DOCSLIB.ORG

Online Security for Internet Media Serving Severely Censored Countries

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Online Security for Internet Media Serving Severely Censored Countries Online Security for Internet Media Serving Severely Censored Countries A white paper for SIDA’s October 2010 “Exile Media” conference Eric S Johnson (updated January 2012) For activists who make it a priority to deliver news to citizens of countries which try to control the information to which their citizens have access, the internet has provided massive new opportunities. But those countries’ govern- ments also realise ICTs’ potential and, to various extents, implement countermeasures against the delivery of inde- pendent news via the internet. This paper covers what exile media can or should do to protect itself, addressing three categories of issues: common computer security precautions, defense against targeted attacks, and circumventing cybercensorship, with a final note about overkill. For each of the issues mentioned below, specific examples from within the human rights or freedom of expression world can be provided where non-observance was catastrophic, but most of those who suffered problems would rather not be named. Common computer security: The best defense is a good … The main threats to exile media’s successful use of ICTs—and ways to deal with those threats—are the same as for any other computer user: 1) Ensure all software regularly and automatically patches itself against newly-discovered security flaws (and e.g. to maintain up-to-date SSL certificate revocation lists). As with antivirus software, this may cost something; e.g. with Microsoft (Windows and Office), it may require your software be legally purchased (or you can use the WSUS Of- fline Update tool, which can help in low-bandwidth environments). Firefox, Chrome, Adobe Acrobat Reader and Flash player, iTunes, Skype (and other IM clients), and Java VM should update themselves (or at least prompt you to install newly-available updates), but it’s worth verifying from time to time. MBSA’s scan is more complete than Windows Update. The free (Windows-only) Secunia PSI vulnerability scanner / patch manager can help inform you about needed updates; other solutions, like IBM’s BigFix, are for-fee. Don’t forget to update your smartphone’s Android OS or iOS (on an iPhone). (~USD100/computer/yr to license Microsoft products) 2) Use a good antivirus on all workstations—one which constantly (at least daily) automatically updates its virus- fighting capabilities (e.g. TMIS, McAfee, NIS, AVG, Avira, Kaspersky, Avast, CA, Immunet, F-Secure, Microsoft Security Essentials; but use only one). When acquired as part of a “security suite,” an antivirus pro- gram will come with more-detailed firewall (although the one built in to Windows 7 or Mac OS 10.7 is just fine), anti-spam, and some level of malware protection. If you feel that more is better, consider adding Anti- malware, ThreatFire, and/or Ad-Aware (all free). Ensuring data execution prevention is on provides an additional security boost. (MSE, AVG, Avast free; others ~USD40/computer/year) 3) Avoid falling for phishing lures and malware (can’t say it too often!): a. Don’t open attachments to, or click on links in, e-mail messages from unknown senders—they might result in stolen documents, giving botnets (such as those tracked by ShadowServer) control over your computer, or al- lowing government law enforcement agencies remote access to your files (using e.g. offensive security prod- ucts such as FinFisher, HackingTeam, and Vupen). If you must open an unknown attachment, consider scan- ning it with Jotti first. b. Never enter your password into a site accessed from a link in an e-mail, e.g. when your bank sends you a note saying “your statement’s ready to view” or Facebook says someone “wants to be friends,” type the URL into your browser (or use a shortcut from your “favourites” menu). (The URL in the hyperlink might be fake, in which case you’ll be clickjacked; you can’t tell the difference!) c. Never provide your online account login credentials to third parties such as that site which says “please enter your [for example, Gmail] account login and password so we can provide you with service X.” Some are legitimate, but many aren’t. If you log in, then at best someone will use your account to spam everyone in your address book; at worst, someone will stealthily monitor your account and/or use it to trick your friends into revealing important information. Check your e-mail accounts’ settings/options monthly to ensure there’s no unexplained forwarding. Deploy the free Simple Phishing Toolkit to test your employees; train the 15% who “fell for it” how to avoid being phished. 4) Never lose physical control/possession of your computer. A rootkit or keylogger can be installed in seconds; then you’re compromised. Make sure your computer is set to always require a password upon boot; then, ensure your screensaver automatically locks your computer after a minute of inactivity, and if you walk away from your com- puter while it’s on, lock it (flag-L in Windows, ctrl-shift-eject under Mac OS). 