Archives for October 2006

Ars on the WIPO Broadcast Treaty

Ars has an in-depth write-up of the Broadcast Treaty now wending its way through WIPO. Their conclusion:

The most consistent criticism of the treaty is much broader than any of these specific worries. It’s a simple question: “why do we need this treaty at all?”

As the CDT puts it, “proponents of the treaty have largely failed to articulate why such a treaty is necessary.” Most broadcasters make the case that they need protection from signal theft, but the rights found in the treaty often go far beyond preventing pirates from ripping off a signal. Intel argued back in April that “the treaty should be abandoned,” and many nongovernmental organizations feel the same way.

On September 5, 2006, a group of technology and civil liberties groups (that included Verizon, Intel, and HP) banded together to sign an open letter on the treaty. “We remain unconvinced that a treaty is necessary at all.,” they said. “We note with concern that treaty proponents have not clearly identified the particular problems that the treaty would ostensibly solve, and we question whether there are in fact significant problems that are not addressed adequately under existing law.”

iCraveTV was mentioned earlier as an example of the problems that broadcasters wanted to address, but it’s noteworthy that the case was resolved without any of these new rights, and that such cases are infrequent in developed countries, where existing law is generally sufficient to address them.

Sounds about right to me. And as the article explains, this is a rare battle where the good guys seem to be winning.

Posted by Tim Lee on Oct. 31, 2006 | Link | Comments Off |

Kahn on ‘Net Neutrality

Venerated deregulator Alfred Kahn weighs in on “‘net neutrality” - the proposal to have Congress and the Federal Communications Commission decide the terms on which ISPs could provide service, and whom they could charge for what. Net neutrality regulation is advanced primarily by the political left. Here’s Kahn on his bona fides:

I consider myself a good liberal Democrat. I played a leading role under President Carter in the deregulation of the airlines (as Chairman of the Civil Aeronautics Board) and trucking (as Advisor to the President on Inflation), against the almost unanimous opposition of the major airlines and trucking companies and–let’s be frank about it–their strongest unions. Among our strongest allies were Senator Ted Kennedy, Stephen (now Supreme Court Justice) Breyer, and such organizations as Common Cause, Public Citizen, the Consumer Federation of America and Southwest Airlines.

On telecommunications competition:

In telecommunications, cable and telephone companies compete increasingly with one another, and while the two largest wireless companies, Cingular and Verizon, are affiliated with AT&T and Verizon, respectively, some 97 percent of the population has at least a third one competing for their business as well; and Sprint and Intel have recently announced their plan to spend 3 billion dollars on mobile Wi-Max facilities nationwide. Scores of municipalities led by Philadelphia and San Francisco, are building their own Wi-Fi networks. And on the horizon are the electric companies, already beginning to use their ubiquitous power lines to offer broadband–to providers of content, on the one side, and consumers, on the other.

His conclusion: “There is nothing ‘liberal’ about the government rushing in to regulate these wonderfully promising turbulent developments.”

Posted by Jim Harper on Oct. 31, 2006 | Link | 1 Comment |

Why Red Hat Isn’t Afraid of Oracle

The blogosphere is abuzz with last week’s news that Oracle has decided to re-package Red Hat’s version of Linux and sell support for it at prices substantially lower than Red Hat’s own pricing. Here’s open-source skeptic Nick Carr’s take:

Yesterday, Ellison announced that his company, Oracle, fully intends to eat the fruits of the labor of Red Hat, the leading for-profit supplier of the open-source Linux operating system. Oracle is taking the version of Linux developed by Red Hat and distributing it under its own brand, as “Unbreakable Linux.” And, in a stab at Red Hat’s very heart, Ellison claims that Oracle will substantially undercut the open-source firm’s prices for supporting the software. It seems like a claim that shouldn’t be hard to fulfill. After all, Oracle doesn’t have to pay those labor costs.

Once open source became a business, rather than a movement, the rules changed. Larry Ellison, whos’s nothing if not a non-sentimentalist, understands that, and he doesn’t particularly care what “the community” thinks. His attack on Red Hat would never be called neighborly, but it is, as Business Week’s Steve Hamm puts it, “a ruthless and brilliant act of capitalism.”

