Computer and network surveillance explained

See main article: Surveillance, Mass surveillance and Global surveillance.

Computer and network surveillance is the monitoring of computer activity and data stored locally on a computer or data being transferred over computer networks such as the Internet. This monitoring is often carried out covertly and may be completed by governments, corporations, criminal organizations, or individuals. It may or may not be legal and may or may not require authorization from a court or other independent government agencies. Computer and network surveillance programs are widespread today and almost all Internet traffic can be monitored.[1]

Surveillance allows governments and other agencies to maintain social control, recognize and monitor threats or any suspicious or abnormal activity,[2] and prevent and investigate criminal activities. With the advent of programs such as the Total Information Awareness program, technologies such as high-speed surveillance computers and biometrics software, and laws such as the Communications Assistance For Law Enforcement Act, governments now possess an unprecedented ability to monitor the activities of citizens.[3]

Many civil rights and privacy groups, such as Reporters Without Borders, the Electronic Frontier Foundation, and the American Civil Liberties Union, have expressed concern that increasing surveillance of citizens will result in a mass surveillance society, with limited political and/or personal freedoms. Such fear has led to numerous lawsuits such as Hepting v. AT&T.[3] [4] The hacktivist group Anonymous has hacked into government websites in protest of what it considers "draconian surveillance".[5] [6]

Network surveillance

See also: Signals intelligence.

The vast majority of computer surveillance involves the monitoring of personal data and traffic on the Internet.[7] For example, in the United States, the Communications Assistance For Law Enforcement Act mandates that all phone calls and broadband internet traffic (emails, web traffic, instant messaging, etc.) be available for unimpeded, real-time monitoring by Federal law enforcement agencies.[8] [9] [10]

Packet capture (also known as "packet sniffing") is the monitoring of data traffic on a network.[11] Data sent between computers over the Internet or between any networks takes the form of small chunks called packets, which are routed to their destination and assembled back into a complete message. A packet capture appliance intercepts these packets, so that they may be examined and analyzed. Computer technology is needed to perform traffic analysis and sift through intercepted data to look for important/useful information. Under the Communications Assistance For Law Enforcement Act, all U.S. telecommunications providers are required to install such packet capture technology so that Federal law enforcement and intelligence agencies are able to intercept all of their customers' broadband Internet and voice over Internet protocol (VoIP) traffic. These technologies can be used both by the intelligence and for illegal activities.[12]

There is far too much data gathered by these packet sniffers for human investigators to manually search through. Thus, automated Internet surveillance computers sift through the vast amount of intercepted Internet traffic, filtering out, and reporting to investigators those bits of information which are "interesting", for example, the use of certain words or phrases, visiting certain types of web sites, or communicating via email or chat with a certain individual or group.[13] Billions of dollars per year are spent by agencies such as the Information Awareness Office, NSA, and the FBI, for the development, purchase, implementation, and operation of systems which intercept and analyze this data, extracting only the information that is useful to law enforcement and intelligence agencies.[14]

Similar systems are now used by Iranian Security dept. to more easily distinguish between peaceful citizens and terrorists. All of the technology has been allegedly installed by German Siemens AG and Finnish Nokia.[15]

The Internet's rapid development has become a primary form of communication. More people are potentially subject to Internet surveillance. There are advantages and disadvantages to network monitoring. For instance, systems described as "Web 2.0"[16] have greatly impacted modern society. Tim O’ Reilly, who first explained the concept of "Web 2.0",[16] stated that Web 2.0 provides communication platforms that are "user generated", with self-produced content, motivating more people to communicate with friends online.[17] However, Internet surveillance also has a disadvantage. One researcher from Uppsala University said "Web 2.0 surveillance is directed at large user groups who help to hegemonically produce and reproduce surveillance by providing user-generated (self-produced) content. We can characterize Web 2.0 surveillance as mass self-surveillance".[18] Surveillance companies monitor people while they are focused on work or entertainment. Yet, employers themselves also monitor their employees. They do so in order to protect the company's assets and to control public communications but most importantly, to make sure that their employees are actively working and being productive.[19] This can emotionally affect people; this is because it can cause emotions like jealousy. A research group states "...we set out to test the prediction that feelings of jealousy lead to 'creeping' on a partner through Facebook, and that women are particularly likely to engage in partner monitoring in response to jealousy".[20] The study shows that women can become jealous of other people when they are in an online group.

Virtual assistants have become socially integrated into many people's lives. Currently, virtual assistants such as Amazon's Alexa or Apple's Siri cannot call 911 or local services.[21] They are constantly listening for command and recording parts of conversations that will help improve algorithms. If the law enforcement is able to be called using a virtual assistant, the law enforcement would then be able to have access to all the information saved for the device.[21] The device is connected to the home's internet, because of this law enforcement would be the exact location of the individual calling for law enforcement.[21] While the virtual assistance devices are popular, many debates the lack of privacy. The devices are listening to every conversation the owner is having. Even if the owner is not talking to a virtual assistant, the device is still listening to the conversation in hopes that the owner will need assistance, as well as to gather data.[22]

Corporate surveillance

See also: Computer surveillance in the workplace.

Corporate surveillance of computer activity is very common. The data collected is most often used for marketing purposes or sold to other corporations, but is also regularly shared with government agencies. It can be used as a form of business intelligence, which enables the corporation to better tailor their products and/or services to be desirable by their customers. The data can also be sold to other corporations so that they can use it for the aforementioned purpose, or it can be used for direct marketing purposes, such as targeted advertisements, where ads are targeted to the user of the search engine by analyzing their search history and emails[23] (if they use free webmail services), which are kept in a database.

Such type of surveillance is also used to establish business purposes of monitoring, which may include the following:

The second component of prevention is determining the ownership of technology resources. The ownership of the firm's networks, servers, computers, files, and e-mail should be explicitly stated. There should be a distinction between an employee's personal electronic devices, which should be limited and proscribed, and those owned by the firm.

For instance, Google Search stores identifying information for each web search. An IP address and the search phrase used are stored in a database for up to 18 months.[24] Google also scans the content of emails of users of its Gmail webmail service in order to create targeted advertising based on what people are talking about in their personal email correspondences.[25] Google is, by far, the largest Internet advertising agency—millions of sites place Google's advertising banners and links on their websites in order to earn money from visitors who click on the ads. Each page containing Google advertisements adds, reads, and modifies "cookies" on each visitor's computer.[26] These cookies track the user across all of these sites and gather information about their web surfing habits, keeping track of which sites they visit, and what they do when they are on these sites. This information, along with the information from their email accounts, and search engine histories, is stored by Google to use to build a profile of the user to deliver better-targeted advertising.[25]

The United States government often gains access to these databases, either by producing a warrant for it, or by simply asking. The Department of Homeland Security has openly stated that it uses data collected from consumer credit and direct marketing agencies for augmenting the profiles of individuals that it is monitoring.[27]

Malicious software

In addition to monitoring information sent over a computer network, there is also a way to examine data stored on a computer's hard drive, and to monitor the activities of a person using the computer. A surveillance program installed on a computer can search the contents of the hard drive for suspicious data, can monitor computer use, collect passwords, and/or report back activities in real-time to its operator through the Internet connection.[28] A keylogger is an example of this type of program. Normal keylogging programs store their data on the local hard drive, but some are programmed to automatically transmit data over the network to a remote computer or Web server.

There are multiple ways of installing such software. The most common is remote installation, using a backdoor created by a computer virus or trojan. This tactic has the advantage of potentially subjecting multiple computers to surveillance. Viruses often spread to thousands or millions of computers, and leave "backdoors" which are accessible over a network connection, and enable an intruder to remotely install software and execute commands. These viruses and trojans are sometimes developed by government agencies, such as CIPAV and Magic Lantern. More often, however, viruses created by other people or spyware installed by marketing agencies can be used to gain access through the security breaches that they create.[29]

Another method is "cracking" into the computer to gain access over a network. An attacker can then install surveillance software remotely. Servers and computers with permanent broadband connections are most vulnerable to this type of attack.[30] Another source of security cracking is employees giving out information or users using brute force tactics to guess their password.[31]

One can also physically place surveillance software on a computer by gaining entry to the place where the computer is stored and install it from a compact disc, floppy disk, or thumbdrive. This method shares a disadvantage with hardware devices in that it requires physical access to the computer.[32] One well-known worm that uses this method of spreading itself is Stuxnet.[33]

