openrightsgroup – Cubicgarden.com…

Public Service Internet monthly newsletter (Mar 2021)

traveling with a passport and boarding pass

We live in incredible times with such possibilities that is clear. Although its easily dismissed, hearing Bill Maher rip through a bunch of websites and people looking for new ways to track users now 3rd party tracking is on its way out?

To quote Buckminster Fuller “You never change things by fighting the existing reality. To change something, build a new model that makes the existing model obsolete.”

You are seeing aspects of this with more nuanced privacy depth being discussed, participating in Mozilla’s #internethealth challenges moment and hearing Solana talk through the internet health report.

The background story of Tony Abbotts boarding pass

Ian thinks: We all heard the story about the former Australian minster who was hacked after posting his boarding pass on instagram but here is the incredible background story, told by the hacker.

Vaccine passports are not as simple as the media are suggesting

Ian thinks: Heather gives plain and clear reasons why vaccine passports are not the panacea its being made out to be. Its also great to hear Lillian Edwards framework mentioned (May 2020 newsletter) as a way forward.

Gamestop? Rethinking the whole rigged system

Ian thinks: Douglas Rushkoff’s monologue about gamestop needs a listen for a different view, but stay around for the interview with Yaël, previous head of political advertising at Facebook. She tells all and I like the approach of trying to fix it before criticising.

Lets talk about Sharenting

Ian thinks: Shareting is when parents share their kids photos and private information without their consent. Its become a real problem now the millennials are growing up with a digital footprint without knowing.

How Facebook joined the splinter-net while Google throw the open web under the bus?

Ian thinks: Hearing about the absolute mess over news in Australia, its easy to point fingers. But its important to look deeper at whats really happening for the sake of profits not people. I’m with Shoshana Zuboff and others, but I know many people get their news from these massive corps.

A big step for gigworkers, but lets be diligent of next steps

Ian thinks: The Uber case is great news but in a similar legal play to Facebook & Google with Australia, there might be more going on that most are reporting? We got to look a little deeper as monopoly is Uber’s end game.

Using copyright to force takedowns

Ian thinks: This is a devious way to force a take-down of a live stream or any recorded footage. Theres got to be a better way and I think its related to using alternative platforms or self hosting with syndication.

The centralisation of power is the problem

Ian thinks: I like this summary of so many of the problems with Facebook, but it misses the important point of centralisation. It also highlights Noam Cohen’s quote “Mark Zuckerberg is deluded by his own faith in Facebook’s ability to be a force for good in the world”

Public value and purpose into the future

Ian thinks: Mariana is on fire and this summary of work around the BBC puts value under a microscope. I love this line “Value is not just the income generated at the end of the innovation chain–– it is also the creative input at the upstream end, the vital investment in talent, content creation, digital innovation and R&D at the early stages”

Google fires another outspoken AI research, who will be next?

Ian thinks: Margaret Mitchell and Timnit Gebru show there is something going on with Google AI research. It doesn’t take a lot to guess what is actually going on behind close doors.

Find the archive here

Illegal zoom bombing is out of control

This is part of the endless story of zoom, a story which is true as it happened to me and about 100+ other people.

The open rights group run an event every Friday afternoon related data privacy and ethics. Its been hosted on zoom for the last few weeks and the guests have been good. When I heard Lilian Edwards and Rachel Coldicutt were going to talk about a possible way forward for the debate around covid-19 contact tracing. I was onboard to watch again.

It centers around this proposed legal document which Lilian spearheaded with Rachel and others.

The Coronavirus (Safeguards) Bill 2020: Proposed protections for digital interventions and in relation to immunity certificates

I highly recommend you have a read…especially since some promises seem to be broken.

To support this initiative we've drafted a model statute https://t.co/o7UVx5LnXa for discussion about basic safeguards re data collection, repurposing, and discrimination. It applies scrutiny drawn from human rights based on transparency, legitimacy and proportionality. 2/n pic.twitter.com/PsHvCLWkxd

— Lilian Edwards (@lilianedwards) April 13, 2020

Back to the incident on the zoom call…

I joined a bit late but setup my chromebook casting to my TV via the chromecast. Settled in to watch while working on my Dell XPS laptop. As Lilian finished her presentation, someone drew a cock and balls on top of her final slide. Lilian laughed it off while the hosts the open rights group went about blocking, booting and changing the permissions of the zoom call.