It’s also something more. It illuminates a much broader and deeper tension in the digital world, a fault line that runs not only through the software industry but through every industry whose products or services exist, or can exist, as software. The tension is between social production and the profit motive. Volunteer labor means something very different in the context of a community than it does in the context of a business. In the context of a community, it’s an expression of fellowship, of the communal value of sharing. But in the context of a business, as Ellison’s move illustrates, it’s nothing more than a cheap input. Many of the most eloquent advocates of social production would prefer it if this tension didn’t exist. But it does, and it’s important.

I don’t think Carr (or Ellison, for that matter) really understands the relationship between a company like Red Hat and an open source community like the people who develop Linux. I think there are two considerations that these guys are missing, which I’ll discuss below the fold.

Continue reading this post »

Posted by Tim Lee on Oct. 31, 2006 | Link | 1 Comment |

Paper Ballots Don’t Crash

Yesterday Ed Felten linked to a Washington Post story about Diebold’s hush-hush recall of 4700 AccuVote-TS voting machines last year. Apparently they had motherboard defects that caused some of them to randomly crash. As Felten explains today, the machines tended to crash at the most inconvenient time possible. He quotes a report on Maryland’s 2004 election:

Election judges and technical staff reported that many of these units froze when the voter pressed the Cast Ballot button. This leads to great confusion for judges and voters. The voter leaves the polling place with little or no confidence that their vote was counted. In many cases, the election judges are unable to provide substantial confirmation that the vote was, in fact, counted.

As Felten explains, this is bad news:

You’d be hard pressed to pick a worse time for a voting machine to crash. The voter has made his selections, confirmed them on the ballot review screen, and now wants them to be recorded. When the Cast Vote button is pressed, the machine reads the intended votes out of its temporary RAM memory and copies them into the official ballot record file, which lives in the machine’s flash memory. If the machine crashes just before the vote is copied, the vote is lost. If it crashes just after the vote is copied, the vote is recorded. It won’t be immediately obvious which case you’re in–hence the confused voters and poll workers.

Obviously, every voting system has problems. But the nice thing about paper ballots is that it’s almost always possible to recover from equipment malfunctions. If there’s doubts about whether an optical-scan or punch-card machine is counting votes correctly, you can run the ballots through another machine or count the votes by hand. Recovering votes from a malfunctioning e-voting machine requires computer forensics skills, and even then it’s a dicey proposition.

Felten’s post makes some other good points about the frightening implications of this kind of bug. Go read the whole thing.

Posted by Tim Lee on Oct. 31, 2006 | Link | Comment |

The Peculiar Economics of Children’s Entertainment

As a single, childless adult I dimly realized some years ago that children’s entertainment had taken a disturbing turn a while back. It had come to incorporate a tremendous amount of “caring and sharing” and safety propaganda, communitarianism distilled into the purest saccharine. Helping and teamwork are well enough, but they are not the only virtues. Indeed, my childless self reasoned, leading the little barbarians to form the expectation that everything was to be shared potentially would lead to disrespect for others’ rights over their stuff. (Some psychology at work: As an only child, I was horrified by the spectacle of other children maltreating my toys).

Continue reading this post »

Posted by Solveig Singleton on Oct. 31, 2006 | Link | 4 Comments |

Another Reason to Be Wary of Age Verification & Data Retention Mandates

We’ve spent a lot of time here on the TLF discussing our reservations about age verification and data retention mandates. We object on many grounds, but privacy and data security concerns are typically at the top of our list.

Government officials or others supporting mandatory data collection / retention always assure us that our personal information will be secure and that it will not fall into the wrong hands. And then something like this happens in Utah and reminds us why we were right to be concerned:

In a jaw-dropping embarrassment, the state of Utah has mistakenly divulged e-mail addresses of kids on its so-called child-protection do-not-e-mail list–a registry proponents claim is foolproof. The gaffe stems from four citations the state issued recently against companies it alleges sent e-mail to children’s addresses on its do-not-e-mail registry promoting alcohol, gambling and pornography.

