Dies ist das Archiv des öffentlichen Digi-Oek.ch-Microbloggings für den angegebenen Zeitraum.

Enthält bisherige Kurznachrichten (Microposts) auf einem der Foren. Sinn und Unsinn einer solchen Archivierung? Diskutabel!.

Hinweise für neue Kurznachrichten gerne!. Ohne Hinweise kein Microblogging. Zurzeit besteht ein Überhang von englischsprachigen Posts – geeignete Posts in Landessprachen besonders willkommen!

Einzelne Kurznachrichten jeweils direkt erhalten? Auf dem Mastodon-Kanal, den News per Mail oder der Mailingliste Discussion.

Diese Microposts sind in der Regel mindestens auf dem @DigiOekCH-Mastodon-Profil (seit dem 25.03.2021) und häufig auch in einem anderen Forum erschienen. Eventuell unvollständig. Ohne Boosts (Teilen anderer Nachrichten). Die Hashtags entsprechen nicht den hier verwendeten Tags. Die Links sind … nicht verlinkt. Oft sind Open-Graph-Texte dabei (vermutlich vor allem og:image:alt), die manchmal überlang sind und künftig weggelassen werden sollen. Das Datum sollte dem Veröffentlichungsdatum der Kurznachrichten entsprechen. Das Datum dieses Beitrags (31.12.2023) ist auf das Ende der jeweiligen Archivperiode zurückdatiert. Um beispielsweise die Lesbarkeit des Inhaltsverzeichnisses zu verbessern wurden vereinzelt kleinere Korrekturen vorgenommen, die den Inhalt nicht verändern.

2023

28.12.2023 [de] «Microsoft-Rechtsprechung»

(#CH) wird teilweise aufgehoben, sagt Bundesverwaltungsrichter Marc Steiner

Bei einer freihändigen Vergabe von #ITC der öffentlichen Hand musste gemäss Bundesgericht bisher die Beschwerdeführerin (bspw. Konkurrenz) beweisen, dass eine freihändige Vergabe nicht legitim sei. Das hat das BGer nun teilweise korrigiert.

https://www.bfh.ch/wirtschaft/de/aktuell/news/2023/das-bundesgericht-microsoft-und-eine-weihnachtsueberraschung/
www.bfh.ch
Das Bundesgericht, Microsoft und eine Weihnachtsüberraschung
Einige Sätze zur freihändigen Vergabe von IT-Leistungen und über den Moment, wenn ein Fluchwort etwas Positives bedeutet.

#freihaendig #vergabe #microsoftrechtsprechung #microsoft #rechtsprechung #bger #bundesgericht #bge #bvger #bvge #schweiz

28.12.2023 [en] De-Clouding, exit from “the Cloud”:

“… rather than pay for overpriced enterprise service contracts”

“we … did the math to conservatively estimate $7 million in savings over the next five years”, says David Heinemeier Hansson, the Ruby on Rails creator and co-owner and CTO of 37signals.

https://world.hey.com/dhh/the-big-cloud-exit-faq-20274010
world.hey.com
The Big Cloud Exit FAQ
Just over a year ago, we announced our intention to leave the cloud. We then shared our complete $3.2 million cloud budget for 2022, and the fact that we were going to build our own tooling rather than pay for overpriced enterprise service contracts. The mission was set! A month later, we placed an order for $600,000 worth of Dell serv…

#cloud #declouding #unclouding #cloudexit #container #basecamp #kamal #rubyonrails #ruby #rails #37signals

19.12.2023 [en] Users of Voice assistant Alexa:

An Oxford study finds strategies to manage distrust in the technology

“The researchers found that despite a complex relationship between the usefulness and enjoyment of the technology and an understanding that the device enabled their personal data to be collected, all users found a way to trust the device, albeit in a limited way for some.”

https://www.oii.ox.ac.uk/news-events/shes-not-listening-they-are-new-research-investigates-why-we-trust-amazons-alexa-in-our-homes/
www.oii.ox.ac.uk
OII | She’s not listening they are: New research investigates why we trust Amazon’s Alexa in our homes
Users of Amazon’s voice assistant Alexa are employing three strategies to manage distrust in the technology, a new study by researchers at the University of Oxford and Stanford University finds.

#amazon #alexa #voiceassistant #distrust #surveillance #privacy #trust #oxford

The link to the study from earlier this year is: https://doi.org/10.1177/13548565231200337

15.12.2023 [de] Von #Desinformation bis #Hassrede:

systematische Sammlung der Richtlinien von Social-Media-Plattformen

Das Platform Governance Archiv (PGA) ermöglicht … eine detaillierte Analyse und historische Rückverfolgung …

Umfasst #Facebook, #Instagram, #LINE, #LinkedIn, #Parler, #Pinterest, #Quora, #Reddit, #Snapchat, #Spotify, #Telegram, #TikTok, #Tumblr, #Twitch, #Twitter, #WeChat, #WhatsApp, #YouTube.

https://www.hiig.de/platform-governance-archive-v2/
PGA: https://www.platformgovernancearchive.org/
HIIG · Nov 28, 2023
Von Desinformation bis Hassrede: Platform Governance Archive enthüllt, wie soziale Plattformen unsere Kommunikation regulieren
Das Platform Governance Archiv stellt eine systematische Sammlung der Richtlinien bedeutender Social-Media-Plattformen zur Verfügung.

#socialmedia

04.11.2023 Harvard Gazette: instant facial recognition:

“do our faces belong to us?”

Talk Prof. Zittrain & Hill, author of her book on Clearview AI facial recognition

“I don’t believe that just because a technology exists and is capable of doing this, we just have to accept it.”

“… right to control … personal information … should be protected … without their consent, illegal.”

https://news.harvard.edu/gazette/story/2023/10/how-facial-recognition-app-poses-threat-to-privacy-civil-liberties/
Harvard Gazette · Oct 26, 2023
How facial-recognition app poses threat to privacy, civil liberties
By Liz Mineo

#facialrecognition #clearview #pimeyes #ai #biometric #surveillance #harvard #harvardgazette

04.11.2023 [en] Global minimum tax revenue lower than expected?

Report EU Tax Observatory: “… offering generous tax credits as opposed to generous statutory tax rates - the governments of tax havens will be able to keep providing multinationals with very low effective tax rates while avoiding the global minimum tax”

https://www.euractiv.com/section/economy-jobs/news/global-minimum-tax-to-fall-short-of-expectations-researchers-warn/
EURACTIV · Nov 4, 2023
Global minimum tax to fall short of expectations, researchers warn
By Jonathan Packroff

#globalminimumtax #tax #loophole #eu #taxhaven #multinational #taxevasion #taxobservatory

04.11.2023 E-ID or NeID: Risks and Challenges

of National Electronic Identity (NeID) System

“Personal data are … most valuable assets of NeID. … privacy values like anonymity, confidentiality, and control should be prioritised … Robust legal and regulatory frameworks will … ensure that NeID systems are effectively and transparently governed … clear rules and regulations to manage personal data collection … and sharing.”

https://arxiv.org/abs/2310.15813

#neid #eid #e-id #identity #ResearchHighlights

25.10.2023 Is #intelligence a liability?

“The dominant view today is that human intelligence is measured by how fast an individual brain can process information. This picture of the human brain as an “information processor” … belief that the most important thing … is to communicate facts about the world.”

“… misses … a more fundamental task of language: establishing mutual attention.”

“… children engage in … attentional scenes.”

https://theconversation.com/what-is-intelligence-for-millennia-western-literature-has-suggested-it-may-be-a-liability-205913
The Conversation
What is intelligence? For millennia, western literature has suggested it may be a liability
Humanity is the only species on earth for whom intelligence is also an ethical liability.

#attention #ai #humanintelligence

25.10.2023 Is Data Justice key to Climate Justice?

AI-supported climate solutions which spring from biased data are in danger of harming under-represented communities … most vulnerable to the extreme weather events caused by climate change …“
“… combination … could lead to “societal tipping events” …
… human-in-the-loop … AI allows bias to be … corrected

https://www.cam.ac.uk/news/is-data-justice-key-to-climate-justice
University of Cambridge
Is Data Justice key to Climate Justice?
Biased artificial intelligence needs human help to avoid harmful climate action, Cambridge researchers say.

