Press review

The press review RSS feed

The press review catalogues press articles related to la Quadrature's issues, compiled by its volunteers.
See also our French press review.

[ArsTechnica] Privacy Shield doesn’t do enough to curtail US surveillance, say EU data watchdogs

Exceptions in the proposed EU-US Privacy Shield framework that would allow the US to carry out mass surveillance of EU citizens are "not acceptable," the Article 29 Working Party of EU data protection authorities said today in a press conference.

The Chairman of the group, Isabelle Falque-Pierrotin, explained that the Article 29 Working Party would look with "great interest" on the forthcoming ruling by the Court of Justice of the European Union (CJEU) on whether mass surveillance of EU citizens could be legal. If the CJEU finds that the surveillance carried out by GCHQ is unlawful, it would have a big impact on the national security exceptions included in Privacy Shield. [...]

Since Safe Harbour was struck down by the CJEU largely because of concerns about mass surveillance, there is a real possibility that Privacy Shield will suffer the same fate unless the the Article 29 Working Party's concerns are adequately addressed. That would lead to even greater uncertainty for transatlantic data flows—something the European Commission and US companies will be keen to avoid.

http://arstechnica.co.uk/tech-policy/2016/04/privacy-shield-us-surveilla...

[NYtimes] FCC Advances Privacy Proposal for U.S. Internet Users

WASHINGTON — The U.S. Federal Communications Commission on Thursday advanced a proposal to ensure the privacy of broadband Internet users by barring providers from collecting user data without consent. [...]

Broadband providers currently collect consumer data without consent and some use that data for targeted advertising, which has drawn criticism from privacy advocates. [...]

Advocacy group Free Press praised the FCC for moving ahead and said the commission must consider other issues in setting rules including "pay-for-privacy, deep-packet inspection, upselling services, competition and data security." [...]

http://www.nytimes.com/reuters/2016/03/31/technology/31reuters-fcc-priva...

[CNet] How the government plans to protect your privacy from ISPs (FAQ)

The [Federal Communications Commission] voted this week on a proposal for rules that will govern how broadband and wireless providers handle your personal online data. [...]

The new rules prohibit broadband providers from sharing your information, such as your name, location or online activity, with third parties without your consent. It's meant to provide the same kind of protection offered to telephone customers.

The rules would also require broadband and wireless providers to disclose in plain language how consumer data is collected, how it's shared with third parties and how it's used by outside firms. The plan also calls for broadband companies to strengthen security practices for customer data. [...]

The rules only cover broadband and wireless service providers. But online companies, such as Facebook or Google, or device makers, such as Apple, are excluded from the rules. That means these companies are still able to collect data about your location and Internet surfing habits and sell it to advertisers or other third parties. [...]

The vote on Thursday was just the beginning of the process. The FCC opened up its proposal for public comment. Then there will be another period to comment on the comments. And finally, the agency will draft its final rules, which the agency will vote on. The whole process could take six months or longer. [...]

http://www.cnet.com/news/how-the-fcc-plans-to-protect-your-privacy-from-...

[ArsTechnica] Brussels terror attacks: Why ramping up online surveillance isn't the answer

Two days after the attacks, EU ministers met in Brussels at an emergency justice and home affairs council, and predictably demanded more access to our Internet histories, more powers to track people, and more ways to break into our private communications.

The European People's Party has reportedly said it wants personal data on everyone who takes a train to be stored. Meanwhile, a so-called Passenger Name Record is in the works for all airline passengers.

And, even before the terrorist attacks, Belgium officials were mulling the expansion of the country's data collecting and storing laws. Never mind that the European Court of Justice, and the Belgian Constitutional Court have ruled that data retention is illegal. My adopted country also plans new surveillance legislation that would allow intelligence agencies more freedom to eavesdrop on cross-border communications [...]

I am not opposed to proportionate and specific surveillance. My opposition, on principle, is to mass unjustified collection of personal information "just in case." Just in case of what? In case we're all closet terrorists?

Predictably, Europol Director Rob Wainwright blamed encryption. He told POLITICO. “Encrypted communication via the Internet, and smartphones are a part of the problems investigators face in these instances. We have to find a more constructive legislative solution for this problem of encryption.”

Since when is encryption a problem? [...] Using crypto tools doesn’t mean you are a terrorist. Weakening encryption will just create vulnerabilities that will be exploited by the very criminals and terrorists we want to stop. [...]

http://arstechnica.co.uk/tech-policy/2016/04/brussels-terror-attacks-sur...

[WashingtonPost] Mass surveillance silences minority opinions, according to study

A new study shows that knowledge of government surveillance causes people to self-censor their dissenting opinions online. The research offers a sobering look at the oft-touted "democratizing" effect of social media and Internet access that bolsters minority opinion. [...]

This research illustrates the silencing effect of participants’ dissenting opinions in the wake of widespread knowledge of government surveillance, as revealed by whistleblower Edward Snowden in 2013. [...]