5) Back up your data at least once every other week. This protects against potential loss due not only to attack, but also to (much more likely, and in fact inevitable) technical failure (e.g. of a hard drive). The simplest way is to set your computer to (overnight) copy your data (e.g. in Windows 7, c:\users\[your-name]\) to your backup medium; or, most OSes have simple backup programs built in (e.g. Windows Backup or Mac OS’s Time Machine). Or, there are third-party specialised backup programs used to automate the process (e.g. the open-source Cobian, AllwaySync or Acro- nis for Windows, Retrospect for the Mac). Be sure your backup media are fully encrypted (see below). Be sure to at least occasionally put a copy of your data “offsite” so that if your house burns, you don’t lose both your computer and your backup. Alternatively, use a secure online (“cloud”) service such as Dropbox, Wuala, or egnyte. Don’t forget to back up your site as well (it will eventually be hacked and erased, and you’ll want/need to restore it)—and when you do, in- clude your CMS database (not just static pages). Finally, don’t forget to back up your mobile’s contact list too! (USD50/user for a high-capacity USB thumbdrive; Dropbox and Wuala are free; egnyte has a small fee) 6) Use strong passwords; set password recovery mechanisms. Passwords must be reasonably long (at least 20 characters) and relatively random (e.g. 3HorsesCapitalize.AnchorageBetter). Never use passwords consisting only of a name or anything in a dictionary—otherwise Cain & Abel (or its more sophisticated brute-force-cracking cousins) can guess it. When signing up for an online service, provide backup e-mail addresses, phone numbers, and/or security questions which can be used to authenticate you in case control of your account is lost. If you do lose control (or it’s shut), use personal contacts through RSF, HRW, or Internews (all affiliated with the Global Network Intiative, and therefore plugged in to large online service providers) to try to recover it. Don’t reuse identical passwords across services. If you consider your computer secure (e.g. you’re using whole-hard-disk encryption), use LastPass or Keepass to to make unique, strong passwords and remember them. Don’t share a password with co-workers or paste it on a PostIt on your monitor! 7) Secure your office and home wi-fi access points (APs). Set a new password for your AP’s control panel (the manufacturer-set default one is public knowledge). Then, make sure it’s using WPA (WPA2-AES is the best) for encryption, since the older WEP is highly insecure: sniffing open wi-fi is one of the simplest ways for snoops to get access to your entire digital life. Turn off WPS, since it provides attackers a “hole” through which to enter. 8) Don’t use public networks (e.g. wi-fi hotspots) except encryptedly. Use Firefox’s HTTPS Everywhere or (better) a virtual private network (VPN). Otherwise, the person sitting next to you in Starbucks could use DriftNet to see what you’re downloading, or FireSheep to sidejack access to your Facebook account to social- engineer her way into the confidence of your friends (unless you use the non- default encrypted access to Facebook, Twitter, and Google; the former two can be set, in your login preferences, to be “HTTPS only”), or Wireshark to see everything. 9) Encrypt your instant-messaging (IM) and VoIP communications by ensuring both ends of the conversation use either the real Skype (not the Chinese version, TOM Skype, which has cybercensorship and cybersurveillance built in), Gchat (IM via your Gmail webmail interface) or an encrypted IM client such as Pidgin+OTR, Miranda+OTR, or Jitsi+OTR for otherwise-unencrypted IM networks such as ICQ, Gtalk, AIM, MSN, and Y!, but both ends must use it. (VoIP via Zfone (using ZRTP) and Blink (using SIP/SRTP), like Skype, are completely encrypted—but also source-code-published so peer-reviewed and therefore more trustworthy.) Targeted attacks: Higher—or hire—technology Attacks can come in many forms; defending against all of them is impossible, but there are steps to take—some easier, some more sophisticated. 10) Globally, internet traffic is massive and dispersed; surveilling you online isn’t always easy for your attacker. A hostile party is more likely to try to get your hard drive. Ensure all workstations—especially portable ones which are more likely to be lost or stolen—are using whole-hard-disk encryption (WDE). (The “Windows login pass- word” without WDE can be circumvented by a USD20 USB-to-SATA bridge.) Windows’ top version, Ultimate (and its more-often-pirated corporate version, Enterprise) includes WDE (Bitlocker; most 2010-or-later notebooks (except in Russia and China, where TPM’s theoretically not allowed) are TPM 1.2-compliant, but otherwise you’d have to carry a USB “key”); so does the newest version of Mac OS X, Lion (10.7; FileVault 2); for Linix users, LUKS is built in to the Ubuntu distro.
