Sunday, March 30, 2014

From the Privacy Foundation at the Sturm College of Law at the University of Denver.
HIPAA Privacy: Current Developments
Lunch Seminar – Friday, April 4, 2014
10:00 AM – 1:00 PM (followed by lunch)

Well, that's just silly. (or is it intended to legalize NSA's database of “old” emails?)
Jason C. Gavejian writes:
The United States District Court for the Middle District of Alabama recently held in Bruce v. McDonald that the “mere access” of an e-mail account and subsequent printing/possession of e-mails from the same account did not constitute an “interception” in violation of the federal Wiretap Act.
Under the Wiretap Act, as amended by the Electronic Communications Privacy Act, criminal and civil liability is imposed on any person who intentionally intercepts any electronic communication. The Wiretap Act also imposes liability on any person who intentionally discloses,” or “intentionally uses, the contents of an electronic communication “knowing or having reason to know” the communication was intercepted in violation the Wiretap Act. Thus, “interception” is a necessary element for each type of violation.
[From the article:
… the Eleventh Circuit Court of Appeals has adopted a “narrow reading” of “interception” in the context of electronic communications. In United States v. Steiger (318 F.3d 1039 (11th Cir. 2003), the court concluded that to constitute an interception, the electronic communications must have been acquired “contemporaneously with their transmission.”

I always thought Phillips was one of the smart ones.
Graham Cluley writes:
A researcher has discovered that so-called Smart TVs from Philips suffer from a number of serious security flaws that could allow hackers to not only steal information from attached USB sticks, and play pornographic movies as a prank, but also pilfer authentication cookies which could give them access to viewers’ online accounts.
[From the article:
According to Auriemma, a recent firmware update for Philips Smart TVs enabled a feature called “Miracast” which turns the TV into a Wi-Fi access point for the purpose of showing video content on nearby computers and smartphones.
Unfortunately, the authentication password for the devices beaming over their video content is hardcoded on the Philips Smart TV and no PIN is required to authorise a new Wi-Fi connection.
What is the password, you wonder? Well, here it is… Miracast

The world is “change averse.” Part of that is the belief that no change could be an improvement.
What Does Hashtag Mean to Twitter: Twitter Users May See Hashtags and @ Replies Removed From Page
In case you haven't heard, Twitter might eliminate #-hashtags and @-replies. At this point this is just a rumor, but a pretty scary one.
Vivian Schiller, head of News at Twitter, called the #-hashtags and @-replies "arcane," at a recent presentation at the Newspaper Association of America's MediaXChange Conference in Denver. Schiller also stated that "We are working on moving the scaffolding of Twitter into the background."
Well, that set off a firestorm of surprise and shock.

Leading is more than “being first” (I do like the idea of a log of access requests.)
Noting that “FERPA is not getting the job done,” Daniel Solove and Paul Schwartz describe how legislation in California could set a new higher bar for student privacy:
What of educational privacy law in California? The core interest in this area of the state’s law is transparency. California law permits parents to access the school records of their children (see Cal. Ed. Code § 49069). It also requires schools to maintain a log of all individuals and organizations that request information from school records. Finally, California limits access to these logs and records to parents, school officials and certain kinds of governmental officials.
The next step in this privacy saga took place in February 2014 when California Senate President Pro Tem Darrell Steinberg proposed the Student Online Personal Information Protection Act (SOPIPA).

No comments: