Standard Jet DBnb` Ugr@?~1y0̝cßFNnl7Ӝ.(!`{6߱cC'83y[z"|*|wÂf_Љ$g'DeFx -bT4.0 S  Y+0ȖS ++ Y   Y Y  Y Y  Y  Y  Y  r Y s Y E Y a Y d Y 2Y  Y   Y  jY ConnectDatabaseDateCreateDateUpdate FlagsForeignNameIdLvLvExtraLvModule LvPropName OwnerParentIdRmtInfoLongRmtInfoShortTypeni<Ζ<<<ΖYYIdParentIdName        OYkY^QOQSQbkQS*Y Y Y  Y 2ACMFInheritableObjectIdSID YObjectId Y]0ȖS]Y  Y Y Y  Y  Y +Y  Y AttributeExpressionFlagLvExtra Name1 Name2ObjectId Ordernzf edY"ObjectIdAttribute -Y0ȖSY Y Y  Y  Y P+ Y S Y  Y <ccolumn grbiticolumnszColumnszObject$szReferencedColumn$szReferencedObjectszRelationship<< <Ζ<< <Ζ<< <ΖYYYszObject$szReferencedObjectszRelationshipS ? p + \  H  y 4 e Q =     @ @   @   @@@@@@@  JLkmiJMmMJmQUdiYQkQbmiYQkYvYiMdoikQ[Jb:66BYvYiMdoikQ[obQ:66@YvYifoL^YMJmYdb8HHD:66>[YvYifoL^YMJmYdb:66>db^vYvYifoL^YMJmYdb:66@db^vJomdQuQMJO`YbOJmJJMMQkkfJUQkOJmJLJkQkSdi`k `dOo^Qk iQ^JmYdbkWYfkiQfdimk kMiYfmk kvkiQ^ mJL^Qk+kh+MMJmQUdiYQk+kh+MJLkmiJMm+kh+SJLkmiJMm+kh+SMJmQUdiYQk+kh+SQbmiYQk+kh+iYvYiMdoikQ[Jb:66B+kh+iYvYiMdoikQ[obQ:66@ +kh+iYvYifoL^YMJmYdb8HHD:66>o!+kh+iYvYifoL^YMJmYdb:66>db^v"+kh+iYvYifoL^YMJmYdb:66@db^v#MJmJMJmQUdiYQk$QbmiYQk%`kvkJMMQkkdL[QMmk&`kvkJMMQkku`^'`kvkJMQk`kvkY`QuMd^o`bk(`kvkY`QukfQMk)`kvkdL[QMmk`kvkhoQiYQk`kvkiQ^JmYdbkWYfkJMMQkk^Jvdom`kvkOLko``JivYbSdokQiOQSYbQOMJmJMJmQUdiYQkQbmiYQk*  @ @ @ @ @           !"#*$% & ' ( )4  @ @ @ @ @ @ @ @ @ @ @ @ @ @ @ @ @                         $ % & ' ( ) * + , - . 2 3 4 5 6 7 8 9 : ; < = > ? @ A B C D E F G H I J K L M N O ' ' ' ' ' ' ' ' ' '  '  '  '  '  ' ' ' ' ' ' ' ' ' ' ' ' ' / 0 1 '2 '3 '4 '5 ') '* '+ '6 '7 '8 '9 ': '; ' ' ' ' ' '  '! '" '# '$ '% '& '' '(  ',  '-  '.  '/  '0  '1          ! " # @ @ @ @ @ @ @ @ @ @ @        !#$%&'()*+,- ./"023456789:;< =>1?ABCDEFGHIJK L@       MJmJMJmQUdiYQkQbmiYQk @QbmiYQk  @MJmJMJmQUdiYQk +d Oc P  m 2 | -  >X FF|D DI&0l:i@:i@CATA categoriesEntriesfNNNNNNNNNNL    r;@,;@MSysAccessXMLf4MR2KeepLocal  T|||<<<<<<<: @ Eq@ԍ@MSysAccessObjectsfDDDDDDDDDDB  pT@ @aN@aN@~sq_rIYIR publication 2005 onlyf4MR2KeepLocal T```````^ @% ?Ç@?Ç@~sq_rIYIR publication 1997-2004f4MR2KeepLocal T```````^ @% @@~sq_rIYIR course Jan 2006f4MR2KeepLocal TTTTTTTTR @E~@E~@~sq_fEntriesf4MR2KeepLocal Tzzz:::::::8 @% z@z@~sq_fAbstractf4MR2KeepLocal T|||<<<<<<<: @%  `g,6g@ܙi@Adminf@& 8,,,,,,,,,* WtW@|?O@autoexecf22222222220 sq@sq@IYIR publication 2005 onlyfVVVVVVVVVVT ;@;@IYIR publication 2004 onlyfVVVVVVVVVVT o:@o:@IYIR publication 1997-2004fVVVVVVVVVVT  >4;@>4;@IYIR course June 2005fLLLLLLLLLLJ  @@IYIR course Jan 2006fJJJJJJJJJJH  1wpT@=#E@Entriesf@$ <<<0000000. @ fҹ͇@fҹ͇@Categoriesf66666666664  +͇@+͇@Abstractf22222222220  @'2oT@@'2oT@UserDefinedf88888888886  `0oT@[@SummaryInfof"@$ DDD88888886 @ ypT@x*@AccessLayoutf4MR2KeepLocal TB') +%zz:::::::8 @B?oT@B?oT@SysRelf..........,  >oT@ >oT@Scriptsf0000000000.  oT@ >oT@Modulesf0000000000.  O@Y>O@DataAccessPagesf@@@@@@@@@@> @VoT@@VoT@MSysRelationshipsgDDDDDDDDDDB @VoT@@VoT@MSysQueriesg88888888886 @VoT@@VoT@MSysACEsg22222222220 @VoT@@VoT@MSysObjectsg88888888886 % @VoT@@VoT@Relationshipsg<<<<<<<<<<: @VoT@@VoT@Databasesg44444444442 @VoT@@VoT@Tablesg.........., #M|<uW9 Y ;  U ` & v  ^  a'y=Q%b({@rTa){B Entries.Abstract/ gEntries.Keyword. gEntries.Entry, gEntries.Number- gEntries.Volume- gEntries.Source- gEntries.Date+ g[CATA categories].Description< g[CATA categories].Code5 gEntries CATA categories///  G  GCATA categoriesEntriesR@I=/  Entries.Abstract/ gEntries.Keyword. gEntries.Entry, gEntries.Number- gEntries.Volume- gEntries.Source- gEntries.Date+ g[CATA categories].Description< g[CATA categories].Code5 gEntries CATA categories///  G  GCATA categoriesEntriesR@I=/  Entries.Abstract/ gEntries.Keyword. gEntries.Entry, gEntries.Number- gEntries.Volume- gEntries.Source- gEntries.Date+ g[CATA categories].Description< g[CATA categories].Code5 gEntries CATA categories///  G  GCATA categoriesEntriesR@I=/  Entries.Abstract/ gEntries.Keyword. gEntries.Entry, gEntries.Number- gEntries.Volume- gEntries.Source- gEntries.Date+ g[CATA categories].Description< g[CATA categories].Code5 gEntries CATA categories///  G  GEntries   G  GCATA categories///   G  GEntries   G  G([__Code] = [Select])4 'EntriesCategories33   G__Code O  GNLVAL\ f[CATA categories].Code = Entries.