Skip to main content

Be concerned.....and alarmed


CISPA.   Not heard of it?    Better that you do for what is now under consideration in the USA will soon-enough spread to other countries if it becomes law in America.

Electronic Frontier Foundation explains:

"CISPA stands for The Cyber Intelligence Sharing and Protection Act, a cybersecurity bill written by Rep. Mike Rogers (R-MI) and Dutch Ruppersberger (D-MD) (H.R. 3523). The bill purports to allow companies and the federal government to share information to prevent or defend from cyberattacks. However, the bill expressly authorizes monitoring of our private communications, and is written so broadly that it allows companies to hand over large swaths of personal information to the government with no judicial oversight—effectively creating a “cybersecurity” loophole in all existing privacy laws.  Because the bill is so hotly debated now, unofficial proposed amendments are also being circulated and the actual bill language is in flux.

Under CISPA, can a private company read my emails?

Yes.  Under CISPA, any company can “use cybersecurity systems to identify and obtain cyber threat information to protect the rights and property” of the company. This phrase is being interpreted to mean monitoring your communications—including the contents of email or private messages on Facebook.

Right now, well-established laws, like the Wiretap Act and the Electronic Communications Privacy Act, prevent companies from routinely monitoring your private communications.  Communications service providers may only engage in reasonable monitoring that balances the providers' needs to protect their rights and property with their subscribers' right to privacy in their communications.  And these laws expressly allow lawsuits against companies that go too far.  CISPA destroys these protections by declaring that any provision in CISPA is effective “notwithstanding any other law” and by creating a broad immunity for companies against both civil and criminal liability.  This means companies can bypass all existing laws, as long as they claim a vague “cybersecurity” purpose.

What would allow a company to read my emails?

CISPA has such an expansive definition of "cybersecurity threat information" that many ordinary activities could qualify. CISPA is not specific, but similar definitions in two Senate bills provide clues as to what these activities could be. Basic privacy practices that EFF recommends—like using an anonymizing service like Tor or even encrypting your emails—could be considered an indicator of a “threat” under the Senate bills. As we have stated previously, the bills’ definitions “implicate far more than what security experts would reasonably consider to be cybersecurity threat indicators—things like port scans, DDoS traffic, and the like.”

A more detailed explanation about what could constitute a “cybersecurity purpose” or “cyber security threat indicator” in the various cybersecurity bills can be read here.

Under CISPA, can a company hand my communications over to the government without a warrant?

Yes. After collecting your communications, companies can then voluntarily hand them over to the government with no warrant or judicial oversight whatsoever as long is the communications have what the companies interpret to be “cyber threat information” in them. Once the government has your communications, they can read them too.

Under CISPA, what can I do if a company improperly hands over private information to the government?

Almost nothing. CISPA would affirmatively prevent users from suing a company if they hand over their private information to the government in virtually all cases. A broad immunity provision in the proposed amendments gives companies complete protection from user lawsuits unless information was given to the government:

(I) intentionally to achieve a wrongful purpose;
(II) knowingly without legal or factual justification; and
(III) in disregard of a known or obvious risk that is so great as to make it highly probably that the harm of the act or omission will outweigh the benefit.


Comments

Popular posts from this blog

Robert Fisk's predictions for the Middle East in 2013

There is no gain-saying that Robert Fisk, fiercely independent and feisty to boot, is the veteran journalist and author covering the Middle East. Who doesn't he know or hasn't he met over the years in reporting from Beirut - where he lives?  In his latest op-ed piece for The Independent he lays out his predictions for the Middle East for 2013. Read the piece in full, here - well worthwhile - but an extract... "Never make predictions in the Middle East. My crystal ball broke long ago. But predicting the region has an honourable pedigree. “An Arab movement, newly-risen, is looming in the distance,” a French traveller to the Gulf and Baghdad wrote in 1883, “and a race hitherto downtrodden will presently claim its due place in the destinies of Islam.” A year earlier, a British diplomat in Jeddah confided that “it is within my knowledge... that the idea of freedom does at present agitate some minds even in Mecca...” So let’s say this for 2013: the “Arab Awakening” (the t...

The NPT (Nuclear Non-Proliferation Treaty) goes on hold.....because of one non-Treaty member (Israel)

Isn't there something radically wrong here?    Israel, a non-signatory to the NPT has, evidently, been the cause for those countries that are Treaty members, notably Canada, the US and the UK, after 4 weeks of negotiation, effectively blocking off any meaningful progress in ensuring the non-proliferation of nuclear weapons.    IPS reports ..... "After nearly four weeks of negotiations, the Nuclear Non-Proliferation Treaty (NPT) Review Conference ended in a predictable outcome: a text overwhelmingly reflecting the views and interests of the nuclear-armed states and some of their nuclear-dependent allies. “The process to develop the draft Review Conference outcome document was anti-democratic and nontransparent,” Ray Acheson, director, Reaching Critical Will, Women’s International League for Peace and Freedom (WILPF), told IPS. “This Review Conference has demonstrated beyond any doubt that continuing to rely on the nuclear-armed states or their nuclear-de...

#1 Prize for a bizarre story.....and lying!

No comment called for in this piece from CommonDreams: Another young black man: The strange sad case of 21-year-old Chavis Carter. Police in Jonesboro, Arkansas  stopped  him and two friends, found some marijuana, searched put Carter, then put him handcuffed  behind his back  into their patrol car, where they say he  shot himself  in the head with a gun they failed to find. The FBI is investigating. Police Chief Michael Yates, who stands behind his officers' story,  says in an interview  that the death is "definitely bizarre and defies logic at first glance." You think?