Techdirt. Stories filed under "government"

Former DHS Head On Google Glass: Intrusive Surveillance Is Bad -- If It's A Corporation Doing It

Tim Cushing — Mon, 13 May 2013 10:55:13 PDT

With Google's eyewear seemingly headed to the general public in the not-too-distant future, many people have expressed concern about being recorded against their wishes. As Mike pointed out, there's a bit of a backlash/moral panic on display right now, which has resulted in a petition requesting the White House ban the devices. He also mentioned briefly that former DHS head Michael Chertoff had written an editorial about the privacy implications of Google Glass.

Chertoff analyzes some of the privacy implications raised by Google Glass but, considering his former position in the DHS and his current role as the head of The Chertoff Group, a "global security advisory firm," this editorial comes off as one-sided and tone deaf. Why would someone who seemingly has no concern about government intrusion into people's privacy care about a corporation's move onto the same turf? Bruce Schneier addresses this dissonance briefly in his post linking to Chertoff's editorial.

It's not unusual for government officials -- the very people we disagree with regarding civil liberties issues -- to agree with us on consumer privacy issues.

Deep down, we're all human, I suppose. Or, at the very least, we have common enemies. Chertoff is concerned about the potential of a corporation collecting and controlling this massive amount of data. But is his concern genuine? Schneier addresses that as well.

But don't forget that this person advocated for full-body scanners at airports while on the payroll of a scanner company.

Chertoff gets off on the wrong foot by comparing Google Glass with surveillance drones, referring to government and law enforcement's "acceptable" surveillance while trying to paint a horrific portrait of a sky filled with corporate surveillance.

Imagine a world in which every major company in America flew hundreds of thousands of drones overhead, 24 hours a day, seven days a week, 365 days a year, collecting data on what Americans were doing down below. It's a chilling thought that would engender howls of outrage.

Now imagine that millions of Americans walk around each day wearing the equivalent of a drone on their head: a device capable of capturing video and audio recordings of everything that happens around them. And imagine that these devices upload the data to large-scale commercial enterprises that are able to collect the recordings from each and every American and integrate them together to form a minute-by-minute tracking of the activities of millions.

There's really no need to imagine any part of this scenario. Law enforcement entities all over the US are purchasing drones and our government is using this same equipment to patrol borders and keep tabs on large crowds.

There are legitimate privacy concerns, but Chertoff's background distracts from his message, especially when he himself brings up drone usage that likely concerns Americans more than privacy invasions from Glass wearers.

So, who owns and what happens to the user's data? Can the entire database be mined and analyzed for commercial purposes? What rules will apply when law enforcement seeks access to the data for a criminal or national security investigation? For how long will the data be retained?

These are the questions that should be raised and Google and its competitors should probably seek some answers before turning interactive eyewear into a tool for second-hand government surveillance. More importantly, the government itself should probably answer a few of these questions. What are the rules that apply when law enforcement (or larger security agencies) seek to obtain this handily compiled data? As it stands right now, most of this process is shrouded in secrecy and attempts to pry some answers out of the government's hands have been rebuffed via claims of "national security" or in the form of redacted-to-abstraction FOIA "responses."

The length of data retention should be addressed as well. As Chertoff points out, Google will probably handle these questions with a lengthy Terms of Service agreement, one that most users will never read until something undesirable happens. A convoluted TOS is a company's best friend, but at least the information is freely available. The same can't be said for law enforcement and government entities.

Ubiquitous street video streaming will capture images of many people who haven't volunteered to have their images collected, collated and analyzed. Even those who might be willing to forgo some degree of privacy to enhance national security should be concerned about a corporate America that will have an unrestricted continuous video record of millions.

Yes, this is a definite downside to Google Glass. But Chertoff muffs this by worrying that even good citizens (those willing to "forgo some privacy to enhance [ha!] national security") won't be thrilled that any citizen could be "taping" them at any time. Once again, we're contrasting the actions of a corporation with the actions of government and law enforcement. But Chertoff fails to see how both can be undesirable. Instead, he frames Google's product as an encroachment but paints government surveillance as, at worst, a very necessary evil.

We need to consider what rights consumers have, and what rights nonparticipant third parties should have.

Sure, consumers should have rights, "nonparticipant third parties" especially. Unless they're American citizens being increasingly surveilled by the "good guys." This huge number of "nonparticipant third parties" doesn't even warrant a mention by Chertoff.

Chertoff has a suggestion for a fix, but it's nothing more than a power grab presented as a "solution."

Maybe the market can take care of this problem. But the likely pervasiveness of this type of technology convinces me that government must play a regulatory role.

A regulatory role does nothing more than give the government (and law enforcement) an opportunity to insert a "back door," either via coding changes or by placing themselves in a middleman position, much in the way they have with telcos and ISPs. There are a lot of unintended consequences and perverse incentives that go hand-in-hand with government regulation and no one should be in a hurry to unpack those.

Finally, Chertoff comes full circle back to his strained starting point: drones.

The new data collection platforms right in front of us are much more likely to affect our lives than is the prospect of drones overhead surveilling American citizens.

If there's a more noticeable effect from Google Glass, it's only because it's a consumer product the public can access (or be subjected to). Drones are an abstraction. The general public is severely limited in its response to state-deployed drones. A response to a consumer product can be felt immediately. If you feel uncomfortable around a Google Glass wearer, you have a few options (ask the wearer to take them off or leave/exit the "filming" area). If you feel uncomfortable being surveilled by eyes in the sky, well, you can set any number of lengthy plans in motion, but it's unlikely your concerns will be addressed, much less result in curtailed surveillance.

While it's nice to see Chertoff recognizes the privacy issues inherent in a consumer product like this, it's rather annoying to see him treat government/law enforcement surveillance as something far less problematic.

Permalink | Comments | Email This Story

The Greatest Trick The Government Ever Pulled Was Convincing The Public The 'Hacker Threat' Exists

Tim Cushing — Wed, 17 Apr 2013 05:40:58 PDT

The US government is already fighting wars on several fronts, including the perpetual War on Terror. "War is the health of the state," as Randolph Bourne stated, and the state has never been healthier, using this variety of opponents as excuses to increase surveillance, curtail rights and expand power.

Bruce Schneier highlights a piece written by Molly Sauter for the Atlantic which poses the question, "If hackers didn't exist, would the government have to invent them?" The government certainly seems to need some sort of existential hacker threat in order to justify more broadly/badly written laws (on top of the outdated and overbroad CFAA). But the government's portrayal of hackers as "malicious, adolescent techno-wizards, willing and able to do great harm to innocent civilians and society at large," is largely false. If teen techno-wizards aren't taking down site after site, how is all this personal information ending up in hackers' hands? Plain old human carelessness.

According to the Privacy Rights Clearinghouse, the loss or improper disposal of paper records, portable devices like laptops or memory sticks, and desktop computers have accounted for more than 1,400 data-breach incidents since 2005 -- almost half of all the incidents reported. More than 180,000,000 individual records were compromised in these breaches...

By comparison, only 631 breaches were attributed to actual hacking, or at least hacking as it's portrayed by the government. Private entities aren't very worried about being hacked either, at least not from the outside. Their main concern, according to the Privacy Rights Clearinghouse, is "inside jobs" by disgruntled employees.

Nonetheless, the narrative advanced by the government (and passed along by the largely credulous mainstream media) of unstoppable hackers and their omnipresent threat to major companies, the government itself, average Americans and underlying infrastructure, continues nearly unimpeded. This narrative is essential to those in the government who wish to justify large-scale surveillance of anything and anyone connected to the internet. The scarier the image, the more it can get away with.

It is the hacker -- a sort of modern folk devil who personifies our anxieties about technology -- who gets all the attention. The result is a set of increasingly paranoid and restrictive laws and regulations affecting our abilities to communicate freely and privately online, to use and control our own technology, and which puts users at risk for overzealous prosecutions and invasive electronic search and seizure practices. The Computer Fraud and Abuse Act, the cornerstone of domestic computer-crime legislation, is overly broad and poorly defined. Since its passage in 1986, it has created a pile of confused caselaw and overzealous prosecutions.

We've seen the overzealous prosecution and expressed disbelief and amazement at some of the interpretations of this outdated law. (Amazingly, Sauter's post was written before the most recent cases of overzealous prosecution.) And instead of fixing the CFAA, legislators are actively working to make it worse, even as overly-broad cybersecurity legislation is being negotiated in secret.

