---------------------------------------------------------------
EPIC DIGEST AT PRIVACY.ORG

EPIC-DIGEST is a weekly update of news, information, and action
items posted on privacy.org.

July 24-31, 2001

TOC------------------------------------------------------------

NEWS
EPIC to File Complaint Against MS with FTC 
FBI Researcher Releases Sircam Virus 
Biometric Group, Company Advocate Privacy Standards 
AOL to Create Single Identity for Consumers 
CIPA Case Goes Forward 
EPIC Advises Committee to Evaluate Nominee on Privacy 
CNET Analyzes Sources of Spam 
Lawyers Challenge FBI Use of Keystroke Sniffers 

ACTION
Promote the Privacy of Domain Name Registrants

NEWS-----------------------------------------------------------

EPIC to File Complaint Against MS with FTC

EPIC will file a FTC complaint against Microsoft for linking the XP
operating system with the Passport identification and authentication
system. EPIC will argue that the bundling of the OS and system
constitutes unfair and deceptive trade practices. Also, the Senate
Judiciary Committee plans to hold hearings on Microsoft to examine the
companyıs involvement in Internet-related antitrust issues.

Privacy Group Is Taking Issue With Microsoft, New York Times, July 25,
2001 (registration required).
http://www.nytimes.com/2001/07/25/technology/ebusiness/25COMP.html?

Privacy advocates take aim at Windows XP, CNET, July 25, 2001.
http://news.cnet.com/news/0-1005-200-6676181.html?tag=mn_hd

Senate Judiciary Committee to Hold Hearings on Microsoft, Tech Law
Journal Daily Report, July 25, 2001.
http://www.techlawjournal.com/alert/2001/07/25.asp

Letter to Microsoft CEO Steve Ballmer from Senator Charles Schumer, Tech
Law Journal. http://www.techlawjournal.com/atr/20010724sch1.asp

Letter to DOJ Assistant Attorney General for Antitrust Charles James
from Senator Charles Schumer, Tech Law Journal.
http://www.techlawjournal.com/atr/20010724sch2.asp

Microsoft Refutes Privacy Concerns Surrounding XP, Newsbytes, July 25,
2001. 
http://www.newsbytes.com/news/01/168343.html

EPIC Makes Privacy Case Against Windows XP To FTC, Slashdot, July 26,
2001. 
http://slashdot.org/articles/01/07/26/2159207.shtml

Microsoft Ignores Those XP Tacklers, Businessweek, July 26, 2001.
http://www.businessweek.com/bwdaily/dnflash/jul2001/nf20010726_629.htm

Microsoft's Window into Your Personal Life, Businessweek, July 2, 2001.
http://www.businessweek.com/magazine/content/01_27/b3739177.htm
---------------------------------------------------------------

FBI Researcher Releases Sircam Virus

A Federal Bureau of Investigation cyber-protection researcher
accidentally released a virus that sent internal agency documents to
outsiders.

FBI Cyber Researcher Unleashes Virus That E-Mails Private Agency
Documents, Wall Street Journal, July 25, 2001 (subscription required).
http://interactive.wsj.com/articles/SB99601609210000000.htm
---------------------------------------------------------------

Biometric Group, Company Advocate Privacy Standards

The International Biometric Group has formulated privacy standards for
the use of biometric technologies. Also, Visionics, a provider of facial
recognition technology, has advocated the adoption of federal
legislation to enhance individualsı privacy protection.

International Biometric Group Best Practices, Bioprivacy.org.
http://www.bioprivacy.org/

Visionics Corporation Calls for Federal Legislation to Safeguard Against
Misuse, Biometrics Digest, July 25, 2001.
http://webusers.anet-stl.com/~wrogers/biometrics/hot/story.cgi/010725-03.html

Privacy Protection Principles, Visionics.
http://www.visionics.com/newsroom/biometrics/privacy.html

Biometrics and Privacy, Roger Clarke, Australian National University,
April 15, 2001.
http://www.anu.edu.au/people/Roger.Clarke/DV/Biometrics.html
---------------------------------------------------------------

AOL to Create Single Identity for Consumers

AOL is implementing "Magic Carpet," an online identification and
authentication scheme similar to Microsoftıs Passport. Magic Carpet
would be an online storage system for individualsı personal information.

