![[RSS]](http://tweakimg.net/g/if/v2/icons/rss_small.gif){kind=icon}
Fighting for privacy?
Last week I had the pleasure of discussing my viewpoints about privacy with one of my house mates. One particular remark of her remained stuck in the back of my head, leaving me wondering about the validity and consequences of it: 'We will lose eventually, and there is nothing we can do about it. So why should we even resist?'.
I would like to state that I am fiercely in favour of privacy and anonymity. Not only in real life ('would you stop filming me, please' and 'no, I am not interested in a discount card'), but also in my digital ways. Also, I am absolutely aware that I might be a little bit extreme in this regard and therefore I can imagine people not caring as much as I am. But at times I am surprised that people actually do not care at all, especially in regard of digital privacy.
Defining the problem
In my last days at the university, I got an assignment to write an essay about a particular risk and its basic fundamentals. Eagerly I jumped on this opportunity to discuss the risk of giving up parts of your anonymity on-line. It did not take long before the numerous ways someone can divulge personal sensitive information began to crop up. But that was not the most interesting part: it became apparent people tend to be oblivious to the amount of data they give up.
The AOL-incident a few years ago and its consequences for the people affected clearly illustrate how many data can be extracted from something relatively mundane as internet searches. Ordinary (and with that I mean non-computer-savvy) people apparently do not have any clue about the implications of simply entering their own name in a search engine.
But what really took the cake, as the British put it, was an exposé I found about Windows Vista's data harvesting habits. If you consider Microsoft's market share, it is not unthinkable most of the desktop computers will be running this operating system by the end of next year. An operating system that by default sends statistical information back to its creator. The only way for people to find out about this behaviour is wading through the lengthy EULA that is bundled with the software.
This is only a start. As applications become web-aware or even web-based like the Google Docs-initiative, the allure of harvesting information gets stronger and stronger. Some ISP's in the United Kingdom and the United States have already fallen for the sirens song of a company called Phorm, a marketing company that analyses the requests and responses of the customers of the ISP-partner.
Is it that bad?
This is only one particular view on the problem. Neither ISPs nor Microsoft or any other company is evil enough to silently eavesdrop on its customers. With a little bit of effort people can find out what is happening with their data and the ways to prevent it. People still have a choice, although that choice might be limited to either use the software and be spied on or not using the software at all.
But herein lies another issue: the people themselves. They do not make an effort to understand what is happening. Perhaps it is because the computer or legal lingo is too hard to understand. Perhaps people are put off by the long license agreements they should read before installing the software. Or, as my house mate put it, eventually they will agree to it anyway, whether they will read it or not.
Bottom line is, people can choose and can know about their digital anonymity, but more often than not they simply don't.
Losing battle
Eventually it all boils down to this: organisations and governments want to know as much as possible about their target group of people and the digital route is the one with the least resistance. The majority of people do not care or do not put an effort to care. So the ways of getting information are getting more and more aggressive, even to the point ISP traffic is analysed and processed.
So I am wondering: why should privacy nutters like me even care? Why do we keep on telling people about the importance of knowing what their computer is doing with the information stored on it?
I think it is better to go down fighting with a chance to actually make a difference. Yes, we might lose, especially considering the things that are happening right now. But there are also a possibility we spark a change. I can imagine that when people are confronted with the large amounts of harvested data about them, they are outraged. Perhaps by showing the proper people the proper information, there could be a difference.
Still... I cannot help but wondering if digital privacy is on the brink of extinction. Perhaps I am just part of some digital incarnation of Greenpeace, fighting for a cause without realising that this is simply the course of a virtual evolution? I wonder...
I would like to state that I am fiercely in favour of privacy and anonymity. Not only in real life ('would you stop filming me, please' and 'no, I am not interested in a discount card'), but also in my digital ways. Also, I am absolutely aware that I might be a little bit extreme in this regard and therefore I can imagine people not caring as much as I am. But at times I am surprised that people actually do not care at all, especially in regard of digital privacy.
Defining the problem
In my last days at the university, I got an assignment to write an essay about a particular risk and its basic fundamentals. Eagerly I jumped on this opportunity to discuss the risk of giving up parts of your anonymity on-line. It did not take long before the numerous ways someone can divulge personal sensitive information began to crop up. But that was not the most interesting part: it became apparent people tend to be oblivious to the amount of data they give up.
