Hardware owned by a private business located on private property is now “public”? I don’t think I’ve ever seen a sign that says you can’t throw the demo ipads on the floor, so by your logic that would be okay to do?

and someone using it in a piece as “evidence” of a huge failure of intellect, and now “DH” here, I’m getting tired of this weenying little trick: MIKE, it’s simply lousy ergonomically to put the author’s name at the side rather than in the eye’s obvious path as newspapers and other web-sites do. Don’t blame readers if and when we miss it.

I think it sets a dangerous precedent if this type of thing is allowed and has no legal consequences. I don’t want images of me posted anywhere without my permission. If you don’t think so, I guess you care nothing for privacy.

As usual the authorities overreact. Why involve the secret service or even get a warrant to take all his hardware? Considering that the guy was open about it, making it his “art”, an invitation for an interview at the police station to explain himself would have been more than enough.

There are already plenty of webcams out there, that broadcast on the web what people are doing in public places. This just seems to push it a little further being closeups of people’s faces. If I had been one of those people, I probably wouldn’t have liked to have my picture published like that without my knowledge.

Nevertheless the charges laid against him are total bogus and should be thrown out.

The space is owned and operated be a private company. Just because the public is allowed in doesn’t make it a ‘public space’. Try showing up at WallMart with a camera crew sometime and see what happens.

They probably have software that does it automatically. People do stupid stuff with demo computers, you don’t want someone judging a your brand by some floor model that has a virus because of someone visiting a bad website.

Best Buy has software that doesn’t allow any changes to be saved through a reboot. So every time you turn it off and on again it is exactly the same as when you installed the protection software in the first place. I assume Apple does something similar.

You missed my favorite part of this story. The guys initial statement before his lawyers had him clam up was, “I asked the security guard if I could take pictures in the store, he said yes.” Obviously he had a camera with him and the guard didn’t understand what the agreed to, but funny none the less. I’ll see if I can find the link, but I submitted it to Mike the other day.

“That doesn’t mean they’ve either expressly or impliedly opened them up to whatever use anyone who walks through the door wants to put them to.

Neither have they given anyone any express or implied authorization to install software or alter their systems in any way”

I would say they have because doing so is not blocked. It is very easy to not allow a user account to install software I think by not restricting that ability you are giving implied authorization to install.

Those computers are not just taken out of the box and put on display, they install the demo software and set up a demo account. If they didn’t want you doing something its very easy to block it, by not blocking it they are allowing (and passively authorizing) you do it.

So if a company regularly mops the floors does that mean people can reasonably assume that it’s ok to urinate on them?

“The biggest problem seems to be the store employee who went and installed it to other machines (assuming I read the article correctly). I’m trying to figure out why he would do that without knowing full well what the program was doing.”

Its not a store employee, its a tech, probably at one of their tech centers or corporate offices.

Assuming some assumptions I assume this is what happened:

Notice that the employee picture came from Cupertino, CA which is an entire continent away from where he was setting these computers up(he is in NY right or did I imagine that?). So some tech(or monitoring software) had noticed that a lot of upstream traffic from a bunch of different stores was going to an IP. Since most people don’t upload things from Apple demo computer this probably threw up some red flags. They ask a tech to check out the site he sees the download that McDonald is putting on the demo units, so he downloads it onto a non-networked(on the net but not Apple nets) work computer so he can figure out what the program is doing. He sees its taking pictures and dumping them to the net, he calls his boss who calls his boss who calls his boss who calls the SS.

“Is it an invasion of Privacy? I think so. When I walk into a store, such as an Apple Store (or a Best Buy or any store w/ computers available) I think I have a reasonable expectation that the computer will not take a picture of me for future public display. “

You are fully aware that there is an army of cameras watching you in any of these stores and they are free to do what they want with those pictures and video.

that came off ruder than i intended

Was it a crime, not technically, but it will be a federal crime soon.

I think installing surveillence software on hundreds of computers daily crosses the line. Just because they’re available to test doesn’t mean you can do whatever you want with them. Even without the privacy issues, you’re potentially clogging up the network traffic and making the computers run slower.

And he asked “permission” in such a sneaky way – why do you think he did that? Maybe because he knew they’d object to what he was actually planning? And sorry, but asking permission from random people is not the same as actually asking permission from the people you’re taking the pictures of. Last time someone randomly asked permission to take my picture I said no.