#datajustice #climatejustice #climate #tipping #data #bigdata #ai #cambridge #unicambridge #shuckburgh #nature

25.10.2023 #Science #communication: “We need active scientists

for communication in societal spaces.”

“#Research institutions are … delegating tasks of science to supposed specialists because they assume that researchers need translators to speak in the way that is commonly used in the media space. This approach is neither authentic nor particularly goal-oriented.”

https://elephantinthelab.org/science-and-society-need-more-interaction-instead-of-mere-communication-an-interview-with-volker-meyer-guckel/
Elephant in the Lab · Oct 17, 2023
Science and Society need more interaction instead of mere communication. An Interview with Volker Meyer-Guckel
In this interview Teresa Völker speaks with Dr. Volker Meyer-Guckel about challenges and possible futures of science communication.

#sciencecommunication

24.10.2023 [en] Should we still write by hand? Why? ✍️

Research seems to indicate that “eliminating handwriting from school - as has reportedly been done in Finland - is not a good idea.”

https://theconversation.com/the-case-for-continuing-to-write-by-hand-214175
The Conversation
The case for continuing to write by hand
How does typing affect the way we process what we write, and what are the consequences of giving up handwriting at school age?

#ResearchHighlights #handwriting #writing #pen #memory #mental #disembodiedmind #cognition #text #quality #education #school #finland

24.10.2023 [de] Mozilla-Foundation: Test Automarken “katastrophal,

wenn es um Datenschutz und Sicherheit geht”

Keine Automarke erfüllt Mindestsicherheitsstandards, sammeln “Daten aus den bedenklichsten Kategorien” wie “genetische” Merkmale”; verkaufenweiter, haben “nicht vertrauenswürdige KI”.
Der Artikel mit populärem Einschlag erinnert daran, dass die vagen Vermutungen oft noch übertroffen werden.

https://foundation.mozilla.org/de/privacynotincluded/articles/its-official-cars-are-the-worst-product-category-we-have-ever-reviewed-for-privacy/
Mozilla Foundation
Datenschutz nicht inbegriffen: Ein Einkaufsratgeber für vernetzte Produkte
Allen 25 Automarken in unserem Test haben wir den *Datenschutz nicht inbegriffen-Warnhinweis verliehen. Damit sind Autos die übelste Produktkategorie, die wir je geprüft haben

#auto #datenschutz #privatsphaere #sicherheit #cybersicherheit #mozilla

24.10.2023 [en] Cars do not meet Minimum Security Standards

Mozilla-Foundation: Cars do not meet Minimum Security Standards, “terrible at privacy and security”

Car brands “can collect super intimate information about you … your medical information, your genetic information …”
“can share your personal data with service providers, data brokers, and other businesses … Worse … they can sell your personal data.”

https://foundation.mozilla.org/en/privacynotincluded/articles/its-official-cars-are-the-worst-product-category-we-have-ever-reviewed-for-privacy/
Mozilla Foundation
*Privacy Not Included: A Buyer’s Guide for Connected Products
All 25 car brands we researched earned our *Privacy Not Included warning label – making cars the worst category of products that we have ever reviewed

#car #auto #privacy #security #cybersecurity #mozilla #infosec #pii #intimateinformation

22.09.2023 [de] Data Privacy. Von „Sicheren Häfen“,

Schutz­schilden und Rahmenwerken

“Dieser lücken­hafte Daten­schutz, der weit­ge­hend unre­gu­lierte Privat­sektor und eine schwache Aufsicht sind mithin Ursa­chen für die heutigen Probleme im Austausch mit der EU.”

https://geschichtedergegenwart.ch/data-privacy-von-sicheren-haefen-schutzschilden-und-rahmenwerken/
Geschichte der Gegenwart · Sep 20, 2023
Data Privacy. Von „Sicheren Häfen“, Schutz­schilden und Rahmenwerken
Die EU und die USA haben sich auf ein neues Datenschutzabkommen geeinigt: das „Data Privacy Framework“. Doch solange die US-Regierung die Daten ihrer eigenen Bürgerinnen nicht ausreichend schützt, bleiben auch die Daten der europäischen Bürger gefährdet.

#dataprivacyframework #privacy #privatsphaere #datenschutz #dsg #datenschutzgesetz #gdpr #dsgvo #datasovereignty #datensouveraenitaet

22.09.2023 “It’s a Fair Game”, or Is It?

Examining How Users Navigate Disclosure Risks and Benefits When Using LLM-Based Conversational Agents

“… users’ erroneous mental models and the dark patterns in system design limited their awareness and comprehension of the privacy risks … the human-like interactions encouraged more sensitive disclosures, which complicated users’ ability to navigate the trade-offs.”

https://arxiv.org/abs/2309.11653
arXiv.org
“It’s a Fair Game’’, or Is It? Examining How Users Navigate Disclosure Risks and Benefits When Using LLM-Based Conversational Agents
The widespread use of Large Language Model (LLM)-based conversational agents (CAs), especially in high-stakes domains, raises many privacy concerns. Building ethical LLM-based CAs that respect user privacy requires an in-depth understanding of the privacy risks that concern users the most. However, existing research, primarily model-centered, does not provide insight into users’ perspectives. To bridge this gap, we analyzed sensitive disclosures in real-world ChatGPT conversations and conducted semi-structured interviews with 19 LLM-based CA users. We found that users are constantly faced with trade-offs between privacy, utility, and convenience when using LLM-based CAs. However, users’ erroneous mental models and the dark patterns in system design limited their awareness and comprehension of the privacy risks. Additionally, the human-like interactions encouraged more sensitive disclosures, which complicated users’ ability to navigate the trade-offs. We discuss practical design guidelines and the needs for paradigmatic shifts to protect the privacy of LLM-based CA users.

#llm #gpt4 #chatgpt #ai #privacy #security #darkpattern #arxiv

18.09.2023 [en] Google litigation (USA) in antitrust case:

what is Google accused of?

“80 to 90 percent of just about everything in the U.S. has as its default the Google search engine” “… did they take action that damaged the competitive process?”

#MediaHighlights

https://news.harvard.edu/gazette/story/2023/09/breaking-down-google-antitrust-case/
Harvard Gazette
Breaking down Google antitrust case
By Christina Pazzanese

#google #litigation #antitrust #accusation #harvardgazette #usa #doj #departmentofjustice

18.09.2023 [en] Disinformation Echo-Chambers on Facebook

“… study … innovative computational method that uncovers the existence of “disinformation echo chambers” within public Facebook groups using different ways of manipulate the public discourse “

Paper by: de-Lima-Santos, M & Ceron, W
https://arxiv.org/abs/2309.07745

#misinformation #disinformation #facebook #fb #meta #socialmedia #socialnetwork #echochamber #fakenews; #inauthenticbehavior #vaccine #covid19 #antivaxxer #deceptive #confirmationbias #bias

21.08.2023 A post claims that “Hackers increasingly abuse Cloudflare

Tunnels for stealthy connections”

#Cloudflare Tunnels are supposed to create outbound-only connections to the Cloudflare network but are apparently also used “for nefarious purposes, such as gaining stealthy persistent access to the victim’s network, evading detection, and exfiltrating compromised devices’ data.”

https://www.bleepingcomputer.com/news/security/hackers-increasingly-abuse-cloudflare-tunnels-for-stealthy-connections/

#abuse #cloud #cloudtunnel #cybersecurity #ictsecurity #itsecurity #infosec #security

02.08.2023 [en] Suing researchers: Musk “shoots the messenger”

“The suit also alleges, without offering evidence, that the organization is funded by foreign governments and media companies who view X as competition.”

https://english.elpais.com/science-tech/2023-08-01/elon-musks-x-sues-nonprofit-highlighting-sites-hate-speech.html
EL PAÍS English
Elon Musk’s X sues nonprofit highlighting site’s hate speech
The lawsuit, filed Monday, alleges that the center’s researchers improperly accessed internal company data, and claims the nonprofit is funded by foreign governments

#elpais #musks #x #twitter #suit #hatespeech #shootthemessenger

02.08.2023 [en] To fight financial illiteracy,

we mapped our money system as waterworks

“… most of us remain unfamiliar with the jargon of economists, bankers and tax experts. As in 2009, today’s democracies continue to be divided into what Taibbi describes as a “two-tiered state, one with plugged-in financial bureaucrats above and clueless customers below.”