The AOL-incident a few years ago and its consequences for the people affected clearly illustrate how many data can be extracted from something relatively mundane as internet searches. Ordinary (and with that I mean non-computer-savvy) people apparently do not have any clue about the implications of simply entering their own name in a search engine.
But what really took the cake, as the British put it, was an exposé I found about Windows Vista's data harvesting habits. If you consider Microsoft's market share, it is not unthinkable most of the desktop computers will be running this operating system by the end of next year. An operating system that by default sends statistical information back to its creator. The only way for people to find out about this behaviour is wading through the lengthy EULA that is bundled with the software.
This is only a start. As applications become web-aware or even web-based like the Google Docs-initiative, the allure of harvesting information gets stronger and stronger. Some ISP's in the United Kingdom and the United States have already fallen for the sirens song of a company called Phorm, a marketing company that analyses the requests and responses of the customers of the ISP-partner.
Is it that bad?
This is only one particular view on the problem. Neither ISPs nor Microsoft or any other company is evil enough to silently eavesdrop on its customers. With a little bit of effort people can find out what is happening with their data and the ways to prevent it. People still have a choice, although that choice might be limited to either use the software and be spied on or not using the software at all.
But herein lies another issue: the people themselves. They do not make an effort to understand what is happening. Perhaps it is because the computer or legal lingo is too hard to understand. Perhaps people are put off by the long license agreements they should read before installing the software. Or, as my house mate put it, eventually they will agree to it anyway, whether they will read it or not.
Bottom line is, people can choose and can know about their digital anonymity, but more often than not they simply don't.
Losing battle
Eventually it all boils down to this: organisations and governments want to know as much as possible about their target group of people and the digital route is the one with the least resistance. The majority of people do not care or do not put an effort to care. So the ways of getting information are getting more and more aggressive, even to the point ISP traffic is analysed and processed.
So I am wondering: why should privacy nutters like me even care? Why do we keep on telling people about the importance of knowing what their computer is doing with the information stored on it?
I think it is better to go down fighting with a chance to actually make a difference. Yes, we might lose, especially considering the things that are happening right now. But there are also a possibility we spark a change. I can imagine that when people are confronted with the large amounts of harvested data about them, they are outraged. Perhaps by showing the proper people the proper information, there could be a difference.
Still... I cannot help but wondering if digital privacy is on the brink of extinction. Perhaps I am just part of some digital incarnation of Greenpeace, fighting for a cause without realising that this is simply the course of a virtual evolution? I wonder...
 09-08
|
Scripting a ssh tunnel |
 08-06
|
Rabbit's Revenge |
Comments
By
Punkie,
Tuesday 15 July 2008 14:14
Why people don't care?
What information can be extracted from other data cannot be defined. It is what all people together, over a long period, can come up with. No single man can envision the possibilities because there will be always someone else that just had that stroke of genius to come up with a new scheme, a new correlation, a new idea to look at the data and extract another piece of information. We simply cant but most people assume 'they know what they are doing / It wont come that far / it will only come "this" far / there is nothing to be done with that data' etc. And that is one of the reasons why ppl don't seem to care. We don't know what it will lead to but most ppl assume to know the boundaries. Which they cannot know because it is just the boundaries of *their* imagination, not the boundaries of everyone else.
Thus ppl don't care because they don't know the implications. The writer hints at the possibility of what an outrage there could be if we were confronted with the implications that already exist today. True, it will be a severe shock but it is nigh impossible to achieve because it would require humankind to be able to accept their lack of imagination and to correct for that lack. Well, that will (maybe) never happen. Not likely anytime soon, unless my imagination is severely hampered in that field
It is likely to me that privacy will follow that path of all other neglected issues. It will be neglected, it will become the playfield of criminals and other control hungry movements, it will become a problem, it will be debated by knowledgeable ppl first, it will be laughed at by everyone else on the cue of those who profit from it, it will slowly be accepted and it will finally be taken into account.... only repeat this cycle over and over again.
Just like many other issues.