At first it seems pretty heavy handed, but like Chris notes they don’t know for certain what the program did. I guess my first reaction would not be the nuclear option but more like bushwhack the guy when he comes in to install the programs again bring him to Apple jail and beat him with user friendly laptops yelling “is it safe?!”

wait… what are we talking about?

This is case of Apple and Big Brother ganging up to wale on the little guy. It also points to a short-sighted security policy on Apple’s part. Oh, and by-the-way, I doubt if the Secret Service, SS, was involved as they protect the president(lower case intentional).

From a technical POV, it’s a normal case of reality – technically saavy people (with motivation and time on their hands) will ALWAYS be able to mess with any technology accessible to the public. That’s computers, phones, and whatever that have public, accessible interfaces. Period. Always. Count on it.
So, the question is less of security/violation – there is NONE (at most somewhat inconvenient decryption). The question is how reliable and important is the information accessed. In this case, Nada. Weird, Yes, important, No.
Now you get to guess how reliable the publically accessible data on you is…

-Can I use your computer?
-sure
…
– I didn’t say you could … INSTALL software on it that TAKES closeup photos focused on people’s faces from a foot away WITHOUT their knowledge or permission, use our bandwidth to UPLOAD those photos to another computer we don’t control, and PUBLISH those photos all over the internet without the knowledge or permission of the people in them.

I guess that’s the same as “pushing the ‘H’ key”????

If I had any suspicion that Apple did indeed give fully informed consent to this ‘artist’ to do this, I would never go in their store again. To the extent that there are people like me, this guy ‘harmed’ Apple by damaging their reputation as a place you can go to look at a computer without the damned computer looking at you and sending your picture all over the world. I hope they sue his ass.

“Specifically, a reasonable person would expect that there would be security cameras in a store and that they might be recorded. However, this same person would probably expect that if there was a still taken from this recording of them, it would be rather grainy and indistinct.”

That reasonable person would be wrong. I know the cameras at best buy have a very high resolution. You can zoom to take a picture across the store(from that camera) and take a professional photo grade still.

Yeah if I am in a 7-11 I wouldn’t expect they can take a high-quality photo, but a lot of higher end chain store have some nice cameras.

I would think that because the software he installed is essentially just a fancy “timer”, taking photos at expected intervals, it’s not much different than say, using the shot timer on your digital camera.

The person who installed the software and started the “Timer” should be the one who owns the copyright on the images.

After-all, you wouldn’t say that Nikon owns some of your family photos just because you didn’t actually push the button yourself and the “Camera” took the photo based upon a timer.

Would you ?

Here is the legal definition of hacking:
http://definitions.uslegal.com/c/computer-hacking/

But the first step before you can go any farther is this:
“intentionally accesses a computer without authorization or exceeds authorized access, and thereby obtains–“

He has authorization and did not exceed authorized access. Any member of the public can walk in the store and use the demos -so he has authorized access

People are allowed to install software and the user policies do not block the installation of software -so he did not exceed authorized access.

Just because you think the majority of people don’t understand what hacking is does not mean that is what the law is based on. Was this beyond what apple thought people might use it for, probably. But that doesn’t make it illegal. Most reasonable people wouldn’t think the intended use of a netbook is shove it up someones ass, but if I shoved one up Daryl’s ass would I be hacking?

“Sony can have laughably weak security on its systems, but that doesn’t mean it gave permission for people to hack them.”

The difference here is a security system is just that, a system to block you from doing something or make it secure. Going around that is hacking because it exceeds authorized use. So the comparison is apples to oranges, if Apple had had a laughable weak security feature to prevent this then he would be “hacking.”

The only way this would unreasonable use would be if it is illegal. I think its shady but not illegal, but if it turns out otherwise than you could argue he exceeded authorized use. Because the only thing Apple has a reasonable right to assume is that you won’t use the demos to do anything illegal.

“Use of someone’s likeness without their consent could result in an appropriation claim. That’s why, when you watch reality tv shows, people who don’t sign waivers and releases are blurred out.”

Im pretty sure thats only if sound is recorded as well. Which is why all the people in the background have faces even though I’m sure there isn’t some kid running around getting them to sign shit. So if your voice is recorded as well then you need to give consent. The rest of that is a popular misconception. IANAL

http://www.internettollfree.com/articles/surveillance-security-laws-you-need-to-know-448

http://www.secretservice.gov/criminal.shtml

I don’t know why either but it is their jurisdiction.

You guys realize that horses shit everywhere right? I would get a lemur or one of the tiny little blue penguins.

Ok, but if we have clarified that, what most people think != the law, then what is the point of this discussion?