#financial #finance #literacy #illiteracy #money #moneysystem #cds #cdo #economics #trickledown #MediaHighlights

https://theconversation.com/to-fight-financial-illiteracy-we-mapped-our-money-system-as-waterworks-209736

02.08.2023 [en] Opinion about X, formerly Twitter: “It’s embarrassing.”

“Anyone else look at the X icon and not even want to open this app?”

“Musk’s obsession with X as a brand, and his childish desire to broadcast that obsession from the rooftops in hoggish, bright pulsations, calls attention to this baggage. … “It calls attention to the putrid smell that suffuses the history of the internet. … “This is a bad culture, and it always has been.”

https://www.theatlantic.com/technology/archive/2023/07/twitter-x-rebrand-juvenile-internet-style/674875/
The Atlantic
The Ugly Honesty of Elon Musk’s Twitter Rebrand
By Ian Bogost

#twitter #x #musk #theatlantic

02.08.2023 [de] IT-Sicherheit ist kein Bürostuhl

“Die allermeisten heutigen Unternehmen sind von einer funktionierenden Informatikinfrastruktur abhängig. Manche sind sich das sehr bewusst; andere merken es erst, wenn Teile ihrer IT crasht, gehackt wurde, Geschäfts- und Personaldaten im #Darknet auftauchen oder wenn ein Wassereinbruch bzw. Feuer die Rechner und Festplatten zerstört hat.

https://dnip.ch/2023/08/01/it-sicherheit-ist-kein-buerostuhl/
Das Netz ist politisch · Aug 1, 2023
IT-Sicherheit ist kein Bürostuhl - Das Netz ist politisch
Der Bund hat am 17. Juli 2023 einen Brief an seine Informatikdienstleister verschickt. Die Forderungen reichen von selbstverständlich bis fragwürdig. Wir

#sicherheit #itsicherheit #infosec #bbl #xplain

27.07.2023 [de] UZH-Studie: Nutzlose Beschäftigungen

neu untersucht (“Bullshit Jobs”)

Nach Prof Graeber’s viel diskutierten Thesen zu “Bullshit Jobs” (2013/2018), bestätigt eine soziologische Studie der Universität Zürich offenbar, dass ein beträchtlicher Anteil von Erwerbstätigen ihre Arbeit als sozial nutzlos empfinden.

https://www.news.uzh.ch/de/articles/media/2023/Jobs.html
www.news.uzh.ch
Viele Arbeitnehmende empfinden ihren Job als nutzlos

#nutzloserjob #bullshitjob #soziologie #uzh #universitaetzurich #entfremdung #arbeitsbedingung #arbeit #arbeitnehmende #graeber #simonwalo

26.07.2023 [en] Web3, NFT security: Wallets spying on users

”.. study whether information about installed wallets is being used to track users … websites running scripts that probe whether users have wallets installed …”
“… measure … wallets leak the user’s unique wallet address to third-parties. …
Our study shows that Web3 poses a threat to users’ privacy …”

https://arxiv.org/abs/2306.08170
arXiv.org
Is Your Wallet Snitching On You? An Analysis on the Privacy Implications of Web3
With the recent hype around the Metaverse and NFTs, Web3 is getting more and more popular. The goal of Web3 is to decentralize the web via decentralized applications. Wallets play a crucial role as they act as an interface between these applications and the user. Wallets such as MetaMask are being used by millions of users nowadays. Unfortunately, Web3 is often advertised as more secure and private. However, decentralized applications as well as wallets are based on traditional technologies, which are not designed with privacy of users in mind. In this paper, we analyze the privacy implications that Web3 technologies such as decentralized applications and wallets have on users. To this end, we build a framework that measures exposure of wallet information. First, we study whether information about installed wallets is being used to track users online. We analyze the top 100K websites and find evidence of 1,325 websites running scripts that probe whether users have wallets installed in their browser. Second, we measure whether decentralized applications and wallets leak the user’s unique wallet address to third-parties. We intercept the traffic of 616 decentralized applications and 100 wallets and find over 2000 leaks across 211 applications and more than 300 leaks across 13 wallets. Our study shows that Web3 poses a threat to users’ privacy and requires new designs towards more privacy-aware wallet architectures.

#ethz #web3 #wallet #tracking #spying #metaverse #nft #thirdparty #dataleak #leak #privacy #security

26.07.2023 [en] ‘Bias in, bias out’:

risk assessment tool to make #criminal #justice decisions

“… intrinsic part of the UK justice system since 2001 … began taking over certain tasks from probation officers.”

“… expressed concerns that the system might be a form of social engineering”

“… an all too common and mistaken assumption … algorithms can provide a prediction about the specific person”

https://theconversation.com/a-black-box-ai-system-has-been-influencing-criminal-justice-decisions-for-over-two-decades-its-time-to-open-it-up-200594 The Conversation A ‘black box’ AI system has been influencing criminal justice decisions for over two decades – it’s time to open it up ‘I no longer exist, I have become a construct of their imagination. It is the ultimate act of dehumanisation.’ #bias #convict #socialengineering #algorithm #oasys #skew #predictive

22.07.2023 [en] Qubit, qudit, qutrit:

Quantum computing with improved superconducting circuits

“… current research explores a new way to store and transfer quantum information more efficiently in superconducting circuits using qudits instead of qubits.” …

https://www.rochester.edu/newscenter/quantum-computing-superconducting-circuits-qudits-561992/ News Center
Creating superconducting circuits
University of Rochester physicist Machiel Blok develops techniques to improve superconducting circuits and make better quantum computers.

#ResearchHighlights #quantum #quantumcomputing #quantumcomputer #research #quantumphysics #quantummechanics #qubit #qubits #qudit #qudits #qutrit #qutrits #superconducting #superconductor #circuit #rochester

21.07.2023 [en] Schneier: Automatically enforce laws,

sue … at mass scale?

“Imagine a future in which AIs automatically interpret - and enforce - laws”

“Some legal scholars predict that computationally personalized law and its automated enforcement are the future of law.”

“… This system would present an unprecedented threat to freedom. …”

https://www.schneier.com/blog/archives/2023/07/ai-and-microdirectives.html
www.schneier.com
AI and Microdirectives - Schneier on Security

#microdirective #freedom #lawenforcement #airegulation #ai #llm #gpt4 #artificialintelligence #chatgpt #MediaHighlights

21.07.2023 [en] White House announcement: AI corp. pledge

to mitigate the risks of the emerging technology

“… most influential companies building artificial intelligence have agreed to a voluntary pledge to mitigate the risks of the emerging technology …”

“The companies … vowed to allow independent security experts to test their systems before they are released to the public …”

https://www.washingtonpost.com/technology/2023/07/21/ai-white-house-pledge-openai-google-meta/
The Washington Post
Top tech firms sign White House pledge to identify AI-generated images
By Cat Zakrzewski

#airegulation #ai #llm #gpt4 #artificialintelligence #chatgpt #MediaHighlights

19.07.2023 Paper Prof #Solove, #Matsumi:

The #Prediction Society: #Algorithms and the Problems of #Forecasting the #Future

“The higher the stakes of decisions on people’s lives, the more rigorously #algorithmic predictions must be scrutinized.”

“… #phrenology … recognized as a pseudo-science, similar claims are resurfacing … Harrisburg University claimed … #facialrecognition software capable of predicting whether someone is likely going to be a #criminal.”

https://teachprivacy.com/the-prediction-society-algorithms-and-the-problems-of-forecasting-the-future/

18.07.2023 [en] Scientists against EU regulation:

Hundreds of scientists warn against EU’s proposed CSA Regulation

“… dangerous implications of weakening end-to-end encryption, which is the only tool we have to protect our data in digital spaces.”

https://edri.org/our-work/open-letter-hundreds-of-scientists-warn-against-eus-proposed-csa-regulation/
European Digital Rights (EDRi)
Hundreds of scientists warn against EU’s proposed CSA Regulation - European Digital Rights (EDRi) Over 300 security researchers & academics warn against the measures in the EU’s proposed Child Sexual Abuse Regulation (CSAR).