Load more

Recommended publications
  • Uila Supported Apps
    Uila Supported Applications and Protocols updated Oct 2020 Application/Protocol Name Full Description 01net.com 01net website, a French high-tech news site. 050 plus is a Japanese embedded smartphone application dedicated to 050 plus audio-conferencing. 0zz0.com 0zz0 is an online solution to store, send and share files 10050.net China Railcom group web portal. This protocol plug-in classifies the http traffic to the host 10086.cn. It also 10086.cn classifies the ssl traffic to the Common Name 10086.cn. 104.com Web site dedicated to job research. 1111.com.tw Website dedicated to job research in Taiwan. 114la.com Chinese web portal operated by YLMF Computer Technology Co. Chinese cloud storing system of the 115 website. It is operated by YLMF 115.com Computer Technology Co. 118114.cn Chinese booking and reservation portal. 11st.co.kr Korean shopping website 11st. It is operated by SK Planet Co. 1337x.org Bittorrent tracker search engine 139mail 139mail is a chinese webmail powered by China Mobile. 15min.lt Lithuanian news portal Chinese web portal 163. It is operated by NetEase, a company which 163.com pioneered the development of Internet in China. 17173.com Website distributing Chinese games. 17u.com Chinese online travel booking website. 20 minutes is a free, daily newspaper available in France, Spain and 20minutes Switzerland. This plugin classifies websites. 24h.com.vn Vietnamese news portal 24ora.com Aruban news portal 24sata.hr Croatian news portal 24SevenOffice 24SevenOffice is a web-based Enterprise resource planning (ERP) systems. 24ur.com Slovenian news portal 2ch.net Japanese adult videos web site 2Shared 2shared is an online space for sharing and storage.
    [Show full text]
  • Design of a Blocking-Resistant Anonymity System DRAFT
    Design of a blocking-resistant anonymity system DRAFT Roger Dingledine Nick Mathewson The Tor Project The Tor Project [email protected] [email protected] Abstract Internet censorship is on the rise as websites around the world are increasingly blocked by government-level firewalls. Although popular anonymizing networks like Tor were originally designed to keep attackers from tracing people’s activities, many people are also using them to evade local censorship. But if the censor simply denies access to the Tor network itself, blocked users can no longer benefit from the security Tor offers. Here we describe a design that builds upon the current Tor network to provide an anonymiz- ing network that resists blocking by government-level attackers. 1 Introduction and Goals Anonymizing networks like Tor [11] bounce traffic around a network of encrypting relays. Unlike encryption, which hides only what is said, these networks also aim to hide who is communicat- ing with whom, which users are using which websites, and similar relations. These systems have a broad range of users, including ordinary citizens who want to avoid being profiled for targeted advertisements, corporations who don’t want to reveal information to their competitors, and law en- forcement and government intelligence agencies who need to do operations on the Internet without being noticed. Historical anonymity research has focused on an attacker who monitors the user (call her Alice) and tries to discover her activities, yet lets her reach any piece of the network. In more modern threat models such as Tor’s, the adversary is allowed to perform active attacks such as modifying communications to trick Alice into revealing her destination, or intercepting some connections to run a man-in-the-middle attack.
