as LAW is my greatest concern. Intellectual property policy, and especially copyright policy are the fundamental tools structuring the flow and use of information. So when I see Copyright law extensions proposed that benefit corporate rights proprietors, but limit the original intent to increase the free flow of information, I become even more aware that which individuals and groups benefit from the opportunities afforded by "new technologies" are determined in large part by how the Intellectual property system is structured. So who is lobbying for what? Where have they been successful already in bringing an Intellectual property law into existence that has directed Internet development in a restrictive way? How do I as an individual compete with a Communications lobbyist like Mr.Deep Pocket, to get my voice heard? Address the Political reality of the legislative process and the creation of law! Start by reading Lawrence Lessig's "Code and Other Laws of Cyberspace"...and be prepared for more "Communications Decency" Acts, or attempts to wiretap TCP/IP protocols, or more Intellectual Property giveaways to Media Corporations. Who will represent the individual Netizen in the struggle for a balance of interests? That is at least as important as cryptography/Open Source issues.