#csa #csam #csar #chatcontrol #eu #surveillance #cybersecurity #privacy #encryption #e2e #ee #endtoendencryption #goingdark #messenger

17.07.2023 Embedded third party services/content

(1/3) Embedded third party services/content:

Two papers from #PETS #PoPETs symposium, July 2023, Lausanne

While 3rd party content such as #js, media, #tracking, maps etc. is commonly used, reasons other than - quite bluntly - ignorance have rarely been discussed. Two recent papers aim to present a differentiated picture: #3rdparty #thirdrdparty #thirdrdpartyservice #privacy #security Jul 17, 2023 Research Network Digi-Oek.ch @DigiOekCH

(2/3) Embedded third party services/content:

Privacy Rarely Considered: Exploring Considerations in the Adoption of Third-Party Services by Websites

“… survey … how common website functionalities are implemented, in particular if third-party services are used and whether and how respective privacy implications have been considered.”

https://petsymposium.org/popets/2023/popets-2023-0002.php
petsymposium.org
PoPETs Proceedings — Privacy Rarely Considered: Exploring Considerations in the Adoption of Third-Party Services by Websites

#3rdparty #thirdrdparty #thirdrdpartyservice #tracking #privacy #security Research Network Digi-Oek.ch @DigiOekCH@social.tchncs.de

(3/3) Embedded third party services/content:

How Website Owners Face Privacy Issues: Thematic Analysis of Responses from a Covert Notification Study Reveals Diverse Circumstances and Challenges

“Many websites contain services from third parties. Misconfigurations of these services can lead to missing compliance with legal obligations and privacy risks for website users.”

https://petsymposium.org/popets/2023/popets-2023-0051.php
petsymposium.org
PoPETs Proceedings — How Website Owners Face Privacy Issues: Thematic Analysis of Responses from a Covert Notification Study Reveals Diverse Circumstances and Challenges

#3rdparty #thirdrdparty #thirdrdpartyservice #tracking #privacy #security

17.07.2023 CSS fingerprinting:

Paper “Fashion Faux Pas: Implicit Stylistic Fingerprints for Bypassing Browsers’ Anti-Fingerprinting Defenses”

“… modern fingerprinting attributes can be implicitly inferred in a purely JavaScript-less approach
… significant complications for potential countermeasures …”

https://research.ibm.com/publications/fashion-faux-pas-bypassing-browsers-anti-fingerprinting-defenses-through-stylistic-fingerprints

Download from https://www.cs.uic.edu/~polakis/papers/lin-sp23.pdf
via https://www.cs.uic.edu/~polakis/publications/
IBM Research Publications
Fashion Faux Pas: Implicit Stylistic Fingerprints for Bypassing Browsers’ Anti-Fingerprinting Defenses for S&P 2023 | IBM Research

#tracking #csstracking #cssfingerprinting #fingerprinting #study #research #profiling #css #fashionfauxpas

24.06.2023 [en] Cheating in Science:

Harvard “Honesty Scholar” May Have Been Caught in Dishonesty

“… dishonesty can lead to creativity” - an interesting and somewhat amusing read.

The New York Times: “Questions about a widely cited paper are the latest to be raised about methods used in #behavioral research.”

https://datacolada.org/111
Data Colada
[111] Data Falsificada (Part 3): “The Cheaters Are Out of Order” - Data Colada
This is the third in a four-part series of posts detailing evidence of fraud in four academic papers co-authored by Harvard Business School Professor Francesca Gino. It is worth reiterating that to the best of our knowledge, none of Gino’s co-authors carried out or assisted with the data collection for the studies in this series….

#ResearchHighlights #honesty #dishonesty #phacking #harking #dredging #gino #harvard #fraud #cheating #academic #datacolada

07.06.2023 [de][fr] ARTE fr: Pegasus, un espion dans votre poche

Qui l’a déjà vu ? A voir ? N’hésitez pas à faire des commentaires.

[fr] https://invidious.snopyta.org/watch?v=-pIAM6ZH3IA
ARTE | Invidious
Pegasus, un espion dans votre poche | ARTE
En 2021, un consortium international de médias révélait le scandale Pegasus : la surveillance illégale d’opposants, de journalistes ou de chefs d’État pratiquée par de nombreux pays via le logiciel israélien. Ce documentaire raconte les coulisses de l’enquête et expose les dérives mises au jour. Le 18 juillet 2021, dix-sept médias internationaux levaient le voile sur les dérives de Pegasus, l’un des logiciels espions les plus intrusifs au monde, créé par la société israélienne NSO Group. Présentée comme un outil de lutte contre le terrorisme et le crime organisé, cette arme informatique, capable de prendre le contrôle d’un téléphone en toute discrétion, a été utilisée par de nombreux États pour surveiller, à l’intérieur comme hors de leurs frontières, des responsables politiques, des journalistes, des avocats ou encore des militants des droits humains, mais aussi leurs contacts. Un an avant les révélations, Forbidden Stories accédait à une fuite de données contenant 50 000 numéros potentiellement visés entre 2016 et 2020. Avec le renfort de journalistes du Guardian, de Frontline et de quatorze autres rédactions, le collectif fondé par Laurent Richard se lançait alors dans une enquête tentaculaire pour identifier les personnes concernées et faire analyser leurs téléphones par des experts en sécurité informatique (Security Lab d’Amnesty International, Citizen Lab), afin d’y rechercher d’éventuelles traces d’infection. C’est ainsi que Diana Priest, du Washington Post, a pu établir que deux femmes proches de Jamal Khashoggi, son confrère saoudien assassiné à Istanbul – sur ordre probable du prince héritier Mohammed ben Salmane –, avaient été espionnées par Pegasus. De son côté, Le Monde a dévoilé que des ministres en exercice, et jusqu’au président Emmanuel Macron, figuraient sur la liste des numéros ciblés par le Maroc, pays pourtant “ami” de la France… Instrument de répression Plongeant dans les coulisses du “Projet Pegasus”, Anne Poiret (Mossoul, après la guerre) et Arthur Bouvart mettent en lumière le rigoureux travail d’investigation mené par les médias associés, ainsi que certaines des effarantes affaires qu’ils ont contribué à faire émerger. À travers les témoignages de journalistes, du patron de WhatsApp Will Cathcart, qui a attaqué NSO en justice, de l’eurodéputée allemande Hannah Neumann ou d’un vétéran anonyme de l’unité 8200, le service de renseignements le plus avancé de Tsahal, qui alimente en ingénieurs les start-up de la tech israélienne, leur documentaire décrypte les rouages de ce système mondial d’espionnage hors de contrôle, outil de soft power pour l’État hébreu, instrument de répression pour des régimes autoritaires. En donnant la parole à des personnes traquées, il éclaire par ailleurs les répercussions intimes de cette intrusion invisible, vécue comme un traumatisme par les victimes et leurs proches. Documentaire d’Anne Poiret (France, 2023, 1h33mn) Disponible jusqu’au 11/09/2023 Abonnez-vous à la chaîne ARTE https://www.youtube.com/channel/UCwI-JbGNsojunnHbFAc0M4Q/?sub_confirmation=1 Suivez-nous sur les réseaux ! Facebook : http://www.facebook.com/artetv Twitter : http://www.twitter.com/artefr Instagram : https://www.instagram.com/artefr

#pegasus #vieprivee #trojandetat #liberte #democratie #etatdedroit #securite

07.06.2023 [de][fr] ARTE-Doku de: Pegasus - Der Feind liest mit

Wer hat das schon gesehen? sehenswert? Kommentare gerne.