As things moved forward, someone was attempting to draw a swastika on the video. Someone was using the zoom overlay feature or something but it was removed before it was fully drawn. It was about then when we moved to Rachel and before she could really get going someone hijacked the video and showed child abuse/porn. It was shocking and I couldn’t believe it. I looked at the chat room and people were equally upset. It lasted about 10-15 secs but it was just vile/horrible.

Someone pleaded that the hosts take control, and they replied they are ending the whole thing now. Then it was all gone. The lasting effect was felt and although I felt truly shaken by what I had seen, I also knew I had to reach out to others.

Since then, I called my partner for support, line manager to report what happened and check he wasn’t on the call too. I also wanted to check other BBC staff wasn’t on the call I knew. I had previously shared the link around our internal slack and with others interested in contact tracing. I’m lucky the BBC has a employee assistance programme, where I was able to talk to a trained professional who suggested I might feel some comfort in blogging about it (hence this blog)

We reported to the authorities as soon as we could (earlier this evening) and will support with any investigation.

— Open Rights Group (@OpenRightsGroup) April 17, 2020

I noticed while blogging, theres a twitter thread about the whole thing now. No ones blaming the openrightsgroup but this guide written by Michael J. Oghia. But there is a good list of all the things to lock down and change on zoom for anyone before it happens again. Its likely the people behind this illegal act were going zoom to zoom.

I can't believe it. I'm in a political discussion group right now on @zoom_us that was just bombed by child porn. Like, WTF is wrong with people?? I feel so traumatized!

Digital rights folks: are there any best practices to deal with this?

— Michael J. Oghia (@MikeOghia) April 16, 2020

I recently noticed that a few organisations are using youtube for broadcasts and discussions, with another system for feedback and questions. It certainly cuts down on abuse compared to zoom and you can easily share the public link out. The idea of switching to jitsu or skype may not necessarily help solve this type of problem. But changing the way its done completely could.

18th April 2020 – 1am

I got a email from the Open Rights Group…

This afternoon an unknown actor severely disrupted our public online discussion about Covid-19 and we were forced to immediately end the call.

We were horrified by what occurred and would like to apologise for having exposed viewers to such horrific imagery. We are deeply sorry that this occurred on ORG’s watch.

If you would like to speak with us directly I am personally available to speak to anyone and everyone that was on the call.

We have reported the incident to the Police and are taking necessary steps to secure our systems. We will be reviewing the way we conduct meetings to ensure this is never possible again.

If you would like to speak to a counselling or advice service, the Police recommend contacting Samaritans. They accept calls from anyone on any emotional issue at this number 116 123.

Sincere apologies.
Jim
_______________

Jim Killock
Executive Director
Open Rights Group

Open rights are human rights

Wish I could have made ORGcon, but I was away again and haven’t been to a ORGcon for quite a few years now. Regardless I’m a supporter (you should be too) of the Open right group since they started many many moons ago.

Another facepalm: UK porn block

Nice video by Wired magazine on the endless problems of the proposed UK porn block. As the Open rights group says… what could possibly go wrong?

UK’s Investigatory Powers Act now law, UK worst for it

Weekend Walk - 8th August: Protecting the snoopers from the snoopers

In a year where you can’t help but rather it wasn’t, the snoopers bill was passed into UK law. The government has been trying to put this through for a long while and although there were changes, its still really bad. Dare I say chilling effect.

The Bill will mean the police and intelligence agencies have unprecedented powers to surveil our private communications and Internet activity, whether or not we are suspected of a crime. Theresa May has finally got her snoopers’ charter and democracy in the UK is the worse for it.

OpenTech 2015 leaves a lot to think about

OpenTech is a one day conference which I last attended back in 2006 I think. Now in its 10th year, its still a place for the tech focused culture to be heavily debated.

OpenTech has 3 tracks of talks from people who put themselves forward beforehand. I had thought about doing so but missed the deadline for expression of interest. I learned that I should have done so anyway, as quite a few people dropped out.

Regardless of the drop outs, the conference talk quality was high. Here’s the ones which really spoke volumes to me.

The Open Rights Group 10 years on…

I was always looking forward to this one, especially because it was 10 years since a bunch of smart people got together to discuss the idea of why there was no EFF for the UK. In that room somebody pledged to pay 5 pounds a month to something like the EFF. Others followed suit and with Suw Charman Anderson (whom I’ve not seen in ages) taking up the reins of what ever it was going to be. The Open rights group was born and fostered into the world.

