• Home
  • About
  • Blog
  • News
  • Events
  • Media
  • Video
  • Glossary
  • Contact
  • Download
  • RSS

Global Online Freedom Act: Governments Can’t Protect Freedom by Themselves

July 18th, 2008  |  by bballou  |  Published in Future of the Internet  |  4 Comments

New legislation being considered in Congress would prevent US companies from aiding the censorship and surveillance operations of repressive foreign governments. The Global Online Freedom Act (GOFA), sponsored by Chris Smith (R-NJ), would track foreign Internet monitoring and blocking efforts under a new Office of Global Internet Freedom and would prevent US tech firms from handing over sensitive user information to so-called Internet-Restricting Countries. (Internet Restricting Countries, or IRCs, would be those that were “directly or indirectly responsible for a systematic pattern of substantial restrictions on Internet freedom.” China would be included, of course, but what about Australia or Finland?) On balance, GOFA would help the cause of Internet freedom, or at least provide a better understanding of surveillance worldwide. Yet some of the provisions are misguided, and could actually hurt the cause GOFA aims to further.

Let’s focus on Section 201, which would prevent US companies from “locating” sensitive user information within Internet-Restricting Countries. Just what “locating” means here is not entirely clear: is a Chinese GMail subscriber’s email located on her own computer, in Mountain View, California, or on one of the many routers in between? Regardless, the goal here would be to make it more difficult for Internet-restricting governments to claim jurisdiction over, and gain access to, user data.

Unfortunately, as the Center for Democracy and Technology makes clear (pdf), Sec. 201 would almost certainly fail to achieve its objective, and might actually cause more harm than good. If US companies couldn’t place important servers within IRCs they would be forced to degrade some low-latency services (e.g. IM) and discontinue others (e.g. VoIP). This would discourage US investments in these countries and encourage less scrupulous foreign companies to take their place.

More importantly, Section 201 would be unlikely to impact IRCs jurisdictional claims. As Internet law rapidly evolves, countries have repeatedly and successfully demanded that information be controlled or monitored, even when that information is hosted outside their borders. Forcing US companies to locate their servers outside IRCs would only make their services less reliable; it would not make them less regulable.

If the goal of GOFA is to discourage US companies from violating human rights, then it will probably be successful. But if the goal of the Act is to make the Internet more free and more safe, and not just push rights violations on foreign companies, then more must be done. Here are three suggestions that together might accomplish what Sec. 201 aims to do:

  1. Publicize privacy restrictions: If companies are clear with their users that they intend to follow the laws of IRCs, users will be less likely to put dangerous content online. Many of the largest ICT firms are already working in coordination with the Berkman Center to create an industry standard for disclosing their privacy policies.
  2. Push privacy protection to the edges: By giving users in IRCs access to privacy protection technologies like Tor or Anonymizer, users will be able to protect their own privacy without government mandates.
  3. Make that push to the edges possible: Protections against surveillance are pointless if content is automatically filtered. Congress can mandate export controls against IRCs, preventing US companies from selling filtering technologies to these countries. In fact, GOFA begins the process of mandating just such export controls.

GOFA is, on balance, a step in the right direction. But the problems with Sec. 201 show that the government cannot protect the Internet openness by itself. These suggestions would shift some of that responsibility for protecting freedom and innovation towards interested individuals and responsible companies.

-Brendan Ballou

Responses

Feed
  1. How Congress Might Accidentally Ban US Companies From Doing Business In The US - BuzzYA! says:

    July 23rd, 2008 at 12:15 pm (#)

    [...] States government deems “repressive.” In March, we noted that it was back. Jonathan Zittrain has written up an analysis of the latest version. It would supposedly “prevent US companies from aiding the censorship and surveillance operations [...]

  2. Telecom Policy Blog Aggregator » Blog Archive » How Congress Might Accidentally Ban US Companies From Doing Business In The US says:

    July 23rd, 2008 at 12:21 pm (#)

    [...] States government deems “repressive.” In March, we noted that it was back. Jonathan Zittrain has written up an analysis of the latest version. It would supposedly “prevent US companies from aiding the censorship and surveillance operations [...]

  3. Bertil Hatt says:

    July 23rd, 2008 at 8:00 pm (#)

    Do you think that another country could similarly consider that the locally initiated companies, with users and servers abroad, should be free from any local interference? Let us assume that the Chinese government has doubts on how the MPAA enforces copyright (a reasonable question): can they argue that a tudou.com server in the US is outside of Federal prosecution? What about a country that doesn’t really think that [ — ] is a criminal enough offense to supersede it to privacy?
    Let “[ — ]” be violent attempts to obtain independence (i. e. ‘terrorism’), or ‘independent’ studies by a private lab on micro-biology and gene-based warfare; I doubt that you care for purely rhetorical argument such as “(Lord prevent us) from ‘[ — ]’ being child pornography” — but you’ve already got my point: US doesn’t seem to enjoy making consensus-based decision, at least with the EU.