[de] https://invidious.snopyta.org/watch?v=uk2jUIVMfQE
ARTEde | Invidious
Pegasus - Der Feind liest mit | Doku HD | ARTE
Im Juli 2021 sorgte die israelische Spyware Pegasus weltweit für Schlagzeilen. Der Enthüllung waren monatelange Nachforschungen des Recherchenetzwerks “Project Pegasus” vorausgegangen. Der Dokumentarfilm befragt die Akteure und prangert autoritäre Entwicklungen in vielen Staaten sowie Eingriffe in die Privatsphäre der gehackten Personen an. Im Juli 2021 sorgte die israelische Spyware Pegasus für weltweites Aufsehen. Ausgelöst wird der Skandal durch die Enthüllungen des journalistischen Netzwerks „Forbidden Stories“ in Kooperation mit 16 internationalen Medienpartnern. Ihre gemeinsamen Recherchen, die ein Jahr lang unter strengster Geheimhaltung durchgeführt wurden, decken in nie dagewesener Weise die Fehlentwicklungen und Auswüchse von Pegasus auf. Es handelt sich um eine der mächtigsten je entwickelten Spionagesoftwares der Welt, die von dem israelischen Unternehmen NSO Group entwickelt wurde. Die Spyware kann unbemerkt auf Smartphones zugreifen, ihren Nutzern übers Mikro zuhören und sie über die Kamera sogar beobachten. Laut Aussagen des Unternehmens wird die Software allein an Regierungen vertrieben, um sie bei der Bekämpfung von Kriminalität und Terrorismus zu unterstützen. Doch die Recherchen des Mediennetzwerks haben ein Spionagesystem aufgedeckt, mit dem mehr als 65 Länder die Smartphones von Journalisten, Anwälten, Menschenrechtsaktivisten, Staatschefs und politischen Gegnern auf der ganzen Welt ausspähten. Die Autorin des Dokumentarfilms hat die Journalistinnen und Journalisten des Pegasus-Projekts exklusiv über Monate während ihrer Recherchen begleitet. Sie prangern autoritäre Entwicklungen in vielen Staaten sowie Eingriffe in die Privatsphäre der gehackten Personen an. Dokumentarfilm von Anne Poiret (F 2023, 90 Min) #pegasus #spionage #doku Video verfügbar bis zum 19/11/2023 Abonniert den Youtube-Kanal von ARTE: http://www.youtube.com/user/ARTEde Folgt uns in den sozialen Netzwerken: Facebook: http://www.facebook.com/ARTE.tv Twitter: https://twitter.com/ARTEde Instagram: https://www.instagram.com/arte.tv/

#pegasus #staatstrojaner #grundrechte #demokratie #rechtsstaat #sicherheit #privatsphaere

23.05.2023 Ban End-to-End Encryption in the EU?

“Leaked Government Document Shows Spain Wants to Ban End-to-End Encryption”

https://www.wired.com/story/europe-break-encryption-leaked-document-csa-law/

#cybersecurity #ictsecurity #itsecurity #infosec #privacy #security #cryptography #encryption #e2e #ee #endtoendencryption #goingdark #csam #cryptographer #technologist #whatsapp #signal #messenger #MediaHighlights

22.05.2023 [en] Android: Logging of Sensitive Data

and Leak to Third Parties

“Logging of sensitive data in the Android ecosystem …” “… Logging of “activity” names can inadvertently reveal information about users through their app usage. “

Paper Prepub:
https://www.usenix.org/system/files/sec23fall-prepub-89-lyons.pdf

Media EL PAÍS:
https://english.elpais.com/science-tech/2023-05-22/this-is-how-android-apps-reveal-our-secrets-without-us-being-aware-of-it.html

#MediaHighlights #ResearchHighlights #android #dataleak #leak #mobilesecurity #ictsecurity #itsecurity #infosec #itsec #privacy #security #thirdparty

06.05.2023 [fr] Photos des enfants sur les réseaux sociaux:

la notion de consentement est fondamentale

“Et si, au moment de prendre conscience de sa visibilité, il avait le sentiment qu’on lui avait volé son image?”

https://www.tdg.ch/nos-enfants-ne-nous-appartiennent-pas-902037928746
Tamedia Publications romandes S.A.
Éditorial: Nos enfants ne nous appartiennent pas
By Namya Bourban

#photo #enfant #consentement #reseausocial #conscience #mineur

06.05.2023 [de] Das Internet der Monopole

Vortrag von Dr. Martin Andree, Universität Köln

Für viele sehr interessant und wohl überraschend. Empfehlenswert. Bei einigen Punkten lässt sich diskutieren.

#MediaHighlights

v=BQReNMx77VE Youtube oder bevorzugtes Frontend wie
https://yewtu.be/watch?v=BQReNMx77VE
Das Internet der Monopole, Vortrag Dr. Martin Andree: Traffic-Konzentration, Gini-Koeffizient von 0.988

#monopole #monopol #gafam #wettbewerb #monopolmissbrauch #standards #netzwerkeffekt #unikoln #andree #bigtech

02.05.2023 [en] AI #scientist Prof. Russel, #Berkeley:

“We don’t understand how AI works”

“We know in China, Russia, North Korea large teams of people who pump out #disinformation and we’ve just given them a power tool.”

“The only way we have control is basically to say: “bad dog” … not a very reassuring method of control for systems that can affect the lives of millions of people.”

https://yewtu.be/watch?v=sfn0edwl0hY

#ridge #skynews #stuartrussell #ai #llm #gpt4 #ml #manipulation #deepfakes #chatgpt

02.05.2023 Backdoored Language Models

Analyzing And Editing Inner Mechanisms Of Backdoored Language Models

#ResearchHighlights

“We can successfully insert a weak backdoor mechanism in the benign model, even without also editing the embeddings of the trigger words.”

“Our framework can reverse-engineer backdoor mechanisms in toy and large models for the first time, scale the strength of the backdoor mechanism …”

https://arxiv.org/abs/2302.12461
arXiv.org
Analyzing And Editing Inner Mechanisms Of Backdoored Language Models
Recent advancements in interpretability research made transformer language models more transparent. This progress led to a better understanding of their inner workings for toy and naturally occurring models. However, how these models internally process sentiment changes has yet to be sufficiently answered. In this work, we introduce a new interpretability tool called PCP ablation, where we replace modules with low-rank matrices based on the principal components of their activations, reducing model parameters and their behavior to essentials. We demonstrate PCP ablations on MLP and attention layers in backdoored toy, backdoored large, and naturally occurring models. We determine MLPs as most important for the backdoor mechanism and use this knowledge to remove, insert, and modify backdoor mechanisms with engineered replacements via PCP ablation.

#ai #llm #pcpablation #mlp #toymodel #largemodel #backdoor #backdooredlanguagemodel #chatgpt

02.05.2023 Letzte Woche auf SRF - Anka Reuel:

“KI … Entwicklung … findet viel viel schneller statt als z. B. die industrielle Revolution, was uns weniger Anpassungszeit gibt und gleichzeitig spüren … Millionen von Menschen die Auswirkungen von KI-Systemen, sobald diese auf den Markt gebracht werden, egal ob positiv oder negativ, was es in dieser Grössenordnung und Schnelligkeit noch nicht gegeben hat.”

#MediaHighlights

https://www.srf.ch/audio/echo-der-zeit/braucht-es-strengere-regeln-im-umgang-mit-ki?partId=12377517
Schweizer Radio und Fernsehen (SRF)
Braucht es strengere Regeln im Umgang mit KI? - Echo der Zeit - SRF
Künstliche Intelligenz kann die Art und Weise, wie wir leben und arbeiten, revolutionieren. Bereits heute lassen sich Ergebnisse von ChatGPT und anderen Maschinen kaum mehr von Erzeugnissen aus Menschenhand unterscheiden. Fachleute fordern deshalb Regeln, um die negativen Folgen dieser Entwicklung abfedern zu können. Das Gespräch mit Anka Reuel, Expertin für KI-Sicherheit.

#ki #llm #chatgpt #regulierung #reuel #ankareuel

18.04.2023 This paper by Prof. Solove is also a nice overview

of international privacy or data protection laws.

“Privacy laws often state data minimization principles without a practical way to enforce them, rendering them little more than hollow feel-good rhetoric.”

“Rights are a convenient way to make it look like privacy is being protected. … The failure of rights can then be blamed on individuals …”

#privacy #privacylaw #dataprotection #gdpr #dsg #datenschutz #solove

https://papers.ssrn.com/sol3/papers.cfm?abstract_id=4024790

12.04.2023 Twitter open-sourced its recommendation algorithm:

“Twitter showed us its algorithm. What does it tell us?”

