[Quote:]

Liberty called for an overhaul of RIPA yesterday after the European Court of Human Rights slapped the UK government over the way it applied the UK’s previous interception legislation.

But the Home Office today said it did not see that the judgement had any implications for the UK’s current suite of laws covering covert investigations.

The court ruled that the UK had violated article 8 of the European Convention on Human Rights, by tapping communications of Liberty, along with British Irish Rights Watch and the Irish Council for Civil Liberties between 1990 and 1997. Article 8 quaintly demands the right to respect for private and family life and correspondence.

The three human rights groups had claimed that the MoD’s Electronic Test Facility had eavesdropped on their phone, fax, email and data comms between 1990 and 1997.

The three had first lodged complaints with the UK’s Interception of Communications Tribunal, the DPP and the Investigatory Powers Tribunal, to “no avail” with local courts ruling “there was no contravention to the Interception of Powers Act 1985”.

[..]

The Home Office was less vocal, saying it did not think the judgement had any implications for RIPA. While yesterday’s judgement concerned the 1985 Act, a Home Office spokesman said there were no legal challenges against RIPA.

Then it’s about fucking time the European Court of Human Rights starts taking less than 9 years to do their job - what’s the point if a government can say “we’ve got new laws now, so fuck off”?

[Quote:]

The United States and the European Union are nearing completion of an agreement allowing law enforcement and security agencies to obtain private information — like credit card transactions, travel histories and Internet browsing habits — about people on the other side of the Atlantic Ocean.

The potential agreement, as outlined in an internal report obtained by The New York Times, would represent a diplomatic breakthrough for American counterterrorism officials, who have clashed with the European Union over demands for personal data. Europe generally has more stringent laws restricting how governments and businesses can collect and transfer such information.

Negotiators, who have been meeting since February 2007, have largely agreed on draft language for 12 major issues central to a “binding international agreement,” the report said. The pact would make clear that it is lawful for European governments and companies to transfer personal information to the United States, and vice versa.

But the two sides are still at odds on several other matters, including whether European citizens should be able to sue the United States government over its handling of their personal data, the report said.

So now the US can engage in industrial espionage without having to worry about being sued for it, and my own government gives away data to be sold to the highest bidder and doesn’t get anything in return for it.

When can we start executing politicians for this immense disservice to the people who voted for them?

For example, the two sides have agreed that information that reveals race, religion, political opinion, health or “sexual life” may not be used by a government “unless domestic law provides appropriate safeguards.” But the accord does not spell out what would be considered an appropriate safeguard, suggesting that each government may decide for itself whether it is complying with the rule.

In other words, they can do whatever the fuck they want with the data. And they know it, or they wouldn’t keep it a secret like this:

The Bush administration and the European Commission have not publicized their talks, but they referred to their progress in a little-noticed paragraph deep in a joint statement after a summit meeting between President Bush and European leaders in Slovenia this month.

[Quote:]

Automated passenger profiling is rubbish, the Home Office has conceded in an amusing - and we presume inadvertent - blurt. “Attempts at automated profiling have been used in trial operations [at UK ports of entry] and has proved [sic] that the systems and technology available are of limited use,” says home secretary Jacqui Smith in her response to Lord Carlile’s latest terror legislation review.

Furthermore, when the security services stopped trying to let the machines figure out who was a threat and went back to traditional “inituitive” stops, they were more effective. “Intelligence improved during the trials when officers reverted to the traditional intuitive methods, albeit applied in the context of intelligence provided by the security service,” says Smith. “It is likely that with more effective use of intelligence, and possibly some behavioural analysis training the quality of intelligence retrieved from persons of interest will improve and the number of people stopped will decrease.”

The Home Office’s belated discovery that human beings acting on sound intelligence make for better policing does however raise questions about the future operation of its E-Borders programme. This is intended to track people in and out of the country, and to operate in conjunction with Advanced Passenger Data (API) and Passenger Name Records (PNR) collected via Project Semaphore. As Home Office minister Joan Ryan told Parliament in March of last year, “In January 2007 23 successes were recorded by Project Semaphore as a result of automated profiling based on passenger data.”

23. Out of how many thousands of travelers profiled they dare not say, nor do they say how many of those 23 were for unpaid parking tickets and the like.

Yep, crap alright.

[Quote:]

House and Senate leaders have agreed to a new compromise surveillance bill that would effectively shield from potentially costly civil lawsuits telecommunications companies that helped the government wiretap citizens’ phone and computer lines after the September 11 terrorist attacks without court permission.

The House will debate the bill on Friday, potentially ending a monthslong standoff about the rules for government wiretapping inside the United States.

House Majority Leader Steny Hoyer of Maryland said the new bill “balances the needs of our intelligence community with Americans’ civil liberties, and provides critical new oversight and accountability requirements.”