    [Show full text]
  • Everyone's Guide to Bypassing Internet Censorship
    EVERYONE’S GUIDE TO BY-PASSING INTERNET CENSORSHIP FOR CITIZENS WORLDWIDE A CIVISEC PROJECT The Citizen Lab The University of Toronto September, 2007 cover illustration by Jane Gowan Glossary page 4 Introduction page 5 Choosing Circumvention page 8 User self-assessment Provider self-assessment Technology page 17 Web-based Circumvention Systems Tunneling Software Anonymous Communications Systems Tricks of the trade page 28 Things to remember page 29 Further reading page 29 Circumvention Technologies Circumvention technologies are any tools, software, or methods used to bypass Inter- net filtering. These can range from complex computer programs to relatively simple manual steps, such as accessing a banned website stored on a search engine’s cache, instead of trying to access it directly. Circumvention Providers Circumvention providers install software on a computer in a non-filtered location and make connections to this computer available to those who access the Internet from a censored location. Circumvention providers can range from large commercial organi- zations offering circumvention services for a fee to individuals providing circumven- tion services for free. Circumvention Users Circumvention users are individuals who use circumvention technologies to bypass Internet content filtering. 4 Internet censorship, or content filtering, has become a major global problem. Whereas once it was assumed that states could not control Internet communications, according to research by the OpenNet Initiative (http://opennet.net) more than 25 countries now engage in Internet censorship practices. Those with the most pervasive filtering policies have been found to routinely block access to human rights organi- zations, news, blogs, and web services that challenge the status quo or are deemed threatening or undesirable.
    [Show full text]
  • Promoting Global Internet Freedom: Government and Industry Initiatives
    Promoting Global Internet Freedom: Government and Industry Initiatives (name redacted) Specialist in Internet and Telecommunications Policy June 1, 2016 Congressional Research Service 7-.... www.crs.gov R41837 Promoting Global Internet Freedom: Government and Industry Initiatives Summary Modern communication tools such as the Internet provide a relatively inexpensive, accessible, easy-entry means of sharing ideas, information, and pictures around the world. In a political and human rights context, in closed societies when the more established, formal news media is denied access to or does not report on specified news events, the Internet has become an alternative source of media, and sometimes a means to organize politically. The openness and the freedom of expression allowed through social networking sites, as well as the blogs, video sharing sites, and other tools of today’s communications technology, have proven to be an unprecedented and often disruptive force in some closed societies. Governments that seek to maintain their authority and control the ideas and information their citizens receive are often caught in a dilemma: they feel that they need access to the Internet to participate in commerce in the global market and for economic growth and technological development, but fear that allowing open access to the Internet potentially weakens their control over their citizens. Internet freedom can be promoted in two ways, through legislation that mandates or prohibits certain activities, or through industry self-regulation. Past legislation has been aimed at prohibiting or requiring the reporting of the sale of Internet technologies and provision of Internet services to “Internet-restricting countries” (as determined by the State Department).
    [Show full text]
  • Threat Modeling and Circumvention of Internet Censorship by David Fifield
    Threat modeling and circumvention of Internet censorship By David Fifield A dissertation submitted in partial satisfaction of the requirements for the degree of Doctor of Philosophy in Computer Science in the Graduate Division of the University of California, Berkeley Committee in charge: Professor J.D. Tygar, Chair Professor Deirdre Mulligan Professor Vern Paxson Fall 2017 1 Abstract Threat modeling and circumvention of Internet censorship by David Fifield Doctor of Philosophy in Computer Science University of California, Berkeley Professor J.D. Tygar, Chair Research on Internet censorship is hampered by poor models of censor behavior. Censor models guide the development of circumvention systems, so it is important to get them right. A censor model should be understood not just as a set of capabilities|such as the ability to monitor network traffic—but as a set of priorities constrained by resource limitations. My research addresses the twin themes of modeling and circumvention. With a grounding in empirical research, I build up an abstract model of the circumvention problem and examine how to adapt it to concrete censorship challenges. I describe the results of experiments on censors that probe their strengths and weaknesses; specifically, on the subject of active probing to discover proxy servers, and on delays in their reaction to changes in circumvention. I present two circumvention designs: domain fronting, which derives its resistance to blocking from the censor's reluctance to block other useful services; and Snowflake, based on quickly changing peer-to-peer proxy servers. I hope to change the perception that the circumvention problem is a cat-and-mouse game that affords only incremental and temporary advancements.
