Re: [Brinworld] Car's data recorder convicts driver
Now, I don't know how subpeoned phone or other electronic records are handled ---has anyone ever questioned Telco's or paging company recordkeeping? Any readers know more? I work as a programmer at a company that writes software to handle switch functions and bill cellular and gsm customers. (I work in the billing part) It is a simple matter to get access to the files that store these records. To my knowledge there is no direct audit trail, though I don't know what records the switch itself keeps, if any. The security is rather silly. It is a simple matter to write a few lines of code to dump the name, address, phone number, social security number, mother's maiden name and credit card number of millions of cell phone users. I imagine adding or removing a call record would be simple, as well.
Re: [Brinworld] Car's data recorder convicts driver
On Mon, Jun 16, 2003 at 05:11:57PM -0400, John Kelsey wrote: ... It seems intuitively like the EDR ought to be about as valuable to the defense as the prosecution, right? E.g., the prosecutor says this guy was driving 120 miles an hour down the road while being pursued by the police, but the EDR says he'd never topped 70. There are creepy privacy implications in there somewhere, but the basic technology seems no more inherently Orwellian than, say, DNA testing--which seems to be a pretty good way of actually locking up the right guy now and then, rather than someone who looks kind-of like the guy who did it, and was seen in the area by an eyewitness and picked out of a police lineup. The types of problems with DNA testing such as state's refusal to allow testing of convicts when it might prove their innocence, and testing lab errors, would also apply to EDR boxes. I.e. states will contrive to use EDR records only when it proves their case, and data recovered will be subject to interpretation. You can bet that when EDRs become important as evidence, citizens won't be allowed to posess the means to read their own EDRs let alone write to them. Eric
Re: [Brinworld] Car's data recorder convicts driver
At 11:16 AM 6/16/03 -0500, Shawn K. Quinn wrote: .. I personally find the privacy implications of EDRs rather unsettling. This story doesn't change that one bit. However, in this particular case, I don't think what the EDR said really matters. The three paragraphs from the story say a lot about what happened here: .. It seems intuitively like the EDR ought to be about as valuable to the defense as the prosecution, right? E.g., the prosecutor says this guy was driving 120 miles an hour down the road while being pursued by the police, but the EDR says he'd never topped 70. There are creepy privacy implications in there somewhere, but the basic technology seems no more inherently Orwellian than, say, DNA testing--which seems to be a pretty good way of actually locking up the right guy now and then, rather than someone who looks kind-of like the guy who did it, and was seen in the area by an eyewitness and picked out of a police lineup. .. Shawn K. Quinn --John Kelsey, [EMAIL PROTECTED] PGP: FA48 3237 9AD5 30AC EEDD BBC8 2A80 6948 4CAA F259
PGP 8 flaw work-around
Someone posted a bug wherein PGP 8 (XP version) saw keys 4 years as expired. There is a workaround, merely change your passphrase and resend the key. (You may change the passphrase to the same passphrase.)
bbc
Did the IRA bomb the BBC newserver or something? They've been down for two days now. -- Harmon Seaver CyberShamanix http://www.cybershamanix.com