“The engagement formula is useful both to learn about the overall behavior of the system and for individuals to learn how to control their feed. To be clear, it is far from being sufficient for either purpose.”

https://knightcolumbia.org/blog/twitter-showed-us-its-algorithm-what-does-it-tell-us

#ResearchHighlights
#algorithmic
#algo
#algorithm
#twitter
#recommendation
#recommendationalgorithm

12.04.2023 [en] Contamination of digital evidence:

Understanding an underexposed risk

“… illustrate how easily digital evidence might be contaminated, resulting from a more or less convoluted trait transfer …

“… might cause serious misinterpretation errors and, therefore, severely hamper the reconstruction of the deed (or incident).”

#DFRWS EU 2023 Best Student Paper Award

https://dfrws.org/presentation/contamination-of-digital-evidence-understanding-an-underexposed-risk/
DFRWS
Contamination of digital evidence: Understanding an underexposed risk - DFRWS
The dangers of contamination have received considerable attention in the literature regarding the investigation of physical crime scenes and physical evidence. The understanding of contamination in the context of digital evidence appears to be much less understood. Based on experiences from the field of physical evidence, we develop a generalized definition of contamination that also […]

#ResearchHighlights #forensics #dna #digitalforensics #contamination #infosec #inforensic

12.04.2023 [en] Do Companies Still not Understand Software Licences?

Prof. Riehle talks about two apparently wrong interpretations of an Apache licence in one and the same case

https://bayave.com/2023/04/11/minio-vs-weka-on-apache-2-0-license-violation/
Bayave GmbH
MinIO vs. Weka on Apache-2.0 license violation dispute
MinIO, provider of cloud software, has claimed that Weka, provider of more cloud software, is violating the terms of the Apache-2.0 license of their (MinIO’s) open source code.

#software #licence #license #softwarelicence #softwarelicense #apache #licenceviolation #licenseviolation

12.04.2023 [en] Effects of Algorithmic Trend Promotion:

Causal Impact of a Hashtag Appearing on the Trending Topics Page on Twitter

“Our analysis suggests that the returns to trending are limited.

“Simply put, the trending topics page cannot create a massively popular hashtag on its own; the spread through the network still plays an important role in creating viral trends.”

#ResearchHighlights #trending #algorithmic #algo #algorithm #trend #twitter #hashtag

https://arxiv.org/abs/2304.05382

04.04.2023 [en] Prof. Krugman:

“The Internet” and New Tech, May Not Boost Productivity That Much

According to Paul Krugman, winner of the Nobel Memorial Prize in Economic Sciences, new technologies may not boost productivity as much as we might have thought, e. g. “the Internet”.

“See the great productivity boom that followed the rise of the internet? Neither do I.”

https://www.nytimes.com/2023/04/04/opinion/internet-economy.html
The New York Times
Opinion | The Internet Was an Economic Disappointment
By Paul Krugman

#productivity #internet #krugman #economic #economics #ai #ict #it

04.04.2023 [en] Surveillance Technology

Longread: Birth and Making of Surveillance Technology, Backdoors etc., Presumably to Oppress Racial Minorities etc.

Interesting read. Apparently shows involvement of Hikvision, Huawei, Dahua, according to the text. Might help the rest of the world to better understand why the US is inclined to ban such companies …

#MediaHighlights

https://www.wired.com/story/surveillance-china-security-camera-giant-ipvm/

#hikvision #huawei #dahua #surveillance #backdoor #ictsecurity #itsecurity #infosec #privacy #security

29.03.2023 [de] E-Voting CH: Prof. A. Appel:

“Von Hand” ist einzig sichere Methode

“Der aktuelle Stand der IT-Security-Wissenschaften lässt uns … auf absehbare Zeit zum Schluss kommen, dass bei Wahlen Papierstimmzettel, die von Hand ausgefüllt … nachgezählt …, die einzig sichere Methode sind …”

“… Eine Schwachstelle, die es Hackern ermöglicht, Schadsoftware auf Tausenden von Geräten von Wählern zu installieren.”

https://www.inside-it.ch/e-voting-reihe-wie-sicher-ist-sicher-genug-20230328
www.inside-it.ch
E-Voting-Report: Wie sicher ist sicher genug?
Das E-Voting-System der Post ist wie kaum ein anderes unter die Lupe genommen worden. Warum das womöglich trotzdem nicht reicht, erklärt Princeton-Professor Andrew Appel im Interview.

#onlinevoting #evoting #ictsecurity #infosec #security

29.03.2023 [en] Online voting provider

paid for academic research in attempt to sway U.S. lawmakers

According to Cyberscoop, “Democracy Live [a voting technology company] directed academic research aimed at demonstrating its product’s security and used that material in lobbying campaigns.”

https://cyberscoop.com/democracy-live-research-online-voting/
CyberScoop
Online voting provider paid for academic research in attempt to sway U.S. lawmakers
Democracy Live directed academic research to demonstrate its product’s security and used that material in lobbying campaigns.

#onlinevoting #evoting #ictsecurity #infosec #security #democracylive

16.03.2023 [de] E-Voting gemäss Blick:

“GPK lädt die Bundeskanzlei vor”

“Streit um E-Voting eskaliert”

“Das Dossier galt im Bundeshaus eigentlich als tot, weshalb man im Parlament umso verdutzter reagiert. Dass das neue Post-System nun auf einmal sicher sein soll, nimmt die Legislative nicht einfach so hin.”

https://www.blick.ch/politik/streit-um-e-voting-eskaliert-gpk-laedt-die-bundeskanzlei-vor-id18390813.html
By Reza Rafi

#evoting #bundeskanzlei #gpk #schweiz

16.03.2023 [de] Super Recognizer:

Stadtpolizei Winterthur - Ein Experte für Gesichtserkennung geht auf Verbrecherjagd
“Gesichtserkennungsexperte [könne] viel beitragen in der Polizeiarbeit”
[Beispiel] “Einzig anhand der Nase und der Augenpartie konnte [der Super-Recognizer] den Verdächtigen identifizieren”
“Ein Computer-Programm wäre daran gescheitert”

https://www.srf.ch/news/schweiz/stadtpolizei-winterthur-ein-experte-fuer-gesichtserkennung-geht-auf-verbrecherjagd
Er kann sich Gesichter aussergewöhnlich gut merken und wiedererkennen. Nun nutzt er diese Fähigkeit zur Bildfahndung.

#superrecognizer #neurowissenschaft #polizei #stadtpolizeiwinterthur #winterthur #unilausanne #gesichtserkennung

10.03.2023 Princeton Prof. Arvind Narayanan about

(not so) #anonymous users in data sets, de-anonymization, #tracking, #PIM, #fairness in machine learning and AI snake oil

https://www.quantamagazine.org/he-protects-privacy-and-ai-fairness-with-statistics-20230310/

There is also a video v=oKkzVII_wHQ (e. g. https://yewtu.be/watch?v=oKkzVII_wHQ, pick your frontend)
Quanta Magazine
He Protects Privacy and AI Fairness With Statistics | Quanta Magazine
Arvind Narayanan uses quantitative methods to expose and correct the misuse of quantitative methods.

#machinelearning #ml #ai #snakeoil #deanonymization #princetonuniversity #cs #adm

10.03.2023 Bruce #Schneier at EPFL Lausanne:

How to reclaim power in the digital world? Conversation with Bruce Schneier
Thursday, March 16, 2023

Info, registration:

https://memento.epfl.ch/event/how-to-reclaim-power-in-the-digital-world-conversa/

#bruceschneier #security #privacy #epfl

10.03.2023 “The notion of security

doesn’t exist in a vacuum - it’s always about protecting something from someone or something else.”

