Google's privacy policy "too vague"

Found on The Inquirer on Wednesday, 30 May 2007

Google's global privacy lawyer has admitted that parts of the outfit's privacy policy are too vague and need to be tightened up.

In an interview with the Beeb, Peter Fleischer said the company "could do better" with policy statements that explained why user information was sometimes shared with third parties.

He said that maintaining user privacy was pretty fundamental to Google. The only time the outfit would share data was when personal information had been stripped from it. Honest.

Privacy? Google? That's doesn't go together at all.

Which ISPs Are Spying on You?

Found on Wired on Tuesday, 29 May 2007

Wired News, with help from some readers, attempted to get real answers from the largest United States-based ISPs about what information they gather on their customers' use of the internet, and how long they retain records like IP addresses, e-mail and real-time browsing activity. Most importantly, we asked what they require from law-enforcement agencies before coughing up the data, and whether they sell your data to marketers.

Only four of the eight largest ISPs responded to the 10-question survey, despite being contacted repeatedly over the course of two months. Some ISPs wouldn't talk to us, but gave answers to customers responding to a call for reader help on Wired's Threat Level blog.

AOL, AT&T, Cox and Qwest all responded to the survey, with a mix of timeliness and transparency.

But only Cox answered the question, "How long do you retain records of the IP addresses assigned to customers."

Some of the most sensitive information sent across an ISP's network are the URLs of the websites that people visit. This so-called clickstream data includes every URL a customer visits, including URLs from search engines, which generally include the search term.

When asked if they allow marketers to see anonymized or partially-anonymized clickstream data, AOL, AT&T and Cox said they did not, while Qwest gave a muddled answer and declined to answer a follow-up question. Comcast, EarthLink, Verizon and Time Warner didn't respond.

It should be illegal for an ISP to sniff the traffic of its users. Collecting the clickstream is basically wiretapping, which usually requires permission from a judge. Sharing this with marketers is highly questionable: imagine your phone company records your calls, erases your number (but not those you dialed) and gives them away. Furthermore, storing IP information already violates privacy laws in other countries.

Half of black Britain on track for DNA database

Found on The Register on Monday, 28 May 2007

Half of all black British males are destined to become records on the police National DNA Database by 2010, according to an analysis of government figures by the Liberal Democrats.

If you count only men of an arrestable age, 68 per cent of them will have been nabbed and dabbed by the police by 2010. Just 14.4 per cent of white males are expected to be on the DNA database in the same time.

Liberal Democrat leader Menzies Campbell used the figures to raise a question about the "disproportionate" targeting of non-white people by police, or "racial profiling", by which people's behaviours are stereotyped according to the colour of their skin.

The extent of errors on the DNA database, and the number of children contained on it, are also problems that are putting the National Police Improvement Agency, the authority responsible for its upkeep, on the defensive.

Three quotes come into my mind for the past, present and future.
"We hold these truths to be self-evident, that all men are created equal, that they are endowed by their Creator with certain unalienable Rights, that among these are Life, Liberty, and the Pursuit of Happiness" (Declaration of Independence).
"I have a dream that my four little children will one day live in a nation where they will not be judged by the color of their skin but by the content of their character" (Martin Luther King jr).
"They who would give up an essential liberty for temporary security, deserve neither liberty or security" (Benjamin Franklin).

US 'opposes' G8 climate proposals

Found on BBC News on Sunday, 27 May 2007

The US appears to have rejected draft proposals by Germany for G8 members to agree tough measures in greenhouse gas emissions, leaked documents have shown.

"The US still has serious, fundamental concerns about this draft statement," a red-inked note reads.

"The treatment of climate change runs counter to our overall position and crosses 'multiple red lines' in terms of what we simply cannot agree to," it continues.

"We have tried to 'tread lightly' but there is only so far we can go given our fundamental opposition to the German position."

Greenpeace Director John Sauven described the US position as "criminal".

"The US administration is clearly ignoring the global scientific consensus as well the groundswell of concern about climate change in the United States," he said.

The US has not signed the Kyoto Protocol, which sets out targets for lowering emissions until 2012.

I wonder how much it takes to get through their thick skulls. Some more Katrinas? Shouldn't it make you think when scientists ask for new hurricane categories because more and more hurricanes are off-scale? In the end, this very well might result in high levies on US products to compensate for the pollution.

Google queried on privacy policy

Found on BBC News on Friday, 25 May 2007

Google has been told that it may be breaking European privacy laws by keeping people's search information on its servers for up to two years.

Peter Fleischer, Google's global privacy counsel, said the firm was committed to dialogue with the group.

"We believe it's an important part of our commitment to respect user privacy while balancing a number of important factors, such as maintaining security and preventing fraud and abuse," Mr Fleischer said.

