Ad: Manage updates with the Download App
  • CNET
  • All Policy posts

Policy

Facebook's outmoded Web crypto opens door to NSA spying

Secret documents describing the National Security Agency's surveillance apparatus have highlighted vulnerabilities in outdated Web encryption used by Facebook and a handful of other U.S. companies.

Documents leaked by former NSA contractor Edward Snowden confirm that the NSA taps into fiber optic cables "upstream" from Internet companies and vacuums up e-mail and other data that "flows past" -- a security vulnerability that "https" Web encryption is intended to guard against.

But Facebook and a few other companies still rely on an encryption technique viewed as many years out of date, which cryptographers … Read more

Senate approves immigration bill with increased H-1B visas

In a rare bipartisan effort, the U.S. Senate approved the immigration bill with a 68-32 vote on Thursday. This means the lobbying efforts put forth by Facebook, Microsoft, Google, and other major tech companies most likely made a difference.

The 1,200-page measure, dubbed the Border Security, Economic Opportunity and Immigration Modernization Act, which ultimately won the Senate's approval, calls for boosting security on the U.S.-Mexico border, helping immigrants that are currently in the U.S. illegally, and increasing H-1B visas to foreign workers.

It's the bit about H-1B visas that the tech companies were … Read more

Surveillance 'partnership' between NSA and telcos points to AT&T, Verizon

Want to play a game of "guess who?"

A newly disclosed top secret document lauds the National Security Agency's "productive" and long-standing surveillance "partnership" with a pair of telecommunications providers -- that permitted tapping into their fiber links -- but without naming names.

This is where things get interesting for clue sleuths.

Even in the top-secret document published by the Guardian today, the firms are described only as "Company A" and "Company B." But the NSA's inspector general did disclose that, at the time the program was being … Read more

Web petition urging Congress to act on NSA hits half-million mark

More than half a million people have signed an online petition demanding Congress more fully probe the recent revelations about the National Security Agency.

The petition, titled "Stop Watching Us," started a couple of weeks ago. It urges Congress to stop the government from what it describes as blanket data collection. "This dragnet surveillance violates the First and Fourth Amendments of the U.S. Constitution, which protect citizens' right to speak and associate anonymously, guard against unreasonable searches and seizures, and protect their right to privacy."

It's the latest public fallout following press reports based … Read more

Secret court lifts veil, slightly, on Google, Microsoft lawsuits

The most secretive court in the nation, which has been criticized for authorizing domestic surveillance by the National Security Agency, has taken a tiny step toward openness in lawsuits brought by Google and Microsoft.

CNET has learned that Reggie Walton, the presiding judge of the Foreign Intelligence Surveillance Court, told the Obama administration last week that -- barring any objections from the government -- he would take the unusual step of disclosing procedural information about the Internet companies' litigation.

The Department of Justice responded yesterday by saying it had no objections. Neither Google nor Microsoft's legal briefs "contain … Read more

Data, meet spies: The unfinished state of Web crypto

Revelations about the National Security Agency's surveillance abilities have highlighted shortcomings in many Internet companies' security practices that can expose users' confidential communications to government eavesdroppers.

Secret government files leaked by Edward Snowden outline a U.S. and U.K. surveillance apparatus that's able to vacuum up domestic and international data flows by the exabyte. One classified document describes "collection of communications on fiber cables and infrastructure as data flows past," and another refers to the NSA's network-based surveillance of Microsoft's Hotmail servers.

Most Internet companies, however, do not use an privacy-protective encryption technique … Read more

Internet Hall of Fame to induct top names in tech

What do Ethernet co-founder Bob Metcalfe, tech investor Marc Andreessen, and the late Reddit co-founder Aaron Swartz have in common? They are new inductees into the Internet Hall of Fame.

The Internet Society announced the names of 32 influential people Wednesday who helped shaped the Web into what it is today. This is the second year for the annual event.

"This year's inductees represent a group of people as diverse and dynamic as the Internet itself," Internet Society President and CEO Lynn St. Amour said in a statement. "As some of the world's leading thinkers, … Read more

Tim Berners-Lee warns against governments controlling the Web

The so-called father of the World Wide Web wants to protect his child from governments and corporations.

Tim Berners-Lee was in the U.K. on Tuesday and was one of several people to receive the Queen Elizabeth Prize for Engineering. At the event, the inventor of the Web was asked about the allegations made by Edward Snowden that governments are using the Web to tap into the communications of private citizens, The Guardian reported Wednesday.

In response, Berners-Lee said: "The original design of the Web of 24 years ago was for a universal space, we didn't have a … Read more

EU court lawyer backs Google in 'right to be forgotten' case

Google cannot be forced to remove "damaging" material from its search engine that was legally posted elsewhere, according to an adviser to the top court in Europe.

The senior adviser to the European Court of Justice (ECJ), whose job it is to present a public and impartial opinion on cases the court receives, also said there is no general "right to be forgotten" under existing EU data and privacy laws.

In an opinion published on Tuesday, advocate-general Niilo Jaaskinen said that Google cannot be considered the "controller" of personal data from other Web sites … Read more

ITC launches pilot program to cut down on patent troll suits

The International Trade Commission is looking to curb the amount of cases it gets from patent trolls.

According to Reuters, the commission said Monday that it plans to start requiring companies to prove they are well established in the U.S. before they file patent infringement complaints. Currently, companies don't have to prove this until after the case is over.

This requirement will come via a pilot program launched by the ITC that is led by its six administrative judges. These judges will determine whether companies suing over patent infringements have sufficient U.S. production, licensing, and research to … Read more