Category: Privacy & Security
-
Goodbye, Stanford. Hello, Princeton!
[Editor’s note: The Center for Information Technology Policy (CITP) is delighted to welcome Arvind Narayanan as an Assistant Professor in Computer Science, and an affiliated faculty member in CITP. Narayanan is a leading researcher in digital privacy, data anonymization, and technology policy. His work has been widely published, and includes a paper with CITP co-authors…
-
Privacy Threat Model for Mobile
Evaluating privacy vulnerabilities in the mobile space can be a difficult and ad hoc process for developers, publishers, regulators, and researchers. This is due, in significant part, to the absence of a well-developed and widely accepted privacy threat model. With 1 million UDIDs posted on the Internet this past week, there is an urgent need…
-
The Decline of DVD-by-Mail, or Further Thoughts on the Digital Death of Copyright's First Sale Doctrine
Netflix reported a second-quarter profit last week as customer demand continues to drive a transition in the company’s primary delivery model from DVD-by-mail to Internet streaming. According to The New York Times, “he company’s net losses among DVD-by-mail subscriptions outpaced its gains in net streaming subscriptions in the United States, reflecting the continued challenge of…
-
Open Internet Advisory Committee kick-off
Last Friday, we had the first meeting of the Open Internet Advisory Committee (OIAC), called for by the FCC in the recent Open Internet Order. The members of the OIAC consist of a mix of folks from venture capital firms, ISPs, governance organizations, community organizations, and academics like myself. The OIAC’s mission is to “track and evaluate…
-
Firefox Changes its HTTPS User Interface… Again
A year and a half ago, I wrote about major changes to the way that Firefox indicates whether the connection to a web site is encrypted. I noted that, especially with the emergence of mobile browsers, the traditional “padlock icon” of standard SSL-secured connections and the “green glow” of Extended Validation was being implemented in…
-
I Tell the FCC to End In-Home Video Encryption
In my last post, I asked “Who Killed the Open Set-Top-Box?.” There were some great comments on that post, which inspired me to write up my thoughts and send them to the FCC. The FCC has long tried and failed to mandate that cable companies make their systems more interoperable with third-party consumer devices. Nevertheless,…
-
Who Killed the Open Set-Top-Box?
A few years ago, I lived in Cambridge, Massachusetts. I subscribed to Comcast cable. With my trusty Hauppauge WinTV-PVR-150 I enjoyed the ability to watch TV on my desktop computer — even to record it for later viewing or to occasionally edit and re-upload it to YouTube (with critical commentary and within the bounds of…
-
Going to the doctor and worrying about cybersecurity
For most people, going to the doctor means thinking about co-pays and when they’ll feel better. For me though, it means thinking about those plus the cyber security of the computer systems being used by the medical professionals. I’ve spent more time than usual visiting doctors recently. I broke my hand – sure I’ll tell…
-
My Public Comments to the CA/Browser Forum Organizational Reform Working Group
Today, I submitted public comments to the CA/Browser Forum. CA/B Forum is an industry group started by Certificate Authorities — the companies that sell digital certificates to web sites so that your browser can encrypt your communications and can tell you whether it’s connecting to the genuine site. It is important that CAs do a…
-
Brazil is the only BRIC country standing ground on Internet Freedom. Here is why.
A few weeks ago, the New York Times published a piece covering a new report launched by OECD calling member-countries to “promote and protect the global free flow of information”. The article lists three BRIC-members, China, India and Russia, as examples of countries taking actions harmful to online freedom. One BRIC member is missing from…