Category Archives: Privacy

A Concept of Privacy

Posted on by
Reply

Personal privacy and protections against warrantless searches got a boost from the Supreme Court earlier this week.

The Supreme Court said Tuesday that police need a warrant to search vehicles parked at private homes, the second time this month the justices rejected government arguments for expanding the “automobile exception” to Fourth Amendment rules against unreasonable searches.

The case at hand involved a stolen motorcycle parked in the driveway of a private residence and protected from the elements (and perhaps (even probably) from being seen by police) by a tarp.  A police officer recognized from Facebook postings the residence, saw the fact of a motorcycle under the tarp, entered the property, lifted the tarp, and looked over the motorcycle—all without a warrant.

Writing for the Court in an 8-1 decision, Justice Sonya Sotomayor wrote

Just like the front porch, side garden or area “outside the front window,” the driveway enclosure where Officer [David] Rhodes searched the motorcycle constitutes [the area where] activity of home life extends….

And

Given the centrality of the Fourth Amendment interest in the home and its curtilage and the disconnect between that interest and the justifications behind the automobile exception, we decline Virginia’s invitation to extend the automobile exception to permit a warrantless intrusion on a home or its curtilage[.]

Justice Samuel Alito was the lone dissenter.

…the officer should have been permitted to search the motorcycle visible in the driveway, just as he could have were it parked in a public street. “Officer Rhodes’s brief walk up the driveway impaired no real privacy interests,” he wrote.

Surprising out of Alito; it seems he doesn’t completely understand curtilage or of privacy.  Notwithstanding, I’d further curtail the motor vehicle exception* allowing warrantless searches to bar such from motor vehicles parked on the street in front of the vehicle owner’s residence (or beside it in the case of a corner lot) or parked in an apartment complex’s parking lot near the vehicle owner’s apartment or in the apartment renter’s designated parking slot.

 

*The motor vehicle exception to the requirement for search warrants allows warrantless searches based on a prohibition era ruling that motor vehicles were too mobile and could be moved before a warrant could be obtained.  That ruling was itself erroneous IMNSHO because it assumed that the police were incapable of keeping a motor vehicle under surveillance until the warrant arrived.

The FBI and Backdoors

Posted on by
Reply

Recall that the FBI has long wanted government-accessible backdoors into our personal but encrypted communications.  “Trust us,” FBI leadership assures us, “we wouldn’t misuse that access; we’ll only use for ‘criminal’ investigations, and only with government authorization.”  And they’ve claimed in support of that wide-eyed innocence that they can’t break into over 7,000 cell phones in the pursuit of criminal investigations.  Current FBI Director Christopher Wray even put the number at over 7,700.

However.

On Tuesday, the FBI told PCMag that a programming error resulted in a “significant overcounting” of the encrypted devices. “The FBI is currently conducting an in-depth review of how this over-counting previously occurred,” the agency said in a statement.

PCMag went on to cite the Washington Post as putting the actual number at around 1,200.

Oops, indeed.

According to the agency, starting in April 2016, it began using a new “collection methodology” with how it counted the encrypted devices. But only recently did the FBI become aware of flaws in the methodology, it said, without elaborating.

Right.

“Given the availability of these third-party solutions, we’ve questioned how and why the FBI finds itself thwarted by so many locked phones,” the Electronic Frontier Foundation said in a blog post.

Indeed.  Whether this government agency was being dishonest in its characterization of the encryption “problem,” or it was just being incredibly sloppy in using “collection methodology” that it has so plainly inadequately tested, this incident is just one more reason Government cannot be trusted with back doors into privately encrypted personal correspondence.

AI Surveillance

Posted on by
Reply

Police forces around the nation are on the verge of getting Artificial Intelligence assistance in identifying folks of interest to them in real time on our cities’ streets.  The image below and its caption illustrate the thing.

I’m all for assisting the police, especially regarding the subject of that cynically tear-jerking caption.  But this sort of thing needs to be looked at with a very jaundiced eye.  It isn’t too far away from what the People’s Republic of China already is doing in terms of routine surveillance and tracking of everyone.

It’s not that everything the PRC does is bad, but some things are inherently dangerous, no matter who developed them or uses them extensively.  This sort of technology can very easily become a direct assault on our ability to be anonymous in public spaces.

TaeWoo Kim, chief scientist at One Smart Labs, a New York-based startup that is working on such software, said the technology is “creepy and a bit Big Brother-y,” but said it is “purely intended to fight crime, terrorism and track wanted subjects.”

