pro bono pauperis

Clueless?

admin — Fri, 23 Apr 2010 12:42:22 +0000

“It’s very important to me to push out my character and hopefully my good reputation as far as possible, and that means being open,” he said, dismissing any privacy concerns by adding, “I simply have nothing to hide.”

Famous last words and a seemingly growing reprieve from the privacy illiterate. The point of protecting your privacy is not about, “I have nothing to hide” but rather what will others do with the information I provide? Am I OK with it? What remedy do I have if it is used in a manner that I feel is inappropriate. Regardless of what Facebook bigwigs think, public is not (or should not be) the new privacy. High time for a privacy publicity campaign like the “Just Sat No to Drugs” campaigns of yesteryear. Only then might we attain the magic number of advocates to push back against corporates push for us to reveal everything.

For Web’s New Wave, Sharing Details Is the Point

Enter the Nine

admin — Wed, 10 Mar 2010 00:39:06 +0000

Last Monday the USSC stepped into the information privacy debate by agreeing to hear a case asking how much personal information the federal government may seek and keep on it employees. In the lower court case Nelson v NASA,¹ the Ninth Circuit sided with the employees, holding that the government’s intensive background check of NASA Jet Propulsion Lab employees was unconstitutional. For further details, that line of cases can be accessed from the Ninth Circuit’s website here. The government’s petition for a writ certiorari is available here. The case will like be heard in Fall 2010. I will definitely keep my eyes on this one.

530 F.3d 865

Self-Surveillance

admin — Thu, 25 Feb 2010 02:07:10 +0000

… continue monitoring your Web reputation by setting up [alerts] with your name. Take the time to build up a positive Web ID.

Great essay. Information privacy is a two way street. Not only should we advocate for laws and regulations on how third parties use our personal date but we should also take steps on our own to manage our digital self. Without self-surveilling ourselves their is less we can say legally and morally when our information is abused. (h/t to AMPrivacy for the pointer)

How To Manage (and Protect) Your Online Reputation.

The Soft Side of Security

admin — Thu, 14 Jan 2010 09:14:30 +0000

Social engineering is essentially the art of gaining access to buildings, systems or data by exploiting human psychology, rather than by breaking in or using technical hacking techniques. For example, instead of trying to find a software vulnerability, a social engineer might call an employee and pose as an IT support person, trying to trick the employee into divulging his password.

In keeping with the spirit of my last post, this article discusses the human side of informational privacy and the simple fact that states: no matter what technical protections you have, your privacy and security is only as good as the person defending it.

Social Engineering: The Basics

A Simple Plan for Privacy Policies

admin — Wed, 13 Jan 2010 13:15:34 +0000

This method means that without ever having to delve into the details, everyday people can glance at the simple icons atop a privacy to know if and how their data is being used. At the same time, it gives companies the flexibility required to create comprehensive and meaningful policies. We’ve found a way past the deadlock.

An interesting idea that, under the right circumstances would be an excellent alternative to current private policies. I need to stay tuned on its development.

Is A Creative Commons for Privacy Possible?

Google.cn hacked! Larry and Sergey say enough is enough!

admin — Wed, 13 Jan 2010 08:10:02 +0000

No self-respecting information privacy/security blog can pass on the Google story. My reaction: Right On Google! This is a strike FOR information privacy and security. Below are some links that give different reaction to what happened and will happen:

A New Approach to China

The Google News: China Enters the Bush-Cheney Era

What is going on with Google

Google Warns of China Exit Over Hacking

Google strikes a blow to China’s Great Firewall

Google detonates the China corporate communications script

Is there a privacy problem?

admin — Wed, 13 Jan 2010 05:16:07 +0000

The short answer is: Yes! This is based on a number of articles and essays¹ I’ve read over the last couple of days which suggest not only is there a privacy problem but more specifically, why information privacy and data security is/will be an essential practice area for the foreseeable future. Below is my take-way and the article links:

We are the Web
Clearly, more of our lives are migrating to the Internet. On the one hand, this is a good thing as we are better able to access information, communicate with one another and live more efficiently. One the other hand, with so much data about us floating about it will be increasingly harder for us to control who has it, how they use it and if we can correct it. Less control=increase potential to abuse at our own expense.