I think we all agree that this is a little creepy and, I know I certainly wouldn’t expect it to happen if I was at a demo machine. But beyond an ethics violation this guy didn’t do anything wrong. (Hijacking apple’s bandwidth is the best argument I have seen and I still don’t think it would be enough to get a judgment against him)

So is the lesson to assume less? Or that “most reasonable people” are wrong in their expectations?

“I personally think that just because you’re in a public place, does not mean that you are completely subject to any type of picture/scan/recording possible with modern technology.”/”but still most people in that state would consider it an invasion of privacy.”

Again just because we think it doesn’t make it so and doesn’t mean we can do anything about it if people do the opposite of what we think.

wait what? everyone is authorized to use the demo machines, that is what they are there for. The public is fully authorized to use them, you do not have to ask anyone in the store permission before you touch them. That is their intended purpose.

As far as did someone expressly tell him he could install this specific piece of software, no they didn’t. But in the realm of computers that is not what is meant by authorized access, authorized is anything the computer allows you to do without circumventing security protocols. So step by step:

Was he authorized to use the computer at all? Yes, anyone who walks in off the street can use the computers.

Was he authorized to install software? Yes, the user account that he is authorized to use (see above) allows him to install software, therefore he is authorized to do it.

If had to gain unauthorized access then it would be hacking (i.e. secretly use the computer, use a staff computer instead of a demo, use a staff login to access a admin account, or anything else to force the install)

Again, No he did not have express permission to install this specific software. But he was authorized to use the computer(everyone is) and authorized install software (everyone is). He did not use a loophole, fraud, or any other nefarious means to accomplish this. Apple allowed him to use the computer and he did what the computer is set up to allow him to do. Is this what it was intended for, certainly not but that does not mean it is unauthorized.

Personally, I ask for permission and would have never thought to pull a stunt like this but what you and I would do is, again, not the law.

Here the difference is rape, robbery and hacking are all illegal taking pictures of people in public, with or without their consent, is not.

Rape by definition is forced sex, these computers allowed him to put the software on without any complaints, warning or attempts to make him stop so the installation was consensual.

Sony had security, albiet bad security, getting around that security was hacking. These demos had no security feature to block installation, effective or ineffective, so installing the software was not hacking(even though the option to block installation is built into the OS and takes about 8 seconds to activate, the “reasonable person” could assume that if they didn’t want you to install stuff they would disable the feature).

In your third instance the door is a security feature, being unlocked its a lot like Sony’s security, by going through it you are entering private property which you are not authorized to access.

I first learned of this through a different article that supplied the details of the basis for Secret Service involvement.

My article has links to the statute relied upon in the seizure of McDonald’s equipment and the original article I read.

As it stands, the case against McDonald is fairly weak. But that all could change, depending on exactly what they find on his laptop and other media.

I thought this was an apple store, not a “covertly install software to spy on our customers” demo room…

The grandparent was comparing a customer installing software to check compatability to someone repeatedly installing software that covertly takes photos and then phones home and you don’t have any problem with their analogy…

The grandparent was comparing a customer installing software to check compatability to someone repeatedly installing software that covertly takes photos and then phones home and you don’t have any problem with their analogy…

Ha, it looks like the Secret Service paid a visit to the Apple Store in question to investigate. Check out the dude in the top right photo. Tell me that’s not a man-in-black… 😉

Patriot Act – the SS has been mandated to head our electronics crimes taskforce under the DHS in a similar capacity to their original mandate around the US treasury – Could you imagine how many pictures of credit cards could have been captured courtesy of Apple Store’s awesome iTouch/Square walking credit card terminal system. If a single image of a credit card was captured and transmitted in violation of PCI, this guy should get fined or some time or something – but honestly it is pretty creepy without trying to find legal repercussions.

I think you need to explain why the Secret Service would be involved. They do not just protect the president, they also investigate mail fraud, credit card fraud, identity theft, etc. So yes, they’re assuming possible attempt at identity theft, which is why they were involved.

When I go to an Apple store I do not consent to being incorporated into an art project, a commercial or anything else. Unless there are large signs on the wall to the contrary, I do not assume I’ve wandered into some kind of living Facebook privacy-rights-out-the-window Hell.

Imagine if he were a known sex offender instead of an “artist” and posted his video simply as “Hot People I Took Pictures Of Secretly” on a page called “Getting Off.” Totally gross, right? Now, how would you supporters feel? If you would be repulsed, ask yourself why. This shouldn’t be okay just because you like his art or that he is an artist. Those factors can never be a substitute for the consent of the victims or for the consent of Apple to install software. This is no more fair than if he stuck a camera up to your living room window and made a “collage” of you and your neighbors.