According to court papers, when Justin Weiss, director of legislative affairs for the E-mail Sender and Provider Coalition, requested copies of the citations from Utah, the state complied but failed to redact the e-mail addresses of the children in the complaints. “I have no personal knowledge of how many other unredacted copies may have been sent out to other individuals that made information requests like mine,” said Weiss in an affidavit.

State officials are reportedly mortified over the incident. “A fair amount of trust has been placed with us and this is not a good thing,” Utah’s Department of Commerce Director Francis Giani reportedly told the Salt Lake Tribune. “I’m sick about it.”

As you should be. But I also hope others heed the lesson here: Despite government assurances to the contrary, government-collected personal information is never perfectly secure. That’s why we must always be vigilant about limiting how much personal information our government can get its hands on. Read Jim Harper’s fine new book, Identity Crisis: How Identification is Overused and Misunderstood, to learn more about these dangers.

Posted by Adam Thierer on Oct. 30, 2006 | Link | 1 Comment |

Government Doing Too Much

CNN is running a story finding that people think government does too much. The gut-level feeling is supported by mind-numbing statistics:

Discretionary spending grew from $649 billion in fiscal year 2001 to $968 billion in fiscal year 2005, an increase of $319 billion, according to the Congressional Budget Office.

With the election just a week away, one of my little projects WashingtonWatch.com is featuring the laws Congress has passed over the last two years. (Usually, the site features pending bills.) Here’s a write-up of what we’re doing.

Do yourself and your country a favor: Go check it out so you can be a smarter voter next week. Sign up for the e-mail list or RSS feed so you can be a better citizen year ’round.

Posted by Jim Harper on Oct. 30, 2006 | Link | 1 Comment |

NYT on Media Ownership

New York Times media business reporter Richard Siklos penned an excellent column yesterday entitled “In a Blurry World, Ownership Is Yesterday’s News.” “It is hard to find any public policy question that feels less relevant by the minute than whether one person or company should be permitted to own television stations and newspapers in the same market,” he argued.

That’s because, as I pointed out in my book on media ownership last year, Media Myths: Making the Debate over Media Ownership, there has been an explosion of media competition and diversity that makes this entire debate seem somewhat silly and even bizarre at times. Critics want us to believe that a handful of puppet-masters in New York or Hollywood are pulling all the strings and force-feeding us propaganda. It’s all a bunch of hooey. And even the traditional media sectors where some of the media “barons” have more control of ownership, it really doesn’t amount to a hill of beans. As Siklos points out:

“[W]hat does it say about the appeal of cross-ownership that The [New York] Post has lost money since the News Corporation’s chairman, Rupert Murdoch, acquired it for the second time, in 1993, and that Mr. Murdoch, whose roots are in ink and paper, has otherwise quit the newspaper business in the United States in favor of television, cable channels and the Internet?”

Continue reading this post »

Posted by Adam Thierer on Oct. 30, 2006 | Link | 1 Comment |

Party of Death

I’m in DC and attended Julian’s annual halloween party. This year’s theme was the “The Party of Death,” but although Ramesh Ponuru was invited, he was, alas, not able to make it. You can see pictures here.

I was Waldo. You can also see a snowflake baby and a dead stem cell, two Steve Irwins, and Hugo Chavez high-fiving Mahmoud Ahmadenijad. The most tasteless costume of the evening–the dead Amish girl–appears not to have been captured on film. Which is good, because that would probably prove Ponuru’s point about liberals.

I think it’s really cool how Flickr makes the photos page I linked to above possible. Julian just suggested that everyone tag their photos “partyofdeath,” and a bunch of people who attended the party did so. As a result, we automagically get a single page that displays everyone’s pictures in one place.

Posted by Tim Lee on Oct. 29, 2006 | Link | Comments Off |

Fake Boarding Pass Generator Analyzed

I have examined the CAPPS program and the fake boarding pass generator in a longish post over on Cato@Liberty.

At the tail end, I say “The fake boarding pass generator does not create a new security weakness. It reveals an existing one. Though some people may want to, it’s important not to kill the messenger . . . .”

Michael Hampton of the enteraining and insightful HomelandStupidity.us quickly pointed me to the views of Congressman Ed Markey (D-MA), which are reflected in Ryan Singel’s post on 27B Stroke 6: Congressman Ed Markey Wants Security Researcher Arrested.