A Peek at Netflix Queues

Five Tech Themes for 2010

Airport Scanners Can Store, Transmit Images

Social Media Users No Longer Expect Privacy

Smart Grids and Privacy: here and here also

Taking a closer look at Cloud Computing, Privacy and Security

Mobile Web Rises and so do the threats
Our telephones are rapidly becoming full on computers. And if you’re like most people, you’ll use it to store your photos, passwords, contact lists, bookmarks and perhaps even some financial date. All that in the palm of your hand or bottom of your pocket. Being so mobile is convenient but is also dangerous. It is much easier to misplace, loose, have stolen or confiscated your electric brain or have it hacked on the go then it is to steal or access a desktop bolted to your desk and behind a firewall.

Mobile Net + Social Media Powerpoint

The rise of Cybercrime
As more and more of our lives move to the “cloud”, cyber-criminals are offered more potentially vulnerable target to attack. As in criminal theory from the beginning of time, you don’t waste your time robbing poor folk when you can rob a bank for a serious payout. One data center hack can provide a lifetime of personal info as opposed to stealing one person’s card that can only gives you up to the individuals credit limit. The need for stronger information security and date breach disclosure laws is clearly evident.

Pirate’s Cove

How to hack like the Chinese Government

Wanted: Cyber-Ninjas²

Ubiquity of Social Media
As we become more connected at home, work and for fun so to do we increase the ability of third parties and strangers to gain access to information we originally only wanted our closest of closest to know. Moreover,since we have no connection or very little connection to these people we have even less means to control how they use, distribute or abuse our information.

Spiceworks is becoming the Facebook for IT managers

The Rise of Company-wide Social Networks

including Google’s startling announcement today
School’s with Information Security degrees: NYU-Poly, Indiana University, Georgia Tech, Carnegie Mellon, Purdue, George Mason, Cal Poly Pomona

If I ever needed a reason

admin — Tue, 12 Jan 2010 10:27:19 +0000

If I ever needed a good reason to study information privacy law, this post (while a bit dated) lays out the whys and wherefores clearly and concisely:

Information privacy law remains a fairly young field, and it has yet to take hold as a course taught consistently in most law schools. I’m hoping to change all that. So if you’re interested in exploring issues involving information technology, criminal procedure, or free speech, here are a few reasons why you should consider adding information privacy law to your course mix:

Teaching Information Privacy Law

Initializing…

admin — Wed, 06 Jan 2010 09:15:34 +0000

Thinking back to my grad school days … all research must or should begin with a review of the literature (otherwise known as the synopsis of all the work that has been done on the subject before you). Since information privacy law is so new, I wasn’t really sure where to begin that review. As a shortcut, I decided to look at what the top laws schools are teaching on the subject. The results didn’t really surprise me. Of the top sixteen law schools only six have a stand alone information privacy law course. Of those six, four of the courses were seminars. Another two of the top sixteen had privacy law courses that included a section on information privacy. Another one had a computer law course that touched on privacy law but not information privacy law. The rest had nada, or nothing I could find on their websites. As expected it appears that much of what is happening in the practice area is being done as I write, contemporaneously. No sweat … time to dust off my old (but hopefully not too outdated) IPL hornbook.,

Catch a Tiger By the Tail

admin — Fri, 25 Dec 2009 08:02:40 +0000

Ladies, are you suspicious that “your man is pulling a Tiger Woods”? All over this country, complete nobodies are probably juggling multiple extramarital affairs the press couldn’t care less about, leaving those nobodies’ wives and girlfriends with no way to uncover the truth, apart from paying attention and asking questions. Until now! “Intelius, an e-commerce company that empowers consumers with online information to make intelligent decisions” would like to offer five suggestions to “give you peace of mind without [your] being a stalker.”

So … we all know that Tiger Woods has been in the news recently but what does that have to do with information privacy? Well, while the article linked above is ultimately trying to be funny, it painfully hits square on the head the revelation of how ones’ privacy my be legally violated by (not the government or big business but rather) your friends or family. Clearly another example of a potential burden of an extensively and increasingly networked society. Perhaps it is something we all need to keep in the back of our minds.

Is your man “pulling a Tiger?