[Select][CATA categories].Code = Entries.[Select][CATA categories].Code = Entries.[Select][CATA categories].Code = Entries.[Select][CATA categories].Code = Entries.[Select]C nP]% w >  q CATA categoriesEntriesR@I=/  Entries.Abstract/ gEntries.Keyword. gEntries.Entry, gEntries.Number- gEntries.Volume- gEntries.Source- gEntries.Date+ g[CATA categories].Description< g[CATA categories].Code5 gEntries CATA categories///  G  GCATA categoriesEntriesR@I=/ +YiQbmQOdb\QvN Y Qi Y bmCodeDescriptionYY.rBPrimaryKeyv1)Rv\AS2 q Q 0  ` ? c B  u L  m B EF">1Z+}Y5tHjO1DLaw Enforcement & Forensics (technology, organizations, proposals, litigation, rulings, judgements)k1C5Phishing1C4Anonymity1C3Pseudonymity1C2Identity theft1C1Impersonation1CIdentity, impersonation, spoofing)1B9Non-virus hoaxes, urban myths'1B8Traffic in women, slavery#1B7Hate groups, speech1B6Auctions1B5Gambling1B4Stalking & harassment1B3Pedophilia, kidnapping, Net-adoption fraud41B2Child pornography1B1Adult pornography1BPornography, Net-harm, cyberstalking, gambling, online auctionsH1A6Criminal hacker psychology$1A5Criminal hacker organizations'1A4Criminal hacker publications&1A3Biographical notes on individual criminals (including arrests, trials)P1A2Criminal hacker testimony in court or committees:1A1Criminal hacker conventions and meetings21ACriminal hacker scene (conventions, meetings, testimony, biographies, publications)[19.9Counterfeit products (hardware, clothing etc.): 19.8Plagiarism & cheating! 19.7Counterfeit legal or business documents3 19.6Counterfeit currency, credit-cards, other negotiable tokensG 19.5Games piracy 19.4Books / e-books piracy" 19.3Movies / TV piracy 19.2Music piracy 19.1Software piracy 19Counterfeits, forgery (including commercial software/music piracy)J18.2Loss of equipment 18.1Theft of equipment 18Theft/loss of equipment (laptops, ATMs, computers, cables, network components)V17.3Phreaking, cramming, uncapping, theft of services= 17.2Web vandalism 17.1Penetration 17Penetration, phreaking, cramming, uncapping (entering systems, stealing telephone or other services)l16.6Disinformation, PSYOPS" 16.5Hacktivism 16.4Military & government perspectives on INFOWAR9 16.3Infrastructure protection & homeland security9 16.2Industrial information systems sabotage3 16.1Industrial espionage 16INFOWAR, industrial espionage, hacktivism115.3Slamming 15.2Extortion 15.1Fraud 15Fraud (not embezzlement), extortion, slamming514.5Virus hoaxes 14.4Trojans & rootkits 14.3Virus/worms 14.2Worms 14.1Viruses 14Viruses, virus-hoaxes, Trojans (assembly level or macro: not ActiveX or Java)V13.4Obsolescence 13.3Embezzlement 13.2Data corruption & destruction) 13.1Data diddling 13Data diddling, data corruption, embezzlement412.3Injection 12.2Interception 12.1Wiretapping 12Wiretapping, interception (not jamming; not govt/law enforcement)I11.4Covert channels 11.3Data theft 11.2Unauthorized disclosure# 11.1Data leakage 11Breaches of confidentiality#10HEADING: Computer Crimes (cases, indictments, convictions, sentences)M08About the Editor07Acknowledgements06The INFOSEC UPDATE Course!05Using IYIR04Copyright03Sources of Information02Taxonomy of INFOSEC Issues"01Introduction0UnclassifiedV<\+ Z :  b F  m G z X = ` 3 w( aBqJc; a0kzP![,34.1Net filters 34Net filters, monitoring (technologies).33.4Risk analysis & management& 33.3Authorization, access controls* 33.2Spam, spim, spit & splogs% 33.1Acceptable use policies# 