The "modern folk devil" image has become part of the mass consciousness. Anonymous and its various offshoots roam the internet, at turns wreaking havoc and helping the oppressed, like an electronic manifestation of Loki, the Distributed. These activities are duly reported by the media in ominous tones, further driving home the image of the hacker at Millennial Public Enemy No. 1. The acts and the perception of the damage caused by this hacking are miles apart, as is perfectly illustrated by xkcd.

Many members of the American public are already convinced something should be done about hackers. Many of our representatives feel the same way. A lack of knowledge of the underlying technology, much less the methods or culture, hasn't deterred legislators from crafting an overbroad response with the CISPA bill. Examining the issues more closely or reconsidering the legislation doesn't seem to be an option. After all, a "cyber Pearl Harbor" is all but inevitable, a conclusion confirmed by shouting "HACKER!" in the halls of Congress and hearing it echoed back by like-minded representatives, sympathetich government agencies, the media and a subset of the American public.

In the effort to protect society and the state from the ravages of this imagined hacker, the US government has adopted overbroad, vaguely worded laws and regulations which severely undermine internet freedom and threaten the Internet's role as a place of political and creative expression.

The endgame is more control, and the "hacker" provides an ominous, omnipresent threat that, because of the hacker's naturally secretive nature, can neither be confirmed or denied with any veracity. Much like the War on Terror, this War on Hacking takes rights from the American public, carves out huge chunks and sends the gutted remains back to citizens in a package marked "Safety."

Permalink | Comments | Email This Story

The Real Reason Janet Napolitano Doesn't Like Email -- Accountability

Tim Cushing — Mon, 1 Apr 2013 10:02:22 PDT

We've already detailed the cognitive dissonance created by DHS head Janet Napolitano's statements on email usage. Last September, she blithely pointed out that she doesn't use email "at all," and in fact, "avoids many online services." She went on to say that some would call her a "Luddite" and seemed to present the incongruous situation as comical. Hilarity ensued. Powerful government official says, "What, me internet?" LOLS at 11.

So, we all had a good, if disbelieving laugh at ~~her~~ our own expense (we're still paying her salary), and Janet Napolitano went back to not checking the email account she doesn't have and not internetting with any regularity -- the sort of thing that might be considering endearing if it weren't for the fact that so many politicians openly brag about their lack of computer skills, while simultaneously crafting, amending, voting on a variety of computer-related laws.

Napolitano broached the email subject again recently at a breakfast organized by the Christian Science Monitor. She restated her view on email as a non-essential annoyance, rather than, say, an extremely useful communication tool.

Ms. Napolitano said she cut the email cord while governor of Arizona “because I was just getting — you know, you get hundreds and hundreds of things all the time.”

In her current job, “which has a hundred thousand different things that happen on any given day, [not using email] allows me to focus on where I need to focus,” she added.

I can understand feeling overwhelmed by incoming email, but many other people have to deal with the overflowing inboxes and, while they may not like the tedium of dealing with the incoming traffic, they also realize it's an important part of their job and a byproduct of changes in the way people communicate. I'm also fairly sure Napolitano has a staff at her disposal and the power to delegate much of email busywork to others.

So, there's the "it's too much" angle. But her followup comment seems to indicate the real reason she's abandoned email.

“I also don’t like the process where people could send you an email, then say, see, you were told, or you know this. And then it comes back two years later to say, hey, you got this email — among the thousands you get every day.

“I want to be a little more selective on how that goes,” she concluded.

Oh, I see. Napolitano doesn't want to be accountable. That's ~~interesting~~ bullshit. Once again, she has a staff to use. She has any number of resources available to help her organize her incoming mail. She has a lot more tools at her disposal than most, and yet she'd rather just turn the switch to OFF in order to avoid any accountability for statements made, answers given or issues ignored.

Cutting off a heavily-used communication form isn't being "selective." It's willful exclusion, and it places Napolitano's self-interest above the interests of the public and the responsibilities of her position. Would anyone cut her any slack if she had announced she took her phone off the hook back when she was governor of Arizona and STILL HASN'T REPLACED THE HANDSET? "I don't like this process where people call you, then say you were told or you know this. And it comes back two years later, hey, we spoke on the phone -- among the thousands of phone calls I get every day." Would that be acceptable?

There are people out there who think Napolitano should be excused for abandoning email. I would imagine many of these people find this form of communication just as tiresome as she apparently does, but their personal antipathy (and hers) doesn't excuse this sort of exclusionary behavior. Many people hate the demands this accessibility places on them. But they just can't ignore it, especially if they're in the sort of position Napolitano's in.

It was already irritating when she was just doing her "I'm a Luddite LOL" schtick. By openly admitting she's not thrilled that stored electronic communication can be used to hold her responsible for statements or actions, she's crossed the line from obtuse into contemptuous. Our leaders are supposed to be accountable for their actions, and yet many of them do everything they possibly can to avoid it. The DC motto has become "With great power comes selective responsibility," and Napolitano's statement is sadly, unsurprising.

Permalink | Comments | Email This Story

If It Comes With A Gagging Clause, It's Not Open Data

Glyn Moody — Tue, 5 Mar 2013 00:07:35 PST

One of the richest seams of open data concerns transport. After all, by their very nature, transport systems generate huge amounts of new data every day -- times, routes, travel options. Similarly, huge numbers of people use multiple means of transport, which means there is a big potential audience for analyses of that data. And it's definitely in the interest of transport operators to make that information freely available so that developers can use it in new ways, since that is likely to make traveling easier, and lead to increased custom.

Despite that manifest logic, transport companies have been slow to release that data in a form that developers can use. And even when they do, it often comes hedged around with conditions that make it useless. Here's an example from the UK, where Alex Hewson has been trying to get hold of live train data to create applications using it.

As his fascinating blog post explains, something called the Association of Train Operating Companies (ATOC) collates the primary data:

Through its subsidiary TISL ("Train Information Services Limited", more commonly known as NRE / National Rail Enquiries) ATOC owns a datasource called Darwin. If you want an API for querying live train running information complete with all the delays and cancellations at any given moment they're the only shop in town.

Fair enough, you might think, since it's their data. But it's not quite so simple: [ATOC] look a bit like a public body but aren't, instead taking funding from the various train operators. ATOC are fond of making the claim that they don't take a penny of public money but it's somewhat disingenuous: their funding comes from train operators and many of those have been subsidized by [UK] taxes.
To be exact, the UK's train operators receive over $6 billion from taxpayers each year. This means that there is a strong case for the train data to be released as open data -- over and above the fact that doing so will probably increase the number of people traveling by train, which has got to be good news for the train operators that fund ATOC.

As a series of blog posts by Hewson reveals, the relationship between ATOC and developers has not been of the best, especially once a formal license to use the data was required in 2009.

During a "Developer Engagement Day" in January this year, and responding, perhaps, to criticism over the way it makes this publicly-funded data available, NRE expressed a desire to work with the development community more constructively. Hewson was naturally keen to see the details of the license that was being offered in the wake of this new openness, and noted a couple of unusual elements:

There are clauses saying you'll lose access to the data if you bring TISL into "disrepute" and that the signatory may not publicly discuss the subject without written consent from TISL.
15.2. Either party shall be entitled to terminate the Agreement on notice without liability at any time if:

...

15.3.1. the Customer brings TISL, the TOCs or the passenger rail industry into disrepute
Disrepute is a fabulously broad word -- it covers anything that blackens their name even if what you said was true. In other words you aren't allowed to criticise them.

It gets worse: No public announcement, communication or circular (other than to the extent required by law) concerning the subject matter of this Agreement shall be made or despatched [sic] by the Customer without the prior written consent of TISL.
WTF. You can't use the live UK train data without accepting a gagging clause.
TISL/ATOC clearly still has a lot to learn about how to work with developers, to say nothing of what it means to make information generated with the support of taxpayers freely available as open data, as is fast becoming the norm in many countries.

By a happy coincidence, the body that oversees the national railways in the UK, the "Office of Rail Regulation", has been conducting a review into "how NRE deals with applications for access to its RTTI database ('Darwin')." I'm sure many of the developers who have had dealings with ATOC's subsidiary over the last few years will have submitted their views on this topic. I can't wait to read them.