Social network analysis

One common form of surveillance is to create maps of social networks based on data from social networking sites as well as from traffic analysis information from phone call records such as those in the NSA call database,[34] and internet traffic data gathered under CALEA. These social network "maps" are then data mined to extract useful information such as personal interests, friendships and affiliations, wants, beliefs, thoughts, and activities.[35] [36] [37]

Many U.S. government agencies such as the Defense Advanced Research Projects Agency (DARPA), the National Security Agency (NSA), and the Department of Homeland Security (DHS) are currently investing heavily in research involving social network analysis.[38] [39] The intelligence community believes that the biggest threat to the U.S. comes from decentralized, leaderless, geographically dispersed groups. These types of threats are most easily countered by finding important nodes in the network, and removing them. To do this requires a detailed map of the network.[37] [40]

Jason Ethier of Northeastern University, in his study of modern social network analysis, said the following of the Scalable Social Network Analysis Program developed by the Information Awareness Office:

Monitoring from a distance

With only commercially available equipment, it has been shown that it is possible to monitor computers from a distance by detecting the radiation emitted by the CRT monitor. This form of computer surveillance, known as TEMPEST, involves reading electromagnetic emanations from computing devices in order to extract data from them at distances of hundreds of meters.[41] [42] [43]

IBM researchers have also found that, for most computer keyboards, each key emits a slightly different noise when pressed. The differences are individually identifiable under some conditions, and so it's possible to log key strokes without actually requiring logging software to run on the associated computer.

In 2015, lawmakers in California passed a law prohibiting any investigative personnel in the state to force businesses to hand over digital communication without a warrant, calling this Electronic Communications Privacy Act.[44] At the same time in California, state senator Jerry Hill introduced a bill making law enforcement agencies to disclose more information on their usage and information from the Stingray phone tracker device.[44] As the law took into effect in January 2016, it will now require cities to operate with new guidelines in relation to how and when law enforcement use this device.[44] Some legislators and those holding a public office have disagreed with this technology because of the warrantless tracking, but now if a city wants to use this device, it must be heard by a public hearing.[44] Some cities have pulled out of using the StingRay such as Santa Clara County.

And it has also been shown, by Adi Shamir et al., that even the high frequency noise emitted by a CPU includes information about the instructions being executed.[45]

Policeware and govware

In German-speaking countries, spyware used or made by the government is sometimes called govware.[46] Some countries like Switzerland and Germany have a legal framework governing the use of such software.[47] [48] Known examples include the Swiss MiniPanzer and MegaPanzer and the German R2D2 (trojan).

Policeware is a software designed to police citizens by monitoring the discussion and interaction of its citizens.[49] Within the U.S., Carnivore was the first incarnation of secretly installed e-mail monitoring software installed in Internet service providers' networks to log computer communication, including transmitted e-mails.[50] Magic Lantern is another such application, this time running in a targeted computer in a trojan style and performing keystroke logging. CIPAV, deployed by the FBI, is a multi-purpose spyware/trojan.

The Clipper Chip, formerly known as MYK-78, is a small hardware chip that the government can install into phones, designed in the nineties. It was intended to secure private communication and data by reading voice messages that are encoded and decode them. The Clipper Chip was designed during the Clinton administration to, “…protect personal safety and national security against a developing information anarchy that fosters criminals, terrorists and foreign foes.”[51] The government portrayed it as the solution to the secret codes or cryptographic keys that the age of technology created. Thus, this has raised controversy in the public, because the Clipper Chip is thought to have been the next “Big Brother” tool. This led to the failure of the Clipper proposal, even though there have been many attempts to push the agenda.[52]

The "Consumer Broadband and Digital Television Promotion Act" (CBDTPA) was a bill proposed in the United States Congress. CBDTPA was known as the "Security Systems and Standards Certification Act" (SSSCA) while in draft form and was killed in committee in 2002. Had CBDTPA become law, it would have prohibited technology that could be used to read digital content under copyright (such as music, video, and e-books) without digital rights management (DRM) that prevented access to this material without the permission of the copyright holder.[53]

Surveillance as an aid to censorship

See also: Internet censorship and Internet censorship circumvention.

