AD TECH

Browser-software makers hear plea for more public involvement as they consider privacy-enhancing proposals

IDENTITY
Berners-Lee proposes “your pod” — global identity and access control — in key speech at Knight Media Forum

Plans to remake the Internet — by offering users a globally unique identifier and “global access control” over who gets to use their personal data “pod” contents — were outlined by Tim Berners-Lee in a speech this week at the Knight Media Forum.

Berners-Lee, who invented hyper-text transfer protocol (HTTP), the core technology of the World Wide Web, spoke to the conference in Miami, days after announcing a team of five noted engineers and Internet leaders had joined his for-profit Inrupt Inc. startup.

Inrupt will use open-source technology developed by Berners-Lee’s MIT-based research project, called “Solid.”  It comes at a time when the digital advertising industry is in flux because the key tool it has used for two decades to track the identity of individuals — the “third-party cookie” is under attack by privacy advocates, emerging regulations and by plans by web-browser makers to abandon it. 

Berners-Lee’s Solid ideas have been in incubation for several years, but reached sort of a turning point last week with the hiring of web encryption-and-privacy expert Bruce Schneier in a key technical role, and announcement of venture funding.  

“For the world to experience the true value of the web we’re building, we must address the vital issues related to privacy, trust and security,” Berners-Lee blogged last week.

Schneier said Inrupt will be building off a public specification called the  “Resource Description Framework”  data-interchange model that handles things like authentication, authorization and access control. “Your data lives in a pod that is controlled by you,” Schneier wrote in another blog post.  “Data generated by your things – your computer, your phone, your IoT whatever – is written to your pod. You authorize granular access to that pod to whoever you want for whatever reason you want.”  (See Quote of the Week, below, for more)

Researchers have struggled for many years to fashion a vision and solutions to web identity and data control that would disrupt the emerging power of platforms such as Google, Facebook, Amazon and others to control and use information gathered about users.  Some reports about Inrupt, also referenced the Data Transfer Project, a collaborative involving Apple, Google, Facebook, Microsoft and Twitter to make personal data more portable among the platforms.

RELATED LINKS

• Berners-Lee’s Solid project: privacy cryptographer Schneier joins team to give you back control over data | Liam Tung, ZDNet.com

• ZDNetData security ‘veteran’ explains why he joined Berners-Lee on Inrupt | Bruce Schneier, Schneier on Security 

• World Wide Web founder scales up efforts to reshape Internet | John Thornhill, Financial Times (STORY SUMMARY)

• Who are the key technologists Berners-Lee has hired at Inrupt? | Thomas Claburn, TheRegister.co.uk 

• RELATED TEXT: The Privacy Manifesto at Berkman Klein Center at Harvard | “Doc” Searls, ProjectVRM

• Using Self-Sovereign identity for identity and access management | Sebastian Weidenbach & Chris Hempel, SSIMeetup.org 

• My Brother’s Keeper: The (Blockchain) Tech Behind Keeping Each Other Safe | Drummond Reed, CPO Magazine

FCC may fine carriers $200M for illegally sharing phone location data — but is that enough?

How much of a fine would it take for a major phone carrier to be deterred from mining personal data? The U.S. Federal Communications Commission proposed $200M worth of fines for AT&T, Verizon, Sprint and T-Mobile for improperly handling location data, including not alerting customers their location data was being sold and later abused.  T-Mobile said it would fight the fines if they become final. The news prompted questions and commentary on Twitter.

“ …[S]o the cost of being tracked everywhere you go and having that data sold to bounty hunters and landlords by corporations worth billions and billions of dollars is less than $1 per person,” tweeted Jason Koebler, editor-in-chief of Motherboard and an editorial director at Vice.

 “[I]t sure seems like if you fine giant conglomerates paltry amounts for flagrantly breaking the law and putting people’s lives at risk, they have a pretty good reason to think that breaking the law will work out ok for them next time,” tweeted Lindsey Barrett, a staff attorney and fellow Georgetown University’s IPRO tech clinic.

WASHINGTON WATCH

• FCC proposes $200M in fines for wireless carriers that sold location data for years | Devin Coldewey, TechCrunch.com

• Phone Carriers to Face $200 Million in Fines After Illegally Sharing Phone Location Data | Dell Cameron, Gizmodo  

• FCC to Propose Fines of AT&T, T-Mobile, Sprint, Verizon for Selling Location Data | Joseph Cox, Motherboard/Vice.com  

• FCC proposed fines grew out of 2018 complaint from U.S. Rep. Ron Wyden | Tony Romm, WashingtonPost.com

• Now is the time for a US data protection agency | Caitriona Fitzgerald and Mary Stone Ross, The Hill

• Lawmakers claim progress on online privacy bill | Emily Birnbaum, The Hill

• United States: What Is The Status Of Federal Privacy Legislation? | Thomas Sowers, Mondaq

• Lawmakers kick the can down the road on discussing the most contentious issues of privacy legislation | Lauren Feiner, CNBC

• A senator is demanding to know how Facebook will stop misinformation from spreading online | Shirin Gaffary, Recode

• Sen. Gillibrand proposes a new government agency to protect privacy on the internet | Lauren Feiner, CNBC

• OPINION: Whiite House Report Is ‘Pure Propaganda’ for AT&T, Verizon, and Comcast | Karl Bode, Vice

PERSONAL PRIVACY

• Facebook offers to pay users for their voice recordings | Tim Bradshaw, Financial Times

• Facebook would have to pay $3.50 per month to U.S. users for sharing contact info: study | Nandita Bose, Reuters

• Privacy group says Facebook isn’t sharing all off-platform data with users | Ina Fried, Axios

• Businesses Say Privacy Is the Biggest Concern With 5G. Here’s What That Means For You | Jason Aten, Inc.

• A new book about Facebook leaves out a glaring detail about Mark Zuckerberg’s views toward privacy in the social network’s early days | Tyler Sonnemaker, Business Insider

• Data privacy: Why Venmo sent my personal info – and yours – to Braze | Jefferson Graham, USA Today

• A new report shows the most popular web browsers in the world are sending companies your history or personal data. Here’s how each browser’s privacy stacks up. | Aaron Holmes, Business Insider

• When Corporations Violate Privacy, They Do Concrete Harm | Benjamin Powers, Coindesk

• The state of tracking and data privacy in 2020 | Andrew Garberson, Marketing Land

• You Are the Product: A Three-Step Plan to Take Back Control of Personal Data | Jennifer Zhu Scott, Coindesk

DATA SURVEILLANCE

• How schools are using kids’ phones to track and surveil them | Alfred Ng, C|net

• A new report shows the most popular web browsers in the world are sending companies your history or personal data. Here’s how each browser’s privacy stacks up. | Aaron Holmes, Business Insider

• How Amazon tracked my last two years of reading | Stacy Mitchell writing at The Guardian 

• 92% of Americans would delete an app that sold their personal information | N.F. Mendoza, Tech Republic

• Google secretly monitors millions of schoolkids, lawsuit alleges | Kate Gibson, CBS News

• New Mexico AG sues Google for collecting school kids’ personal data | Amal S and Paresh Dave, Reuters

• New Mexico Sues Google For Allegedly Spying On Children In Classrooms | Rachel Sandler, Forbes

• Hackers undetected in Citrix systems for five months | Sead Fadilpašić, IT Pro Portal