Accurate, Focused Research on Law, Technology and Knowledge Discovery With Daily Postings Since 2002
Victor Luckerson: “Some of your deepest, darkest secrets have probably passed through the Google search bar. Now, you can download every last query you’ve ever typed into the search engine and see them all together in their raw glory (or shame). The feature was first rolled out as an experiment last year but is now …
The Spy in the Sandbox — Practical Cache Attacks in Javascript. Yossef Oren, Vasileios P. Kemerlis, Simha Sethumadhavan, Angelos D. Keromytis (Submitted on 25 Feb 2015 (v1), last revised 1 Mar 2015 (this version, v2)) “We present the first micro-architectural side-channel attack which runs entirely in the browser. In contrast to other works in this …
“EPIC has joined a coalition of over sixty NGOs from around the world in a letter to President Juncker of the European Commission, urging him to uphold robust data protection standards. The institutions of the European Union are currently negotiating the new General Data Protection Regulation. The European Commission previously promised that the Data Protection …
Privacy Impact Assessment for the DHS Data Framework – Interim Process to Address an Emergent Threat. DHS/ALL/PIA-051 April 15 , 2015. “The Department of Homeland Security (DHS) is publishing this Privacy Impact Assessment (PIA) to explain its plan to expedite DHS’s ability to meet a critical mission need through the use of an interim manual …
EPIC – “The National Institute of Standards and Technology has released a draft report on “De-Identification of Personally Identifiable Information.” The agency is requesting comments by May 15. The NIST report reviews de-identification techniques and research, including work by EPIC Advisory Board members Cynthia Dwork and Latanya Sweeney. Last year, in response to a similar …
Global Commission on Internet Governance -“The Global Commission on Internet Governance (GCIG) was established in January 2014 to articulate and advance a strategic vision for the future of Internet governance. In recent deliberations, the Commission discussed the potential for a damaging erosion of trust in the absence of a broad social agreement on norms for …
EPIC – “Members of the Energy and Commerce Committee have convened to rework the Data Security and Breach Notification Act. The Act, introduced by Reps. Blackburn and Welch, would require businesses to notify consumers of a data breach “unless there is no reasonable risk of identity theft or financial harm.” The bill would also preempt …
Department of Homeland Security Privacy Office 2015 Chief Freedom of Information Act Officer Report to the Attorney General of the United States March 2015. “The Report summarizes the Department’s accomplishments in achieving its strategic goals related to transparency, openness, and implementing FOIA from March 2014 through March 2015…a word about the backlog: As has been …
“Verizon’s “2015 Data Breach Investigations Report,” released today, reveals that cyberattacks are becoming increasingly sophisticated, but that many criminals still rely on decades-old techniques such as phishing and hacking. According to this year’s report, the bulk of the cyberattacks (70 percent) use a combination of these techniques and involve a secondary victim, adding complexity to …
Brad Health – USAToday: “The U.S. government started keeping secret records of Americans’ international telephone calls nearly a decade before the Sept. 11 terrorist attacks, harvesting billions of calls in a program that provided a blueprint for the far broader National Security Agency surveillance that followed. For more than two decades, the Justice Department and …
From social media service to advertising network – A critical analysis of Facebook’s Revised Policies and Terms DRAFT 31 March 2015. The authors are part of the Interdisciplinary Centre for Law and ICT/Centre for Intellectual Property Rights(ICRI/CIR) of KU Leuven (www.icri.be), the department of Studies on Media, Information and Telecommunication (SMIT) of the Vrije Universiteit …
CBO – “S. 766 would establish that any data collected by event data recorders (EDRs) in motor vehicles are the property of the owner or lessee of the vehicle and would set broad conditions under which such data could be retrieved by others for purposes such as judicial proceedings, investigations, and traffic safety research. The …