Surveillance and censorship are different. Surveillance can be performed without censorship, but it is harder to engage in censorship without some forms of surveillance.[54] And even when surveillance does not lead directly to censorship, the widespread knowledge or belief that a person, their computer, or their use of the Internet is under surveillance can lead to self-censorship.[55]

In March 2013 Reporters Without Borders issued a Special report on Internet surveillance that examines the use of technology that monitors online activity and intercepts electronic communication in order to arrest journalists, citizen-journalists, and dissidents. The report includes a list of "State Enemies of the Internet", Bahrain, China, Iran, Syria, and Vietnam, countries whose governments are involved in active, intrusive surveillance of news providers, resulting in grave violations of freedom of information and human rights. Computer and network surveillance is on the increase in these countries. The report also includes a second list of "Corporate Enemies of the Internet", Amesys (France), Blue Coat Systems (U.S.), Gamma (UK and Germany), Hacking Team (Italy), and Trovicor (Germany), companies that sell products that are liable to be used by governments to violate human rights and freedom of information. Neither list is exhaustive and they are likely to be expanded in the future.[56]

Protection of sources is no longer just a matter of journalistic ethics. Journalists should equip themselves with a "digital survival kit" if they are exchanging sensitive information online, storing it on a computer hard-drive or mobile phone.[56] [57] Individuals associated with high-profile rights organizations, dissident groups, protest groups, or reform groups are urged to take extra precautions to protect their online identities.[58]

See also

External links

Yan, W. (2019) Introduction to Intelligent Surveillance: Surveillance Data Capture, Transmission, and Analytics, Springer.