    [Show full text]
  • Free Cgi Proxy Script
    Free cgi proxy script click here to download There have been many other proxy software scripts in the past, such as Glype, PHProxy, CGIProxy, Surrogafier, ASProxy, Zelune but all have either perished. This CGI script (or other) acts as an HTTP, HTTPS, or FTP proxy. Here's a demo (username "free", password "speech"), that lets you browse. Surf the web with phpMyProxy. phpMyProxy is a free, light and powerful php proxy script programed by www.doorway.ru If you use this template, keep the link to Free CSS Templates intact. cgi proxy script free download. Guacamole Install Script The script installs dependencies and configure the OS automatically for you in order to obtain. FREE CGI Web Proxy List contains list of cgi/php proxies that are publicly accessed at the moment. Public CGI (Web, PHP) anonymous proxy free list. WEB/WWW servers) servers running a proxy in the form of a CGI script/program (Common. Are you looking to start your own PHP/CGI/Perl web proxy site? We have created an up-to-date list of free and working web-based proxy scripts available for. Proxy website with hosted proxy bypass scripts. Proxy scripts (also known as CGI proxies) work by modifiying the content of the requested page to send subsequent requests back to All are powerful, easily customizable and free. Download CGIProxy. This CGI script (or other) acts as an HTTP, HTTPS, or FTP proxy. Through it, you can retrieve any resource that is accessible from the. start your proxy site with these 3 great free proxy scripts.
    [Show full text]
  • Handbook for Bloggers and Cyber-Dissidents
    HANDBOOK FOR BLOGGERS AND CYBER-DISSIDENTS REPORTERS WITHOUT BORDERS MARCH 2008 Файл загружен с http://www.ifap.ru HANDBOOK FOR BLOGGERS AND CYBER-DISSIDENTS CONTENTS © 2008 Reporters Without Borders 04 BLOGGERS, A NEW SOURCE OF NEWS Clothilde Le Coz 07 WHAT’S A BLOG ? LeMondedublog.com 08 THE LANGUAGE OF BLOGGING LeMondedublog.com 10 CHOOSING THE BEST TOOL Cyril Fiévet, Marc-Olivier Peyer and LeMondedublog.com 16 HOW TO SET UP AND RUN A BLOG The Wordpress system 22 WHAT ETHICS SHOULD BLOGUEURS HAVE ? Dan Gillmor 26 GETTING YOUR BLOG PICKED UP BY SEARCH-ENGINES Olivier Andrieu 32 WHAT REALLY MAKES A BLOG SHINE ? Mark Glaser 36 P ERSONAL ACCOUNTS • SWITZERLAND: “” Picidae 40 • EGYPT: “When the line between journalist and activist disappears” Wael Abbas 43 • THAILAND : “The Web was not designed for bloggers” Jotman 46 HOW TO BLOG ANONYMOUSLY WITH WORDPRESS AND TOR Ethan Zuckerman 54 TECHNICAL WAYS TO GET ROUND CENSORSHIP Nart Villeneuve 71 ENS URING YOUR E-MAIL IS TRULY PRIVATE Ludovic Pierrat 75 TH E 2008 GOLDEN SCISSORS OF CYBER-CENSORSHIP Clothilde Le Coz 3 I REPORTERS WITHOUT BORDERS INTRODUCTION BLOGGERS, A NEW SOURCE OF NEWS By Clothilde Le Coz B loggers cause anxiety. Governments are wary of these men and women, who are posting news, without being professional journalists. Worse, bloggers sometimes raise sensitive issues which the media, now known as "tradition- al", do not dare cover. Blogs have in some countries become a source of news in their own right. Nearly 120,000 blogs are created every day. Certainly the blogosphere is not just adorned by gems of courage and truth.
    [Show full text]
  • Rapport Internet 2004 Gb
    HANDBOOK FOR BLOGGERS AND CYBER-DISSIDENTS REPORTERS WITHOUT BORDERS MARCH 2008 HANDBOOK FOR BLOGGERS AND CYBER-DISSIDENTS REPORTERS WITHOUT BORDERS HANDBOOK FOR BLOGGERS AND CYBER-DISSIDENTS CONTENTS © 2008 Reporters Without Borders 04 BLOGGERS, A NEW SOURCE OF NEWS Clothilde Le Coz 07 WHAT’S A BLOG ? LeMondedublog.com 08 THE LANGUAGE OF BLOGGING LeMondedublog.com 10 CHOOSING THE BEST TOOL Cyril Fiévet, Marc-Olivier Peyer and LeMondedublog.com 16 HOW TO SET UP AND RUN A BLOG The Wordpress system 22 WHAT ETHICS SHOULD BLOGUEURS HAVE ? Dan Gillmor 26 GETTING YOUR BLOG PICKED UP BY SEARCH-ENGINES Olivier Andrieu 32 WHAT REALLY MAKES A BLOG SHINE ? Mark Glaser 36 PERSONAL ACCOUNTS • SWITZERLAND: “” Picidae 40 • EGYPT: “When the line between journalist and activist disappears” Wael Abbas 43 • THAILAND : “The Web was not designed for bloggers” Jotman 46 HOW TO BLOG ANONYMOUSLY WITH WORDPRESS AND TOR Ethan Zuckerman 54 TECHNICAL WAYS TO GET ROUND CENSORSHIP Nart Villeneuve 71 ENSURING YOUR E-MAIL IS TRULY PRIVATE Ludovic Pierrat 75 THE 2008 GOLDEN SCISSORS OF CYBER-CENSORSHIP Clothilde Le Coz 3 I REPORTERS WITHOUT BORDERS mine INTRODUCTION BLOGGERS, A NEW SOURCE OF NEWS By Clothilde Le Coz B loggers cause anxiety. Governments are wary of these men and women, who are posting news, without being professional journalists. Worse, bloggers sometimes raise sensitive issues which the media, now known as "tradition- al", do not dare cover. Blogs have in some countries become a source of news in their own right. Nearly 120,000 blogs are created every day. Certainly the blogosphere is not just adorned by gems of courage and truth.
    [Show full text]
  • U.S. Initiatives to Promote Global Internet Freedom: Issues, Policy, and Technology
    U.S. Initiatives to Promote Global Internet Freedom: Issues, Policy, and Technology Patricia Moloney Figliola, Coordinator Specialist in Internet and Telecommunications Policy Kennon H. Nakamura Analyst in Foreign Affairs Casey L. Addis Analyst in Middle Eastern Affairs Thomas Lum Specialist in Asian Affairs April 5, 2010 Congressional Research Service 7-5700 www.crs.gov R41120 CRS Report for Congress Prepared for Members and Committees of Congress U.S. Initiatives to Promote Global Internet Freedom: Issues, Policy, and Technology Summary Modern means of communications, led by the Internet, provide a relatively inexpensive, open, easy-entry means of sharing ideas, information, pictures, and text around the world. In a political and human rights context, in closed societies when the more established, formal news media is denied access to or does not report on specified news events, the Internet has become an alternative source of media, and sometimes a means to organize politically. The openness and the freedom of expression allowed through blogs, social networks, video sharing sites, and other tools of today’s communications technology has proven to be an unprecedented and often disruptive force in some closed societies. Governments that seek to maintain their authority and control the ideas and information their citizens receive are often caught in a dilemma: they feel that they need access to the Internet to participate in commerce in the global market and for economic growth and technological development, but fear that allowing open access to the Internet potentially weakens their control over their citizens. Legislation now under consideration in the 111th Congress would mandate that U.S.