Update: Do check the post on this topic at HomelandStupidity. Scroll down for a YouTube video send-up of identity-based security.

Posted by Jim Harper on Oct. 27, 2006 | Link | Comments Off |

Software Patent of the Week: IBM, Patent Troll

Every week, I look at a software patent that’s been in the news. You can see previous installments in the series here. But this week, Luis Villa has done most of my work for me:

IBM has generally been very good about supporting open source, and as steven says, they’ve been very up front about their motivations- they are doing it because they want to make money, and they think open source and open standards help them make money.

This consistency has extended to their opinions on patents- they have made it clear that they think the system is broken, but they have also made it clear that they think patents are a perfectly legitimate business tool, and that they want to fix the system so that they can continue to make money on patents…

So it shouldn’t be a surprise to anyone that IBM are using patents to go after Amazon. What surprised me, after skimming the patents, is that the patents they are using to go after Amazon are so broad. With the exception of one (which is so opaque I can’t figure out what exactly it is patenting) a cursory reading suggests that these are exactly the kinds of broad, obvious patents that everyone (even IBM) at least says on the surface that they hate. Maybe by demonstrating that they have what Tim Bray calls ‘the Internet Tollbooth’ they think they can precipitate real patent reform, but that seems unlikely; more likely they just want a cut of Amazon’s pile. Shame, really, but it shouldn’t be a surprise.

Companies have a fiduciary duty to their shareholders to maximize their profits, so it shouldn’t surprise us when companies do legal but shady things that enhance their bottom lines. However, it should make us ask why the patent system is giving companies the incentive to engage in such rent-seeking. It does nothing to promote “the progress of science and the useful arts” to give companies monopolies on ideas like “System for ordering items using an electronic catalogue” that are so obvious that it’s inevitable that dozens of companies would independently “invent” them.

Posted by Tim Lee on Oct. 27, 2006 | Link | 9 Comments |

Alcohol Liberation Front 2

In light of the rousing success of the first Alcohol Liberation Front, we’ve decided to reprise the event this coming Monday. We’ll be at RFD from 5:30-7 PM.

If you’re coming, you might want to email me at tlee -at- showmeinstitute.org so we know to keep an eye out for you. Although we probably won’t be that hard to find. James Gattuso will be especially easy to spot at the center of his throng of groupies.

Posted by Tim Lee on Oct. 27, 2006 | Link | 3 Comments |

The Other DMCA Provision

My DMCA paper focuses on the law’s most controversial section, the part that prohibits circumventing DRM schemes. When I was writing it, I briefly considered discussing its other provisions, most notably the “notice and takedown” provisions of §512. After all, EFF has a whole web site documenting the chilling effects of that provision. But although I think EFF has some legitimate gripes, I ultimately concluded that the anti-circumvention provision was far more problematic, and decided to focus my paper exclusively on that section.

Today Tim Wu has an interesting article in Slate arguing that we should be grateful we got §512, because if Hollywood had gotten its way, things would have been much worse:

This summer, Sen. Ted Stevens, R-Alaska, earned the bemused contempt of geeks everywhere when he described the Internet as “a series of tubes.” But back in 1995, Hollywood was insisting that the Internet be characterized as “a bookstore.” And a bookstore, unlike a series of tubes, breaks the law if it “carries” pirated novels. So too, Hollywood urged, Internet companies should be liable if they carry any illegal materials, whether the companies know it or not.

Had that view prevailed, there would probably be no YouTube today, and also no free blog sites, and maybe not even Google or Web 2.0. What venture capitalist would invest in a company already on the hook for everything its users might do? But, in one of the lesser-known turning points in Internet history, Hollywood never got its law. Its unstoppable lobbyists ran into an unmovable object: the Bell companies, who own those “tubes” over which the Internet runs. In the mid-1990s, fearing a future of liability, the Bells ordered their lobbyists to fight Hollywood’s reforms, leading to one of the greatest political struggles in copyright history. (This paper provides a history of this and other struggles.)