Notes and References

  1. Web site: FBI wants widespread monitoring of 'illegal' Internet activity . CNET . 25 March 2014 . Anne Broache.
  2. Jeske . Daniel R. . Stevens . Nathaniel T. . Tartakovsky . Alexander G. . Wilson . James D. . 2018-04-17 . Statistical methods for network surveillance . Applied Stochastic Models in Business and Industry . en . 34 . 4 . 425–445 . 10.1002/asmb.2326 . 1524-1904. free .
  3. Web site: Is the U.S. Turning Into a Surveillance Society?. American Civil Liberties Union. March 13, 2009.
  4. Web site: Bigger Monster, Weaker Chains: The Growth of an American Surveillance Society. https://ghostarchive.org/archive/20221009/https://www.aclu.org/FilesPDFs/aclu_report_bigger_monster_weaker_chains.pdf . 2022-10-09 . live. January 15, 2003. American Civil Liberties Union. March 13, 2009.
  5. https://web.archive.org/web/20120410031723/http://www.zdnet.com/blog/security/anonymous-hacks-uk-government-sites-over-draconian-surveillance/11412 "Anonymous hacks UK government sites over 'draconian surveillance' "
  6. https://www.theguardian.com/technology/2012/apr/20/hacktivists-battle-internet Hacktivists in the frontline battle for the internet
  7. News: Internet Eavesdropping: A Brave New World of Wiretapping . Diffie. Whitfield. Susan Landau. August 2008. Scientific American. 2009-03-13.
  8. Web site: CALEA Archive -- Electronic Frontier Foundation. Electronic Frontier Foundation (website). 2009-03-14. https://web.archive.org/web/20090503035053/http://w2.eff.org/Privacy/Surveillance/CALEA/?f=archive.html. 2009-05-03. dead.
  9. Web site: CALEA: The Perils of Wiretapping the Internet. Electronic Frontier Foundation (website). 2009-03-14.
  10. Web site: CALEA: Frequently Asked Questions. Electronic Frontier Foundation (website). 2009-03-14. 2007-09-20.
  11. Book: Law of Internet Security and Privacy. Kevin J. Connolly. 131. 2003. 978-0-7355-4273-0. Aspen Publishers.
  12. http://www.baller.com/pdfs/ACE.pdf American Council on Education vs. FCC
  13. News: Government funds chat room surveillance research. Hill. Michael. October 11, 2004. Associated Press. USA Today. 2009-03-19.
  14. News: FBI turns to broad new wiretap method. McCullagh. Declan. January 30, 2007. ZDNet News. 2009-03-13.
  15. http://www.debka.com/article/3509/ "First round in Internet war goes to Iranian intelligence"
  16. O'Reilly, T. (2005). What is Web 2.0: Design Patterns and Business Models for the Next Generation of Software. O’Reilly Media, 1-5.
  17. Fuchs, C. (2011). New Media, Web 2.0 and Surveillance. Sociology Compass, 134-147.
  18. Fuchs, C. (2011). Web 2.0, Presumption, and Surveillance. Surveillance & Society, 289-309.
  19. Anthony Denise, Celeste Campos-Castillo, Christine Horne. 2017. Toward a Sociology of Privacy. Annual Review of Sociology. 43. 249–269. 10.1146/annurev-soc-060116-053643. free.
  20. Muise, A., Christofides, E., & Demsmarais, S. (2014). " Creeping" or just information seeking? Gender differences in partner monitoring in response to jealousy on Facebook. Personal Relationships, 21(1), 35-50.
  21. Web site: Should Smart Devices Be Able to Automatically Call the Cops?. November 10, 2017. How Stuff Works. 2017-07-18.
  22. Web site: Time Alexa Takes the Stand Listening Devices Raise Privacy Issues. 4 May 2017 . November 10, 2017.
  23. News: F.T.C. to Review Online Ads and Privacy. Story. Louise. November 1, 2007. New York Times. 2009-03-17.
  24. News: Debunking Google's log anonymization propaganda. Soghoian. Chris. September 11, 2008. CNET News. 2009-03-21. 2011-04-29. https://web.archive.org/web/20110429140744/http://news.cnet.com/8301-13739_3-10038963-46.html. dead.
  25. News: Every move you make, Google will be watching you. Joshi. Priyanki. March 21, 2009. Business Standard. 2009-03-21.
  26. Web site: Advertising and Privacy. 2009. Google (company page). 2009-03-21.
  27. News: Are we addicted to being watched?. Butler. Don. January 31, 2009. The Ottawa Citizen. canada.com. 26 May 2013. https://web.archive.org/web/20130722200908/http://www2.canada.com/ottawacitizen/news/observer/story.html?id=ade6d795-4e7a-4ede-9fc1-f7bf929849c8&p=1. 22 July 2013. dead.
  28. http://www.ftc.gov/os/2005/03/050307spywarerpt.pdf "Spyware Workshop: Monitoring Software on Your OC: Spywae, Adware, and Other Software"
  29. Book: Aycock, John. Computer Viruses and Malware. Springer. 2006. 978-0-387-30236-2. Advances in Information Security.
  30. https://www.theregister.co.uk/2003/04/18/office_workers_give_away_passwords/ "Office workers give away passwords for a cheap pen"
  31. https://www.theregister.co.uk/2004/03/03/passwords_are_passport_to_theft/ "Passwords are passport to theft"
  32. https://community.broadcom.com/symantecenterprise/communities/community-home/librarydocuments/viewdocument?DocumentKey=891b1f29-e2e7-4484-89c0-a2137ee82f8b&CommunityKey=1ecf5f55-9545-44d6-b0f4-4e4a7f5f5e68&tab=librarydocuments "Social Engineering Fundamentals, Part I: Hacker Tactics"