It was great to step back through the history of the Open Rights Group and think about the next 10 years (my question). I had hoped Becky, Danny and Cory might have been there too but alas it was great to see everybody else.

Privacy: I do not think that word means what you think it means – Kat Matfield

This was enlightening talk in a string of talks about privacy. It was refreshing to have the view of everyday people on privacy. Especially the idea of peak page padlock aka security theatre, which she explained was a kind of dark pattern. She didn’t get a easy ride with the questioning afterwards about the sample size and how scientific the tests were but it didn’t matter, it was fascinating regardless.

The state of the network address – Bill Thompson

What can I say about Bills talk? Well it was great. So much was covered but I loved the idea of…

IP, therefore I connect

Human values in the technology was heavily discussed along with doing the right thing and building systems/frameworks to encourage the best of these values.

Bill outlined a couple scenarios which he uses to illustrate human values. Hearing them made it very clear whats at stake.
Use of personal data for children and young adults who are still finding there way, experimenting with their identity and learning what makes them tick. These years are hugely transformative and can be easily warped by requiring students to submit work through facebook or the rest of a religious family seeing recommendations for atheist documentary’s. Each thing is well meaning but damaging as a consequence.

I don’t know what my parents would have made of me taking out books from the library about drugs. I was curious and as a result learned so much about them that I pretty much embarrassed teachers and friends with my knowledge of drugs. I also never took them as a result of my knowledge. If this was 20yrs later and my parents were getting recommendations based on my book renting it would be a very different conversation!

Ethics and human values need to exist in the systems & algorithms we create. Its beyond a nice thing to do, its essential. Bill highlighted the conflict in the way most startups are funded. He pointed out public organisations like the BBC to develop new models for the public good.

Everything ran nicely into Gavin Starks talk which followed about the state of data and data as infrastructure.

Let’s redecentralize — Irina Bolychevski

I didn’t really recognise redecentralise till Irina started listing the sites which they had listed on there Github repo. At that moment I started thinking this sounds similar to something I blogged about a while ago... and I wasn’t wrong.

A mobile web of apps and documents – Adewale Oshineye

I think Adewale is great (no kick for the amount of times I have quoted him even). He thinks long and hard about subjects and I quite enjoy the challenging discussions we end up having when we have time. It was in the last session about decentralisation, that I even quoted him in my question to Irina.

People’s enthusiasm for federated decentralised $WHATEVER seems inversely proportional to the practicality of their plan for achieving it

It was great to hear Adewale on stage. I wasn’t quite sure where he was going at the very start of the talk, when he started asking what the web was but before long it all came clear when he revealed the slightly surprising fact that the biggest mobile user agent is Facebook. Aka people viewing the web through the Facebook app more than any other mobile device or app.

He then talked about Javascript only sites (ones which don’t even deliver a page unless you have JS enabled), apps containing URX’s, The Chrome and Safari tab feature. Pintrest got a bit of kicking for their aggressive stance to use their app over accessing by a browser or any other way.

But its the question Adewale left us which was the kicker….

Is this still the web?

A bit of a debate kicked off but unfortunately there wasn’t much time left to really get into it. However the question still remains and got me thinking, about what I hold dear about the web. Maybe I’m romanticising the history of the web? But I don’t think so… I honestly think theres something important about the open web through open platforms.

Thinking about it now, listening to Brian Chirls earlier in the week talk about WebVR starter kit and the things he did to make sure VR isn’t just for the rich elites but also for the children who might be able to afford a cheap android phone for VR viewing. But its not about consuming! They should be able to create their own VR, like when we used view source to understand how the web worked. Even on a super locked down library PC.

I know there is something essential about using accessing the web from a browser. It might be the shift from consumer to author but I haven’t quite condensed it down to a paragraph yet, I’m sure to tell Adewale when I next see him next.

dotEveryone by Paula Le Dieu

I was lucky that the order on the website stayed the same, as I left track 3 with Adewale on the top floor to catch Paula Le Dieu sitting on the stage. As I walked down to the front, she was talking about how things like the Open Rights Group and BBC Backstage were launched 10 years ago and most stood the test of time. I know Paula wasn’t singling me or anybody out (she later pointed out the BBC creative archive project was ended a few years previous to the end of BBC Backstage) I just happened to walk in right on cue. I wanted to clear things up anyway in my question. Some people later asked me what was BBC Backstage, which goes to show.

