Year: 2010

IPv6 and the Future of Privacy

/ Christopher Parsons / 5 Comments

There is an increasing urgency to transition to a new infrastructure for addressing space on the Internet, and in this space all individuals and their devices could be uniquely identifiable by their Internet Protocol (IP) address(es). It is in light of this surveillant future that France’s recent ruling that IP addresses are not personally identifiable information is so serious. Further, it is with this longer temporal viewpoint (i.e. not just the here and now) that has more generally worried technologists about governmental rulings concerning binary ‘yes/no IP addresses are private information’.

Before I go any further, let me break down what an IP address is, the distinctions between versions 4 (IPv4) and 6 (IPv6), and then get to the heart of the privacy-related issues concerning the transition to IPv6. The technical infrastructure of the ‘net tends to be seen as dreadfully boring but, as is evidenced by the (possible) computer failures of Toyota vehicles, what goes on ‘under the hood’ of the ‘net is of critical importance to understand and think about. It’s my hope that you’ll browse away with concerns and thoughts about the future of privacy in an increasingly connected biodigital world.

Continue reading

Applecare and the Time Capsule

/ Christopher Parsons / 2 Comments

I’ve had an Apple Time Capsule in my house for over 18 months, and I love the little thing. It’s reasonably fast, let’s me backup my data every hour to it’s internal hard drive, and isn’t terribly loud. Unfortunately, my first Time Capsule just…died…on December 24, 2009. There wasn’t a flash, or a bang, or a screech. Like a loved pet (or relative…) we just went to bed and, in the morning, it was dead. We’ve memorialized it appropriately.

I’ve had some issues with the Capsule before. When I purchased it, there were some formatting issues that needed to be worked out and problems in finding the Time Capsule using the Airport Utility. Hoping that the Capsule wasn’t dead, I tested each ethernet port, swapped out the power cable, and so forth. Nothing worked, so I scheduled a Dec. 26th call with Apple support.

Something that (seemingly) few people are aware of: if you have a Macbook, Macbook Pro, iMac, or Mac Pro that is under warranty then your Apple routers are also under warranty.

Continue reading

Digital Crises and Internet Identity Cards

/ Christopher Parsons / 2 Comments

Something that you learn if you (a) read agenda-setting and policy laundering books; (b) have ever worked in a bureacratic environment, is that it’s practically criminal to waste a good crisis. When a crisis comes along various policy windows tend to open up unexpectedly, and if you have the right policies waiting in the wings you can ram through proposals that would otherwise be rejected out of hand. An example: the Patriot Act wasn’t written in just a few days; it was presumably resting in someone’s desk, just waiting to be dusted off and implemented. 9/11 was the crisis that opened the policy windows required to ram that particular policy through the American legislative system. Moreover, the ‘iPatriot’ Act, it’s digital equivalent, is already written and just waiting in a drawer for a similar crisis. With the rhetoric ramping up about Google’s recent proclamations that they were hacked by the Chinese government (or agents of that government), we’re seeing bad old ideas surfacing once again: advocates of ‘Internet Identity Cards’ (IICs) are checking if these cards’ requisite policy window is opening.

The concept of IICs is not new: in 2001 (!) the Institute of Public Policy Research suggested that children should take ‘proficiency tests’ at age 11 to let them ‘ride freer’ on the ‘net. Prior to passing this ‘test’ children would have restrictions on their browsing abilities, based (presumably) on some sort of identification system. The IIC, obviously, didn’t take off – children aren’t required to ‘license up’ – but the recession of the IIC into the background of the Western cyberenvironment hasn’t meant that either research and design or infrastructure deployment for these cards has gone away. Who might we identify as a national leader of the IIC movement, and why are such surveillance mechanisms likely incapable of meeting stated national policy objectives but nevertheless inevitable?