Follow me @glynmoody on Twitter or identi.ca, and on Google+

Permalink | Comments | Email This Story

Dateline 1901: In Response To Presidential Assassination, Department Of Justice Orders All Phone Calls Logged And Stored

Tim Cushing — Mon, 18 Feb 2013 03:40:21 PST

[If there's a new form of communication out there, you can be damn sure that the Department of Justice wants a piece of it. And if it doesn't, your local law enforcement, the FBI, the NSA, the CIA and any number of other government agencies do. The DOJ's justification seems to be that any new form of communication doesn't deserve protection from government snooping simply because there's no specific legal precedent preventing it from requesting the data. Julian Sanchez summed up this attitude concisely in this Tweet:

If the telephone were a new invention, DOJ would be insisting the phone company record & store all conversations, Just In Case.
— Julian Sanchez (@normative) December 3, 2012

To that end, here's that Tweet brought to thrilling life, via the fake news-like article below.]

PRESIDENT MCKINLEY ASSASSINATED! RECOVERS BRIEFLY BEFORE FINALLY SUCCUMBING TO ILL EFFECTS OF 'INTERNAL BULLET SYNDROME'!

While our grand nation still mourns the passing of President McKinley at the hands of an assassin, our fine gentlemen in Congress are meeting with our other fine gentlemen in the Department of Justice in an effort to prevent future tragedies such as this.

The assassin, Leon Czolgosz, an American-born foreigner of Polish descent, fired two bullets in a cowardly fashion at our nation's leader, striking our President in his glorious abdomen. The cowardly bullet then refused to exit the President's body, turning the wound gangrenous, a medical condition which can only be cured by amputation. A plan to save the President through an experimental "abdomendectomy" was briefly entertained before McKinley's sudden onset of death made the discussion irrelevant.

"Czolgosz's actions mark a turning point for this nation," stated one lawmaker. "We can no longer expect our presidents to remain sans bullet wounds if we do not engage these activists on their own level. We vow to take action, together with the members of Department of Justice, and other unnamed or unformed national security agencies. We are declaring war on anarchy."

LAWMAKERS DECLARE WAR ON IDEOLOGY, TELEPHONES!

Lawmakers have nearly unanimously approved the Department of Justice's recommendation that anarchists be hunted down and brought to justice before another such tragedy can occur. Citizens who have overheard derogatory comments about our fine Government are encouraged to report these occurrences to the Department of Justice by calling KL5-5503 between the hours of 8 am and 12 pm alternating Tuesdays. All calls are confidential and no information will be shared with anyone not currently on the party line.

"Anarchy isn't simply an ideology," stated one irate Congressman who wished to remain anonymous. "It's a threat to our American way of life, one that relies heavily on an unchallenged government and a careful blend of horse and automobile travel."

The Department of Justice has also recommended, in order to battle this rising tide of anarchy, our nation's telephone companies be required to transcribe every conversation occurring via this possibly dangerous communication device. A spokesman for the DOJ stated: "Czolgosz and his contemporaries were known 'early adopters,' and had been misusing our nascent 'talking boxes' to recruit Americans for anarchist activities, including fundraising picnics with no distinct starting time and a plan to violently overthrow the leadership currently controlling Ward 32."

The telephone, which allows young ne'er-do-wells to talk avidly of destroying the nation, is to be feared and distrusted, according to the Department. Its report, composed in great haste and at great length, recommends that all telephone companies build a secure room in which a security agent may be placed to record telephone conversations. This room will give the agent access to all phone lines as well as grant them the right to interrupt recorded conversations with requests to "slow down a bit," "please repeat that," and "English, motherfucker. Do you speak it?" All calls are to be dictated live to each agent's personal assistant, using a secure typewriter built to exacting and impossible specifications.

CONVERSATIONS RECORDED FOR 'CONTINUED SAFETY OF THE NATION!' CRAZY MAN WORRIES ABOUT 'PRIVACY!'

The Department's spokesman has pointed out that, despite listening in on every conversation transmitted via US phone lines, it only has an interest in suspicious conversations and derogatory comments about the US government (including derogatory comments about interruptions by surveillance agents). "Americans who harbor only warm, patriotic feelings towards our President and Government have nothing to worry about and should feel free to discuss any number of subjects without fear of recrimination, including sporting events, lurid gossip, suspicious goings on in the immigrant district, the superiority of the horse and buggy, violations of the "No Child Left Behind" labor law, non-lurid gossip, jazz as an overrated genre, the rejuvenating powers of Cooper's All-In-One Snake Oil™, gambling winnings over $500 and post-millennial anxiety."

An obviously insane lawmaker protested this proposition, claiming that transcribing every phone call made by American citizens is a clear violation of their "expectation of privacy." This phrase generated blank stares from nearly all in attendance at the proposal's mooting. One enraged Senator fired back: "We've been using 'moot point' incorrectly for several years now, no doubt due to the seeds of confusion sown by C... zolog... whatshisname and his ilk! It means 'something to be debated,' rather than 'something already decided!' Curse their anarchic blood!" Another responded: "Americans have no 'expectation of privacy' because any good American has nothing to hide. Speaking of which, we should require all markets and dry goods purveyors to log the names and addresses of those purchasing drapes, blinds and roll-down window shades!"

If the plan is adopted, the Department of Justice expects it will generate nearly 100,000 pages of banal conversation each day, spiking severely on Mothers' Day. These recorded conversations will be forwarded via courier to the home office in Washington DC where agents are expected to maintain a pace of 30 baseless extrapolations per 12-hour shift. "This is an undertaking of grave importance if the safety of the American public is to be ensured," stated a Department of Justice spokesman who wished remain anonymous and have his privacy respected. "The greatest threat to our nation is the free-thinking American citizen, whose lofty ideals and 'this system sucks' attitude pose a risk to the health and well-being of every elected official, except possibly Teddy Roosevelt, who has armed himself with a large stick and has already beaten two interlopers to death just this morning alone. Our war on anarchy and communication has no clear end point, but we will not be deterred or underfunded!"

Permalink | Comments | Email This Story

Google Explains How It Handles Government Requests For Data; Why Don't More Companies Do This?

Mike Masnick — Mon, 28 Jan 2013 16:04:04 PST

Just recently, we pointed to Google latest Transparency Report, which showed a massive increase in requests for info on users from government agencies. However, it also showed that a much lower percentage of such requests were being honored, raising some questions about how Google handled such requests. Well, wonder no more (or, at least, wonder a little less) as Google has now explained the process by which it handles such requests, going into a fair bit of detail (you have to click through) in terms of the legal requirements and how Google handles different types of requests, and what data Google may be compelled to reveal. However, in an accompanying blog post, Google makes clear that it often pushes back:

When government agencies ask for our users’ personal information—like what you provide when you sign up for a Google Account, or the contents of an email—our team does several things:

We scrutinize the request carefully to make sure it satisfies the law and our policies. For us to consider complying, it generally must be made in writing, signed by an authorized official of the requesting agency and issued under an appropriate law.

We evaluate the scope of the request. If it’s overly broad, we may refuse to provide the information or seek to narrow the request. We do this frequently.

We notify users about legal demands when appropriate so that they can contact the entity requesting it or consult a lawyer. Sometimes we can’t, either because we’re legally prohibited (in which case we sometimes seek to lift gag orders or unseal search warrants) or we don’t have their verified contact information.

We require that government agencies conducting criminal investigations use a search warrant to compel us to provide a user’s search query information and private content stored in a Google Account—such as Gmail messages, documents, photos and YouTube videos. We believe a warrant is required by the Fourth Amendment to the U.S. Constitution, which prohibits unreasonable search and seizure and overrides conflicting provisions in ECPA.

This is definitely good to see -- and lots of other companies should do the same thing. However, it still remains an issue that governments can, and do, get lots of information with limited oversight -- even when companies push back.

Speaking of which, Twitter also came out with its latest transparency report, which highlights the information requests it gets as well. Both companies are really leading the way on transparency here, but it's a shame that these stories are even newsworthy, rather than the way most large companies act.

