The surveillance arms race
Just what is excessive?
Agentless Backup is Not a Myth
Computers, Freedom, and Privacy Surveillance breeds more surveillance. That seems to be the primary message from the first day of this year's Computers, Freedom, and Privacy conference, held this week in Montreal.
The theme of the conference is "autonomy", one of those vanishing luxuries.
Lawyer Eugene Oscapella uses the war on drugs as an example. This effort provides the justification for all sorts of surveillance, from surprise school sweeps covering kids all the way down to kindergarten, to sending sniffer dogs through hotel rooms (besides airports, bus stations, and ferries), to dawn raids by police in full body armour and carrying machine guns. And the official explanation given after a failed bust? Policing is not an exact science.
Is flying over a house with a forward looking Infra-Red camera, as in the case of R v Tessling, invasive?
Since 2001, however, the war on drugs has been fuelling the War on Terror via the claim that terrorists are funded by the drug trade - and also by getting people used to being watched and searched. "The normalisation of extraordinary powers."
Some of that watching is being done by your own devices, as Simson Garfinkel explained in a discussion of computer forensics. Mobile phones are not standardised, so there is tension between law enforcement agencies, which want everything to be easy to read, and mobile phone companies, which may regard the inner workings of their designs as proprietary information. One English company has, however, come up with a scheme for reading mobile phone data directly from the SIM, bypassing the inconveniences of incompatible plugs and operating systems entirely.
Forensics breeds anti-forensics, so tools keep being developed to evade detection, disrupt the collection of information, and waste the examiner's time. For more, see the forensics wiki.
One interesting sideline: Garfinkel debunked the widespread belief that it's impossible to erase data from a hard drive in a single pass. On modern hard drives, he said, there's no evidence that you can't, and the National Institute of Standards (NIST) said in 2006 that a single pass is sufficient. But people just don't believe it.
Just as people also don't believe that the apparently contentless, impersonal information about who they contact and when is often actually more valuable to law enforcement than the content everyone tries so hard to protect. Using traffic data (such as the location data from mobile phones, or the pattern of calls or email correspondence) George Danezis figured that you could infer status, relationships, and much else. Computational sociology suggests that surveilling around six per cent of nodes can - if you pick the right six per cent - give you information about nearly 100 per cent of the entire network. Selection is the key, and traffic data makes it possible to pick that correct six per cent.
This is, of course, not how law enforcement has been working in the UK or elsewhere. Instead, they tend to take the Humphrey Appleby view that they must know everything, and so we get laws requiring data retention. If it doesn't work, we'd better do more of it. ®
COMMENTS
The actual reason is...
because they can. As a member of the inner sanctum of fathers 4 justice(I have been quoted in the register before) I now do little other than provide advice. because men are so pathetic and useless. the courts run circles round us - and so does the government to the population of the UK.
I suppose we get the sort of government we deserve.
The reason no one does anything is..
Even in countries where you can do something about it, those with the necessary clout (mainly politicians) are too afraid to do so.
Why? Because their opponents (despite privately agreeing that such powers go way too far) will use any sort of protest against privacy invasion as a "not tough on terror" mantra in the next election.
The other problem is both left and right wing politicians have helped pass this lunacy into law.
The main reason the FBI and CIA gave for not catching the 9/11 terrorists was that they had too little man power to sift through all the data, and weren't able to correlate reports that probably had all the information they needed to stop it from happening.
So our answer to this is to exponentially increase the amount of data by vacuuming up every thing said on any form of communication.
And do they filter out the tat by targeting known havens for terrorists, Pakistan, Saudi Arabia, etc? No. Instead we target our own citizens.
Why? Because most politicians couldn't care less about terrorism.
Some of them assist the passage of bills like the Patriot Act because they see financial gold mines for themselves and their crony run corporations that win very tasty government contracts.
Other reasons are very complicated, and mostly have to do with paranoia and bigotry.
Mostly though it comes back to money, and if by allowing too much power to fall into the hands of assholes they can earn large amounts of it, what do they care if those powers are abused?
Speling eror
I can't believe I posted "I no its..." in my previous. Please either correct it for me or post this apology. Must have been the excitement of signing up for an elreg account.
IT infrastructure monitoring strategies
Agentless Backup is Not a Myth
Steps to Take Before Choosing a Business Continuity Partner
Enabling efficient data center monitoring
Requirements Checklist for Choosing a Cloud Backup and Recovery Service Provider