Continue reading

APIs, End-Users, and the Privacy Commons

/ Christopher Parsons / 3 Comments

Mozilla is throwing their hat into the ‘privacy commons‘ ring. Inspired by Aza Rankin’s ‘Making Privacy Policies Not Suck‘, Mozilla is trying to think through a series of icons intended to educate users about websites’ privacy policies. This is inspirational, insofar as a large corporation is actually taking up the challenge of the privacy commons, but at the same time we’ve heard that a uniform privacy analysis system is coming before….in 1998. A working draft for the Platform for Privacy Preferences (P3P) was released May 19, 1998 during the still heady-times of people thinking that Privacy Enhancing Technologies (PETs) could secure people’s online privacy or, at least, make them aware of privacy dangers. The P3P initiative failed.

Part of the reason behind P3P’s failure was the length of its documentation (it was over 150% the length of Alice in Wonderland) and the general challenge of ‘properly’ checking for privacy compliance. Perhaps most importantly, when the P3P working group disbanded in 2007 they noted that a key reason behind their failure was “insufficient support for curent Browser implementors”. Perhaps with Mozilla behind the project, privacy increasingly being seen as space of product competition and differentiation, and a fresh set of eyes that can learn from the successes of the creative commons and other privacy initiatives, something progressive will emerge from Mozilla’s effort.

Continue reading

New RSS feed, ‘Worth Reading’

/ Christopher Parsons / 2 Comments

Like most people who are active online, I read a lot off the web, and there isn’t any way for me to analyze and critique much of what I’m reading on this site; I touch on items here and there, but I can’t be systematic on many topics. For some time I’ve used delicious to tag articles, and all of those tags are available to anyone who’s interested in using them to comb through my bookmarks. This said, it was recently pointed out that I have a foolish number of tags (they’re there so that *I* can cull articles based on tag-based query) which makes navigating my delicious stream…unpleasant.

Given my own temporal limitations and the critique of my tagging system, I’ve added an RSS feed titled ‘Worth Reading‘ to the right-hand side of the site, over beside the blogroll. The feed just follows the ‘ttt‘ tag from my delicious stream (ttt=Technology, Thoughts, and Trinkets) and will provide subscribers with articles, blog posts, news pieces, and academic papers that relate to topics often written about here (i.e. security, copyright, deep packet inspection, p2p, social networking, etc) as well as articles on the academy that are useful and/or thought provoking. I’m not digging through my archive to identify items for this feed – time constraints and sanity preclude this – but will be tagging anything relevant to this space so it’ll show up in the RSS.

Hope it’s useful and/or interesting. Feedback is always welcome!

Data Privacy Day and Anonymity

/ Christopher Parsons / 3 Comments

While I haven’t posted much this month, it isn’t because I’m not writing: it’s because what I’m writing just doesn’t seem to pull together very well and so I have 4 or 5 items held in ‘draft’. See, I’ve been trying to integrate thoughts on accessible versus technically correct understandings of technology as it relates to privacy, and to issues on public relations and the use of FUD by privacy activists, and what I think of the idea of ‘anonymity’ in digital environments that are increasingly geared to map, track, and trace people’s action. Given that it’s the data privacy day, I thought that I should try to pull some of thoughts together, and so today I’m going to draw on some of those aforementioned ideas and, in particular, start thinking about anonymity in our present digitally networked world.

To take the ‘effort’ to try and remain anonymous requires some kind of motivation, and in North America that motivation is sorely lacking. North America isn’t Iran or China or North Korea; Canadians, in particular, have a somewhat envious position where even with the government prorogued – a situation that, were it to happen in Afghanistan would have pundits and politicians worrying about possibilities of tyranny and violence – there isn’t a perception that Canadians ought to be fearful that proroguement heralds the beginning of a Canadian authoritarian state, or the stripping of Charter rights and freedoms. This said, I think that people in the West are realizing that, as their worlds are increasingly digitized, their ‘analogue’ expectations of privacy are not, and have not for some time, been precisely mirrored in the digital realm. This awareness is causing worry and consternation, but is not yet (and may never be) sufficient for wide-scale adoption of anonymization technologies. Instead, we have worry without (much) action.

Continue reading