    I’m all in favour of explaining how things work clearly, at least the principles: that is always needed transparency; I’m not sure “open” has to be the American version of it, shovelled onto sovereign nations, nor do I agree with your definition of “freedom” that includes hate-speech, etc.

  4. The Global Online Freedom Act: Governments Can’t Protect Freedom by Themselves | Jonathan Zittrain | Voices | AllThingsD says:

    July 24th, 2008 at 2:02 am (#)

    [...] Read the rest of this post Print all_things_di220:http://voices.allthingsd.com/20080724/zittrain/ Sphere Comment Tagged: GOFA, Global Online Freedom Act, Jonathan Zittrain, Voices | permalink [...]

Blog

  • Dropbox Ran Afoul of Apple’s App Store Review Guidelines: So What?

    • Last week, a number of developers reported that Apple was rejecting iOS applications that used Dropbox, a popular cloud file storage and backup system. An initial thread on the Dropbox developers’ forum has led to a outpouring of tech news full of hyperbolic claims. However, none of this reporting has covered the real problem – Apple is now more concerned about protecting its business model than serving its users or its developers.  Read more »

  • Help pioneer Casebook: The Next Generation

    • We at the H2O project are seeking a full-time Project Manager. H2O is an online platform for textbook development and distribution, currently in a pilot stage. H2O is based on the open source model – instead of locking down materials in formalized textbooks, we believe that course books can be free (as in free speech) for everyone to access and, equally important, build upon.

    Using H2O, professors can freely pull together materials for a course by selecting cases, editing those cases to the sections that are most relevant, and grouping them into readings. Once the materials are assembled, they can be copied in part or in whole by other interested faculty and then edited further.  H2O has been successfully piloted in JZ’s 1L Torts class, and will be rolling out further over the coming year.

    H2O’s project manager will play a leading role in shepherding H2O into its next phase, which will focus on developing new materials and incorporating additional features, in order to expand the platform beyond its law school roots.

    H2O is a  joint project of the Berkman Center for Internet & Society and the Harvard Law School library.  The Project Manager will be housed at the HLS Library and work in close collaboration with lead members of the Library Innovation Lab team; he/she will also work closely with the Berkman Center and current H2O teams. More info and job posting here.

  • Meme patrol: “When something online is free, you’re not the customer, you’re the product.”

    • I participated in the Berkman Center’s fascinating HyperPublic symposium in the summer of 2011.  When moderating a panel I invoked the aphorism that “When something online is free, you’re not the customer, you’re the product.”  It’s a way of encapsulating the idea that online free services usually make money by extracting lots of data from users — and then selling that data, or using it for targeted availability of those users for advertising, to advertisers.  In that sense, the advertisers are the clients, and the users enjoying free content are what’s being sold.  (Of course, sometimes that happens even when the user pays.)

    I didn’t coin the phrase, and since it was featured (and attributed to me!) in wordsmith.org’s wildly popular “word a day” as a thought for the day accompanying the word “enceinte” — I sought to nail down its provenance.

    The first use of the quote that we can find is as a comment within the famed MetaFilter community  in August 2010. The user’s name is blue_beetle, who might be someone named Andrew Lewis.  It’s entirely possible I saw it there, as MeFi is one of my five favorite sites on the Web.

    Similar sentiments (whether drawn from that source or independently invented) have been expressed by Bruce Schneier in October 2010 and by Douglas Rushkoff in September ’11.

    The phrase “you’re the product” also apparently appeared in a 1986 speech by President Reagan about the drug war.

    Just say know.

    –KA and JZ

  • OS X Mountain Lion and Gatekeeper

    • This week, Apple announced that it was moving to a new, faster OS X operating system development cycle, starting with the release of Mountain Lion next summer.  It previewed a number of features for the OS, and released some parts in beta.

    Mountain Lion is slated to include a feature called Gatekeeper as part of the security and privacy settings. Gatekeeper allows administrators (those with full privileges on a Mac) to limit the applications that can run on the Mac.  They can choose among allowing apps downloaded from the Mac App Store only, or apps from outside the Store so long as they are digitally signed to Apple’s satisfaction by their developers, or apps from anywhere.  (The latter has been the way both Mac and Windows PCs have worked, for better or worse, since the introduction of the Apple II in 1977.) Read more »

  • GPS-based Insurance Rates: The Devil is in the (Data) Details

    • A British insurance company called Motaquote has teamed up with TomTom, the GPS manufacturer to offer insurance prices based on data gathered by GPS. Fair Pay Insurance, Motaquote’s new program, is an opt-in insurance pricing scheme where drivers will get a free GPS unit in return for potentially lower (but possibly higher) premiums. The GPS unit will provide all the traditional navigational services as well as warn drivers when they corner too sharply or brake too hard. Read more »

About Jonathan Zittrain

jonathan zittrain

Jonathan Zittrain is Professor of Law at Harvard Law School and co-founder of the Berkman Center for Internet and Society at Harvard Law School

RSS Tweets from Z

  • An error has occurred; the feed is probably down. Try again later.

Blog Archives

Creative Commons BY-NC-SA Jonathan Zittrain unless otherwise noted.
Powered by WordPress using Gridline Lite.