The great thing about the two-party system is that when one party is tired of fucking you, the other party is rested up and ready to take over.

[Quote:]

In 2006, the State Department’s report on Russia contained one of the most amazing passages I’ve read in all the time I’ve been writing about political issues. This is really — honestly — what the State Department said in condemning Russia. I highly recommend reading this a few times, especially in light of what the Congress is preparing to do this week:

The law states that officials may enter a private residence only in cases prescribed by federal law or on the basis of a judicial decision; however, authorities did not always observe these provisions.

The law permits the government to monitor correspondence, telephone conversations, and other means of communication only with judicial permission and prohibits the collection, storage, utilization, and dissemination of information about a person’s private life without his consent. While these provisions were generally followed, problems remained. There were accounts of electronic surveillance by government officials and others without judicial permission, and of entry into residences and other premises by Moscow law enforcement without warrants. There were no reports of government action against officials who violated these safeguards.

What kind of monsters would spy on their own citizens without warrants even when the law requires warrants, and then not even punish those who broke the law? Russian Communist KGB thugs — that’s who would do such a horrible thing, our State Department complained in 2006.

[Quote:]

Supermarktketen Albert Heijn en betalingsverwerker Equens testen het gebruik van vingerafdrukscanner Tip2Pay voor het afrekenen van de boodschappen.

Vanaf vandaag kunnen gedurende zes maanden klanten in een Albert Heijn winkel in Breukelen hun boodschappen afrekenen met slechts een scan van de vingertop. De proef moet uitwijzen of dit technisch naar behoren gaat en of klanten er op zitten te wachten. De technologie en betalingsafhandeling wordt geleverd door Equens, het voormalige Interpay.

Na het tonen van een identificatiebewijs en bank- of creditcard wordt een scan gemaakt van hun vingertop en worden naam- en adresgegevens, bankrekeningnummer en indien gewenst het klantenkaartnummer geregistreerd. Bij de registratie is rekening gehouden met de Nederlandse privacywetgeving, zo meldt Albert Heijn en Equens.

Mooie uitdrukking is dat toch, “er is rekening gehouden met”. Dan heb je als consument toch gelijk zo’n lekker warm gevoel. Maar iemand die regelmatig de krant leest weet wat ze werkelijk bedoelen.

[Quote:]

A controversial law in Sweden which would have allowed Sweden’s National Defence Radio Establishment (FRA) to monitor all outgoing and incoming communications crossing Sweden’s borders didn’t get enough votes in parliament today.

FRA would have been allowed to read emails and SMS messages and tap phone conversations without a court order. A majority of Sweden’s center-right government agreed on Tuesday evening to support a revised version of the proposal, but Prime Minister Fredrik Reinfeldt didn’t get the backing of his four-party coalition and the draft has been sent back to the committee for revision. Government representatives have pledged to build in more protection for personal privacy.

[Quote:]

PARENTS are outraged at a State Government plan to post the profile of every state school student on its intranet, sparking fears pedophiles could find it.

The intranet database, dubbed OneSchool, will profile each of the state’s 480,000 public school students enrolled from Prep to Year 12.

Photographs, personal details, career aspirations, off-campus activities and student performance records are being collected from all 1251 state schools.

Let *all* of the kids enter “political assassin” as a “career aspiration”, and you can fight terrorism at the same time!

But Education Minister Rod Welford has warned the state-wide rollout of the OneSchool database is “non-negotiable” and students could be refused an education if they don’t divulge required information.

Except, the law says the government MUST provide an education…

couriermail.com.au reader Sari, of Brisbane, suggested personal information of our politicians, their wives and children should be posted first.

“Then we’ll see how safe it is before adding school children.”

Sandra of Brisbane said Mr Welford could not stop her children from attending school if she refused to allow them to be part of the database “because by law the government has to provide my children with an education”.

Maybe they should start reading history a bit:

[Quote:]

Of the 140,000 Jews that had lived in the Netherlands prior to 1940, only 30,000 survived the war. This high death toll had a number of reasons. One was the excellent state of Dutch civil records: the Dutch state, prior to the war, had recorded substantial information on every Dutch national. This allowed the Nazi regime to easily determine who was Jewish (whether fully or partly of Jewish ancestry) simply by accessing the data.

[Quote:]

Pubs in Yorkshire have been ordered to ban people from wearing flat caps or other hats so troublemakers can be more easily recognised.

The Park Hotel in Wadsley, Sheffield, is the latest to be asked to impose the rule by senior police officers.

Mark Kelly, the landlord said: “Police asked us to ensure that everyone removes headgear.

[Quote:]

The problem with surveillance is not primarily that some bored officer might learn about some embarrassing private detail (although this is a problem as well). The fundamental problem with surveillance is that it changes people. People under surveillance behave differently than people who are not monitored - differently than free people.