What information can be extracted from other data cannot be defined. It is what all people together, over a long period, can come up with. No single man can envision the possibilities because there will be always someone else that just had that stroke of genius to come up with a new scheme, a new correlation, a new idea to look at the data and extract another piece of information. We simply cant but most people assume 'they know what they are doing / It wont come that far / it will only come "this" far / there is nothing to be done with that data' etc. And that is one of the reasons why ppl don't seem to care. We don't know what it will lead to but most ppl assume to know the boundaries. Which they cannot know because it is just the boundaries of *their* imagination, not the boundaries of everyone else.
Thus ppl don't care because they don't know the implications. The writer hints at the possibility of what an outrage there could be if we were confronted with the implications that already exist today. True, it will be a severe shock but it is nigh impossible to achieve because it would require humankind to be able to accept their lack of imagination and to correct for that lack. Well, that will (maybe) never happen. Not likely anytime soon, unless my imagination is severely hampered in that field
It is likely to me that privacy will follow that path of all other neglected issues. It will be neglected, it will become the playfield of criminals and other control hungry movements, it will become a problem, it will be debated by knowledgeable ppl first, it will be laughed at by everyone else on the cue of those who profit from it, it will slowly be accepted and it will finally be taken into account.... only repeat this cycle over and over again.
Just like many other issues.
By
painkill,
Tuesday 15 July 2008 14:25
I would have read it, if it was in dutch.
Or does tweakers has an english section?
Or does tweakers has an english section?
By
Punkie,
Tuesday 15 July 2008 14:48
[url]http://translate.google.c...nl&hl=en&ie=UTF-8[url]
Some dont speak dutch and maybe, just maybe, this post is addressing also them.
"I wouldn't have read it, if it was in italian."
the rest is non sequintur.
Some dont speak dutch and maybe, just maybe, this post is addressing also them.
"I wouldn't have read it, if it was in italian."
the rest is non sequintur.
By
X-DraGoN,
Tuesday 15 July 2008 15:54
I don't care if this post was in German or in Dutch, the message stays the same as shouldmust be spread! I, for one, banished Windows OS from my computer. Yes, I don't like to buy my software, but I also HAVE read the EULA that comes with Windows and that is my answer... Install another OS.
People indeed, will never care enough to make a fuss about it, but when the British Echelon project comes on the news, people are outraged? That is the sort of reaction I don't get. People know it's there but won't act on it... ignorance? I really don't know but I know the message, as I said before, must be spread!
People indeed, will never care enough to make a fuss about it, but when the British Echelon project comes on the news, people are outraged? That is the sort of reaction I don't get. People know it's there but won't act on it... ignorance? I really don't know but I know the message, as I said before, must be spread!
By
smesjz,
Tuesday 15 July 2008 19:18
The data retention act ('bewaarplicht') seems to me a bigger threat than Windows sending some statistics to Microsoft or an EULA with some caveats that only a laywer might notice.
The data retention act collects information about your internet and phone usuage and mandates that will be stored for a period up to two years, regardless of your operating system.
The European Union says the information is used "for the purpose of the investigation, detection and prosecution of serious crime, as defined by each Member State in its national law". Criminals will surely come up with some nifty ways to circumvent this. For example, rather than actually send e-mail you can share a hotmail account and only communicate using drafts. And there are still quite a lot of shabby internetcafes / phone houses that provide virtually untraceable internet/phone access.
It is seriously flawed.
And yes I care for my privacy.
(btw: it's != its. "It's a big car. Its engine is very powerful".)
The data retention act collects information about your internet and phone usuage and mandates that will be stored for a period up to two years, regardless of your operating system.
The European Union says the information is used "for the purpose of the investigation, detection and prosecution of serious crime, as defined by each Member State in its national law". Criminals will surely come up with some nifty ways to circumvent this. For example, rather than actually send e-mail you can share a hotmail account and only communicate using drafts. And there are still quite a lot of shabby internetcafes / phone houses that provide virtually untraceable internet/phone access.
It is seriously flawed.
And yes I care for my privacy.
(btw: it's != its. "It's a big car. Its engine is very powerful".)
By
Tyson,
Tuesday 15 July 2008 19:43
Whatever you do, this battle is already over.
No more privacy. And most people don't care because they have nothing to hide.
Stop hiding. Stop caring. Live with it.
