ie8 fix

Privacy

Finding the line between activism and reporting

A few weeks ago, I brought you news that Indiana's Governor had signed into law HB 1197, a data breach and encryption bill that I worked on.

What I have not revealed, up until now is the coercion and arm-twisting that accompanied the passage of this bill. While the details may not surprise jaded readers, it certainly gave me a reason to dislike the entire process, as well one particular power-tripping legislator. Now that the bill, albeit a significantly slimmer version, has become law, I'm free to tell the story.

As regular readers of this blog know, I … Read more

FBI nudges state 'fusion centers' into the shadows

WASHINGTON -- The FBI is pressuring states to become more secretive and limit even routine oversight of the bureau's data-sharing arrangements with local police, a new document shows.

A memorandum of understanding written by the FBI and signed by the state of Virginia in February 2008 aims to curb congressional and press oversight of a joint venture called a Fusion Center. Here's more on Fusion Centers.

The memorandum, obtained by the Electronic Privacy Information Center and released on Friday, says that any "disclosure" to Congress of information shared with the Fusion Center can happen only "… Read more

Why Google puts privacy second

European regulators sent shock-waves through the search engine industry earlier this week, when they proposed significantly tighter rules for logging data. If the EU adopts the proposed rules, Google, Yahoo and Microsoft will have to significantly reduce the amount of time they keep identifying search logs, and will have to start treating IP addresses as personally identifiable data -- something that Google has been particularly vocal against.

Google has recently engaged in a major public relations effort to try and make a credible argument for keeping log data. The company has trotted out respected employee researchers to try and make … Read more

Home automation system, YouTube nab burglars

Fans of home automation systems controlled by a personal computer like to speculate about how their software might be able to snare intruders. An Indiana man named Fred Thompson actually did it.

Court documents show the story started after Thompson's home in Fort Wayne, Ind., was burglarized. Thompson responded by setting up a video camera hooked up to his computer and configured it to remotely notify him when motion was detected when the house was supposed to be empty.

On October 10, 2006, the system notified Thompson that movement was detected. He jumped in his car, called the police, … Read more

Pittsburgh couple sues Google over Street View

View Larger Map

A Pittsburgh couple is suing Google because photographs of their home are appearing on the company's street view service.

The lawsuit, filed in Allegheny County court on April 2, claims there was a private road sign on their street that Google should have honored. It claims that Google's "reckless conduct" has "exposed plaintiff's private information to the public."

Looking at the turnoff to Pittsburgh's Oakridge Lane on Google Street View, though, shows a street sign but no obvious private road warning--meaning that, perhaps, any sign didn't exist when … Read more

Privacy: What should Google do?

Public interest groups, academics and members of the press have hammered Google for its lax privacy policies. The criticism has mostly focused on the log deletion practices and browser cookie policies at the search giant. Google claims that search quality and user privacy are a zero-sum game: deleting log data makes it more difficult to improve search results. Perhaps the company is right. However, there are several other pro-privacy steps that Google could take to significantly protect its customers--which it has not done, and continues to reject.

Over the last few months, a number of Google's engineers have issued … Read more

Homeland Security blinks on Real ID: No hassles on May 11

WASHINGTON--In the long-running Real ID staring match, the U.S. Department of Homeland Security ended up being the first to blink.

Homeland Security announced Wednesday that all 50 states and the District of Columbia will be technically Real ID-compliant by the May 11, 2008 deadline--even though many states actually have rejected the concept and have zero plans to embrace a national ID card.

This means Americans will face no new hassles when using their drivers licenses to enter federal buildings or fly on airplanes starting on May 11. That's a good thing.

But the way this turned out is … Read more

Hackers target Facebook apps

Hackers have turned their attention to Facebook's hundreds of independent applications. The results are not terribly surprising, but do not tell a good tale: app developers don't seem to know a thing about basic security, and are putting private user information at risk. As a result, malicious hackers are able to access and change what should be private user data managed by the application providers.

Just a few months after this blog brought you exclusive news of privacy problems in Facebook's application system, we are now already seeing the consequences of Facebook's decision to pass the … Read more

Google: No kids allowed

Google's terms of service, while ignored by the vast majority of users, contain a pretty shocking clause: Under 18's are not permitted to use any of Google's Web properties. That's right, kids--no search, YouTube, Gmail, news, or images.

Under 18s wishing to watch YouTube videos of skateboarding dogs, or perform research for a school project will have to go elsewhere--Ask.com or Microsoft's Live.com search, perhaps. The message from Mountain View seems clear: We don't want your (underage) business.

Google's terms of service, thick with legalese, state that:

"You may not … Read more

Indiana passes blogger-written data breach bill

With a stroke of the Governor's pen on Monday, Indiana became one of the few states in the country to provide strong incentives for businesses to encrypt sensitive customer data. Unlike many of the laws that pass through state legislatures - this one was not ghost written by lobbyists or special interests. It was co-written by a tech-savvy state legislator, and a blogger constituent .... me.

One of the biggest problems in the hundreds of data breach and data loss incidents that have been reported over the past few years is that so little of the data is encrypted. If … Read more