Hollywood employs legendary lobbyists, like Jack Valenti, but when they ran into the Bells, it was like Frazier meeting Foreman. The Bells quickly put holds on all the legislation the content industries wanted. Telecom lobbyists like Roy Neel, a close friend of Al Gore (and later Howard Dean’s campaign manager), went to Congress and began saying things like, the “copyright law threatens to put a damper on the expression of ideas on the Internet.”

Copyright law is at its worst when it’s unclear where the boundaries of liability lie, because then deep-pocketed, risk-averse companies will decline to take the risk of incurring large copyright liabilities. The “safe harbor” provision gives businesses clarity regarding what they need to do to avoid liability when it comes to user-generated content. And that, in turn, has allowed individuals to push the boundaries of copyright law and produce absolutely brilliant works of likely copyright infringement.

Posted by Tim Lee on Oct. 27, 2006 | Link | 2 Comments |

Can Government Improve Video Game Ratings?

Washington Post technology columnist Mike Musgrove reminds us in his column today that the video game industry’s voluntary ratings system–the Entertainment Software Rating Board (ESRB)–continues to come under fire in Washington and in the states. Musgrove notes that:

“Earlier this year, Sen. Sam Brownback (R-Kan.) was one of several lawmakers who introduced bills that would take the video game rating system away from the ESRB, but those bills never made it out of committee. Last week, at a summit on video games, youth and public policy, Rep. Betty McCollum (D-Minn.) trashed the game industry’s ratings system and called for a new, independent system. Brownback and McCollum agree that the current system–because it’s run by the game industry–can’t be trusted.”

This is nothing new, of course. I have written extensively about the politics of video game regulation and discussed how the video game ratings system has been criticized for a number of supposed shortcomings. Most recently, I wrote about Sen. Hillary Clinton (D-NY) and Sen. Joe Lieberman’s (D-CT) “Family Entertainment Protection Act” (FEPA, S. 2126), which would create a federal enforcement regime for video games sales and require ongoing regulatory scrutiny of industry ratings and practices. (Note: There was also a House version of the bill).

Continue reading this post »

Posted by Adam Thierer on Oct. 26, 2006 | Link | 3 Comments |

Meet Grandma at the Gate This Thanksgiving!

With the holidays approaching, a new program providing greater access to airport concourses is underway. At select airports throughout the country, non-travelers can now enter and meet arriving loved ones, as was routine just a few years ago.

Everyone entering the concourse will still be subject to physical security checks, but the program permits travelers to pass through security and board planes without showing ID to transportation authorities or by using a false/pseudonymous ID.

Has the Transportation Security Administration seen fit to restore convenience, privacy, and freedom to air travelers? Seen the light on identification-based security and relented on ID/boarding card checks? Well, no.

A PhD student in the Security Informatics program at Indiana University has created a generator that anyone can use to mock up their own boarding pass. He notes a number of different uses for it - among them, meeting your elderly grandparents at the gate, or evading the TSA’s no-fly list. So far, it’s only good for Northwest Airlines, but others would be equally easy to design.

Checking the ID and boarding pass is intended to communicate to personnel at the concourse checkpoint that a person has been run past the watch list and “no-fly” list. It provides a sort of second credential, linked by name to the ID of the person who has been reviewed. This spoof easily breaks that link. Fake a credential matching any ID you have, and you are in the concourse.

I wouldn’t recommend using this system without a careful check of the law - if you are allowed to see it. It’s probably illegal to access an airport concourse this way and the TSA would bring the full weight of its enforcement powers down on you if you were caught. Needless to say, making it illegal to evade security is what keeps the terrorists in line.

Hmm. Or maybe security procedures actually need to work.

And that’s the researcher’s point: Comparing a boarding pass to an identification document at the airport does little to prevent a watch-listed or no-fly-listed person from passing (except perhaps to inconvenience him a little more than everyone else). Indeed, identification-based security is swiss-cheesed with flaws.

The first problem is that you have to know who the bad guys are. If you don’t know who is bad, your ID-based security system can’t catch them. If you do know who is bad, you have to make sure that they aren’t using an alias. The cost of doing so may vary, but defrauding or corrupting identity systems is an option that will never be closed to wrongdoers. Making an identity system costly for bad guys to defeat also makes it costly for good people to use. Witness the REAL ID Act.