With art comes responsibility. Your “artist” badge does not absolve you of knowing right from wrong or give you super powers to take rights from others because it pleases your aesthetic. He’s lucky I didn’t walk into that store. I’d make sure he’d be in court for the rest of his life.

I apologize for not fully understanding appropriation it certainly muddles the waters.

You were right that if you are using it commercially you can get sued for appropriation. The voice deal is still true but that just for the privacy tort. Appropriation can be used with just a still photo if you are making money off it.

So I wondered how likely people are to win a suit against this guy but what qualifies as “making money of it” outside of using it in an actual advertisement is pretty vague, and varies wildly between states, especially involving the internet and art.

I wouldn’t doubt some civil suits will come with how popular this has become. It could lead to a big ruling (if any cares about it in 6 months and they don’t just settle) for sites like PeopleofWalmart, lamebook(if facebook doesn’t kill them first) and their ilk. They technically make money of the images/words of someone else that were made in public. Most sites like this are started for fun(I would hope) but if they have adds and get popular then they are making money, even if its not much.

McDonald is on tumblr so he isn’t making money but he is making a name for himself(especially now, Streisand) which as an “artist” could be considered “profitable or commercial” although that doesn’t seem to be the spirit of the law.

I still don’t think Apple has a case though, unless they can drum something up about lost sales caused by the demos computers perform poorly. I don’t think they should be able to win if it did screw with performance, because they could say that about any program and if you can’t install anything than they can easily not allow it since they have a demo configuration anyway.

http://www.privacilla.org/releases/Torts_Report.html
Talks about appropriation in each section.

http://www.unc.edu/courses/2010fall/law/357c/001/googlemapsandprivacy/civil.html

http://abovethelaw.com/2006/10/strippers-remorse-that-cat-is-way-out-of-the-bag/

http://www.cas.okstate.edu/jb/faculty/senat/jb3163/privacytorts.html

Not to say I wouldn’t be weirded out to see myself on that site, if not a little angry or embarrassed depending on how stupid I look in the picture. I wouldn’t nessacarily defend what he did but I would defend his right to do it, because I don’t see the harm it caused, especially if the press hadn’t caught wind of it but even still.

I think you, and the others so bothered by this, should take a minute and realize how often you are and can be recorded, by a corporation, the state, or private individuals, and have little control over what happens to the footage. The press caught wind of this so its a big deal and people will look for themselves if they were Apple shopping in NY, but how many pictures of you that you don’t know about are on the web. Not many probably, but maybe. If there are, whats the big deal? As long as its something from when you are in public why do you care so much? That’s you in public being you, are you ashamed of yourself?

On your way to work, or at a baseball game, walking around with your family, or shopping someone can take a picture of you and do what they like with it, mostly. Is it that big a deal? You know people are looking at you, or can be instantly, when you do it why do you care so much that someone else can look at it later?

Not trying to make F.U.D but really if its a picture of your face in public whats the big deal. Sure a lot of hypotheticals make this worse; a stalker, associated statements(fictional[if not clear] or true[if personal]), or using your image to sell things. But in this case is it not any of that so where is the problem.

Legally depending on the state the law varies pretty wildy but I wouldn’t think this violates your privacy in any state, though I am sure someone will want to try. I have a post above with some links if you care.

“He’s lucky I didn’t walk into that store. I’d make sure he’d be in court for the rest of his life”

So you could both be poor together?

I was making light of your hyperbolic rape analogy I don’t really think its worth while to try and compare analogies of rape and hacking.

As to your other point, again the law is not all about what the average person thinks the law should be. Sometimes that test is used in certain laws. In privacy law it is used for or not you can expect privacy by where you are, as in “can I expect what I am doing to be something only myself or those I expressly permit to see.” You can not expect privacy in a department store you are in public surrounded by people. Anyone can be watching you at anytime, and someone probably is at least casually looking at you or they could be taking a picture, and you are certainly being monitored none of that violates your expectations of privacy.

Google “privacy torts” and your state then look for the part on intrusion, you can see for yourself that being in a public place severely limits your privacy rights. If you wanna try and accuse him of appropriation(making money off your image) look for my other post and read the links first but he did not intrude on anything that should be expected to be private.

You make very convincing arguments.

“Yes, but not in every possible way.” They can’t make money off them, he is allowed to take them and post them to a third party website. Can you show one example that says otherwise? My example is peopleofwalmart.com.

