Articles by Jerry Brito

Jerry is a senior research fellow at the Mercatus Center at George Mason University, and director of its Technology Policy Program. He also serves as adjunct professor of law at GMU. His web site is jerrybrito.com.


How the NSA is helping companies fight Chinese hackers without any information sharing law

by on March 8, 2013 · 2 comments

Marc Ambinder has some phenomenal reporting in Foreign Policy today about how the NSA assists companies that are the victims of (usually Chinese) cyberespionage. It is a must read.

One thing we learn: “Cyber-warfare directed against American companies is reducing the gross domestic product by as much as $100 billion per year, according to a recent National Intelligence Estimate.” That is just slightly more than half a percent of GDP, which puts the scope of the threat in perspective.

The most interesting thing, though, is this:

In the coming weeks, the NSA, working with a Department of Homeland Security joint task force and the FBI, will release to select American telecommunication companies a wealth of information about China’s cyber-espionage program, according to a U.S. intelligence official and two government consultants who work on cyber projects. Included: sophisticated tools that China uses, countermeasures developed by the NSA, and unique signature-detection software that previously had been used only to protect government networks.

Press reports have indicated that the Obama administration plans to give certain companies a list of domain names China is known to use for network exploitation. But the coming effort is of an entirely different scope. These are American state secrets.

Very little that China does escapes the notice of the NSA, and virtually every technique it uses has been tracked and reverse-engineered. For years, and in secret, the NSA has also used the cover of some American companies – with their permission – to poke and prod at the hackers, leading them to respond in ways that reveal patterns and allow the United States to figure out, or “attribute,” the precise origin of attacks. The NSA has even designed creative ways to allow subsequent attacks but prevent them from doing any damage. Watching these provoked exploits in real time lets the agency learn how China works.

Will you look at that? Information sharing between the government and the private sector without liability protection. Even more than information sharing, it seems some businesses are allowing the NSA to monitor their systems.

As I’ve said before, there is nothing preventing the government from sharing information about cyberattacks with the private sector. Legislation isn’t required to allow that. As for businesses sharing information with government, they too are free to do so. The only question is whether they should get a free pass for violating contracts or breaking the law when they share in the name of security. I think that would be a mistake.

As Ambiner points out, “the NSA’s reputation has been tarnished by its participation in warrantless surveillance[.]” People don’t trust the NSA with good reason. Security is important, but so are civil liberties. Removing the possibility of liability would also remove any incentive companies might have to be a check on what information the NSA collects. Ambinder writes that given their experience with the warrantless wiretapping program, today “telecoms are wary of cooperating with the NSA beyond the scope of the law.” That’s as it should be. Do we really want to give companies cover to cooperate with the NSA beyond the scope of the law?

According to Ambinder, the NIE suggests “that the NSA will have to perform deep packet inspection on private networks at some point.” (This is the so-called EINSTEIN 3 system This doesn’t sound like a good idea, but if it is to happen, it should be debated in public. Liability protection might allow businesses to allow the NSA to employ the system in secret.

SHARE: 2 comments

The right and the wrong way to think about cellphone unlocking and DMCA anti-cirumvention

by on March 6, 2013 · 0 comments

In a recent blog post Scott Cleland endorses the Administration’s stance that the DMCA should be reformed to accommodate, as he puts it, “pro-competitive exceptions that consumers who have fully paid for the phone and fulfilled their legal and contractual obligations, of course should be able to use it with other carriers.” As he deftly explains,

In a nutshell, if one has honored one’s legal obligations to others, one should be free to unlock their phone/property because they indeed own the lock and the key. However if one has not honored one’s full-payment and legal obligations to others, one may have the phone in one’s possession, but one does not legally own the key to unlocking all the commercial value in the mobile device. Most everyone understands legally and morally that there is a huge difference between legally acquiring the key to unlock something of value and breaking into property without permission. The core cleave of this cellphone issue is just that simple.

I couldn’t have put it better myself. There is a key distinction to be drawn between two very different conceptions of “cellphone unlocking.”

Continue reading →

SHARE: 0 comments

A chat with the Wireless Association on cellphone unlocking

by on March 6, 2013 · 2 comments

I just had a very respectful, reasoned, and, most importantly, informative conversation with Derek Khanna and CTIA on Twitter. It helps clarify a lot about the debate over cellphone unlocking, and I thought I’d share it with you after the jump.

The fact is that carriers today offer a wide range of unlocked devices for sale, so you never have to worry about unlocking or breaking the law. In fact, almost all of the phones Verizon sells are always unlocked. And as far as I can tell, almost all carriers will unlock your phone, once you end your contract, if you just ask. This is all truly great for consumers.