Permalink | Comments | Email This Story

Government Demanding More And More Info On Google Users Without Any Oversight

Mike Masnick — Wed, 23 Jan 2013 20:01:00 PST

Google's latest transparency report, once again, highlights why we need ECPA reform in the US as soon as possible. ECPA -- the Electronic Communications Privacy Act -- is an outdated law that was supposed to be about protecting user privacy, but was written nearly three decades ago and now does exactly the opposite. Beyond being complex in ridiculous and unnecessary ways, things that were true decades ago are no longer the case. For example, the idea that emails left for 180 days on a server no longer need a warrant because under ECPA they are considered "abandoned." Whereas in the real world, where all email lives on servers for quite some time, that idea makes no sense.

Either way, the report makes clear that US government agencies are well aware that they can go trolling through Google to get information on people with little oversight. Requests -- especially requests that are purely a subpoena (with no judicial oversight) appear to continue to rise: The largest part of that chart is the government subpoenas, meaning no judge had to look them over first:

68 percent of the requests Google received from government entities in the U.S. were through subpoenas. These are requests for user-identifying information, issued under the Electronic Communications Privacy Act (“ECPA”), and are the easiest to get because they typically don't involve judges.

Unfortunately, Congress had a chance to reform ECPA last year, and the Senate Judiciary Committee even approved it. But, right at the end of the year, Congress passed a separate bill that had been attached to ECPA reform by itself... and left ECPA reform to rot.

Permalink | Comments | Email This Story

No Warrant, No Problem: The Government Can Still Get Your Data

Mike Masnick — Wed, 5 Dec 2012 05:24:51 PST

Pro Publica has done it again. They've put together a great report on how the government can usually get your digital data without bothering to get a warrant. On top of that, they line it up with what the law actually says about the subject. Here are just a couple examples, but check out the whole thing: Beyond phone records and location data, they explain how law enforcement can get IP addresses, emails, email drafts (treated differently than emails), text messages, general cloud data and social media information. And... the shorthand version is that the government can pretty much look at an awful lot of your data with very little judicial oversight.

Permalink | Comments | Email This Story

Panama Considering Legislation That Allows The Copyright Office To Pursue Filesharers Directly -- And Keep All The Fines

Tim Cushing — Fri, 21 Sep 2012 07:16:02 PDT

From SOPA/PIPA to the Digital Economy Act to ACTA to the DMCA, there's no shortage of bad legislation built to serve various copyright-driven industries. But just when you thought you'd seen the very edge of how far legislators were willing to go, someone comes along and tops it.

Technollama brings news that Panama is attempting to raise/lower the "bad legislation" bar (not sure which direction the bar would actually be traveling...) with its Proyecto 510-2012 bill, dealing with copyright and related rights.

The 510 Bill gives new powers to an administrative branch of the Ministry of Commerce and Industry called the General Copyright Directorate (Dirección General de Derecho de Autor, henceforth DGDA). Unlike similar copyright administrative offices around the world, the DGDA will have the power to impose fines on infringers without prejudice of further criminal or civil actions.

It's exactly what it looks like: the Panamanian copyright office is being given the power to chase down filesharers and fine them up to $100,000 PAB ($100,000 USD). In addition, the "without prejudice" portion means that filesharers can still be pursued by rights holders, even if the government has already levied a fine.

The bill goes even further than this astounding bit of rent-seeking:

[T]he DGDA has the power to unilaterally haul any alleged infringer, ask them to mount a defence within 15 days, impose fines of up to $100k USD ($200k for re-offenders), and on top of that this person may still have another civil case against them added to the administrative fine. Adding insult to injury, they also have to pay for the publication of the fine so that everyone knows what a nasty pirate they are.

So, you have a government entity pursuing citizens for copyright infringement (a civil matter, or so it used to be...), an act which opens them up to further civil action from the rightsholders. With this kind of enforcement, the Panamanian creative industries should be rolling in extracted filesharer dough. Or so you would think, if this bit of wording wasn't present in the bill:

The funds accrued by the General Copyright Directorate from the fees for the services it provides and the fines imposed in the exercise of its powers, will be aimed at improving its operational infrastructure and to boost the performance of its officers, complementary to the funds that the State Budget reserves for the operation of the entity[...]. The amounts corresponding to each official, shall not exceed fifty percent (50%) of the total basic salary monthly remuneration.

That's right, none of it goes back to the rightsholders. These fines get fed right back into the system that levied them. Not even back into the government in general, but directly back to the DGDA. Wow. How could that possibly be abused?

This is what I think will happen if the law passes as it stands. The DGDA will immediately try to monitor all torrent use in Panama, be it legitimate or not, and all people identified with IP addresses will be summoned and summarily fined. After all, the institution and its employees will have a direct financial incentive to assume guilt. Then those same people will be sent again and again, as there will be clear incentive to fine re-offenders.

Well, that's sounds like all the fun of copyright trolls combined with the "answer to no one" power of the government all rolled up into big ball of perverse incentives. I suppose the government will turn these filesharers over to the rightsholders once it's drained them of money to toy with the drained corpse through civil proceedings.

Meanwhile, the industries seeking this sort of protection will find that no one has any money left to purchase their products, much less pay off another set of hefty fees. While this may provide the rightsholders with some sort of second-hand vindictive high, it's hard to see how this betters their financial situation in the least.

Technollama calls the legislation "toxic." It is. And more than that, it's completely perverse in every sense of the word. It hooks an agency up to an IV full of money and trusts it not to repeatedly press the "dispense" button. Sure, it may cut down on infringement, but once a government agency is hooked on steady income, it usually comes up with new (and worse) ways to keep the buzz going. The dollar amount of the fines will be ratcheted up and the definition of "infringing activity" will become broader, perhaps encompassing such maximalist wet dreams as embedded video. It's ugly, any way you slice it.

Permalink | Comments | Email This Story

Paper Suggests Letting The Government Use Your Router In An Emergency

Mike Masnick — Tue, 28 Aug 2012 03:07:55 PDT

Jon Brodkin, over at Ars Technica, has an interesting discussion about a paper from some researchers suggesting that we could augment first responder communications efforts by letting them make use of the public's WiFi routers. Basically, if I understand the proposal correctly, if turned on, it would make use of your router to try to form an ad hoc mesh network with other, similar routers in the area that, in theory would only be used by those public safety first responders. It's no secret that there are efforts underway to make sure that emergency personnel have better access to communications spectrum, and this is, at the very least, a creative way of attacking the problem.

The theory is that this doesn't impinge on anyone's security, because it would effectively carve out a separate service on the router, not unlike home WiFi routers that offer up different logins for residents and "guests." Of course, theory and reality aren't always one and the same, and Brodkin reached out to Bruce Schneier who raised his concerns:

“The problems are the same,” Schneier told Ars. “Once you build such a system, you have to build the security to ensure that only the good guys use it. And that's not an easy task. It is far more secure not to have the capabilities in the first place.”

That said, if such a system were purely voluntary, and individuals were able to offer up such connectivity for first responders (or even for anyone else), would that necessarily be so bad? I've been skeptical in the past of attempts to create truly comprehensive mesh networks building on people's home WiFi routers, and there hasn't been much success there. But, perhaps there's something interesting in special use cases, such as one involving first responders. I agree with Schneier that there could be some risks, but I'm not sure how they would be much different than running a basic guest access WiFi network that doesn't involve a password. As long as you're not using that network for sensitive and unencrypted info, it seems like a similar level of risk.

Permalink | Comments | Email This Story

UK Government Censors Copyright Consultation Submission About How Awful Collection Societies Are

Glyn Moody — Wed, 1 Aug 2012 07:06:24 PDT

When the UK Hargreaves Review of intellectual monopolies in the digital age came out last year, Techdirt noted that one of its innovations was an emphasis on basing policy on evidence. The fact that this was even notable shows how parlous the state of policy-making has become. One important way to gather evidence is through public consultations, and in the wake of the Hargreaves Review, the UK government conducted a major exercise in gathering views and information in this field.

The responses to that consultation have now been published -- all 471 of them. That's a surprisingly high number for what was once an arcane area of interest only to a few lawyers, and a measure of just how important the subject has become. On that Web page there's the following slightly unusual statement:

in the course of reviewing the responses received, it became clear that a small number of respondents had advanced criticisms or inappropriately criticised the activities of others in the sector. The Government has now carefully reviewed the submissions to establish any potentially defamatory material and has redacted any inappropriate or defamatory comments.