Unfortunately, this fundamental problem has just been proven in Germany. Since the beginning of this year, communication providers are required to record who communicated with whom and when (but not the content of the communication). This data is stored for six months and available to law enforcement in cases related to certain forms of crime.

A recent survey (German) by the well-known German Forsa institute now showed the social effects of this data retention law: Communication habits are indeed changing.

1.003 individuals have been questioned on May 27th and 28th. These are the results:

• 73% know about the data retention
• 11% said that they had already abstained from using phone, cell phone or e-mail in certain occasions
• 6% believe to receive less communication since the beginning of the data retention
• 52% said they probably would not use telecommunication for contacts like drug counselors, psychotherapists or marriage counselors because of data retention

And the sad fact: 48% still think that data retention is a necessary step for crime prevention.

[Quote:]

Sweden is on the verge of passing a far-reaching wiretapping program that would greatly expand the government’s spying capabilities by permitting it to monitor all email and telephone traffic coming in and out of the country.

So far, hacks from the mainstream Swedish press seem to be on holiday, so news about the proposed law is woefully hard to come by. That leaves us turning to this summary from the decidedly left-leaning Swedish Pirate Party for details. We’d prefer to rely on a more neutral group, but that wasn’t possible this time. According to them, here’s a broad outline:

The En anpassad försvarsunderrättelseverksamhet bill (which loosely translates to “a better adapted military intelligence gathering”) gives Sweden’s National Defence Radio Establishment (FRA) direct access to the traffic passing through its borders. Now remember, we’re talking about the internet, which frequently routes packets though multiple geographically dispersed hops before they reach their final destination.

This all but guarantees that emails and voice over IP (VoIP) calls between Swedes will routinely be siphoned into a massive monitoring machine. And we wouldn’t be surprised if traffic between parties with no tie to the country regularly passes through Sweden’s border as well, and that too would be fair game. (For example, email sent from a BT address in London to Finland is likely to pass through Sweden first.)

[..]

“The funny thing is when asked what do you want to look for, [backers of the bill] don’t really specify what they’re interested in,” he continued. “It’s a very broad bill. They basically can interpret whatever they like.”

I’m sure this will make Sweden a lot safer… right?

[Quote:]

This is ingenious and a little scary. Normally, Javascript doesn’t have access to your browser’s history URLs. But Aza Raskin found a way:

How does SocialHistory.js know? By using a cute information leak introduced by CSS. The browser colors visited links differently than non-visited links. All you have to do is load up a whole bunch of URLs for the most popular social bookmarking sites in an iframe and see which of those links are purple and which are blue. It’s not perfect (which, from a privacy perspective, is at least a little comforting) but it does get you 80% of the way there. The best/worst part is that this information leak probably won’t be plugged because it’s a fundamental feature of the browser.

Incredible.

Now any website has a reliable way to detect whether you have recently visited any particular URL.

[Quote:]

Chris Frates at the Politico reveals how Republican Leader John Boehner is seeking wiretap protection for himself, but not for ordinary Americans:

When a federal judge ordered Rep. Jim McDermott to pay House Minority Leader John A. Boehner and his attorneys more than $1 million in damages and legal fees for leaking an illegally taped phone call to the media, Boehner said he pursued the case because “no one — including members of Congress — is above the law.”

Why, then, is the Ohio Republican trying to squash similar lawsuits against telecommunications companies who cooperated with the government in warrantless electronic surveillance, ask the attorneys behind the class action suits.

The blatant hypocrisy on display here is stunning.

[Quote:]

The Home Office will create a database to store the details of every phone call made, every email sent and every web page visited by British citizens in the previous year under plans currently under discussion, it has emerged.

The Government wants to create the system to fight terrorism and crime. The police and security services believe it will make it easier to access important data as communications become more complex.

Telecoms firms and internet service providers (ISPs) have already been approached by the Home Office, which would be given customer records if the plans were realised.

The security services and police would then be able to access records for any individual over the previous 12 months by gaining permission through the courts.

[Quote:]

Unable to afford a proper camera crew and equipment, The Get Out Clause, an unsigned band from the city, decided to make use of the cameras seen all over British streets.

With an estimated 13 million CCTV cameras in Britain, suitable locations were not hard to come by.

They set up their equipment, drum kit and all, in eighty locations around Manchester – including on a bus – and proceeded to play to the cameras.

Afterwards they wrote to the companies or organisations involved and asked for the footage under the Freedom of Information Act.

“We wanted to produce something that looked good and that wasn’t too expensive to do,” guitarist Tony Churnside told Sky News.

[Quote:]

My favorite terrorist is Hasan Elahi. Just saying his name makes my heart go up one Terror Alert level. Why Elahi? Well, to begin with, he’s innocent. A quality so rare in someone so guilty. You see, in 2002, Elahi was detained by the FBI on suspicion of hoarding explosives in a Florida storage unit. Turns out, he didn’t have any explosives. In fact, he was the only person in Florida without gunpowder. But the FBI refused to give Elahi a written letter clearing him of suspicion because he refused to change his name, religion and skin color. Instead, they just asked him to “check in” with them periodically. And here’s where I really like this guy: for the last six years, Elahi has taken the burden off government surveillance by surveilling himself. Everyday, Elahi takes hundreds of photos of his whereabouts and sends them to the FBI. Pictures of the airports he travels through, the bathrooms he visits, even the meals he eats. With these pictures, he’s ensuring that he’ll never be arrested on suspicion of terror, though by judging by some of the meals he’s eating, Gitmo might be an improvement.

[Quote:]

The Ninth Circuit’s recent ruling (pdf) in United States v. Arnold allows border patrol agents to search your laptop or other digital device without limitation when you are entering the country. EFF and many civil liberties, travelers’ rights, immigration advocacy and professional organizations are concerned that unfettered laptop searches endanger trade secrets, attorney-client communications, and other private information. These groups have signed a letter asking Congress to hold hearings to find out what protocol, if any, Customs and Border Protection (CBP) follows in searching digital devices and copying, storing and using travelers’ data. The letter also asks Congress to pass legislation protecting travelers’ laptops and smart phones from unlimited government scrutiny.

[..]

In the meantime, how can international travelers protect themselves at the U.S. border, short of leaving their laptops and iPhones at home?

The EFF has many suggestions, but it really boils down to: if you’re not a US citizen, don’t travel to the US if you can avoid it. If you are a US citizen, you’re fucked.

[Quote:]

There has been outrage in Italy after the outgoing government published every Italian’s declared earnings and tax contributions on the internet.

The tax authority’s website was inundated by people curious to know how much their neighbours, celebrities or sports stars were making.

The Italian treasury suspended the website after a formal complaint from the country’s privacy watchdog.

[..]

The timing of the move, just days before the current administration hands over to incoming Prime Minister Silvio Berlusconi, was intriguing too, says our correspondent.

The outgoing government came to power promising to tackle Italians’ notoriously lax approach to paying tax.

[Quote:]

“In 2001 Jose Emilio Suarez Trashorras was jailed in a Spanish prison for drug related offences. Whilst imprisoned, Trashorras established regular contact with Jamal Ahmidan who was serving time for a petty crime. Both individuals embraced radical Islamic fundamentalist ideas within the prison and were recruited in the Takfir wa al-Hijra group, a Moroccan terrorist groups linked with al-Qaida . Following their release, Ahmidan became the leader of the terrorist cell that conducted the Madrid bombing. In a drugs-for-bombs exchange with a third party, Trashorras provided the explosives for the 13 backpack bombs that killed 191 people and injured hundreds.“

So write Vassilis and Panos Kostakos in the department of computer science and the University of Bath in the UK, who have come up with a system that they say could spot and monitor these kinds of interactions in prisons.

Their idea? Fit inmates with RFID tags that allow their positions to be monitored, and then number crunch the resulting data sets to see who spends the most time with whom.

Not exactly rocket science but the Kostakos’s have an even more frightening idea. Why not test the idea by anonymously monitoring the movements of students, residents and workers of the city of Bath by listening out for their bluetooth-enabled devices as they move around the city. And that’s what they’ve done.

What the Kostakos found is that it is straightforward to capture data on people’s encounters using bluetooth. In fact they captured data on 10,000 unique devices during the 6 month study. Yep, that’s 10,000.

Exactly how much you can tell about these encounters isn’t clear. But hey, this is only a demonstration (either that or they’re keeping schtum about the juicy details).

These days there’s less and less difference between people inside and outside prisons..

Next up: mandatory bluetooth collars for everybody.

[Quote:]

The government has refused to investigate BT’s covert wiretapping of thousands of its customers in 2006 and 2007, despite its own expert’s view that without consent Phorm’s advertising targeting technology is a breach of criminal law.

Whitehall’s willingness to turn a blind eye to the fact that tens of thousands of people were spied on by big business in order to serve up targeted marketing has angered web users. “I’m absolutely sickened and appalled,” Pete John, who has tried to interest authorities, told The Register this week.

BT customers who have attempted to report the secret listening and profiling experiments to the police have been told to approach the Home Office. One was subsequently told over email by an official: “It is important to remember that private companies such as ISPs are allowed to do certain things under section 3 of [the Regulation of Investigatory Powers Act] that Law Enforcement Agencies cannot do without permission.”

All Hallow the Corporation!