Earlier this year Google said it would anonymise personal data it receives from users' web search after 18 to 24 months.

Google collects and stores data from each query. It holds information such as the search term itself, the unique address of the PC being used, known as the IP address, and details of how a user makes searches, such as the browser used and previous queries to Google.

Google has said it was using this information to help improve its different services and to monitor how its search engine was functioning.

I heavily doubt that Google doesn't store more information; after all, there are enough users who use a personalized Google, which makes it perfect to create a customer profile over years. If you have a dynamic IP and refuse cookies, each profile is only as detailed as it can get in one online session; but if you stay logged in and keep your cookies, it practically can analyze you over months and years. And nobody knows where your data ends. Google isn't doing that to make life easier for the user; it's not a charity. The data helps with things like targeted advertising; such profiles can be sold too. Luckily some tools help messing up this data, eg by randomising the User-Agent.

Missing German doctor reappears after 22 years

Found on The Register on Thursday, 24 May 2007

Father of two Siegfried B went awol shortly after his 50th birthday back in May 1985. He told his wife he was going out and duly exited his house in Bergholz-Rehbrücke, south of Berlin, never to return. Police subsequently searched the premises, including the garage, but didn't check a large dovecot above.

His wife recently decided to renovate the garage roof, and workers got a nasty shock when they set to work. Prosecutor Wilfried Lehmann explained: "When they removed the layers of asbestos they discovered the mummified skeleton. Siegfried B was hidden in the roof, and next to him were a schnaps bottle and a suicide note."

As an added twist to this macabre tale, there was speculation that the East German secret police might have had a hand in his death. Neighbours "reported seeing a dark limousine draw up outside the house several times, and the men inside it pulling Siegfried B into the car and driving off".

Now somebody should have taken a few lessons from a rogue to level up the search skill.

DRM vs. Hackers: Time to Surrender?

Found on Physorg on Wednesday, 23 May 2007

"I don't think it has been easy, but nevertheless [the AACS] is being broken... due to software implementations, although there have been hacks done on HD DVD drive firmware as well," said Alec Main, chief technology officer of Cloakware, based in Vienna, Va. "Clearly these software implementations need to take better precautions against being hacked."

Goodman said he considers that a reason to declare the technology defunct, and that DRM is a waste of time. He added that making DRM more secure would mean a trade-off in usability, and customers would be less likely to buy products that are harder to use.

At its core, DRM is not just about security, Goodman added. "It's about trying to force a business model into the marketplace," he said.

"The software developers need to use more advanced techniques such as white-box cryptography, where the keys do not appear in memory," Main said. "This technique can still be hacked ... but these techniques require much more knowledgeable hackers, or more likely a team of hackers, with a strong background in computer science, hacking, mathematics and cryptography."

DRM was made to fail and it's about time everybody realizes this. Decrypting can be hardened, but not made impossible. After all, you have a lot of people out there "with a strong background in computer science, hacking, mathematics and cryptography.". In the end, the industry will have to come up with new ideas and drop the old business model.

Antigua Starting To Get Angry With US

Found on Techdirt on Tuesday, 22 May 2007

We've been covering the ongoing dispute between the US and Antigua over online gambling for more than seven years, and to be honest, Antigua has been quite patient with the games that the US is playing.

In 2004, the WTO agreed and ruled that the US had no right to try to control Antigua-based online casinos. The US promptly ignored the WTO ruling.

A few months later, the WTO did the equivalent of stomping its feet and demanding that the US change its rules, and the US promptly ignored them. Earlier this year, the WTO again sided with Antigua, but since there's been no consequences from ignoring WTO rulings on the matter, the US pretty much shrugged. When pressed, US officials claimed that the US was going to get around the fact that they were breaking treaty obligations by... changing the treaty.

Other countries are lining up to support Antigua, but it doesn't seem likely that it's going to change US policy much. We're still waiting to see if Antigua will follow the suggestions that have gone around to set up free music download sites in Antigua as retaliation, since asking the US to fix things isn't getting it very far.

Antigua should. After all the pressure against Russia through the WTO, you should think that the US considers the decisions of the WTO to be more than just useless words. But no, everything is fine only as long as the WTO works in favor of the US. Now it's time for Antigua to turn things around by setting up free MP3 and movie downloads; that would force the RI/MPAA into action, and we all know that the US gov does what they want.

Viagra 'could help jetlag'

Found on Ananova on Monday, 21 May 2007

Viagra could be used to help people flying eastwards recover from jetlag, according to new research.

A team of Argentine scientists found the drug helped hamsters recover up to 50% faster from forward shifts in their daily time cycles.

Injection of Viagra before the time shift meant the hamsters adjusted to the new time cycle faster, even when low doses of the drug, which did not cause penile erections, were used.

That's not the only lag it's supposed to cure.

Browse all articles« Previous « » Next »