DotEveryone was a interguing talk and although not a lot was given away. Paula did mention 3 points of focus.

Internet connectivity – Net neutrality?
Diversity in Tech – There was a talk about being female on the internet earlier
New Business models – Very fitting with Bills State of the internet address)

I’ll certainly be looking more into doteveryone.

It was a good conference and it was great having the ODI sponsoring and supporting it. Keep wondering if we could something similar in Manchester, especially with lots of people interested in the effect of tech culture.

#ALSIceBucketChallenge not accept…

To be clear this isn’t an attack on ALS the charity, and you can choose to do what you personally like. However these are my views and opinions, what you have is a choice…

Shane nominated me and Chris for the ALS Ice-bucket challenge on Twitter and Facebook.

I heard about the challenge but that was about a year ago, so I looked it up on wikipedia. And also looked around the web to find out what people were saying about it.

I personally hate and reject social pressure, it tends to bring out the rebel in me. The Icebucket challenge on the surface of it seems to be harmless but deep down it seems to have the same tones as a pyramid scheme and a whole dollop of social engineering. Strong words but as I said this brings out the worst in me.

As of Thursday the “Ice Bucket Challenge” had raised over $41 million. And yes, it’s probably true that this kind of cash would not have been raised if a long list of famous people hadn’t videoed themselves dumping ice water on themselves.

But a couple of points. First, wasn’t the original idea that you were challenged to EITHER dump water on your head OR make a charitable donation? Because that’s what President Obama did when he was challenged by Ethel Kennedy. (Which was, admittedly, a pretty big guilt trip. Ethel Kennedy is 86 years old and she’s also, well, a Kennedy, so ignore that challenge at your peril.)

Guilt trip…! Yes and because its public and in the open, it adds social pressure.

At a recent dinner party, I discussed with friends and Shane why I hated the idea and compared it to things I mentioned before. Most seemed to think it wasn’t a big deal, why was I getting so worked up about the whole thing? Just do it or don’t? To which I started to go off on one comparing it to the confidence tricks and the problem with compliance (complete story)!

Well to cut things short, I decided after reading and sleeping on it. I’m not going to take part, not because I’m scared of getting ice cold water over my head (although its been suggested someone like me may pass out?). Not because I don’t want to donate money to charity and not because I don’t care.

Cornering me into a corner and saying pay or/and put ice water over your head is not something I recommend. I can already imagine all the other charities trying to come up with their own versions, although you can suggest the no make-up selfie was similar? Guilt tripping and social engineering the general public into going along with the flow for a quiet life. I wonder how many of them, actually paid the charity? ~~Did Shane~~? He did. But have we sunk to such a level that charity can only get money by social engineering and compliance techniques ? (I imagine yes but this feels a step further that I’d like to think)

As I said its not about the money, so I have paid an extra sum to the open rights group (the UK equivalent of the EFF) instead of to a charity which uses social engineering to convince people to donate to them.

I imagine there will be backlash against my decision but I’m sticking with it and leave the question to everybody getting involved in the #ALSIceBucketChallenge, are you doing it because you care, think it will be a laugh or feeling the social pressure? Deep down, if nobody recommended you for it, would you do it?

Think about it and don’t take the easy way out, do what feels right to you! Donate if you want to, take the icebucket if you want, but don’t be a sheep, think about it!

Lucy Powell MP replies to #thedaywefightback

Following on from…. My healthcare thoughts and the #thedaywefightback. I got a email back from my MP Lucy Powell (well ok a email back from one of her team)

Thank you for your email regarding the revelations of GCHQ and NSA data gathering.

I agree that these are, of course, extremely serious allegations and I know from the many e-mails and letters I have received that there is considerable public concern about this issue.I agree it is vital that these allegations are thoroughly investigated and that we ensure there is effective oversight and a clear legal framework to our intelligence operations. As I am sure you are aware, there was an important debate on the intelligence and security services in Parliament on 31st October last year.Our intelligence and security services undertake vital, often unrecognised, work to protect our security and to counter the threats we face. Given the global nature of their work it is also crucial that our intelligence agencies are able to share information across international borders with our allies, including the USA.

There also needs, however, to be public confidence that our intelligence agencies are themselves law-abiding and accountable and that any intelligence information received from the USA or any other country has been obtained legally. These recent allegations also underline once again the need for effective Parliamentary and Ministerial oversight of all three of our intelligence organisations.