33Policies, risk analysis, risk management032.2Censorship outside the USA& 32.1Censorship in the USA! 32Censorship, indecency laws, 1st amendment (law)731.4Outsourcing 31.3New technology with security implications5 31.2Estimates, guesses, predictions, forecasts concerning securityJ 31.1Surveys, studies, audits of security0 31The state of information security & technology630HEADING: Management & Policy$29.7Outsourcing 29.6Flash crowds, social e-links( 29.5Online legal proceedings$ 29.4Online & electronic voting& 29.3Digital divide 29.2Cyberdating & cybersex" 29.1Addiction, games & violence' 29Sociology of cyberspace28.6RFID tags 28.5Serial numbers 28.4Cell/mobile phones/GPS/cameras* 28.3Keystroke loggers 28.2Scumware 28.1Spyware, Web bugs & cookies' 28Automated surveillance27.7Anti-malware technology# 27.6Honeynets 27.5Honeypots 27.4Firewalls & other perimeter defenses0 27.3Intrusion detection systems' 27.2Port scans 27.1Vulnerability assessment$ 27Security tools26.4Distraction 26.3Heat 26.2Toxic materials 26.1Radiation 26Health effects of electronic equipment (phones, screens, etc.)F25.3RFI, HERF, EMP/T 25.2Jamming 25.1Remote control, RATs, reprogramming, auto-updates= 25Computer remote control & disruption,24.BRobust systems (hw / sw)$ 24.ASecure processors 24.9Peer-to-peer networking# 24.8MAC OS 24.7SWDR (Software-defined radio)) 24.6WAP, WEP, Wi-Fi, Bluetooth, 802.11, WiMax5 24.5LAN OS 24.4TCP/IP & HTTP 24.3UNIX flavors 24.2Windows NT/2K/XP 24.1Windows 9x/Me 24Operating systems, network operating systems,TCP/IP problems (alerts & improvements)\23.9PERL, CGI scripts 23.8SMS 23.7VoIP 23.6Web-site infrastructure, general Web security issues@ 23.5E-mail & instant messaging or chat. 23.4HTML, XML, browsers 23.3ActiveX 23.2Javascript 23.1Java 23Internet tools22.4Accidental availability disruptions/ 22.3DoS countermeasures 22.2DDoS attacks 22.1DoS attacks 22Availability problems21.5Robots, botnets 21.4SCADA (supervisory control and data acquisition) systems, vehicle controlsV 21.3Embedded processors 21.2Security product QA failures( 21.1General QA failures 21Quality assurance failures including design flaws920HEADING: Emerging Vulnerabilities & Defenses41D4Government funding for law enforcement01D3Litigation, legal rulings, judgements affecting law enforcementI1D2Technology for law enforcement(1D1Organizations, cooperation for law enforcement8JxU/lC i H . i 7 * G  Y  q*Q@$_&h2\qV>' 4BIntellectual property: patents, copyrights (law)84A9Net neutrality4A8Liability4A7Spam4A6Libel4A5Archives4A4Blocking4A3Jurisdiction4A2Pointing, linking, deep linking, metatext34A1Framing4AEvolution of Net law: framing, pointing, linking, jurisdiction, neutralityR49.2Non-US government surveillance of citizens6 49.1US government surveillance of citizens2 49Government surveillance, legislation regulating govt surveillance, case-lawS48.3Non-US intellectual property laws- 48.2Non-US computer-crime laws& 48.1Non-US cryptography laws$ 48Foreign cyberlaws (not cases or sentences)247US computer-crime laws46Cryptography exports from US; Key escrow045.9E-shopping carts 45.8E-commerce laws 45.7Sales taxes on Internet commerce, 45.6Smart cards and other e-commerce security measures> 45.5Digital-rights management (DRM); e.g., copy protection, digital watermarksV 45.4E-payments; e.g., credit-cards, e-brokers5 45.3Micropayments 45.2Digital cash 45.1PKI (Digital signatures / certificates)3 45E-commerce security, digital signature, products, digital cash, e-paymentsR44.3Steganography 44.2Crypto products 44.1Crypto algorithms 44Encryption algorithms, products (including steganography)A43.6E-mail authentication (e.g., SPF & SenderID)8 43.5Single sign-on 43.4Kerberos 43.3Passwords 43.2Biometrics 43.1Tokens 43I&A products (tokens, biometrics, passwords, Kerberos)>42.3Crypto product implementation flaws/ 