Prof. Carmela Troncoso, EPFL 2022 Best Teacher in Computer Science and Communication Systems is an international figure in data security and privacy.

https://actu.epfl.ch/news/it-wouldn-t-hurt-those-shaping-our-future-to-be-a-/

#ResearchHighlights #datasecurity #ictsecurity #itsecurity #infosec #itsec #privacy #security #epfl

08.03.2023 Forensik: DNA-“Beweise”

sind oft/mehrheitlich nicht eindeutig

Es gebe ein “erschreckendes Ausmass an Ignoranz einer Branche, deren Arbeitsergebnisse von vielen Gerichten unkritisch und als ’sankrosankt‘ betrachtet werden, auch wenn sie das überhaupt nicht sind.”

“Ein wichtiges Element, um Vorurteile auszuschliessen [..] die Spezialistinnen und Spezialisten keine fallspezifischen Zusatzinformationen enthalten.”

https://inside-justiz.ch/von-wegen-harte-beweise/
Von wegen «harte Beweise» – Inside Justiz

#forensik #dna #dnabestimmung #justiz #strafverfolgung

08.03.2023 University of Cambridge: Rewarding #accuracy

reduces political divisions over the truth

An #experiment in the #USA with equal numbers of Democrats and Republicans, half of participants were offered up to one USD if they correctly pointed out #true or #false headlines.

This tiny sum was enough to make people 31 % better at discerning true from #fake news.

https://www.cam.ac.uk/research/news/rewarding-accuracy-instead-of-partisan-pandering-reduces-political-divisions-over-the-truth
University of Cambridge
Rewarding accuracy instead of partisan pandering reduces political divisions over the truth
Researchers argue that the findings hold lessons for social media companies and the “perverse incentives” driving political polarisation online.

#fakenews #research #universityofcambridge #division #misinformation #disinformation

07.03.2023 Interesting #Survey Chat Control:

According to #EDRi, Young People Do Not Endorse “Chat Control” (CSA Regulation in the EU)

By their own account, EDRi is the biggest European network defending rights and freedoms online

https://edri.org/our-work/press-release-poll-youth-in-13-eu-countries-refuse-surveillance-of-online-communication/

European Digital Rights (EDRi)
EU youth refuse to be surveilled - European Digital Rights (EDRi)
Poll: the 80% would not feel comfortable being politically active or exploring their sexuality if authorities can monitor their communication.

#CSA #CSAR #chatcontrol #eu #surveillance

01.03.2023 Whistleblower Judgment #ECtHR Grand Chamber

… may have an effect on #whistleblowing in the 46 #CE member states.

E. g. #Switzerland, which is not #whistleblower friendly according to the #Beobachter.

“Overall, the Grand Chamber’s #judgment can be seen as a victory for all unsung heroes, who blew the #whistle and suffered retaliation, #blacklisting and #demotion. The Court sent a message that #whistleblowers should be heard and not suppressed.”

https://eulawanalysis.blogspot.com/2023/02/halet-v-luxembourg-victory-of-unsung.html

#councilofeurope #echr

23.02.2023 “Palantir #Judgment”:

German Federal Constitutional Court (BVerfG) restricts #automated #data #analysis

Comment by WIRED:
Germany Raises Red Flags About Palantir’s Big Data Dragnet | WIRED UK

https://www.wired.co.uk/article/palantir-germany-gotham-dragnet

#BVerfG Court (German):

https://www.bundesverfassungsgericht.de/SharedDocs/Entscheidungen/DE/2023/02/rs20230216_1bvr154719.html

#palantir #police #court #surveillance #precrime #germany #ai #hessendata #gotham

23.02.2023 [de] “Palantir-Urteil” DE #Bundesverfassungsgericht

Automatisierte #Datenanalyse für die vorbeugende Bekämpfung von #Straftaten sind #verfassungswidrig

#BVerG:

https://www.bundesverfassungsgericht.de/SharedDocs/Entscheidungen/DE/2023/02/rs20230216_1bvr154719.html

Bericht (1 von x):

https://www.lto.de/recht/nachrichten/n/bverfg-1bvr154719-1bvr263420-einsatz-software-hessendata-durch-polizei-verfassungswidrig/

#ki #palantir #polizei #überwachung #hessendata #deutschland

23.02.2023 [fr] En #Italie, l’autorité

chargée de la protection des données (#Garante)

a infligé une #amende aux autorités locales de #santé frioulanes (#Asl) qui avaient utilisé des “#algorithmes” pour classer les patients en fonction du risque de complications liées aux infections Covid-19.

#Garante a fait valoir que le #profilage des utilisateurs de services de santé a été effectué sans que les patients en soient correctement informés, sans l’évaluation d’impact requise par le #RGPD et que ces #prédictions en matière de santé n’avaient aucune base #juridique et ne garantissaient pas les droits et libertés des personnes concernées.

https://www.garanteprivacy.it/web/guest/home/docweb/-/docweb-display/docweb/9845339

#ia #covid19 #patient #frioul #vieprivée #liberté #droit #prédictive #algorithme

21.02.2023 Paper about Predictive Optimization challenges #legitimacy,

presents #flaws, includes case studies. Seems to make us #rethink the #validity of such predictions.

Obviously, #automated decisions re. loans, hiring etc. can have great impacts on people and the #economy.

See Prof. Narayanan @randomwalker post.

Paper: https://predictive-optimization.cs.princeton.edu/

#princetonuniversity #cs #adm #predictiveoptimzation #prediction #predictive #predictivecrime #ml #forecasting #optimisation #optimization #flaw

14.02.2023 Chinese spying (supposedly):

“Welcome to the Munich Security Conference: We can’t guarantee your security”

in
Chinese mobile masts loom over the Munich Security Conference

https://www.politico.eu/article/munich-security-conference-huawei-mast-5g-germany/

#5g #huawei #munichsecurityconference #security #privacy #mobile #china #chinese #spying

14.02.2023 Cryptography (sort of):

Chromo-encryption method encodes secrets with color

“Crucially, in the chromo-encryption method, only the correct combination of polarization directions would reveal the secret message; light polarized in any other direction would reveal a series of colors corresponding to a nonsense message.”

https://actu.epfl.ch/news/chromo-encryption-method-encodes-secrets-with-colo/

11.02.2023 Interpol working out how to police the metaverse

#Interpol exec: “There are crimes where I don’t know whether it can still be called a crime or not”

#Regulation, head of #Kabuni: “That which is #illegal and #harmful in the physical world should be illegal in the #virtual synthetic world as well”

https://www.bbc.com/news/technology-64501726

#BBC #crime #metaverse #web3

11.02.2023 [en] Section 702 (#USA):

The FBI’s Most Controversial Surveillance Tool Is Under Threat

Lawmakers (bipartisan) “… working to dramatically curtail the methods by which the FBI investigates crime.”

Prof. Goitein: “misuse was entirely predictable” “…opens the door to surveillance based on race, religion, politics, or other impermissible factors”

https://www.wired.com/story/fbi-section-702/

#section702 #fbi #crime #investigate #surveillance #wired #privacy #security

10.02.2023 Comparing #ChatGPT to the old story

about David #Kriesel #Xerox #photocopier #faking numbers.

May seem a bit far fetched at times, but probably not so bad.

https://www.newyorker.com/tech/annals-of-technology/chatgpt-is-a-blurry-jpeg-of-the-web

#AI #KI #deepfake #number

30.01.2023 If you’re not tired yet reading about #ChatGPT,

here is a in-depth article looking behind the scenes:

“How does ChatGPT work, actually?”

https://netfuture.ch/2023/01/how-does-chatgpt-work-actually/

[German/deutsch: see link in article - Link im Artikel beachten]

#ai #ki

29.01.2023 Empfehlenswerte Lektüre fürs #Wochenende:

Die KI ChatGPT und die Herausforderungen für die Gesellschaft

https://dnip.ch/2023/01/28/die-ki-chatgpt-und-die-herausforderungen-fuer-die-gesellschaft/

#AI #KI #ChatGPT #Gesellschaft #GenerativeAI #OpenAI
#sonntag

26.01.2023 The Economist: How will Satya Nadella

handle Microsoft’s ChatGPT moment?