I believe that the Intelligence and Security Committee (ISC), which has the remit to examine the expenditure, administration and policy of the country’s intelligence agencies is the right body to investigate these allegations, but I do think it is important that we look at all the options to ensure that there is proper parliamentary oversight of the intelligence services.

I hope that in the future the ISC will hold as many hearings in public as possible and that the ISC can become a full Parliamentary Select Committee, as I believe this would improve its transparency and accountability to the public.Thank you once again for writing to me and for sharing your views.Yours sincerely,

Lucy Powell MP

Well at least she replied I guess? I imagine many others are getting nothing back…? Quite a generic email to a complex issue…

Wonder what would happen if I replied to her? Wonder if I would get a reply again?

All your care data belongs to us?

I have been looking into the health care data sharing thing in the UK a while ago but to be honest got distracted by the mass surveillance uncovering from Edward Snowden’s leaks. Luckily the Open Rights Group is keeping their watchful eyes on this issue along with many others.

I’m still making up my mind and reading about the positives and negatives, to see if I should opt out. Don’t get me wrong, I’m a public person for many things but certain things I like to keep private. I’m still learning more but I had planned to join one of the Open Right Group’s mass opt out meetups to understand a little more.

However Stefan Magdalinsk just launched #FaxYourGP.

We’re a very small group of volunteers who think it should be very easy for people to opt out of the new NHS care.data centralised database of medical records. Unless you opt out now, care.data will soon store the medical records of everyone in England, yours included, in one giant database. Our confidential health information will then be shared with companies and other public bodies.

Some people we respect think care.data is, on balance, a good thing.

Some people we respect think care.data is, on balance, a bad thing.

What we know for certain is that the NHS hasn’t made it easy for you to exercise your right to opt out. We think this really isn’t wise. The NHS leaflet explaining care.data says you should ‘let your GP know’ if you want to opt out. But GP surgeries are busy. If you ring up wanting to opt out they’ll ask you to write to them instead. That’s fair enough – their priority is treating the sick. It’s 2014. The NHS really should have made it easy to opt out via the web.

And thats the point really… Choice! It should be a educated choice not forced upon us.

As I weigh everything up, you can opt out really quickly using Stefan’s service and the envelope below. As Tim would say, Amazeballs…

writetothem.com

Truth is coming and cannot be stopped – Edward Snowdon

Seen on Tib Street in the Northern Quarter of Manchester… Another reason to love the Northern Quarter.

It couldn’t get any more epic unless on the other side it said “ALL YOUR BASES BELONG TO US… signed NSA” Unfortunately although great in one scope, but not so epic is Heisenberg from Breaking Bad instead.

There is so much I want to say about whats going on with our data ending up in the hands of the NSA and ultimately the US government but to be honest the Open Rights Group have got this much better covered. If your not already a member, for goodness sake be one! The war for a open and free internet has stepped up a gear.

Cocktails and Rollercoasters, how else to celebrate?

Its that time of year again when I celebrate surviving one extra year on earth, and for me its got to be rollercoasters and cocktails with friends.

So here is the schedule (which is weather dependant of course)

Sunday 7th April – I’m Gatecrashing Kate Reader’s Rollercoaster party at Thorpe Park, London. Something tells me we’re going to need to make use of this weatherproofing offer.
Wednesday 10th April – I’m consider I should do something simple like going out for a meal and bowling (yes they now have bowling in central Manchester), as I’m going to be out the rest of the weekend.
Friday 12th April – Its time for a Cocktail Masterclass at The all new Kahlua coffee house, can’t wait to make those Espresso Martinis (heck coffee and cocktails, it doesn’t get much better!). The guys behind the Kahlua coffee house seem to read my blog which is a little spooky and seem to have something special in store for me? What it is I have no idea but I’m sure its fun!
Saturday 13th April – I will be at the ORG North event but afterwards, its back to the fine cocktails all night, starting at the Alchemists and moving into Lola Cocktails later in the night.
Sunday 14th April – Its get up with a slight hangover, get on a train and head to Blackpool Pleasure Beach for even more Rollercoasters.
Monday 15th April – Sleep off most of the weekend… (smile, Zzzzz)

If your interested in joining the party at any of the points, you should know how to contact me already. Twitter might be the best way, as I will be using my extended life battery when ever possible.

To note at some point in May, we’ll be going to Alton Towers to finally experience the smiler! The plans was always to go but Alton Towers delayed the launch of the ride till May.