So I don’t understand why carriers should be opposed to an unlocking DMCA exemption. (To be clear, I’m not aware of individual carriers taking positions on the matter, but their trade association did file in the most recent proceeding against the exemption.) It would be better if their customers didn’t have to ask for permission before unlocking a phone that happens to be locked—especially since carriers are willing to give that permission. And if unlocking is no big deal as long as you live up to your contractual obligations, I don’t understand why there should be limits on who can do the unlocking. Here is the exchange: Continue reading →

SHARE: 2 comments

The free market case for cell phone unlocking

by on March 5, 2013 · 7 comments

donny-walter

Conservatives and libertarians believe strongly in property rights and contracts. We also believe that businesses should compete on a level playing field without government tipping the scales for anyone. So, it should be clear that the principled position for conservatives and libertarians is to oppose the DMCA anti-circumvention provisions that arguably prohibit cell phone unlocking.

Indeed it’s no surprise that it is conservatives and libertarians—former RSC staffer Derek Khanna and Rep. Jason Chaffetz (R–Utah)—who are leading the charge to reform the laws.

In it’s response to the petition on cell phone unlocking, the White House got it right when it said: “[I]f you have paid for your mobile device, and aren’t bound by a service agreement or other obligation, you should be able to use it on another network.”

Let’s parse that.

Continue reading →

SHARE: 7 comments

Joe Karaganis on public attitudes toward piracy

by on March 5, 2013 · 2 comments

Joe Karagenis

Joe Karaganis, vice president at The American Assembly at Columbia University, discusses the relationship between digital convergence and cultural production in the realm of online piracy.

Karaganis’s work at American Assembly arose from a frustration with the one-sided way in which industry research was framing the discourse around global copyright policy. He shares the results of Copy Culture in the US & Germany, a recent survey he helped conduct that distinguishes between attitudes towards piracy in the two countries. It found that nearly half of adults in the U.S. and Germany participate in a broad, informal “copy culture,” characterized by the copying, sharing, and downloading of music, movies, TV shows, and other digital media. And while citizens support laws against piracy, they don’t support outsized penalties.

Karaganis also discuses the new “six-strike” Copyright Alert System in the U.S., of which he is skeptical. He also talks about the politics of copyright reform and notes that there is a window of opportunity for the Republican Party to take up the issue before demography gives the advantage to the much younger Democratic Party. 

Download

Related Links

SHARE: 2 comments

“Creepiness” is not a bug, it’s *the* feature

by on March 4, 2013 · 2 comments

Geordi

Yesterday I explained why I’m not too worried about Silicon Valley’s penchant for “solutionism,” which Evgeny Morozov tackles in his new book. Essentially I think that as long as we make decisions about which technologies to adopt via market processes, people will reject those applications that are stupid or bad. Today I want to explore one reason why I’m optimistic that, in the long run, the public will get the technology it wants, despite the perennial squeamishness of some intellectuals.

The problem some thinkers and pundits have with my sanguine let-a-thousand-flowers-bloom approach is that inevitably the public will embrace some technologies that the thinkers don’t like. The result is usually a lot of fretting and hand-wringing by public intellectuals about what the scary new technology will do to our brains or society. Eventually, activists take on the cause and try to use state power to limit the choices the rest of us can make—for our own good, rest assured.

Today it seems that the next technology to get this treatment will be life-logging and personal data mining, as I discussed in my last post. Squarely in the crosshairs right now is Google Glass.

In this CNN op-ed about Glass Andrew Keen waits only seven words before using the adjective “creepy”—the watchword of nervous nellies everywhere. His concern is that those wearing Google Glass will be spying on anyone in their line of sight. Mark Hurst expresses similar concerns in a widely circulated blog post that also frets about what happens when we’re all not just recording but also being recorded.

This time around, though, I think the worrywarts face an uphill battle. That’s because in the case of life-logging and personal data mining, the “creepy” parts of the technologies are one in the same with the technologies themselves. The “creepiness” is not a bug, it’s the feature, and it can’t be severed without destroying the technology.

Continue reading →

SHARE: 2 comments

People are smarter than they look (or, why I’m not worried about solutionism)

by on March 3, 2013 · 0 comments

solutionism

In the New York Times today, Evgeny Morozov indicts the “solutionism” of Silicon Valley, which he defines as the “intellectual pathology that recognizes problems as problems based on just one criterion: whether they are ‘solvable’ with [technology].” This is the theme of his new book, To Save Everything, Click Here, which I’m looking forward to reading.