One of the people whose submissions were redacted is Andrew Norton. He's written a fascinating blog post detailing what exactly was taken out. The first and biggest redaction occurs in his answer to the following question: What aspects of the current collective licensing system work well for users and rights holders and what are the areas for improvement? Please give reasons for your answers
Here's what the UK government published of Norton's response: Almost no aspects work well for users or rights holders. The standard operating system for collecting societies is to demand all, demand often. There have been many cases in the recent past where agencies have gone above and beyond their mandate, and targeted people in shakedowns.

XXXXXXXXXXXXXX

In short, what aspects work well? None. What needs to be done? First of all, an audit needs doing, to ensure compliance with the law. Then, shut them down. At the very least start a new, independent one with significant oversight, because this one just DOES NOT WORK.
So what exactly did the UK government think was "inappropriate or defamatory"? This, apparently: … and targeted people in shakedowns.

In the past few years, there have been reports of UK Collection societies calling up small businesses, and threatening them if they hear music in the background (http://www.techdirt.com/articles/20090202/0128383597.shtml), carollers, charities (http://torrentfreak.com/charity-forced-to-pay-copyright-police-so-kids-can-sing-071209/) have been targeted for fees, as have schools (http://torrentfreak.com/uk-copyright-cops-target-kids-schools-community-centers-081015/). Even people who sing to themselves have been targeted because they're doing so at work (http://news.bbc.co.uk/2/hi/uk_news/scotland/tayside_and_central/8317952.stm) and let's not forget their targeting of employers like Kwik Fit (http://news.bbc.co.uk/2/hi/uk_news/scotland/edinburgh_and_east/7029892.stm) and even the police (http://torrentfreak.com/police-chief-faces-high-court-anti-piracy-action-120608/). Incidentally, The EU Court of Justice just ruled that in cases like these, there are no fees to pay (http://euobserver.com/871/115621#.T2cCyGfYteQ.twitter)
That's just one of three such paragraphs, all linking to external sites. As you may have noticed, the first link above is to Techdirt, and the others are to sites like the BBC, El Pais, Die Welt and TorrentFreak. None of them is defamatory, since they are all reporting on established facts. This means that the UK government must think that these facts are somehow "inappropriate". That's a pretty extraordinary state of affairs. The UK government has taken it upon itself to hide what UK collection societies get up to, in an absolutely key consultation, one of whose purposes is surely to get the facts about what's happening in this sector.

What makes this censorship of linked information even more striking is that alongside the main consultation document itself (pdf) the UK government also published guidance on providing "open and transparent evidence" (pdf), where we read:

When you draw on other work, a reference, and link to the original work should be included. References to other people’s work should have the relevant web link

That is, the guidelines specifically ask for precisely the kind of scrupulous linking to sources that Norton provided, and yet the UK government censored them all because it didn't like the unequivocally dire situation they delineated.

This does not augur well for the results of the consultation. It suggests that the UK government is happy to gloss over one of the key failings of the present copyright system -- the UK collection societies -- and is seeking to present a very partial view of the real situation. It also undermines confidence in the whole consultation process: if the UK government has arbitrarily redacted true information that it finds inconvenient once, what's to say it hasn't done so multiple times elsewhere? If people aren't allowed to provide all the evidence what's the point of conducting a consultation in the first place?

Follow me @glynmoody on Twitter or identi.ca, and on Google+

Permalink | Comments | Email This Story

Should Software Created By The Federal Gov't Be Open Source Licensed... Or Public Domain?

Mike Masnick — Mon, 23 Jul 2012 14:25:00 PDT

Anil Dash recently alerted me to a White House petition to get "government-developed software" under an open source license for the sake of allowing others to build on it and approve it.

Top Three Reasons to Mandate Open Sourcing of Custom Federal Software:

Openness: Open Sourcing ensures basic fairness and transparency by making software and related artifacts available to the citizens who provided funding, consistent with the President’s 2009 declaration that “Information maintained by the Federal Government is a national asset.”

Economic Multiplier: Making Provides an economic stimulus by serving as the raw material that supports a competitive software development and services industry.

Supports the Federal “Shared First” Agenda: Maximizes value to the government by significantly increasing reuse and collaborative development between federal agencies and the private sector, consistent with the current Office of Management and Budget (OMB) “Shared First” initiative.

While I certainly share the sentiment expressed in those reasons, I got into a bit of a debate on Twitter about this, because existing law (i.e., 17 USC 105) already says that "Copyright protection under this title is not available for any work of the United States Government." In other words, anything created by the US government is already public domain. Of course, public domain and open source are two different things -- but if something is public domain, it could preclude the ability to then slap a license on it, since those licenses are effectively built off of copyright, and claim specific limitations, which the government might not be able to actually claim over the software. Of course, they don't always seem to follow this, as we noted recently in our post about the NSA open sourcing its database technology, Accumulo.

The flip side, of course, is that even if something is public domain, the government could still keep it a secret -- as is the case with many Congressional Research Service (CRS) reports. So you can see the argument for pushing for an open source license, rather than just an admission of public domainness. Furthermore, as amac helpfully pointed out, there are significant exceptions to the rules saying the feds can't copyright (for example, contractors or just those funded by the government can copyright their works and then even assign them to the federal government). Furthermore, it may only be seen as public domain in the US, rather than elsewhere.

And, on top of that, Dash made a reasonable point that his focus is on advocating pragmatism in dealing with this -- and he believes that pushing for open source licenses is, perhaps the most pragmatic.

I don't disagree with Dash, but I fear the idea of setting up the belief that the federal government needs to set a particular license for a work to be useful to the public to build on. It only increases the idea that public domain works can be "owned" and limited in ways that is simply not true. I would think that a much more useful solution is a two-fold one: first an admission that government-created software is, in fact, public domain and second, a policy decision and statement that not only will such works be public domain, but, as a matter of standard procedure, that the federal government will also release the code for others to build on with no particular limitations and with encouragement to then share the results in kind.

Permalink | Comments | Email This Story

Digital Native Government Agency Embraces The Power Of Open Source

Leigh Beadon — Tue, 10 Apr 2012 20:03:00 PDT

The Consumer Financial Protection Bureau is a young federal agency (founded in July 2011), and as such has a history of getting it when it comes to the digital world. They launched by taking online suggestions, they run an active blog, and now they've revealed their internal software policy and its dedication to open source, both as a user and a contributor (emphasis in the original):

We agree, and the first section of our source code policy is unequivocal: We use open-source software, and we do so because it helps us fulfill our mission.

Open-source software works because it enables people from around the world to share their contributions with each other. The CFPB has benefited tremendously from other people’s efforts, so it’s only right that we give back to the community by sharing our work with others.

This brings us to the second part of our policy: When we build our own software or contract with a third party to build it for us, we will share the code with the public at no charge. Exceptions will be made when source code exposes sensitive details that would put the Bureau at risk for security breaches; but we believe that, in general, hiding source code does not make the software safer.

We’re sharing our code for a few reasons:

First, it is the right thing to do: the Bureau will use public dollars to create the source code, so the public should have access to that creation.

Second, it gives the public a window into how a government agency conducts its business. Our job is to protect consumers and to regulate financial institutions, and every citizen deserves to know exactly how we perform those missions.

Third, code sharing makes our products better. By letting the development community propose modifications , our software will become more stable, more secure, and more powerful with less time and expense from our team. Sharing our code positions us to maintain a technological pace that would otherwise be impossible for a government agency.

The CFPB is serious about building great technology. This policy will not necessarily make that an easy job, but it will make the goal achievable.

While governments around the world have been moving to embrace open source for a long time, adoption has been pretty slow in the U.S., though it is steadily growing as more federal agencies revise their guidelines and regulations, and some states pass laws requiring the consideration of open source options. But as a new agency that actively pursues the opportunities presented by technology, the CFPB is ahead of the curve. TechCrunch's Scott Merrill got additional details, like the fact that they are trying to lead by example:

I asked Willey what kind of advocacy — if any — the CFPB was doing (or planning to do) for open source software within the government. He shared that they’re using GitHub Enterprise internally, and have fielded a number of questions from other agencies about how they procured that and set it up. “It’s hard for us to have these conversations with other agencies without implicitly advocating an open source philosophy,” Willey told me. “So instead of trying to sell open source to other agencies on principle, we’re finding that it’s a lot easier to prove the value of open source software by showing our colleagues the great results it has gotten us.”

