Inside Snowden’s Suitcase

21 October 2015, 12:00 - 14:00

Seminar Room SG1, Alison Richard Building

Evan Light (Concordia University)
 

 The Portable Snowden Surveillance Archive is a replica of the Snowden Digital Surveillance Archive – created and maintained by Canadian Journalists for Free Expression and researchers at the University of Toronto. The suitcase here is two tools in one: it is an autonomous wifi network and web server that enables one to search all of the until-now published Snowden documents; and is a surveillance demonstration tool, replaying the Internet Protocol conversations that occur between the user’s smartphone/tablet/laptop and the tiny server inside the suitcase.

The Sensing Mass Surveillance workshop presents the legal concept of privacy and examines our historical relationships with telecommunications providers. I then present a number of important mass surveillance programs revealed through the Snowden documents and introduce the audience to the Portable Snowden Surveillance Archive. Here, the audience will be able to search through all the documents as well as the media articles with which they were first published into the public domain. Finally, I show the audience how the Portable Snowden Surveillance Archive has been learning things about them and extend the conversation into debates over agency, consent and legal authority in the context of big data.

The Portable Snowden Surveillance Archive is the creation of Dr Evan Light, FRQSC Postdoctoral Fellow at the Mobile Media Lab, Concordia University and part of Performigrations, a touring EU-funded interactive art exhibit.

* For those who are interested, at the end of the workshop (from 2 to 2:30) we will build, from parts, our own version of the Snowden Suitcase to reside at Cambridge.  Please register your attendance via the Eventbrite link and indicate if you are interested in helping build the suitcase.

http://www.eventbrite.com/e/ethics-of-big-data-inside-snowdens-suitcase-tickets-18923115548?aff=affiliate1

This seminar has suggested readings for interested participants available here: 
http://www.bigdata.cam.ac.uk/research/the-ethics-of-big-data/ethics-of-big-data-background-reading/inside-snowdens-suitcase

If you have a question about this talk, please contact Clare Dyer-Smith

Open to all
Part of the Ethics of Big Data Research Group, series

Administrative assistance: gradfac@crassh.cam.ac.uk

If you have nothing to hide, do you need privacy? Should the communications of individuals be monitored? What about activists and politicians, or the Four Horsemen of the Infocalypse? How about the details, emails and webcam records of your long-distance relationship?

Power and Resistance is the theme of this year’s Cambridge Festival of Ideas, which chimes well with the themes addressed by Dr Evan Light, visiting CRASSH to introduce the Portable Snowden Surveillance Archive and suggest measures to resist the effects of the mass surveillance programmes that NSA whistleblower Edward Snowden made public in 2013.

 

Evan is a FRQSC postdoctoral researcher of the Mobile Media Lab at Concordia University, Montreal, where he is a member of the ACT project studying communication tools and ageing. He has created the Portable Snowden Surveillance Archive, which sits on a Raspberry Pi inside a suitcase and hosts a complete, searchable copy of all the documents published after their release to journalists by Edward Snowden (all of the documents are already in the public domain). The archive itself is the work of Canadian Journalists for Free Expression, and the portable version can be made for as little as £40.

The suitcase is a private, offline library, which users may connect to (via its own WiFi network), and browse from their own devices, but without connecting to the internet. This approach, originally based on the PirateBox, conceived by David Darts as a way to distribute teaching materials to students without email, offers a means of browsing the documents without being surveilled. At the start of the workshop, Evan invited us to connect to the archive’s secure WiFi network and browse the documents (in a playful note, the documents were accessed via the network using the http://nsa.gov URL). He showed us the ‘WiFi sniffer’ inside the box, which detects traffic on the suitcase’s network and displays it on the screen within the box. In this version the data are not saved – this serves merely to remind us how easily our ‘private’ behaviour can be monitored.

Evan took us through the story of telecommunications surveillance, sparking a fascinating and wide-ranging discussion between technologists, lawyers and human rights researchers. From human-mediated calls in the early years of telephony, through staffed telephone exchanges (where what we now call metadata are known by humans, but the call contents are not), to the internet and the methods of automatic data collection that Snowden revealed, the relationship between users, providers and our conceptions of ‘privacy’ have evolved, and are still evolving.

The networks and structures addressed in Evan’s talk ranged from the physical infrastructure of the internet, such as the cables under a Cornish beach which featured in a Channel 4 investigation into a GCHQ programme known as ‘Mastering the Internet’, to the complicated power and economic structures which might allow shareholder activism against telecommunications companies (including by members of the Universities Superannuation Scheme, which owns shares in Vodafone).

Indeed, journalists are still working through the archive, with several recent news reports revealing new activities and types of data, and the extent to which national intelligence agencies cooperate to share their data. Notable also is the sheer scale of data collection – trillions of gigabytes per second, billions of communication events per month. Examples reported in recent years include the GCHQ program Optic Nerve, which collected webcam data from around 1.8 million UK Yahoo users: between 3 and 11% of the records were estimated to contain images of ‘undesirable nudity’. The Tempora programme was implicated in the surveillance of politicians’ communications (recently ruled lawful by the Investigatory Powers Tribunal), while Prism, one of the earliest programmes to be identified and reported on, showed the extent of bulk collection of personal data from almost all the major communications providers in the US. More recent revelations include the use of drones to spoof cell towers and collect data from unsuspecting users.

Evan proposed a number of approaches to countering some of the surveillance measures revealed by Snowden. Research, education and activism are key factors, along with technologies such as Tor, PGP or the work of Equalit.ie, a non-profit designing software for human rights activists and journalists. Nevertheless, current political developments such as the recently published draft Investigatory Powers bill, and discussions around end-to-end encryption create a tension with the role of government and everyday users in this space.

Other methods highlighted in the talk include ‘sousveillance’ and countersurveillance, such as Ixmaps, which shows ‘where your packets go’ during web browsing, and the application of shareholder pressure to telecommunications companies to force changes in their practices. An example is the recent efforts by ACLU and others, who in 2013 forced Verizon and AT&T to begin issuing transparency reports.

Finally, we discussed the significant effect on political and legal debate that have been initiated by the Snowden revelations, including recent developments such as the striking down of the ‘Safe Harbour’ process in October 2015, and the current debate at European level over reform to data protection regulations across the EU.

Ultimately, resistance to this powerful set of programmes depends upon awareness and education, and a critical assessment of not only the techniques used, but the basis and justification for their use. The work of Reprieve in highlighting the faulty evidence provided by surveillance drones in the Middle East is one example discussed in the workshop – if the inference and intelligence gained from any surveillance is wrong, then how can it be useful?

There is still a challenge in making clear the risks of inference, profiling and personal harm arising out of bulk data collection to members of the public. However, as one workshop participant noted, for many communities, profiling and mistreatment based on patterns of information is nothing new. Better defining these risks, understanding and communicating what is at stake across cultures and communities, is an important goal for activists and researchers.

Evan has created a version of the Portable Snowden Surveillance Archive, to be kept at Cambridge. It will be on display in the Alison Richard Building until the end of Michaelmas Term 2015, and is available for use in teaching (please contact Dr Ella McPherson for details).

 

Artist Mark Farid @markfarid will be presenting an installation ‘Data Shadow’, revealing the extent of personal data collection that is possible from our mobile phones. This launches on 26th October and will be on display during the Festival.


CRASSH is not reponsible for the content of external websites