42.2Brute-force attacks 42.1Crypto algorithm weaknesses' 42Crypto algorithms (weakness, brute-force attacks, implementation flaws)O41Cryptanalysis techniques & tools(40HEADING: Defensive Technology, Law of E-commerce, Intellectual PropertyO38.9Medical information & HIPAA' 38.8Law enforcement & privacy rights, 38.7Other case law, legislation & regulation concerning individual privacy (not govt surveillance)j 38.6US case law, legislation & regulation concerning individual privacy (not govt surveillance)g 38.5EU case law, legislation & regulation concerning individual privacy (not govt surveillance)g 38.4International agreements on security, individual privacy, Net lawM 38.3Industry efforts for individual privacy protection> 38.2Trade in personal information) 38.1Consumer / employee / individual profiling & surveillance (non-governmental)X 38Consumer/employee / individual privacy, profiling & surveillance (non-governmental)[37.ABooks 37.9White papers 37.8Web sites 37.7Conferences 37.6Industry courses 37.5Doctoral programs 37.4Master's programs 37.3Undergraduate programs" 37.2High school programs 37.1Elementary & middle school programs/ 37Education in security & ethics&36Responses to intrusion35.3Politics & management of the DNS, 35.2Trademarks vs DNS 35.1Cybersquatting 35DNS conflicts, trademark violations (Net, Web)634.2Usage monitoring, audit trails (employees, children)@ L  nQ~9 t TTEMPORARY PLACEHOLDER4DFunny / miscellaneous4C5Academic/Industry/Vendor/Govt efforts/4C4Professional certification in security, auditing:4C3Certification of site security, privacy protection<4C2Risk management methodology & tools-4C1Paradigms, security standards'4CSecurity paradigms, risk management, site-security certification, professional certificationd4B5Trademarks4B4EULA (End-user license agreements),4B3Reverse engineering4B2Patents4B1Copyrights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m  Yh5commitN  hQ hhhhhY Y  Y i Y " Y o Y o Y u Y o Y tIDDate Source Volume NumberAbstractKeyword Select Extrah sU ibhhu  ryatyi rc.fl  annSut ndYYYYY,CATA categoriesEntriesDateKeyword NumberPrimaryKey w2 Q    !̛ÂmHPa`ɧI|$?z(nI(9Ϫsv}>I{)U~2k%;$p@!Hל$S 0|8(Y2 Ϻ7uO]̖=ix[Oێ ?nFݜs9n/{|>̆_b_N~qEv]}Pww})6 wDWɚi=tӧ@_b 99=@):a As*m0 Wz-{\߯;3r￿}w}~}߿}}߿{~}}߿߿߿{}}߿ @@@@@@@A@ @ !AAA@    @@ @   @@  @  ! @  !   @  @   @ !A@ @  @  @@@@ @B@ @@3LVAL Po1V[British banks began installing iris-scanning devices at ATMsBritish banks began installing iris-scanning devices at ATMs for positive identification and authentication of customers.European plans for a concerted response to US plans for control of the domain name system collapsed in Brussels in early July.The Palm VII palm computer from 3-Com included elliptic curve public-key cryptography from Certicom.The government of Serbia claimed that the CIA hijacked their Web site but said in April that everything was OK now.The US Information Agency's Web site was severely damaged in January by vandals who installed Trojan Horse software.The IETF rejected proposals for including support for wiretapping in Internet standards.The National Hockey League was down for five days in late May due to a distributed denial-of-service attack.The Jewish Anti-Defamation League protested to Yahoo for allowing several hate-speech groups on its service.The site < http://y2kmistakes.com > published an extensive list of screen shots from Web sites with Y2K problems.PDF documents created with Adobe Acrobat in 1998 were not readable using Acrobat 5.0 in 2001.Y2K BUG BELATEDLY BEDEVILS NORWAY'S TRAINS The Y2K glitch hit Norway's national railroad company a year later than expected, when none of the company's 16 new airport express trains or 13 high-speed long-distance Signatur trains would start on the morning of Dec. 31. The company performed a quick work-around by resetting the computers to Dec. 1, 2000, and the trains were able to start up on ignition. "We didn't think of trying out the date 31/12/00," says a spokesman for Adtranz, the German producer of the new trains. "Now we have one month to find out what went wrong so we can fix the problem for good." (AP/San Jose Mercury News 1 Jan 2001) http://www0.mercurycenter.com/svtech/news/breaking/ap/docs/797241l.htmYAHOO TO BE PROACTIVE IN POLICING COMMERCIAL POSTINGS Yahoo has adopted a new "proactive" monitoring program that will use software to accomplish an initial review of all commercial postings on its auctions, classified sections, and shopping areas. If the software detects any postings that appears to violate the site's policies hateful or violent material, it will give the senders the opportunity to revise their submissions or appeal the rejection to a human reviewer. Yahoo has been under pressure from human rights groups to take a more proactive stance against auctions of Nazi memorabilia and similar kinds of activities, and believes its new monitoring process will show that it has "thought about these issues in good faith." The monitoring will apply only to the commercial side of Yahoo and not to its discussion groups or home pages: "There we want to promote inclusiveness. We don't want Yahoo deciding who can or cannot speak in public debates." (New York Times 3 Jan 2001) http://partners.nytimes.com/2001/01/03/technology/03YAHO.htmNEW OFFICIAL SELF-SERVICE LITIGATION SYSTEM AVAILABLE IN ENGLAND/WALES UK lawyer Tony Ford discusses a report in the Daily Telegraph about a new online litigation service, "Money Claim Online," in England and Wales. Through this service ordinary citizens can contest cases online, where the amount in dispute is less than 100,000 UK pounds. Legal proceedings are conducted and judgments are passed through a Web browser. Tony Ford worries about the lack of identity authentication of the parties using this service. He is also concerned about "other gross miscarriages of justice". In response, contributor Robin Crorie points out that "Money Claim Online" is service that has actually been offered for at least two years. He notes that in both "Money Claim Online" as well as its physical analogue, there are no identity checks of the parties in contest.G _ x  j = B thxqKWp:] @NewsScan9@)criminal hacker indictment trial intrusion17.1VVP$ @NewsScanj@)legislation censorship video game violence children32.1__Y$ @NewsScan; http://washingtonpost.com/wp-dyn/articles/A47581-2001Jan25.htmlY@(criminal hacker Web vandalism DoS denial of service DNS domain name service colocation22.1eYYY @NewsScan@(availability failure operations22.4KKE$ @NewsScan@(Web index patent infringement claim lawsuit intellectual property4B2llg$ `@NewsScanu@'privacy marketing children study survey31.1SSM$ `@NewsScanG@'privacy Web data collection regulation investigation advertising38.6llf$ `@NewsScan@$Web privacy personal information opt out legislation38.6``Z$ `@NewsScan;@$standards corruption sabotage lawsuit settlement ntellectual property reverse engineering license contract4B3$ @@NewsScant%]&child pornography computer-generated images law jurisprudence32.1iic$ @@NewsScanu@$intellectual property protection watermark audit trail privacy contract law45.5wwq$  @NewsScan@!availability power fluctuation outage generators calibration22.4hhb$ @NewsScan@!criminal hacker trial plea guilty distributed denial of service DDoS1A3ooj$  @NewsScan"]&censorship library lawsuit law CIPA filtering32.1YYS$ @NewsScanG@!linking URL advertising intellectual property law jurisprudence4A2jje$ @NewsScanl@ identity theft bogus accounts fact-checking background quality assurance design1C2zzu$ `@NewsScan@ cellular phone mobile cancer research26OOK$ `@NewsScan;@ cooperation alliance technology hacking ISAC1D1WWR$ @@NewsScan@HIPAA privacy illness health records solicitation marketing38.6gga$ @NewsScan@trespass linking bots spiders Web lawsuit jurisprudence precedent4A2llg$ @NewsScan@pornography technology innovation1B1LLG$ @NewsScan@online voting technology29.4DD>$ @NewsScan@taxation Web jurisdiction international agreement OECD4A3aa\$ @NewsScanw@EAR Export Administration Regulations loosening restrictions high technology supercomputers46$ @NewsScan@spam personal preferences arrogance stupidity auction33.2aa[$ @NewsScan@data subject personal information database privacy38.2^^X$ @NewsScan@e-commerce dispute resolution alternative arbitration45.6aa[$ @NewsScan@survey CIO confidence security law enforcement31.1ZZT$ @NewsScan; RISKS2118@Y2K quality assurance bug denial of service21.1ff`3'# @NewsScan@hate speech auction censorship filtering1B7SSN$ @4@RISKS; Tony Ford http://www.telegraph.co.uk/news/main.jhtml ?xml=/news/2002/01/26/nsue26.xml&sSheet=/news/2002/01/26/ixhome.html http://www.courtservice.gov.uk/mcol/ Robin.Crorie at cheshire.pnn.police.uk\@UK legal service online Web browser litigation non-US1D2>>94LVAL - Sl<VAOL's promised expansion would increase its capacity from AOL's promised expansion would increase its capacity from 10 million to 16 million sessions a day, at a cost of $400M.IBM responded to e-mail delivery problems on its top-ranked Internet Connection by quadrupling its capacity.Some Web sites pass cookies to the next URL which can include sensitive information.A new bug in Netscape 3.0, 3.01 and 4.01 beta 1 allows a Web site to obtain a browser's e-mail address.Sen. Kerrey addressed the Senate in October with a stirring call to action on information warfare preparedness.Mike Brunker wrote a good overview of Internet security in July .TECH ALLIANCE TO DEVELOP NEW VOTING SYSTEM Unisys, Microsoft, and Dell will jointly work on a project to create a new voting system that will integrate all election processes, from voter registration to ballot counting, and avoid the confusion and uncertainty experienced in the recent U.S. presidential elections. (Reuters/San Jose Mercury News 11 Jan 2001) http://www.mercurycenter.com/svtech/news/breaking/reuters/docs/833061l.htmDEFUNCT TOYSMART AGREES TO DESTROY CUSTOMER DATABASE Online etailer Toysmart, which was sued by the Federal Trade Commission and other plaintiffs to prevent it from selling its customer database when it went out of business, has agreed to destroy the database in exchange for $50,000 from a subsidiary of its majority stockholder, the Walt Disney company. A spokesman for the privacy group TRUSTe said, "This is a landmark case because it tells other companies that the privacy promises you make while you're in business must be kept when you go out of business. If you don't keep them, there are third parties that will stop you." (AP/USA Today 10 Jan 2001) http://www.usatoday.com/life/cyber/tech/cti977.htmE-COMMERCE PROTOCOL AIMS AT QUICK DISPUTE RESOLUTION In an effort to speed up e-commerce dispute resolution, a number of major companies, including AT&T, DaimlerChrysler and Microsoft, are signing on to an "e-commerce protocol" drafted by the American Arbitration Association. The document, being released today, lists only vague principles, such as "fairness," "continuity of business" and "commitment to technology," but arbitration association president William K. Slate II says his organization will be rolling out over the next several months "proprietary" technologies that will make it possible to resolve disputes quickly. (Wall Street Journal 4 Jan 2001) http://interactive.wsj.com/articles/SB978566423262962375.htmCIOs: "WHAT, ME WORRY?" A national poll of 1,400 CIOs reveals that 90% have confidence in their network security, despite estimates that billions of dollars are