Morozov is absolutely right that there is a tendency among the geekerati to want to solve things that aren’t really problems, but I think he overestimates the effects this has on society. What are the examples of “solutionism” that he cites? They include:

  • LivesOn, a yet-to-launch service that promises to tweet from your account after you have died
  • Superhuman, another yet-to-launch service with no public description
  • Seesaw, an app that lets you poll friends for advice before making decisions
  • A notional contact lens product that would “make homeless people disappear from view” as you walk about

It should first be noted that three of these four products don’t yet exist, so they’re straw men. But let’s grant Morozov’s point, that the geeks are really cooking these things up. Does he really think that no one besides him sees how dumb these ideas are?

Continue reading →

SHARE: 0 comments

New free online course on the economics of media

by on March 1, 2013 · 0 comments

MRUniversity, the “massive open online course” project of Tyler Cowen and Alex Tabarrok, has just launched several new courses today, including one on the economics of the media, featuring guests lessons by yours truly and Adam Thierer. From the site:

In the Information Age, media is everywhere. This course will help you make sense of it all, providing insight into the structure of media firms, the nature of their products and how they make money.

Is media biased? Is consolidation of media companies bad for consumers? This course will address those questions as well as how the government effects the structure of media through policies such as net neutrality, copyright, TV regulation and spectrum allocation.

This course will provide a general background on the research from economists on media and journalism. There will be a lot of economics and not too much math.

If you pass the final exam, you will earn our “Economics of the Media” certificate on your profile.

Putting together a couple of 5-minute lessons was a lot harder than it sounded when we were asked to contribute, and it’s given me greater appreciation for what Tyler and Alex are doing with this project. It worth the hard work, though. They are reaching thousands of students for much the same effort that would go into a regular university course.

SHARE: 0 comments

The copyright reform agenda is a natural fit for the G.O.P.

by on February 27, 2013 · 0 comments

In a recent article in National Review, Joe Karaganis of American Assembly notes that copyright law is increasingly out of step with social norms. His polling suggests that it’s only a matter of time before a majority supports a broad copyright reform agenda.

As I’ve noted before, copyright has for too long been a bipartisan issue, but it will soon become a partisan one. The question is, which party will take up the winning copyright reform issue?

Karaganis:

How would an Internet politics emerge in the Democratic party? The answer is probably simple: It is impossible in the short term because of the power of Hollywood and inevitable in the long term because of the power of time. Most of the young are already Democrats.

How would an Internet politics emerge in the Republican party? Given the decades of rhetorical entrenchment around property rights and law enforcement, it would probably require the recasting of intellectual-property rights as government monopoly, of SOPA-style bills as crony capitalism, and of Internet enforcement as part of a digital-surveillance state.

Such views in favor of recasting IP rights already have a home on the right, and are supported by congressmen such as Darrell Issa and Jason Chaffetz. Tactical considerations alone could produce Republican-led majorities on these issues, galvanized by the prospect of wounding the Democrats’ Hollywood money base or splitting Silicon Valley libertarians.

Seems to me like the case is strong for a Republican-led movement, but time is of the essence. Will the G.O.P. squander this opportunity?

SHARE: 0 comments

Joseph Reagle on the gender gap in geek culture

by on February 26, 2013 · 0 comments

Joseph Reagle

Is geek culture sexist? Joseph Reagle, Assistant Professor of Communications Studies at Northeastern University and author of a new paper entitled, “Free as in Sexist? Free culture and the gender gap,” returns to Surprisingly Free to address geek feminism and the technology gender gap.

According to Reagle, only 1% of the free software community and 9% of Wikipedia editors are female, which he sees as emblematic of structural problems in the geek community. While he does not believe that being a geek or a nerd is in any way synonymous with being a sexist, he concludes that three things that he otherwise loves—geekiness, openness, and the rhetoric and ideology of freedom–are part of the problem inasmuch as they allow informal cliques to arise, dominate the discussion, and squeeze out minority views. Reagle also comments on a unintentional androcentricity he has observed even amongst free software community heroes, highlighting the ways in which this behavior can be alienating to women and prevents geek culture from growing beyond its traditional base.

Reagle prescribes a 3-step solution to sexism in geek culture: talking about gender; challenging and expanding what it means to be a geek; and not allowing the rhetoric of freedom to be used as an excuse for bad behavior.

Reagle further supports efforts to form female-only subcultures within the geek community, which opponents argue goes against the free software value of openness. Instead of the balkanization of their movement that opponents fear, these closed-group discussions actually strengthen geek culture at large, according to Reagle.

Download

Related Links

SHARE: 0 comments

← Previous Entries

Next Entries →