No more privacy. And most people don't care because they have nothing to hide.
Stop hiding. Stop caring. Live with it.
By
Floort,
Tuesday 15 July 2008 20:01
So you can tell them "I told you so!" when it does go wrong. This sounds crazy (and I admit; saying "I told you so!" is fun), but it seems to work. When you keep warning someone they often think you are paranoid. But when something goes wrong and your warned them about it they might be inclined to believe our other warnings too.So I am wondering: why should privacy nutters like me even care? Why do we keep on telling people about the importance of knowing what their computer is doing with the information stored on it?
By
Ghost,
Tuesday 15 July 2008 21:16
Now, that I find very hard to believe. I think you mean that people think they do not have anything to hide. I am willing to bet an euro that most, if not all, people actually do have something to hide. The tricky bit is that the expression 'having something to hide' implies that this 'something' equals to 'something illegal'. But when considering privacy, this expression opens up to a broader interpretation.And most people don't care because they have nothing to hide.
Stop hiding.
For example, I am perfectly fine with the police (given they have a valid warrant, of course) having a look at my computer files. Having no illegal content whatsoever on my pc, I doubt the police will find any incriminating evidence. However, when my landlord walks in and asks permission to search my pc I will refuse (better yet, when my landlord tries to walk into my room unannounced and is not giving me a valid reason to do so, I slap him with a breach of contract notice, but that is beside the point right now), because my files and photo's are not for him to see. In fact, without the warrant, the police is on the same level as my landlord and have no right to rummage through my digital data bits either. Even when I know I do not have any incriminating evidence. The point I am trying to make is that we all have something to hide from another. That is the whole idea about having privacy.
Another example is a boss that is monitoring the computers of his employees. During a break, one employee might open up his e-mail webclient and responds to a message from his wife regarding a fight they had that morning. The boss is able to log that conversation and now knows about the marriage troubles that employee has (or at least thinks he knows, which can have even more terrible consequences). Did that employee do anything illegal? No. Does the boss need to know about his private e-mails? No. Has the employee something to hide? Absolutely.
There are far more issues with the 'I have got nothing to hide' argument, but for that I will leave the digging up to you. One interesting paper to read can be found here: http://papers.ssrn.com/sol3/papers.cfm?abstract_id=998565
By
iGadget,
Wednesday 16 July 2008 00:16
To anyone concerned about (the lack of) online privacy, I've got just one thing to say:
www.smallsister.org
Contribute!
www.smallsister.org
Contribute!
By
RoadRunner84,
Wednesday 16 July 2008 01:26
Isn't this exactly what the CCC has done by cloning a senator's fingerprint? By doing so the CCC demonstrates the flaws of a certain system.I can imagine that when people are confronted with the large amounts of harvested data about them, they are outraged. Perhaps by showing the proper people the proper information, there could be a difference.
In the same way: confront for example prime minister Balkenende with information solely extraced from the data his internet connection is transmitting (either form submits, phone homes or other information). "You spend 2 hours a day on the internet, your favorite websites are balkenendefanclub.nl and uitzendinggemist.nl, you use a yahoo webmail address and post youtube video's with the username AfterPurple4, you have a bank account with Rabobank and ABN." Fairly enough he wouldn't like this, so why should other Dutchmen be forced to share these info?
By
Punkie,
Wednesday 16 July 2008 11:29
The most used argument and at the same time not valid. There are a lot of reasons but one example is enough to rebuke the statement.And most people don't care because they have nothing to hide.
"I am A, female, 29 and i have nothing to hide. I dont want any camera in my shower, the public swimmingpool,... I dont want everyone to know i have an eating obsession nor that I had sex on the kitchentable last evening. "
Should you be forced to give up of that privacy? I dont think a lot of people would agree and even if they agree, it doesnt mean that they dont want other people to have or want that privacy.
"I am B and have race X, religion Y, disablilty Z."
The counter for killings because of being X,Y or Z exceeds MAXSHORT, even just in the countries of the european union. The counter for being put at a disadvantage prob exceeds MAXUINT on almost every architecture.
I dont think anyone in belfast, kroatie, albanie, south africa, palestina, exDDR, hungary, franco-spain,.... would readily agree that this kind of privacy should be released.