lost every year to cybercrime. The survey, conducted by RHI Consulting, has raised eyebrows among security experts who point out that it's generally in a CIO's best interest to keep quiet when security breaches occur. A recent survey conducted by the Computer Security Institute indicated that more than half of the respondents said they did not report the intrusions to law enforcement out of fear of negative publicity or that rival companies would use the information to competitive advantage. In addition, many CIOs may feel that they must live with a "buffer of acceptable risk." "Just as credit card companies accept some level of loss as a cost of doing business, so some CIOs are saying, 'if I do a really solid job of protecting my systems, then I can live with the low-level pain that some break-ins cause,'" says one expert. Meanwhile, a 1999 survey found that Fortune 1000 companies lost more than $45 billion in thefts of proprietary information that year. (InfoWorld 3 Jan 2001) http://www.infoworld.com/articles/hn/xml/01/01/03/010103hncios.xml?p=br&s=2lLVAL z OECD REACHES CONSENSUS ON WEB TAXES The Organization for Economic Cooperation and Development, which represents 30 leading industrialized nations, says its members have reached a landmark agreement that defines how countries should tax business conducted over the Internet. Tax experts say the deal marks an important milestone, but that wealthy nations need to hold further talks to develop a comprehensive approach to e-commerce taxation. The OECD's committee on fiscal affairs ruled that doing business through a Web site would not leave a company liable to taxation in the country from which the Web site had been accessed. The exOECD REACHES CONSENSUS ON WEB TAXES The Organization for Economic Cooperation and Development, which represents 30 leading industrialized nations, says its members have reached a landmark agreement that defines how countries should tax business conducted over the Internet. Tax experts say the deal marks an important milestone, but that wealthy nations need to hold further talks to develop a comprehensive approach to e-commerce taxation. The OECD's committee on fiscal affairs ruled that doing business through a Web site would not leave a company liable to taxation in the country from which the Web site had been accessed. The exemption from liability applies even if the company's Web site is hosted by a third party, such as an ISP. But the committee ruled that a company should generally pay tax in countries hosting servers through which the business was conducted. A company would be liable for paying tax if the server were performing functions that formed a core part of the business activity, such as downloading software. Jacques Sasseville, head of the OECD's tax treaty unit, said the consensus marked an interim solution and that more clarification would be necessary. (Financial Times 11 Jan 2000) http://news.ft.com/news/industries/internet&e-commerceFURTHER RELAXATION OF TECHNOLOGY EXPORT REGULATIONS The Clinton Administration has relaxed restrictions on the export of high-speed commercial computers, and will now add to the list of so-called "Tier 1" countries that U.S. manufacturers can sell computers without obtaining individual export licenses the countries of Central and South America; South Korea and many other Southeast Asia countries; Slovenia; most countries in Africa; and Lithuania. The new guidelines will be reviewed by the Bush Administration after it takes office. (New York Times 11 Jan 2001) http://partners.nytimes.com/2001/01/11/technology/11EXPO.htmlE-BAY PONDERS THE MEANING OF THE WORD "NO" Online auctioneer eBay has told its 6 million users that some sort of system glitch had misinterpreted the desire of many of them to receive its "valuable email