CITP Blog

CITP Blog is hosted by Princeton University’s Center for Information Technology Policy, a research center that studies digital technologies in public life. Here you’ll find comment and analysis from the digital frontier, written by the Center’s faculty, students, and friends.

U.S. Citizenship and N.S.A. Surveillance – Legal Safeguard or Practical Backdoor?

October 15, 2013

– by
Axel Arnbak

Comments

Privacy & Security

The main takeaway of two recent disclosures around N.S.A. surveillance practices, is that Americans must re-think ‘U.S. citizenship’ as the guiding legal principle to protect against untargeted surveillance of their…

Privacy & Security
A Court Order is an Insider Attack

October 15, 2013

– by
Ed Felten

Comments

Privacy & Security

Commentators on the Lavabit case, including the judge himself, have criticized Lavabit for designing its system in a way that resisted court-ordered access to user data. They ask: If court…

Privacy & Security
Lavabit and how law enforcement access might be done in the future

October 14, 2013

– by
Dan Wallach

Comments

Privacy & Security

The saga of Lavabit, the now-closed “secure” mail provider, is an interesting object of study. They’re in the process of appealing a court order to produce their SSL private keys,…

Privacy & Security
Government Needs to Embrace the Social Web – Principle #6 for Fostering Civic Engagement Through Digital Technologies

October 11, 2013

– by
Jeffrey Tignor

Comments

Other Topics

As Rahm Emanuel said, “You never want a serious crisis to go to waste. And what I mean by that – it’s an opportunity to do things you think you…

Other Topics
The Linux Backdoor Attempt of 2003

October 9, 2013

– by
Ed Felten

Comments

Privacy & Security

Josh wrote recently about a serious security bug that appeared in Debian Linux back in 2006, and whether it was really a backdoor inserted by the NSA. (He concluded that…

Privacy & Security
A Start-Up Born at CITP

October 8, 2013

– by
Jeffrey Tignor

Comments

Uncategorized

As is probably the case with many start-ups, Gloobe was born late at night. Early in 2013, on the night of a snowstorm in Princeton, I presented at the student-led…

Uncategorized
Silk Road, Lavabit, and the Limits of Crypto

October 3, 2013

– by
Ed Felten

Comments

Digital Infrastructure & Platforms, Privacy & Security

Yesterday we saw two stories that illustrate the limits of cryptography as a shield against government. In San Francisco, police arrested a man alleged to be Dread Pirate Roberts (DPR),…

Digital Infrastructure & Platforms, Privacy & Security
Senate Judiciary Testimony: FISA Oversight

October 2, 2013

– by
Ed Felten

Comments

Privacy & Security

I testified today at a Senate Judiciary committee hearing on Oversight of the Foreign Intelligence Surveillance Act. Here is the written testimony I submitted.

Privacy & Security
The Debian OpenSSL Bug: Backdoor or Security Accident?

September 20, 2013

– by
Joshua Kroll

Comments

Privacy & Security

On Monday, Ed wrote about Software Transparency, the idea that software is more resistant to intentional backdoors (and unintentional security vulnerabilities) if the process used to create it is transparent.…

Privacy & Security
Software Transparency

September 16, 2013

– by
Ed Felten

Comments

Privacy & Security

Thanks to the recent NSA leaks, people are more worried than ever that their software might have backdoors. If you don’t believe that the software vendor can resist a backdoor…

Privacy & Security