AOL Might Join 'Identity Service' Battle, Washington Post, July 26,
2001. 
http://www.washtech.com/news/media/11460-1.html
---------------------------------------------------------------

CIPA Case Goes Forward

A US Federal District Court has allowed a challenge to the Childrenıs
Internet Protection Act (CIPA) to go to trial in February 2002. CIPA
mandates the installation and use of Internet content filters on
computers at federally-funded libraries and public schools. Earlier this
year, EPIC, ACLU, and ALA brought suit to challenge CIPA.

Court Rejects Govt. Move To Toss Net Porn Filtering Case, Newsbytes,
July 27, 2001. 
http://www.newsbytes.com/news/01/168404.html
---------------------------------------------------------------

EPIC Advises Committee to Evaluate Nominee on Privacy

EPIC has sent a letter to the Senate Judiciary Committee requesting
members to consider privacy when questioning FBI Director Nominee Robert
Mueller next week. EPIC specifically requested that the committee
consider the Muellerıs stance on new surveillance technologies such as
Carnivore, the federal governmentıs purchase of personal information
from brokers such as ChoicePoint, and the agencyıs compliance with the
Freedom of Information Act.

EPIC Letter to the Senate Judiciary Committee, EPIC Web Site, July 26,
2001. 
http://www.epic.org/privacy/jud_comm_mueller.html

Senate should ask FBI nominee Mueller about privacy, EPIC says, Declan
McCullaghıs Politechbot.com, July 27, 2001.
http://www.politechbot.com/p-02317.html
---------------------------------------------------------------

CNET Analyzes Sources of Spam

CNET has published an article that tracks the sources of spam. The
article concludes that certain behaviors, such as posting to message
boards, using America Online chatrooms, and participation in online
lotteries such as iWin and GroupLotto, tend to be the biggest causes of
spam.

We reveal the riskiest e-mail behaviors on the Net, CNET, July 26, 2001
http://www.cnet.com/software/0-3227888-8-6602372-1.html?tag=ld
---------------------------------------------------------------

Lawyers Challenge FBI Use of Keystroke Sniffers

Lawyers for an alleged organized crime boss are challenging the FBIıs
use of a keystroke sniffer to capture passwords and other information
entered into a computer. Keystroke sniffers record every key pressed on
a keyboard. The lawyers challenging the use of the sniffer argue that
since the device captures every key typed, its use does not comply with
requirements to narrow searches to capture only criminal communications.
Further, the lawyers argue that the FBI followed inadequate procedures
in obtaining the authority to install the keylogging system.

EPIC Archive on United States v. Scarfo, EPIC Web Site.
http://www.epic.org/crypto/scarfo.html

Legal Challenge to FBI's Keystroke Sniffing, Slashdot, July 30, 2001.
http://slashdot.org/articles/01/07/29/148201.shtml

Organized Crime Case Raises Privacy Issues, New York Times, July 30,
2001 (registration required).
http://www.nytimes.com/2001/07/30/technology/30TAP.html?


ACTION---------------------------------------------------------

The Internet Corporation for Assigned Names and Numbers (ICANN) is
conducting a survey on the Whois database. The Whois database contains
contact information of all persons who have registered domain names. In
its current form, the database prevents the anonymous registration of
domain names and it exposes registrants1 personal information to the
public where it is often either sold or "mined" for commercial purposes.

Tell ICANN to limit the amount of information required by the Whois
database and to promote the ability to register a domain name
anonymously!

ICANN Whois Survey.
http://www.icann.org/dnso/whois-survey-en-10jun01.htm

EPIC Letter on Privacy of Domain Name Registration Data.
http://www.epic.org/privacy/internet/ICANN_privacy.html 
---------------------------------------------------------------

Privacy.org is a joint project of the Electronic Privacy
Information Center (http://www.epic.org) and Privacy
International (http://www.privacyinternational.org). For more
information, e-mail Chris Hoofnagle at digest-editor@privacy.org.
---------------------------------------------------------------

How to unsubscribe from EPIC-DIGEST:

You can leave the EPIC-DIGEST by entering the subscription e-mail
address at http://www.privacy.org/digest.php and selecting
"unsubscribe." Or, you can send a blank e-mail message to
EPIC-DIGEST@lists.epic.org from the subscribed address with the
following text in the subject line: unsubscribe

If you experience difficulty with subscription issues, send a
message to digest-editor@privacy.org.
---------------------------------------------------------------

EPIC-DIGEST Privacy Policy: http://www.privacy.org/privacy.php
---------------------------------------------------------------
END EPIC-DIGEST