  33. Web site: Stuxnet: How does the Stuxnet worm spread? . Antivirus.about.com . 2014-03-03 . 2014-05-17 . 2014-04-15 . https://web.archive.org/web/20140415062755/http://antivirus.about.com/od/virusdescriptions/f/How-Does-The-Stuxnet-Worm-Spread.htm . dead .
  34. News: Can Network Theory Thwart Terrorists? . Keefe . Patrick . March 12, 2006 . New York Times . 14 March 2009.
  35. Albrechtslund. Anders. March 3, 2008. Online Social Networking as Participatory Surveillance . First Monday. 13. 3. 10.5210/fm.v13i3.2142 . free .
  36. Book: Fuchs, Christian. Social Networking Sites and the Surveillance Society. A Critical Case Study of the Usage of studiVZ, Facebook, and MySpace by Students in Salzburg in the Context of Electronic Surveillance. Forschungsgruppe Unified Theory of Information. Salzburg and Vienna. 2009. 978-3-200-01428-2. March 14, 2009. https://web.archive.org/web/20090206033642/http://fuchs.icts.sbg.ac.at/SNS_Surveillance_Fuchs.pdf. February 6, 2009. dead.
  37. Web site: Current Research in Social Network Theory. https://ghostarchive.org/archive/20221009/http://www.atkinson.yorku.ca/~sosc2410/Social%20Network%20Theory2.pdf . 2022-10-09 . live. Ethier. Jason. Northeastern University College of Computer and Information Science. 27 May 2006. 15 March 2009.
  38. News: Pentagon sets its sights on social networking websites . Marks. Paul. June 9, 2006. New Scientist. 2009-03-16.
  39. News: Is the NSA reading your MySpace profile?. Kawamoto. Dawn. June 9, 2006. CNET News. 2009-03-16. 2012-07-20. https://archive.today/20120720043006/http%3A%2F%2Fnews.cnet.com%2F8301-10784_3-6082047-7.html. dead.
  40. Ressler. Steve. July 2006. Social Network Analysis as an Approach to Combat Terrorism: Past, Present, and Future Research . Homeland Security Affairs. II. 2. March 14, 2009.
  41. Web site: Complete, Unofficial Tempest Page . McNamara . Joel . 4 December 1999 . 7 September 2013 . https://web.archive.org/web/20130901102801/http://www.jammed.com/~jwa/tempest.html . 1 September 2013 . dead .
  42. Van Eck, Wim . Electromagnetic Radiation from Video Display Units: An Eavesdropping Risk? . Computers & Security . 4 . 4 . 1985 . 269–286 . https://web.archive.org/web/20040405142218/http://jya.com/emr.pdf . 2004-04-05 . live . 10.1016/0167-4048(85)90046-X . 10.1.1.35.1695 .
  43. Kuhn, M.G. . 26–28 May 2004 . Electromagnetic Eavesdropping Risks of Flat-Panel Displays . 4th Workshop on Privacy Enhancing Technologies . Toronto . 23–25 .
  44. Web site: LA Times. . November 10, 2017. 2017-08-27.
  45. Web site: Acoustic cryptanalysis. Adi Shamir & Eran Tromer. 1 November 2011. Blavatnik School of Computer Science, Tel Aviv University.
  46. Web site: Swiss coder publicises government spy Trojan. dead. https://web.archive.org/web/20140429161233/http://news.techworld.com/security/3200593/swiss-coder-publicises-government-spy-trojan/. 29 April 2014. 25 March 2014. News.techworld.com.
  47. Basil Cupa, Trojan Horse Resurrected: On the Legality of the Use of Government Spyware (Govware), LISS 2013, pp. 419-428
  48. Web site: 2011-11-23. FAQ – Häufig gestellte Fragen. dead. https://web.archive.org/web/20130506102113/http://www.ejpd.admin.ch/content/ejpd/de/home/themen/sicherheit/ueberwachung_des_post-/faq_vuepf.faq_3.html. 2013-05-06. 2014-05-17. Ejpd.admin.ch.
  49. Web site: The tricky issue of spyware with a badge: meet 'policeware' . Jeremy Reimer . 20 July 2007 . Ars Technica.
  50. News: Hopper . D. Ian . FBI's Web Monitoring Exposed . 4 May 2001 . ABC News.
  51. News: New York Times. 12 June 1994 . November 10, 2017. Levy . Steven .
  52. Web site: Stanford University Clipper Chip. November 10, 2017.
  53. http://w2.eff.org/IP/SSSCA_CBDTPA/20020321_s2048_cbdtpa_bill.pdf "Consumer Broadband and Digital Television Promotion Act"
  54. https://www.theguardian.com/technology/2012/mar/02/censorship-inseperable-from-surveillance "Censorship is inseparable from surveillance"
  55. Web site: Bitso . Constance . Fourie . Ina . Bothma . Theo . Trends in transition from classical censorship to Internet censorship: selected country overviews . live . https://web.archive.org/web/20231120101012/https://www.ifla.org/wp-content/uploads/2019/05/assets/faife/publications/spotlights/1%20Bitso_Fourie_BothmaTrendsInTransiton.pdf . Nov 20, 2023 . IFLA.
  56. Web site: dead . Era of the digital mercenaries . The Enemies of the Internet Special Edition : Surveillance . https://web.archive.org/web/20130831072750/http://surveillance.rsf.org/en/ . 2013-08-31 .
  57. https://www.nytimes.com/2011/10/27/opinion/without-computer-security-sources-secrets-arent-safe-with-journalists.html?_r=1& "When Secrets Aren't Safe With Journalists"
  58. http://www.nartv.org/mirror/circ_guide.pdf Everyone's Guide to By-passing Internet Censorship