“It concerns me that surveillance seems to be enabling a culture of self-censorship because it further disenfranchises minority groups. And it is difficult to protect and extend the rights of these vulnerable populations when their voices aren't part of the discussion. Democracy thrives on a diversity of ideas, and self-censorship starves it,” [Elizabeth Stoycheff, lead researcher of the study and assistant professor at Wayne State University] said. “Shifting this discussion so Americans understand that civil liberties are just as fundamental to the country's long-term well-being as thwarting very rare terrorist attacks is a necessary move.” [...]

[This article has been translated in French here]

https://www.washingtonpost.com/news/the-switch/wp/2016/03/28/mass-survei...

[CSMonitor] With or without evidence, terrorism fuels combustible encryption debate

The encryption issue has become indelibly linked to the broader debate in Europe, the US, and South America over how to balance individual liberties with matters of national security and law enforcement. [...] In France, the amendment that lawmakers will debate is part of the omnibus Digital Republic bill that passed the lower house of France’s parliament earlier this year. [...]

If passed, it's unclear how French courts will interpret the amendment, according to Philippe Aigrain, a French security expert and cofounder of the advocacy group La Quadrature du Net. He worries it will scare companies operating in France off of providing strong encryption altogether. [...]

“It is remarkable that at every new bombing or attack, there are claims that the authors used encryption even when all evidence is contrary, such as was the case in the Nov. 13 attacks in Paris, where the terrorists exchanged unencrypted [texts],” said Philippe Aigrain, [...].

http://www.csmonitor.com/World/Passcode/2016/0328/With-or-without-eviden...

[Computing] GCHQ admits £1bn spend on cyber security 'hasn’t worked'

GCHQ is losing the cyber security war, according to director of cyber security at CESG (Communications-Electronics Security Group) Alex Dewedney, who admitted that, despite a £1bn spend over the past five years, "the bottom line is it hasn't worked". [...]

"We can't just pass information on threats to businesses and tell them to go and deal with it themselves," said Dewedney, who added that 90 per cent of UK enterprises suffered cyber security breaches last year.

Dewedney also criticised the UK government for "not... spending money on fixing legacy IT issues" that have left a situation that, he said, "is killing us". [...]

The problem is "not so much a money issue as it is a human resources issue", he said.

http://www.computing.co.uk/ctg/news/2449902/gchq-admits-gbp1bn-spend-on-...

[Techdirt] From Dingo To Net Neutrality Hero: FCC Boss On Why Everybody Had Him Wrong

When FCC boss Tom Wheeler was first appointed to head the agency, few expected much. After all, here was yet another FCC revolving door regulator with a history of lobbying for both the cable and wireless industries -- now tasked with heading an agency that oversees both. Yet the one-time "dingo" surprised everybody by fighting for tougher net neutrality rules, raising the standard definition of broadband, standing up for municipal broadband and improved broadband competition, and now fighting to unlock the cable industry's stranglehold over the cable set top box. [...]

It remains entirely possible Wheeler chooses not to act on zero rating whatsoever. After all, the agency has a history of treating usage caps (despite their obvious anti-competitive implications) as little more than "creative pricing," and Wheeler's on-record calling T-Mobile's zero rating of some video services "innovative" and "pro competition". Public pressure's also not particularly high, since the majority of the public doesn't understand the potential threat zero rating poses to a level playing field. [...]

https://www.techdirt.com/blog/netneutrality/articles/20160309/0829123384...

[TheIntercept] How a Small Company in Switzerland Is Fighting a Surveillance Law — And Winning

A small email provider and its customers have mobilized to force the Swiss government to put its new invasive surveillance law up for a public vote in a national referendum in June. [...]

By gathering its users and teaming up with political groups including the Green and Pirate parties, as well as technological and privacy advocates including Chaos Computer Club Switzerland and Digitale Gesellschaft Switzerland, ProtonMail was able to contribute to the effort to collect over 70,000 signatures before the deadline. [...]

The new law is the first of two surveillance laws that have been circulating through the Swiss Parliament. The NDG law was fully passed in September, but can’t take full effect until after the referendum vote in June.[...] the second law, known as the “BÜPF,” might come up for a vote in the Parliament’s spring session, but may be revised or delayed. [...]

https://theintercept.com/2016/01/25/how-a-small-company-in-switzerland-i...

[TheGuardian] GCHQ hacking does not breach human rights, security tribunal rules

Investigatory powers tribunal says computer network exploitation, such as activating cameras on devices without permission, is legal. [...]

Part of the legal dispute focused on whether such activity is permissible under thematic warrants that do not identify targeted individuals. Responding to the decision, Privacy International said it would “challenge this undermining of the fundamental right that a warrant should identify a specific property or person”. There is no right of appeal to any higher UK court, but cases can be taken to Europe. [...]

In relation to the authorisation of actions outside Britain, the IPT ruling said there might be circumstances in which an individual claimant may be able to claim a breach of their rights under articles 8 or 10 of the convention, which relate to the right to private and family life and freedom of expression. However, it said this does not lead to a conclusion that the regime is non-compliant with the articles. [...]

http://www.theguardian.com/uk-news/2016/feb/12/gchq-hacking-does-not-bre...

Syndicate content