I was curious whether the CFPB’s policy is the natural result of more digital natives taking government jobs. According to Willey, it was “simply the byproduct of building a government organization from scratch in the information age: we are able to craft our technology philosophy with a modern perspective.”

It's good to see people in government placing an emphasis on staying at the forefront of technology, especially in terms of open source. The entire philosophy of open source is perfectly matched to the ideals of a transparent, accountable government that serves and belongs to its citizens, and hopefully the CFPB will lead more agencies in that direction.

Permalink | Comments | Email This Story

Dutch Government: Make European Copyright Exceptions More Flexible

Glyn Moody — Mon, 13 Feb 2012 15:39:16 PST

Well, here's a turn-up for the books. At a time when the European Commission is insisting that the copyright ratchet should be tightened up a few notches by bringing in ACTA, with its perilously vague terms that potentially criminalize even low-level acts of online sharing, here's the Dutch government planning to go in the opposite direction:

The Dutch government wants to change copyright law so new media users can continue to do "creative remixes" of protected content. [It] will no longer wait for the European Commission to find a compromise.

The Dutch government made that clear at a conference it had organized, entitled "Towards Flexible Copyright," where one of the speakers was Bernt Hugenholtz of the Dutch state committee on copyright law. On the subject of YouTube, he said: "Many of the videos we find there are creative remixes of material protected under copyright. They're mostly for laughs or political commentary, or they're simply absurd. If we applied the law today strictly, we would not be allowed to do these things."
Also speaking at the conference, Netherland's Deputy Justice Minister Fred Teeven said he was exploring "a more flexible system of copyright exceptions that would also work in a European context." One solution would be to replace the limited set of European exceptions to copyright, which are laid down by law and allow no flexibility, with a system more akin to US fair use, which gives courts a certain leeway to determine what exactly is permissible.

Of course, that's an eminently sensible thing to do, not least because it wouldn't require a radical overhaul of European copyright, just some tinkering at the edges. Despite that, the idea is likely to meet stiff resistance -- and not just from the industry dinosaurs that reflexively resist any change that might reverse the copyright ratchet by even a few degrees.

At a time when the European Commission is hell-bent on getting ACTA ratified by the European Parliament, it won't take kindly to national governments going their own way on exceptions. That's particularly the case since the Commission is also drafting a new directive specifically designed to harmonize EU copyright law.

The Dutch government will be well aware of all those countervailing pressures, which makes this unexpected move all the more bold. Let's hope it inspires other EU countries to lend their weight to this much-needed initiative to make European copyright laws fit for the digital age.

Follow me @glynmoody on Twitter or identi.ca, and on Google+

Permalink | Comments | Email This Story

Why The Government Doesn't Get Technology

Mike Masnick — Mon, 16 Jan 2012 05:21:44 PST

There's been lots of talk in the past few months about the sheer ignorance of those in goverment on technology issues -- in some cases where elected officials are gleefully, willfully ignorant. Some of them are just out of touch (or old, old-fashioned and have no desire to be in touch). Others, however, do seem to want to keep up on the latest technology. But there's a problem there. The technology the government gives them is so out of date, in many cases they don't understand the technology because they don't know the technology. Now, to be fair, there actually are some government staffers who are really clued in, and who understand all of this stuff deeply. In fact, I recently met some federal government IT staffers, who were quite well informed. But those tend to be the kind of "tech native" folks who would follow technology no matter what, even if their jobs didn't depend on it. Those are the tech natives, the early adopters, etc.

But the problem is in the much larger group outside of the "tech native" people. It's in the group of folks who want to know about and understand technology, but don't follow it closely. And the big problem here is that the government makes it exceedingly difficult to get new technology in front of these people. Clay Johnson recently had a great post about how this became clear, quite graphically, among techies in the federal government. They'd have two computers on their desks -- an ancient one that the government gave them (with a screensaver showing, because it wasn't actually being used) and a late model Macbook... that they had bought personally to bring into the office to actually do some work. He found out that just the process of buying an official new computer through the government procurement system required at least an 18-month wait. That may seem like a typical "cobbler's children have no shoes" issue, but the implication for those making our laws is tremendous:

I think this "two computer problem" is a symptom of a much larger issue. For those of you that are unfamiliar with Moore's law, it's general principal is that technology gets twice as good every 18 months. So if it takes government about 18 months to do anything expensive (by expensive I mean: something that costs more than a few thousand dollars) with technology, we've built in that government must be at least one cycle behind the private sector when it comes to Moore's law. Compounding this is the sunk-cost fallacy: In order to stay just one cycle behind the rest of society, government would have to begin the purchasing process again as soon as new computers hit desks. But they won't do that, because "you just got a new computer!"

Thus, a great gap has built up, not just with the pace of work, but in the access to technology. But the thing that makes this frightening is that Moore's law isn't linear, it's exponential. With every cycle of Moore's law, the difference between two points on the curve doubles. Being one cycle behind the curve 18 months from now is twice as bad as it is today.

This is a big problem. Understanding where innovation is heading is a difficult enough business when you're deeply immersed in today's technologies. But it's ridiculously more difficult when you're basing your understanding of where technology will be tomorrow... on a knowledge of technology that is, in all reality, multiple generations out of date.

You can understand, of course, how things got this way. There are budgets and spending limitations that the government has to deal with -- and since it's such a massive bureaucracy, things take time and have to be checked, double checked, triple checked, sent out for bid, quadruple checked, etc. But it really does show a symptom of how things get to be this way with politicians making bad laws that show an ignorance of technology. They don't use it. They don't comprehend what it means. At best, they think it's just a tool, like a hammer, rather than something much more powerful than that.

Permalink | Comments | Email This Story

A Good Step: House Oversight Committee Puts Hearing Archive Video Online

Mike Masnick — Mon, 9 Jan 2012 03:28:31 PST

The House Oversight Committee in Congress has done a cool thing that pretty much every committee in Congress should have done long ago: put a ton of its archived video of Committee hearings online. You can see them all on YouTube. The actual project was done by Carl Malamud -- and as we've noted in the past, if Malamud is involved in a project, it's almost certainly a good thing. Malamud is a leading force in terms of open government and government transparency, and it's great that Rep. Darrell Issa and the House Oversight Committee worked with him on this project. All in all, they put up 1,139 videos, ranging back as far as March of 1993 (and right up to December 16th of 2011). This is a "pilot project," so hopefully it means the same thing will be done with other Congressional video as well.

Permalink | Comments | Email This Story

Candidates Starting To Turn SOPA Into A Campaign Issue: Karen Kwiatkowski Goes After Bob Goodlatte

Mike Masnick — Fri, 30 Dec 2011 14:21:32 PST

We recently pointed out that it was likely that candidates running against SOPA supporters (especially in the House) would start using SOPA as a campaign issue -- which could draw the attention and support of the netroots community, like the folks at Reddit, who are just itching to support candidates who oppose SOPA supporters. Well, here's one they might want to check out. Karen Kwiatkowski is running against Rep. Bob Goodlatte in Virginia, and is using SOPA as a key campaign talking point, noting accurately that Goodlatte both was in charge of putting SOPA together for much of the year (though, towards the end, Lamar Smith took over) and that he's become Smith's go to guy in ushering the bill through the House. Karen sees this as a big problem:

Bob Goodlatte spent 2011 CO-AUTHORING and INTRODUCING the Stop Online Piracy Act (SOPA). SOPA makes the federal government EVEN BIGGER.

If passed, SOPA will dramatically increase the federal government’s role in our lives, online and offline. It authorizes the Attorney General to block websites accused of copyright infringement from search engines and ISPs. And it allows the Attorney General to “commence action” against them without a court order. SOPA will result in fewer independent websites, blogs, media sources, start-ups and tech industry jobs. And as a result, lower quality.

How will it do this, you ask? Simple. It increases the cost of doing business for U.S. tech firms, payment network providers and advertisers.

In addition to increasing legal and compliance costs for small businesses, it also increases the size and scope of the federal government.

SOPA expands the State Department, Attorney General's Office, Copyright Office and other agencies and creates a new set of bureaucrats. One we have never heard of before is the “intellectual property attache.” IP Attaches will be trained and appointed to regional bureaus, embassies and diplomatic missions throughout the world. And they work with copyright holders at the expense of taxpayers.

