[Mifare hack ruling | The Thomas / Walport report | The latest in targeted web advertising | AT&T says Google is worse | Study reveals security flaws in online banking sites | UK ISP wants to pay for P2P content shared by users | The end of privacy?]
Scientific American on privacy and technology.
Scientific American: Daniel Solove, Do social networks bring the end of privacy?
[Open link in this window | Open link in new window]
Scientific American: Whitfield Diffie and Susan Landau, Internet Eavesdropping - A Brave New World of Wiretapping
[Open link in this window | Open link in new window]
Scientific American: Steven Ashley, Digital Surveillance: Tools of the Spy Trade
[Open link in this window | Open link in new window]
Scientific American: Katherine Albrecht, How RFID Tags Could Be Used to Track Unsuspecting People
[Open link in this window | Open link in new window]
Scientific American: Anil K. Jain and Sharath Pankanti, Beyond Fingerprinting: Is Biometrics the Best Bet for Fighting Identity Theft?
[Open link in this window | Open link in new window]
Scientific American: Mark A. Rothstein, Tougher Laws Needed to Protect Your Genetic Privacy
[Open link in this window | Open link in new window]
Scientific American: Simson L. Garfinkel, Data Fusion: The Ups and Downs of All-Encompassing Digital Profiles
[Open link in this window | Open link in new window]
Scientific American: Peter Brown, Privacy in an Age of Terabytes and Terror
[Open link in this window | Open link in new window]
Scientific American: Esther Dyson, How Loss of Privacy May Mean Loss of Security
[Open link in this window | Open link in new window]
Scientific American: Anna Lysyanskaya, Cryptography: How to Keep Your Secrets Safe
[Open link in this window | Open link in new window]
[08/08/28]
More at... [08/08/24]
Virgin Media intends to use deep packet inspection to detect copyrighted material.
Paid Content UK: ISP's new music service will pay labels for 'illegal' downloads
[Open link in this window | Open link in new window]
Ars technica: UK ISP set to pay labels for songs shared via P2P
[Open link in this window | Open link in new window]
[08/08/23]
I've seen the results of this study summarised as '47% of all banks don't use SSL', which isn't quite right.
University of Michigan: Security flaws in online banking sites found to be widespread
[Open link in this window | Open link in new window]
University of Michigan: Presentation on "Analyzing Websites for User-Visible Security Design Flaws" by Laura Falk, Atul Prakash, and Kevin Borders at SOUPS 2008
[Open link in this window | Open link in new window]
[08/08/20]
The deep packet inspection debate continues.
Wired Threat Level: Google Privay Practices worse than ISP snooping, AT&T charges
[Open link in this window | Open link in new window]
[08/08/18]
Web firms track on-line behaviour in order to offer targeted ads.
Washing Post: Some web firms say they track behaviour without explicit consent
[Open link in this window | Open link in new window]
Google Blog: New enhancements on the Google content network
[Open link in this window | Open link in new window]
[08/08/16]
The final Data Sharing Review Report (also known as the 'Thomas / Walport report') has been published. Main conclusions: there is a lack of transparency and accountability in the way organisations deal with personal information; there is confusion surrounding the Data Protection Act, particularly the way it interacts with other strands of law; greater use could be made of the ability to share personal data safely, particularly in the field of research and statistical analysis; and the Information Commissioner needs more effective powers, and the resources to allow him to use them properly.
Ministry of Justice: Data Sharing Review
[Open link in this window | Open link in new window]
(Via Robin Wilton's Esoterica)
[Open link in this window | Open link in new window]
A - well, skeptical - response to the Thomas / Walport report: "[...] the report is extremely backward-looking on technology, with very little about the potential of better system design to enhance privacy. Thomas & Walport take as read that better customer service, crime prevention and national security all demand ever-greater collection of personal data. They continue the Commissioner's remarkably back-to-front approach of encouraging the UK government in their efforts to savage the EU Data Protection Directive, rather than to properly implement European law."
Blogzilla: Thomas/Walport data sharing review published
[Open link in this window | Open link in new window]
[08/08/06]
Details of how to copy the Oyster cards used on London's transport network can be published, a Dutch judge has ruled. There's a link to the full text of the ruling (in Dutch, sorry) in my previous post. The ruling has received considerable attention in the UK.
BBC News: Oyster card hack to be published
[Open link in this window | Open link in new window]
An excellent background story from RFID Security.
RFID Security: Mifare hacks and risk assessments
[Open link in this window | Open link in new window]
Links found via Stuart King's Risk Management blog.
Stuart King's Risk Management blog: Oyster card hack to be published
[Open link in this window | Open link in new window]
[08/08/04]
On this page Transitional HTML 4.01 and CSS 1 are used. If you're seeing this text you either have CSS switched off in your browser, or you're using a browser that can't handle CSS. If you're using an older browser version, you might want to consider upgrading.