… “Once again Mr Nadella is giddy with “this-is-the-future” euphoria.” …

https://www.economist.com/business/2023/01/25/how-will-satya-nadella-handle-microsofts-chatgpt-moment

25.01.2023 Identifying AI art

Interesting article about #human versus #AI made #art and how to #identify. In some cases this seems relatively easy yet, but #training will likely #improve.

https://netfuture.ch/2023/01/identifying-ai-art/

21.01.2023 George Orwell, a “Tory anarchist” by Jacques Charpier

George #Orwell + 21.01.1950
#UNESCO Memory of the World

https://articles.unesco.org/en/articles/courier/enero-1984/george-orwell-tory-anarchist

20.01.2023 Cryptocurrencies: “exotic assets

and a manifestation of a magical thinking”

According to this Harvard Prof.: “The fundamentals of business have not changed merely because of new technologies or low interest rates.”
He may or may not represent every #economist’s view, but raises some interesting points, including some candid ideas or what might seem like “bashing” to European readers.
#cryptocurrency #bitcoin #digitalcurrency #digitaleconomics #economics

https://www.nytimes.com/2023/01/16/opinion/the-crypto-collapse-magical-thinking-capitalism.html

20.01.2023 Wagner Group RUS: Interesting ICCT publication

https://icct.nl/publication/wagner-group-mercenaries-or-terrorist-group/

via Linkedin

#icct #security #WagnerGroup #privatemilitarycompany #internationalsecurity #mercenaries #mercenary #UkraineWar

was announced.

Whether or not we find AI promising. Whatever we think about #copyright and #attribution problems. Taking into account peculiarities of US #law and perhaps the propensity to #litigate.

Still lots of questions that scale up we will have to deal with.

Class-action #lawsuit chal­leng­ing #GitHub #Copilot: https://githubcopilotlitigation.com/

New law­suit chal­leng­ing #StableDiffusion #text-to-image #tool: https://stablediffusionlitigation.com/

This is what #TheVerge had to say about the former, Nov. 2022:

https://www.theverge.com/2022/11/8/2344682

2022

23.12.2022 Facial recognition out of control:

The #madisonsquaregarden #facialrecognition story has already gone viral. If you’ve missed it, some #aspects:

A combination of #MSG supposedly being a quasi #entertainment #monopoly using facial recognition technology to #identify any visitor, and obviously to #blacklist and #ban a #lawyer on unrelated #litigation cases. Add #harassment according to some posts (follow tags).
#RadioCityMusicHall #Rockettes

https://arstechnica.com/tech-policy/2022/12/facial-recognition-flags-girl-scout-mom-as-security-risk-at-rockettes-show/

https://www.nytimes.com/2022/12/22/nyregion/madison-square-garden-facial-recognition.html

23.12.2022 [de] Interessantes Interview über @Quantenforschung

bei der ETHZ, Technologie-Wahl und #Wis­sen­schaft als zit. Gei­sel der #Po­li­tik.

https://ethz.ch/de/news-und-veranstaltungen/eth-news/news/2022/12/nccr-qsit-schweiz-kann-schluesselrolle-spielen.html

23.12.2022 [en] Interesting post about #quantum #research #ETHZ,

about quantum #technology choices and - cit., “case of #science being held hostage to #politics”. #quantumphysics #to­po­lo­gical #qubits #su­per­con­duct­ing #cir­cuit

https://ethz.ch/en/news-and-events/eth-news/news/2022/12/nccr-qsit-switzerland-could-play-a-key-role.html

16.12.2022 The #spider web around the #FTX #crypto #exchange

[English version of previous post on #dnip in de]
“Yesterday, the U.S. Securities and Exchange Commission (#SEC) released its indictment against Sam Bankman-Fried. It details the financial #entanglements of FTX, #Alameda Research and more than a hundred other companies and individuals. We have tried to #disentangle these allegations somewhat for you.”
“Of course, the presumption of innocence also applies …”

https://netfuture.ch/2022/12/the-spider-web-around-the-ftx-crypto-exchange/

16.12.2022 Das Spinnennetz der #Kryptobörse #FTX

Ein Artikel des #dnip-Magazins aus aktuellem Anlass: “Gestern hat die #US-amerikanische #Börsenaufsicht #SEC ihre Anklageschrift gegen Sam Bankman-Fried veröffentlicht. Sie detailliert die #Finanzverflechtungen von FTX, #Alameda Research und mehr als hundert weiteren Firmen und Personen. Wir haben diese Anschuldigungen für Sie etwas zu #entflechten versucht.”
“Natürlich gilt … die Unschuldsvermutung”

https://dnip.ch/2022/12/14/das-spinnennetz-der-kryptoboerse-ftx/

12.08.2022 #PGPP Pretty Good #Phone Privacy:

Interesting #concept, supposedly prevents #tracking by globally-unique #IMSI incl. #attacks by #mobile carriers themselves. Apparently achieved by:
(1) privacy-preserving IMSI #randomization using #eSIM on supported #Android devices;
(2) Relay, #decoupled #Internet #privacy, #hiding IP address, with/without eSIM.

https://invisv.com/articles/pretty-good-phone-privacy.html

#Research: https://www.usenix.org/conference/usenixsecurity21/presentation/schmitt

#mobilephone #networking #randomisation

18.07.2022 Victory by KO: Attacking #OpenPGP

Using Key Overwriting

#ETHZ pre-print for ACM Conf 11.2022

If you haven’t read it yet:

Key Overwriting (KO) attacks might be possible if #adversary has write access to the #encrypted private key of the #victim such as with GopenPGP or OpenPGP.js libraries in applications like #ProtonMail #FlowCrypt (#GMail etc.) and if victim does not inspect their own (!) key #fingerprint before using the key.

#PGP #E2E #Encryption #Verschlüsselung #KeyOverwritingAttack #KO

Note: mentioned apps are apparently patched now (except #GPG, #Sequoia: won’t fix).

Other potential #attack #vectors: encrypt-to-self, primary key recovery, importing existing key, automated decryption.

KO: public key material stored as part of the secret key packet is in cleartext […] #KO #attacks might recover the private parameters when the corrupted key is used for either signing or decrypting […] so-called “faulty signatures”, which can allow private key reconstruction.

Countermeasures for developers/OpenPGP standard: (1) avoid #KOKV attacks by OpenPGP specification not leaving the task of confirming key #integrity to individual #implementations. (2) Use an #AEAD scheme (3). Deprecating #ElGamal encryption option in OpenPGP spec.

Paper & Info: https://www.kopenpgp.com/

#OpenPGP #PGP #E2E #Encryption #Verschlüsselung #KeyOverwritingAttack #KO

2021

09.11.2021 Studie Open Education Server an #Schulen,

Uni #Bern mit CH Open & Stiftung #Mercator. Lesenswert (erfreulich oder ernüchternd?): Bedarfsabklärung und Machbarkeitsstudie Open Education Server 2.0 #OES2.0 bspw. #univention UCS@school o. ä. PDF: https://www.ch-open.ch/wp-content/uploads/2021/10/Schlussbericht_OpenEducationServer2.0_Sep21.pdf #OES #unibern #education #bildung #OpenEducationServer #schule

22.09.2021 Konferenz für Digitale Nachhaltigkeit #DINAcon2021

findet am 29.10.2021 in #Basel und per Streaming statt. Keynotes mit @juliareda und Paul-Olivier Dehaye. Programm https://dinacon.ch/programm-2021/ , Eingabe Lightning-Talk-Videos bis 01.10.2021. Shortlist #DINAconAwards https://awards.dinacon.ch/bewerbungen-2021/ #DINAconCH #digitalenachhaltigkeit

22.06.2021 Kleine Erinnerung 😂 Video Conferencing

mit #BigBlueButton

ist “auch langfristig kostenlos für alle nutzbar”, schreibt CH Open

https://www.ch-open.ch/ein-jahr-video-conferencing-mit-bigbluebutton/

Instanz nutzen: https://www.ch-open.ch/bigbluebutton/

25.03.2021 Noch einen Monat schlafen

☺️
Open Education Day 2021
Samstag, 24. April 2021 - BBB (remote/virtuell)

RT via CH Open
· Mar 9 2021
Das Programm für den fünften #openeducationday steht und die Anmeldung ist eröffnet. Neu mit vielen Beiträgen aus der #romandie. Die Teilnahme ist kostenlos.

https://openeducationday.ch/programm-2021