communications with news, offers and special events." According to eBay, "many of your Notification Preference defaults were set to 'no' rather than to 'yes,' which means that unlike other eBay members, you're not receiving these types of communication." So it has changed those Notification Preferences from 'no' to 'yes," and that has angered many eBay uses, even though the company insists: "Our history tells us that the great majority of people leave it in the 'yes' position." (Washington Post 10 Jan 2001) http://washingtonpost.com/wp-dyn/articles/A39734-2001Jan9.html-LVAL ?ALOOPHOLES IN NEW HEALTH RECORD PRIVACY REGULATIONS The Clinton administration's new federal privacy regulations explicitly allow doctors, hospitals, health services, and their business associates to use patient records for marketing and fundraising. People with a certain disease could receive unsolicited telephone calls touting relevant health products or asking for donations for research to find a cure for that disease. Consumer and privacy advocates are charging that these provisions of the privacy laLOOPHOLES IN NEW HEALTH RECORD PRIVACY REGULATIONS The Clinton administration's new federal privacy regulations explicitly allow doctors, hospitals, health services, and their business associates to use patient records for marketing and fundraising. People with a certain disease could receive unsolicited telephone calls touting relevant health products or asking for donations for research to find a cure for that disease. Consumer and privacy advocates are charging that these provisions of the privacy law violate its basic intent, and medical ethicist Thomas Murray says: "Your medical record was meant for your medical care. Now your medical record becomes a marketing tool." But Health and Human Services official Gary Claxton defended the law: "It's the best we could do and we think we did a good job. There's going to be a lot of discussion as this is implemented. If changes need to be made, they should be made." (Washington Post 16 Jan 2001) http://washingtonpost.com/wp-dyn/articles/A63303-2001Jan15.htmlWHAT DOES "TRESPASS" MEAN IN CYBERSPACE? Recent court cases have used the ancient law of "trespass" to rule against companies that used software robots to search the public Web sites of other companies to capture sales leads for mass marketing purposes. However, the original idea of trespass is that trespasser causes some kind of harm (such as crashing the site being trespassed upon). But what if there is no harm - crash or traffic gridlock or anything else? The recent decisions do not seem to require that a plaintiff allege real harm, and some legal observers are concerned that the decisions will have bad unintended consequences. Dan L. Burk, a University of Minnesota law professor, warns: "If I don't like your linking to my site, or searching my site, even though it is open to the public, and I say, 'Stop,' you have to stop... whether you are actually hurting me or not." (New York Times 12 Jan 2001) http://partners.nytimes.com/2001/01/12/technology/12CYBERLAW.htmlPORN INDUSTRY A FORCE IN DRIVING INNOVATION The world's oldest profession has been instrumental for years in driving technological innovation. The porn industry was an early force in popularizing Polaroid cameras, VCRs, and CD-ROMs, and became the first industry to make money on the Web. Now it's turning its eye toward DVD technology and has begun making DVD movies that resemble video games, allowing viewers to watch and play along. "The technology fits our product," says one cutting edge DVD producer. Meanwhile, the interactive technology now pioneered by porn purveyors likely will find its way into mainstream Hollywood studios before too long: "It has a great children's application, says David Crawford, DVD production manage