The linear response to the exposure of this flaw could be to “tighten up” the system - perhaps by discontinuing the use of self-printed boarding passes. The right response is to abandon the folly of identity-based security and use security methods that address tools and methods of attack directly.

There’s plenty on identity and identity-based security in my book Identity Crisis.

Posted by Jim Harper on Oct. 26, 2006 | Link | 3 Comments |

• « Earlier Posts 
•  

• Welcome.

  The Technology Liberation Front is the tech policy blog dedicated to keeping politicians' hands off the 'net and everything else related to technology. More »

  • Home
  • About
  • Archives
  • Podcast
  • RSS

• Archives

  Select Month July 2008 June 2008 May 2008 April 2008 March 2008 February 2008 January 2008 December 2007 November 2007 October 2007 September 2007 August 2007 July 2007 June 2007 May 2007 April 2007 March 2007 February 2007 January 2007 December 2006 November 2006 October 2006 September 2006 August 2006 July 2006 June 2006 May 2006 April 2006 March 2006 February 2006 January 2006 December 2005 November 2005 October 2005 September 2005 August 2005 July 2005 June 2005 May 2005 April 2005 March 2005 February 2005 January 2005 December 2004 November 2004 October 2004 September 2004 August 2004

• Search

• Categories

  • Biotech
  • Broadband and Neutrality Regulation
  • Competition Policy
  • Copyright
  • DMCA, DRM, and Piracy
  • E-commerce taxation & regulation
  • E-Government & Transparency
  • First Amendment / free speech
  • Inside the Beltway (Politics)
  • Internet Governance
  • Media Regulation
  • Miscellaneous
  • Open Source, Open Standards, and Peer Production
  • Patents
  • Podcast
  • Privacy and Government Surveillance
  • Sin on the 'Net
  • Space
  • Tech Pork
  • Technology, Business, and Cool Toys
  • Telecom and Cable Regulation
  • Things that go 'Bump' in the 'Net
  • Uncategorized
  • What We're Reading
  • Wireless and Spectrum Policy

• Contributors

  • Adam Thierer
  • Andrew Grossman
  • Berin Szoka
  • Braden Cox
  • Bret Swanson
  • Cord Blomquist
  • Drew Clark
  • Hance Haney
  • James Gattuso
  • Jerry Brito
  • Jim Harper
  • PJ Doland
  • Ryan Radia
  • Solveig Singleton
  • Sonia Arrison
  • Tim Lee
  • Tom W. Bell

• Tech Policy

  • The 463 Blog
  • ACT Blog
  • CDT Blog
  • Declan's Politech
  • Discovery's Disco-Tech
  • EFF's Deep Links
  • Freedom to Tinker
  • Ike Elliott
  • Lawrence Lessig
  • Many 2 Many
  • Nick Carr
  • Patry Copyright Blog
  • Public Knowledge
  • The PFF Blog
  • PFF's IP Central
  • Susan Crawford
  • Tech Daily Dose
  • Tel Me Tech

• Tech News

  • Ars Technica
  • CNet's News.com
  • Digg
  • Engadget
  • The Register
  • Slashdot
  • Tech Crunch
  • Tech Dirt
  • tech.memeorandum
  • Telecom Watch
  • WSJ Business Technology
  • Wired News

• Bloggers We Like

  • Chris Anderson
  • Cato @ Liberty
  • Gene Healy
  • Hit and Run
  • Justin Logan
  • Marginal Revolution
  • Radley Balko
  • Virginia Postrel
  • The Volokh Conspiracy
  • Will Wilkinson

• Our Sites

  • Sonia Arrison
  • Jerry Brito
  • Drew Clark
  • PJ Doland
  • Tim Lee
  • Privacilla
  • WashingtonWatch.com

• Where We Work

  • Association for Competitive Technology
  • Cato Institute
  • Center for Public Integrity
  • Competitive Enterprise Institute
  • Heritage Foundation
  • Mercatus Center
  • Pacific Research Institute
  • Progress and Freedom Foundation

• Get TLF in your inbox
  Enter your email address:

• Sponsors