With the Reddit community so actively looking for candidates to support, perhaps it's time to check out Karen.

Permalink | Comments | Email This Story

Press Realizing That ICE May Be Breaking The Law Showing NBC Universal Propaganda Films On Domains It Seized

Mike Masnick — Tue, 29 Nov 2011 13:35:09 PST

Over the last year or so, we've been one of the few publications out there following the exceptionally questionable use of NBC propaganda material by the federal government as if it were its own content. You may recall that NBC Universal created some propaganda "anti-piracy" PSAs for New York City, in which actor/comedian Tom Pappa claims "there's no such thing as a free movie." The irony that he's saying so while appearing on a free YouTube video stream is apparently totally lost on him.

A few months later, the same video, minus references to NYC, appeared on the YouTube page of the Immigrations & Customs Enforcement group ICE (part of Homeland Security). No reference was made to the fact that the video was created by NBC Universal. A few weeks later, these videos started appearing on domains that ICE had seized, and then forfeited.

After filing a series of Freedom of Information Act requests, we found out that the videos were property of NBC Universal -- something that ICE (to this day) refuses to disclose. Further FOIA requests turned up no records of ICE ever properly licensing the video.

Already, this should be exceptionally troubling. ICE running corporate propaganda without any disclosure? And doing so on websites it had seized under questionable legality?

Turns out the story gets even worse. Jeff Roberts over at PaidContent notes that, under civil forfeiture procedures, the federal government must sell or destroy forfeited property. It cannot keep it and use it for itself. It does not appear to be legal to make use of the property for other purposes -- and certainly not for spreading corporate propaganda without disclosure.

The article also points out, quite reasonably, that it seems odd that ICE is using these videos -- which present a ridiculously inaccurate and one-sided argument that "piracy" is taking away movie industry jobs -- on web sites seized & forfeited for trademark violations. That seems extra weird. The sites have nothing to do with downloading movies, as the video discusses. And do the big brand companies that urged ICE to seize these domains to "protect their trademarks" really feel comfortable with the federal government now running NBC Universal propaganda on those domains instead?

Permalink | Comments | Email This Story

Justice Department Drops Its Request To Be Allowed To Lie In Response To FOIA Requests

Mike Masnick — Mon, 7 Nov 2011 03:26:02 PST

After taking a pretty widespread public mocking for its proposal to lie to people when receiving requests for documents it didn't want to give out, the Justice Department says it is dropping that plan. As you may recall, the Justice Department wanted to be able to say that documents didn't exist, even if they did. In the past, the DOJ has been able to say that it "cannot confirm or deny" the existence, which might force people to file suit to find out about certain documents. However, the DOJ wanted to deny their existence entirely, even when they did, in fact, exist. For rather obvious reasons, this troubled people.

Of course, the DOJ's capitulation is done rather petulantly. While it admits that, having heard the comments to its proposal, its suggested language "falls short" of the necessary transparency, it still defends the basic idea behind lying to the public, while denying that it's lying. It first notes that the practice of responding with "there exist no records responsive to your FOIA request" even if there were such records, has been in place since 1987, under the guidance of then Attorney General Ed Meese. And then they try to explain how that's not lying:

The logic is simple: When a citizen makes a request pursuant to the FOIA, either implicit or explicit in the request is that it seeks records that are subject to the FOIA; where the only records that exist are not subject to the FOIA, the statement that "there exist no records responsive to your FOIA request" is wholly accurate....

It then insists that this practice is never "lying," but that the DOJ will try to come up with ways to be more transparent. Somehow, I'm not sure I believe that will really happen.

Permalink | Comments | Email This Story

The Difficulty In Holding The Gov't Accountable When It Breaks The Law

Mike Masnick — Thu, 20 Oct 2011 02:03:42 PDT

We've discussed in the past how the US government likes to use claims of sovereign immunity or national security to avoid being held accountable (and/or to hide the details). This opens the system up to widespread abuse, and it's hard not to imagine that's happening. Even if the vast majority of government workers are good and honest people, the system is structured with so little recourse, that it's impossible not to expect massive abuses of power.

In one recent case, we wrote about an EPA agent who pretty much made up an entire case against a guy, Hubert Vidrine, mostly because it allowed the EPA agent to spend more time with his mistress, with whom he was working on the case. While that's one rare example of the government being held accountable (it had to pay the guy), Vidrine's lawyer wants the world to know that the legal system is basically set up to stymie every effort by folks like Vidrine to respond to bogus criminal charges by the government. The lawyer, Gary Cornwell, was kind enough to pass along a letter he recently sent to Senator Rand Paul, following the Vidrine verdict. That letter is embedded below, but there are a few highlights.

First, he points out that while the facts of the case are certainly unusual, it's unfair to say that such abuses aren't common. The fact is, we just don't know, and the system makes it extremely difficult for anyone like Vidrine to fight back, even when there has clearly been a completely arbitrary and malicious prosecution:

I write principally to convey to you my disagreement with the suggestion of David Uhlmann, former chief of the environmental crimes section at the Justice Department, as reported in the New York Times on October 4, 2011, that "fortunately, this is an isolated situation." This probably is an unusual case; but not because it reflects an isolated problem. More probably, it is an unusual case because the Federal Tort Claims Act discourages lawyers from filing malicious prosecution cases.

When Mr. Vidrine came to me in September, 2005, I filed an administrative claim with the Department of Justice, as required by the Federal Tort Claim Act. By July, 2007, DOJ had failed (for nearly two years) to take any action on the claim, so I filed the civil suit in federal court in Lafayette, LA. I then fought with the government for over 3 � more years to get access to the EPA/FBI files documenting the perjury and other acts used by government agents to secure an indictment in December, 1999, and to get truthful deposition testimony uncovering how and why they had kept the prosecution going for nearly four more years (until September, 2003), when all charges were finally dismissed because there had never been a shred of evidence that any crime had been committed. I then tried the case in June, 2011.

Cornwell is hoping that Senator Paul will consider changing the law to make it easier for people to take the government to court if they're similarly wronged:

Plainly, what happened in this case just should not happen in our country, and to minimize the number of times it happens again the FTCA should be strengthened to make it a more effective form of relief for those injured by government misconduct. Most victims of governmental abuse of power simply cannot afford to pay a lawyer to pursue malicious prosecution cases, because the standard of liability (which requires proof of the lack of “probable cause”) is high, and because malicious prosecution cases (like this one) are often complex and involve many witnesses and thousands of documents. (The government produced over 15,000 documents in this case and then argued that their extensive investigation proved that they did have probable cause and were not acting maliciously.)

Given those realities, the Federal Tort Claim Act would better serve our country’s historical interests in preserving our freedom by preventing abuses of power (1) if it allowed the Court to award punitive damages (as the Federal Court noted in its opinion in this case, stating on page 142 that “. . . given the egregious conduct displayed by an agent of the government and the devastation wrought on otherwise law-abiding citizens, had punitive damages been allowable, this Court would have awarded punitive damages in the hope of deterring such reckless and damaging conduct and abuse of power in the future;” (2) if it allowed the Court to compensate Plaintiffs for the attorneys fees they incur in prosecuting the action, (3) if it did not cap attorney fees at 25% of the Plaintiff’s recovery, and (4) if – at least in those cases which are brought solely against the United States (and not against any prosecutor personally) – it expressly allowed “malicious prosecution” claims to be based on the acts of “prosecutors.”

Of course, for the most part, it appears that the government has been trying to move in the other direction, to shield itself from the very laws it passes and requires others to follow.

Permalink | Comments | Email This Story

What If A Court Gave An Important Ruling, But We Were Not Allowed To Know What It Was?

Mike Masnick — Mon, 17 Oct 2011 12:10:00 PDT

That Anonymous Coward alerts us to the news that DC federal appeals court has issued a ruling (pdf) in the case of Gitmo detainee Adnan Farhan Abd Al Latif, but the entire ruling is classified, so the public has no idea what it says. A ruling last year at the district court had ordered the administration to release Latif for lack of evidence that he had anything to do with Al Qaeda. And now... we have no idea what the government is ordered to do or not do. So what do we do in a time when the federal government gets to come up with secret interpretations of law and then can have court rulings on related issues entirely hidden from the public?

