Monday, December 3, 2012
The ITU approved on November 20, the Y.2770 Recommendation- "Requirements for deep packet inspection in Next Generation Networks".
The ITU does not publish the recommendation to the public, but I was able to locate what seems to be one of the revisions of the document (here).
The recommendation opened a public relations battle (see "ITU packet inspection standard raises serious privacy concerns" - here). Google joined the battle in a colorful way - its home page is now linking to "Take Action", calling for a "A free and open world depends on a free and open web" (here).
Thursday, April 19, 2012
Olivia Solon reports to Wired UK on Tim Berners-Lee (pictured; see also "Tim Berners-Lee Defends Net Neutrality" - here) speech during during W3C on the UK government DPI based mass surveillance plans ("Communications Capabilities Development Programme" - here):
".. Somebody clamps a deep packet inspection (DPI) thing on your cable which reads every packet and reassembles the web pages, cataloguing them against your name, address and telephone number either to be given to the government when they ask for it or to be sold to the highest bidder -- that's a really serious breach of privacy .. DPI used to be impossible because processors weren't fast enough, but now your router can understand which diseases you think you might be suffering from .. People confide things in the internet by the searches they do. Some things they wouldn't tell anyone else, even the people they love the most, until they've -- for example -- checked the lump is really a cancerous lump. If that information was acquired by someone who wants to blackmail you, you are toast".
See "Tim Berners-Lee: deep packet inspection a ‘really serious’ privacy breach" - here.
Thursday, January 26, 2012
The press reports that Lewis Peckover, system administrator, Probability, found that O2 inserts customers' mobile number into HTTP headers (x-up-calling-line-id field) sent to web sites. Lewis even set a web page (here) for O2 users (or anyone else) to see that. This is a common mobile proxy gateway, generally known as "header insertion".
According to the following article, x-up-calling-line-id field is generated by Openwave gateways, which are also used by O2. Equipment from other vendors does it as well, of course, see an example for that here. One reason to do that is to identify the user to 3rd parties, for chagrining or other purposes.
Few hours after his discovery, Lewis tweeted that "Looks like @O2 may have just resolved the issue. It has stopped showing my number. Anyone still seeing it?"
See report by Anna Leach for The Register - "O2 leaks 3G users' mobile numbers to every website visited" - here.
Friday, October 14, 2011
- ISPs' increasing reliance on monitoring and inspection techniques impinges upon the neutrality of the Internet and the confidentiality of communications This raises serious issues relating to the protection of users’ privacy and personal data.
- The EDPS considers that there is a need for national authorities and BEREC (see "Yet Another ISP Transparency Guide" - here) to monitor the market situation. This monitoring should result in a clear picture describing whether the market is evolving towards massive, real-time inspection of communications and issues related to complying with the legal framework
- Depending on these findings, additional legislative measures may be necessary. In such a case, the Commission should put forward policy measures aiming at strengthening the legal framework and ensuring legal certainty. New measures should clarify the practical consequences of the net neutrality principle, as this has already been done in some Member States, and ensure that users can exercise a real choice, notably by forcing ISPs to offer non-monitored connections
Friday, July 1, 2011
Friday, April 15, 2011
Back in 2007, Sabam (Société belge des auteurs compositeurs et éditeurs/ the Belgian artists' and authors' rights group), won a case against the Belgian ISP Scarlet ordering it to block users downloading copyrighted material.