The road to Hell is paved with good intentions. Governments can’t be trusted with such capabilities, and we don’t even need to invoke nefarious intent or “Big Brother-y” conspiracies to see that. Governments will end up misusing, even abusing, this sort of thing just in the ordinary outcome of normal bureaucratic imperatives to justify the bureaucrat’s and his bureaucracy’s existence, to grow, to expand the bureaucracy’s power and budget.

William Bratton, the former commissioner of the NYPD, says that the public was similarly worried about DNA testing when the technology first emerged. The technology has been credited in freeing wrongfully convicted people from prison.

This is a false analogy, though.  DNA testing isn’t used for routine, real-time surveillance of the population or even of small groups or of individuals, and current technology doesn’t allow such use.  AI-based image surveillance technology lends itself to exactly that real-time watching.

Too Much Privacy?

Posted on by
Reply

That’s actually a serious question.

The firestorm over Facebook Inc’s handling of personal data raises a question for those pondering a regulatory response: is there such a thing as too much privacy?

And

Law-enforcement agencies rely on access to user data as an important tool for tracking criminals or preventing terrorist attacks. As such, they have long argued additional regulation may be harmful to national security.

Unfortunately, no government can be trusted with citizens’ privacy, as the Star Chamber secret FISA court, the FBI leadership (and not just the current or immediately prior crowd—recall J Edgar Hoover), prior DoJ leadership, the Robert Mueller “investigation,” and much more demonstrate.

If our government wants to learn things, it needs to get back into the HUMINT business rather than relying so much on hacking IT systems.  And get an honest warrant, not just a FISA one.

Statutes, Judges, and DoJ

Posted on by
Reply

The Supreme Court last Tuesday heard a case between Microsoft and DoJ concerning whether the emails of an alleged drug dealer must be turned over to the government pursuant to a search warrant to that effect.  The catch is that the emails are stored exclusively on servers in Ireland—nominally beyond the reach of the US’ long arm of the law.

The statute in question is the Stored Communications Act, enacted 30 years ago before email and similar electronic communications were available.

Microsoft handed over some account data that was stored in the US but said it shouldn’t have to hand over the emails, which were stored on a server in Ireland.

The Second US Circuit Court of Appeals sided with Microsoft, ruling the 1986 law didn’t apply beyond US territory.

DoJ and the participating States’ Attorneys General argued that the appellate decision, if left intact, would hamper the government’s crime-fighting ability.  That’s likely accurate, but there are two things about that.  One is that the convenience of government is not an excuse for limiting individual liberties either directly or through the companies we own. Some of you have heard that from me before.

The other thing, though, is that extending the statute to reach beyond our borders is a political decision, not a legal one.  Only the political arms of our government—Congress and the President acting together (or with Congress overruling a veto)—can make that decision; only the political arms of our government can extend the Act or write a new one to fill the apparent gap.

There’s this bit of disingenuousity, too, from Solicitor General Noel Francisco:

Microsoft’s employees could prepare that disclosure without leaving their desks in the United States[.]

They could prepare such disclosures without leaving their desks in the US in 1986 when the Act was passed, too.  All they had to do was write letters to the managers of the overseas storage facilities.  Nothing has changed here except that email has replaced gofers and the mail room.  Nor has the status of the material stored overseas changed.

On the other hand, Microsoft and other massive tech companies also are raising red herrings.

Microsoft, Google, and other technology companies say…the case could threaten American dominance in the $250 billion cloud-computing industry, because foreign clients won’t use US firms if their data isn’t protected.

That also may be true, and it’s also not relevant.  That’s a question that’s strictly a business matter and not a legal one.  To the extent government help is useful in filling this business gap, it’s also a political question, and these businesses need to seek their recourse through those political arms of our government.

Finally, there already is an alternate route to getting the emails, as admitted by DoJ in their filings:

There is a diplomatic process, governed by legal assistance treaties, that allows the US to request that foreign law-enforcement counterparts share sought-after data, but it can be slow and ineffective, the department said.

There’s that convenience thing, again.

What does the text of the Act say? That’s what the Justices must apply, not a phantom Act that doesn’t exist but that does represent what Justices or DoJ officials might wish the Act to say.  Article I, Section 1, is quite clear about who gets to write the statutes in our system of government, and extending the reach of an existing statute is law-making that is beyond the reach of any member of the judiciary or of the DoJ.