Policy wonk. Torontonian. Photographer. Not necessarily in that order.
Ars tests Internet surveillance—by spying on an NPR reporter:
A week spent playing NSA reveals just how much data we leak online.
This is an absolutely terrific piece of technical journalism. If you ever wanted to know the significance of the data that ‘leaks’ from your phone, laptop, and other computing devices then this is an absolute must-read piece.
Cyberbullying law would let police ‘remotely hack into computers, mobile devices, or cars’:
Experts say police would be able to install viruses, or malware, into the electronics of anyone suspected of a crime, after gaining judicial approval.
…
“There’s a series of different tactics that they could adopt. They could engage in phishing schemes — deliberately serving infected files to computers — or it could involve sending URLs to people’s emails and when they click it, it infects their computers,” he said, adding that it could also involve installing malicious apps onto Canadians’ smartphones that work as listening devices. Police could even hack into a car’s OnStar to keep tracking of location, and call logs.
…
While C–13 is intended to target transmission data — call information, IP address, and location data — Mr. Parsons said it’s entirely possible that C–13 could capture basic data from Canadians’ Skype conversations, as well as a vast field of other digital information. “That’s the way that it reads,” he says.
The powers would still be subject to judicial oversight. The warrants are valid for two months for most crimes, but extends that to a year if the crime is terrorism-related, or if the suspect is connected to a criminal organization.
“Compounding that, there’s no reporting required,” Mr. Parsons said. “We won’t know if it’s 10 requests a year, a hundred requests a year, a thousand requests a year, or a million requests a year.”
Mr. Parsons calls it the dawn of Canadian ‘‘Govware.’’ Passing this bill, as is, said Mr. Parsons, “risks introducing significant, and poorly understood, new powers to the Canadian authorities.”
…
Mr. Fraser and Mr. Parsons raise the practical implication of the procurement process for this sort of software. If Ottawa contracts out the creation of a digital snooping program, it risks legitimizing the creation of malware, said Mr. Parsons, adding that Ottawa should be fighting to improve the security of our electronics, not exploiting their weaknesses.
Another good piece by Justin Ling, who is quickly becoming a key go-to reporter for all federal government issues privacy- and surveillance-related issues.
A Crisis of Accountability — The Canadian Situation:
The significance of Edward Snowden’s disclosures is an oft-debated point; how important is the information that he released? And, equally important, what have been the implications of his revelations? Simon Davies, in association with the Institute of Information Law of the University of Amsterdam and Law, Science, Technology & Social Studies at the Vrie Universiteit of Brussels, has collaborated with international experts to respond to the second question in a report titled A Crisis of Accountability: A global analysis of the impact of the Snowden revelations.
You can read about the state of Canada, as well as the rest of the report, over at Technology, Thoughts, and Trinkets.
Third-party internet provider Teksavvy and Rogers, one of the largest ISPs in Canada, have published the first Canadian telecommunications transparency reports.
Both Teksavvy and Rogers have released documents detailing the subscriber information both companies have released to police and spy agencies over the last few years. Teksavvy disclosed their transparency report first and then Rogers followed soon after.
Telecom giant Rogers got 175,000 info requests from government:
Rogers is the first major Canadian telecommunications company to issue a so-called transparency report on co-operation with law enforcement.
However, one of Canada’s smaller telecommunications companies, Teksavvy, issued a similar report yesterday in response to a request from University of Toronto researchers. Its report revealed that it received just 52 requests from government and law enforcement agencies in 2012 and 2013. It said it complied with a third of the requests and denied the rest.
The releases come as civil libertarians and privacy advocates urge companies and governments to be more forthcoming about when and how customer data is shared.
A study by University of Toronto researchers recently gave low marks to Canada’s internet service providers about how they handle customer information — including whether they routinely give personal data to spy agencies.
Rogers says it does not allow agencies direct access to its customer databases, nor does it hand over metadata — the routing codes and other data about emails and calls — without a warrant.
“We only provide the information we are required to provide and this information is retrieved by our staff.”
Rogers opens curtain on warrantless government snooping:
OTTAWA—Rogers Communications gave Canadians their first real peek behind the curtain of warrantless government snooping Thursday, revealing they were asked almost 175,000 times for their customers’ data in 2013.
Rogers became the first major Canadian telecommunications provider to issue a transparency report, revealing aggregate numbers on how many law enforcement requests they receive in a year.
More telecom and Internet service providers are expected to follow suit, as Canadian customers learn more about the scope of government access to their personal data.
Rogers got 175,000 official requests for customer info last year:
An informal coalition — including The University of Toronto’s Citizen Lab, academics and civil liberties organizations — said in March that Canadians have only a vague understanding of how, why, and how often companies have disclosed information to government agencies.
This week the coalition received an updated response from Internet provider TekSavvy Solutions — one of Rogers’ smaller competitors — saying it received 52 requests from government authorities in 2012 and 2013. It made 17 disclosures related to criminal investigations and denied the remaining 35.
Christopher Parsons, a postdoctoral fellow with The Citizen Lab, said the Rogers and TekSavvy reports are “positive steps in the right direction.”
He singled out TekSavvy’s response as “the gold standard” for company transparency on handling of subscriber information due to the extensive detail in its report.
“The bar has now been set: transparency reports are expected when doing business in Canada,” Parsons said.
“There’s only a question of how long until other companies adhere to what is becoming an industry best practice in Canada.”
Rogers, TekSavvy first to divulge customer data requests (Subscription):
As Cartt.ca reported, a coalition of Canadian academics and consumer groups asked the country’s biggest telecommunications service providers in January to reveal the extent to which they pass on their customers’ private information to government agencies when asked. Sixteen different telcos were asked to respond or commit to responding by March 3, 2014.
…
When contacted by Cartt.ca, Telus said it is preparing a transparency report and plans to issue it this summer. A spokesperson reiterated that the company only provides confidential customer information to third parties pursuant to valid court orders or other applicable law, and that it contests orders if it believes they “overreach”.
Bell responded to Cartt.ca, but did not specify whether it would issue a transparency report. “Bell releases information to law enforcement agencies only when required by law and always in compliance with federal privacy and CRTC regulations”, reads the spokesperson’s emailed response.
In shadow of NSA revelations, Rogers, TekSavvy open up on government data requests:
In the wake of blockbuster revelations by former NSA contractor Edward Snowden, Canada’s telecommunications companies are starting to pull back the curtains on their relationships with government authorities around the sharing of customer information.
Rogers Communications Inc. on Thursday released what it called its 2013 Transparency Report, a brief four-page document detailing the number and types of requests the company has received, and the legal framework governing its response.
The Rogers report comes on the heels of similar disclosure from independent communications provider TekSavvy Solutions Inc. Other providers are expected to follow suit later this year.
Third-party internet provider Teksavvy and Rogers, one of the largest ISPs in Canada, have published the first Canadian telecommunications transparency reports.
Both Teksavvy and Rogers have released documents detailing the subscriber information both companies have released to police and spy agencies over the last few years. Teksavvy disclosed their transparency report first and then Rogers followed soon after.
Excited Pixels