Permalink | Comments | Email This Story

Federal Agent Manufactured Case Against Guy... For The Purpose Of Spending More Time With His Mistress

Mike Masnick — Thu, 13 Oct 2011 08:39:28 PDT

We've covered, repeatedly, the misdeeds of various law enforcement officials lately, but this latest story might be the most egregiously ridiculous case. Apparently EPA Agent Keith Phillips pushed heavily for a case against a guy named Hubert Vidrine, who was eventually charged with "knowingly storing hazardous waste materials without a permit." It later turned out that there were some serious problems with the case against Vidrine. First, he was storing oil, which was not considered hazardous waste, and second, there was no evidence that the storage was done "knowingly." Eventually, the feds realized the case was so weak that it dumped it. Vidrine fought back in court, claiming malicious prosecution, and the court hasn't just sided with him, but awarded him $1.7 million dollars for the malicious prosecution, detailing that Phillips provided false testimony and then "permeated the entire investigation with omissions, half-truths, overstatements, inflammatory language, misstatements, patent falsehoods, and tortured readings of regulations."

But where it gets insane is the reason behind all of this. It didn't even have anything to do with Vidrine at all. Apparently, Agent Phillips used the case as a way to spend more time with his mistress, who was also working on the case. Seriously:

One of the more distressing allegations made at trial, involved allegations of Agent Phillips’ sexual, extra-marital affair (and its subsequent “cover up”) with Agent Barnhill. The evidence strongly indicated Agent Phillips deliberately used his investigation and prosecution of Hubert Vidrine to foster, further, facilitate and cloak his extra-marital affair with Agent Barnhill, and perhaps, to exert improper influence over the manner in which she investigated and reported upon this case. Agent Barnhill candidly testified that she and Agent Phillips began a physical, sexual relationship while assigned to this matter, which lasted from approximately 1996 until January or February 2001. Agent Barnhill testified she and Agent Phillips were only physically intimate when working together on the Vidrine case — in other words, they did not meet to pursue their sexual relations on occasions when they were not working the case together. Thus, the case granted the opportunity for those rendez-vous, as well as providing justification for Agent Phillips wife.

During the investigation and prosecution, Agent Barnhill, who was single, lived in South Louisiana; Agent Phillips, who was married, lived in Dallas, Texas with his wife. Prior to and at trial, plaintiffs’ counsel consistently argued Agent Phillips used the Vidrine investigation as a cover, excuse and opportunity to facilitate his illicit affair with Agent Barnhill and to hide the affair from his wife. Plaintiffs consistently argued Keith Phillips manufactured a case, both in law and fact, against Hubert Vidrine, and carefully fed the AUSA and his supervisors only the information which would further that end and perpetuate the case, all to promote access to Agent Barnhill and perpetuate and conceal their illicit affair. Regrettably, the Court agrees with plaintiffs: this inappropriate and unprofessional behavior likely was, at least in part (if not in whole) a motivation for Agent Phillips’ continued pursuit of Hubert Vidrine, without probable cause, and certainly with a complete and total reckless disregard of Hubert Vidrine’s rights.

For all of this, Phillips was charged separately, leading to him recently pleading guilty to perjury and obstruction of justice. Obviously, this is an extreme case, and in no way representative. But the point that it brings up is that law enforcement has tremendous power, and if they choose to go after someone maliciously (or indirectly salaciously), they can make someone's life a living hell on their own whim. This is why we're so often concerned about making sure there's transparency and oversight -- and that those accused of things are able to effectively defend themselves.

Permalink | Comments | Email This Story

How Certain Judges Let The Feds Hide Questionable Spying Activity

Mike Masnick — Wed, 12 Oct 2011 20:05:00 PDT

With the recent unveilling of sealed orders by the feds collecting info from various service providers on the activities of various Wikileaks volunteers, you might wonder how such things get sealed... and how often that happens. It appears quite frequently, but the details (of course) are secret. Julia Angwin at the Wall Street Journal profiles one magistrate judge who has been pushing for others to limit their use of seals, but it sounds like not many are following.

“We diminish our legitimacy when we do things under a blanket of secrecy,” Judge Smith said in an interview. “The only way people can get confidence in what we’re doing is if they can get access to what we are doing and know why we are doing it.”

Judge Smith analyzed the 4,234 electronic surveillance orders issued in his Houston courthouse between 1995 and 2007 and found that 91.8% of them remain sealed today.

Judge Smith says he now sets time limits for the seals on orders that he signs. If prosecutors want to renew the seal, they must request an extension. “It’s more work,” Judge Smith says, “but I think it’s necessary work.”

He said he is worried that “people who aren’t indicted – regular law abiding citizens like you or me,” will never know if their records were obtained in an investigation, he says, “because these sealing orders live on indefinitely.”

This is a huge problem for our supposedly "transparent" government. When it can effectively conduct investigations and never have to admit to them or get any adversarial review over whether or not the investigation itself was legal, you have a system prone to massive abuse. There are certainly times and cases where such seals could make sense. But the idea that so many cases are effectively permanently sealed, it gives the government the ability to spy on people with impunity. You just need to find a magistrate judge willing to accept the government's version of what's happening... and that seems to happen frequently enough.

The full article has even more disturbing details like the fact that a recent survey found that 39% of sealed cases are never even put into the court's system for tracking cases, which would at least provide some info to the public to help analyze how often this kind of thing happens. This kind of secrecy is not how a government is supposed to function. If such investigations need to happen under seal they should always include some sort of expiration date on the seal. Otherwise, the feds know that as long as they can convince a judge (without the other side there to argue), they're effectively home free, and no one will scrutinize the investigations.

Permalink | Comments | Email This Story

Appeals Court Reiterates: ACLU And Others Are Allowed To Sue The Gov't Over Secret Spying

Mike Masnick — Fri, 23 Sep 2011 14:48:24 PDT

Back in March, an appeals court said that the ACLU and others could challenge the controversial FISA Amendments Act, the highly controversial change to the law that Senator Wyden has been clearly suggesting is being interpreted ridiculously broadly, such that the US government is collecting private data on potentially millions of Americans without oversight or review. The concern was whether or not the ACLU had "standing" to bring the case. That's because no one knows if their private data has been scooped up and used under FISA, because the government isn't revealing it. But if you can't prove you've been harmed by the law, can you sue? The government claimed that since the ACLU had no proof it could not sue. The court disagreed.

Not surprisingly, the US asked the full appeals court (rather than just the three judge panel) to review that ruling, but the court has now rejected that request. Often when a court refuses to rehear a case en banc, there isn't much of a discussion about it -- they just refuse. Yet here, there's an 83 page filing of opinions (pdf) by judges on the court arguing over whether or not the case should have been heard. Incredibly, despite the clear implications of what Senator Wyden has been saying, a bunch of judges say that the FISA Amendments Act doesn't represent a significant change in the law. Thankfully, those judges were outvoted here, and the lawsuit can move forward.

Permalink | Comments | Email This Story

Court Says Law Blocking Blogger From Displaying County Logo On Stories Violates The First Amendment

Mike Masnick — Tue, 13 Sep 2011 22:11:00 PDT

Governments are pretty touchy about their logos. Last year, the FBI threw a hissy fit when it discovered that Wikipedia accurately displayed its logo on a page about (you guessed it) the FBI. Similarly, the White House got upset with a blogger who used the White House logo in a post about a meeting of the President's Council of Advisors on Science and Technology. And, while there is a federal law against misuse of logos, that's for people using the logos to misrepresent themselves. Going after Wikipedia or journalists for using logos in a descriptive manner is silly.

However, Fluvanna County, Virginia, decided that it had nothing better to do than to pass an ordinance similarly banning the use of its logo, in an effort that appeared to have been directed at a blogger who used the logo... on stories about the county. Thankfully, a court has struck down the law as being a First Amendment violation:

This sweeping prohibition encompasses a substantial number of uses of the seal that would not suggest government endorsement, such as the display on a website of an exact copy of an official County news release that contains the image of the seal next to the text, or the publication in a newspaper of a photograph of a County official delivering a speech from a podium upon which the County seal is attached and visible.

The court does compare it to the similar federal law, but notes that at least the federal law makes it clear that it's only intended for use where there may be confusion over a potential endorsement. And, with that, here's the damn logo that the county can't sue us over.

Permalink | Comments | Email This Story