    [Show full text]
  • U.S. Initiatives to Promote Global Internet Freedom: Issues, Policy, and Technology
    U.S. Initiatives to Promote Global Internet Freedom: Issues, Policy, and Technology Patricia Moloney Figliola, Coordinator Specialist in Internet and Telecommunications Policy Kennon H. Nakamura Analyst in Foreign Affairs Casey L. Addis Analyst in Middle Eastern Affairs Thomas Lum Specialist in Asian Affairs September 8, 2010 Congressional Research Service 7-5700 www.crs.gov R41120 CRS Report for Congress Prepared for Members and Committees of Congress U.S. Initiatives to Promote Global Internet Freedom: Issues, Policy, and Technology Summary Modern means of communications, led by the Internet, provide a relatively inexpensive, open, easy-entry means of sharing ideas, information, pictures, and text around the world. In a political and human rights context, in closed societies when the more established, formal news media is denied access to or does not report on specified news events, the Internet has become an alternative source of media, and sometimes a means to organize politically. The openness and the freedom of expression allowed through blogs, social networks, video sharing sites, and other tools of today’s communications technology has proven to be an unprecedented and often disruptive force in some closed societies. Governments that seek to maintain their authority and control the ideas and information their citizens receive are often caught in a dilemma: they feel that they need access to the Internet to participate in commerce in the global market and for economic growth and technological development, but fear that allowing open access to the Internet potentially weakens their control over their citizens. The ongoing situation of Google in China is representative of these issues.
    [Show full text]
  • U.S. Initiatives to Promote Global Internet Freedom: Issues, Policy, and Technology
    U.S. Initiatives to Promote Global Internet Freedom: Issues, Policy, and Technology Patricia Moloney Figliola, Coordinator Specialist in Internet and Telecommunications Policy Casey L. Addis Analyst in Middle Eastern Affairs Thomas Lum Specialist in Asian Affairs January 3, 2011 Congressional Research Service 7-5700 www.crs.gov R41120 CRS Report for Congress Prepared for Members and Committees of Congress U.S. Initiatives to Promote Global Internet Freedom: Issues, Policy, and Technology Summary Modern means of communications, led by the Internet, provide a relatively inexpensive, open, easy-entry means of sharing ideas, information, pictures, and text around the world. In a political and human rights context, in closed societies when the more established, formal news media is denied access to or does not report on specified news events, the Internet has become an alternative source of media, and sometimes a means to organize politically. The openness and the freedom of expression allowed through blogs, social networks, video sharing sites, and other tools of today’s communications technology has proven to be an unprecedented and often disruptive force in some closed societies. Governments that seek to maintain their authority and control the ideas and information their citizens receive are often caught in a dilemma: they feel that they need access to the Internet to participate in commerce in the global market and for economic growth and technological development, but fear that allowing open access to the Internet potentially weakens their control over their citizens. The ongoing situation of Google in China is representative of these issues. Legislation now under consideration in the 111th Congress would mandate that U.S.
    [Show full text]
  • For Citizens Worldwide
    EVERYONE’S GUIDE TO BY-PASSING INTERNET CENSORSHIP FOR CITIZENS WORLDWIDE A CIVISEC PROJECT The Citizen Lab The University of Toronto September, 2007 cover illustration by Jane Gowan Glossary page 4 Introduction page 5 Choosing Circumvention page 8 User self-assessment Provider self-assessment Technology page 17 Web-based Circumvention Systems Tunneling Software Anonymous Communications Systems Tricks of the trade page 28 Things to remember page 29 Further reading page 29 Circumvention Technologies Circumvention technologies are any tools, software, or methods used to bypass Inter- net filtering. These can range from complex computer programs to relatively simple manual steps, such as accessing a banned website stored on a search engine’s cache, instead of trying to access it directly. Circumvention Providers Circumvention providers install software on a computer in a non-filtered location and make connections to this computer available to those who access the Internet from a censored location. Circumvention providers can range from large commercial organi- zations offering circumvention services for a fee to individuals providing circumven- tion services for free. Circumvention Users Circumvention users are individuals who use circumvention technologies to bypass Internet content filtering. 4 Internet censorship, or content filtering, has become a major global problem. Whereas once it was assumed that states could not control Internet communications, according to research by the OpenNet Initiative (http.opennet.net) more than 25 countries now engage in Internet censorship practices. Those with the most pervasive filtering policies have been found to routinely block access to human rights organi- zations, news, blogs, and web services that challenge the status quo or are deemed threatening or undesirable.
    [Show full text]