“Yes it is.”

Yes what is? you take one sentence and say the opposite. Do this count as an argument?

“But in the realm of computers everything you are not expressly told you can do is hacking.” That is what you are arguing? That is the opposite of my original thought smashed into one sentence. So you believe if someone you have to ask permission before you do anything? Please defend that statement since it is apparently what you think. Have you been on techdirt at all at work? Did you ask your IT manager if you can go to techdirt, or if you can reply to me? Did you ask him if you can reply to each post individually or if you can just reply to all posts at any time? Are you allowed to go to any website? Do you get permission before going to any non-work related websites? OMG are you a hacker?

“Not it isn’t. Just because it’s possible, doens’t mean it’s authorized.”

Ok, that sentence was overly broad. But all the words after that are the basis for that sentence, so why don’t you look for the flaw and tell me where this becomes hacking. And don’t tell me its what you can expect people to do, because if you(as a business decision) leave a computer on and open in public, ask people to come over and use it and not restrict anything they can do why can you expect them to be nice to it?.

computer fraud is also in their jurisdiction

I am not looking for the role of Google apologist nor am I completely trustful of everything the NSA might be up to, however, I must point out the NSA is not a law enforcement agency and they do have a computer security hat in addition to their surveillance hat. The partnership between Google and the NSA could be just one of cooperation to find technical solutions to Aurora vulnerabilities (the alleged Chinese spearfishing expedition). Then again, the NSA is being awfully cagey, or is that just complete stonewalling, in disclosing any details about the relationship. This is their response to EPIC’s FOIA related lawsuit.

http://epic.org/2011/02/epic-v-nsa-foia-lawsuit-nsa-wi.html

A summary of speculation about the relationship:
http://www.pcworld.com/article/188581/the_googlensa_alliance_questions_and_answers.html

and EPIC’s statement to congress:
http://epic.org/privacy/cloudcomputing/google/EPIC_Cybersecurity_Statement.pdf

From Consumer Watchdog’s report you might find out why Google owns a fighter jet.
http://insidegoogle.com/wp-content/uploads/2011/01/GOOGGovfinal012411.pdf

Finally, this is Consumer Watchdog’s humorous take on former Google CEO Eric Schmidt’s testimony before congress, though I get the feeling CW doesn’t really think it’s all that funny.
http://www.youtube.com/watch?v=IBMPphy9gFg&feature=player_embedded

I love art, I respect artists.

But I sure hate “art” and “artists”. This fellow was an “artist”. The quotes make a difference.

I don’t shop at Apple stores, but many people have commented that they definitely allow customers to install software on the machines. Nobody has said anything about either a whitelist of allowed software, or a blacklist of disallowed software.

Yes. Because you need a legal standard that won’t prevent normal authorized use of the system in case a local prosecutor decides to run amok and charge your grandma with a felony. When “engineering a system”, you need to consider “corner cases” like these and account for them up front rather than just assuming that everything will be peachy keen.
You need to design with worst case scenarios in mind rather than just depending on wishful thinking.

Applies both to law and computing systems.

Therefore, our faces are our own intellectual property. I recommend we start copyrighting them. Then ANY use of said photos could be dealt with by DMCA or other IP laws.

This is sarcasm, right?

More specific examples: Using my phone as a hammer is not permitted. Using my phone to play fetch with your dog is not permitted.

Because they damage the phone. If I ask to use your phone and then I use the nice hard flat back of it as a surface for writing something on a post-it note, or the reflective screen to check my hair, do you think that’s illegal? Because I’m sure that isn’t what you expected me to do either.

Manager at Supershoes puts out boxes and boxes of donuts and opens one up on a table under a sign “free donuts” and his customers appreciate the courtesy. Manager of Greatshoes across the mall comes over, takes all the donuts back to his store and puts them on a table under a sign “free donut with purchase.”

By the logic of some people here, what the second manager did isn’t illegal, because hey, the sign SAID “free” and it SAID “donutS” didn’t it? It never said who could take them or how many they could take or what they could do with them later, right?

By the logic of some other people here, what the second manager did was not only not illegal, it wasn’t even WRONG.

I just don’t understand some people.

interrupt = interpret

That’s because you still have a reasonable expectation that your insides remain private. So far legally there is no protection for any expectation of privacy in a public place.

The software is malicious even if the artists intentions were not. Uploading photos every minute is a lot of bandwidth. A lot more than one customer is expected to use.