|
|
|
|
the form of the communication (eg email, request
for webpage, ‘authenticating’ your username and password) |
|
where it came from |
|
where it is going to |
|
When it was sent |
|
how long it took to transmit. |
|
It does not contain a message (content) but
could, when ‘data- based’ with the communications data of others, provide
an accurate profile of a person's
life choices, political, recreational and social activities, and the
network of contacts or friends with whom they carry out these activities. |
|
|
|
|
When you connect to the internet (whether by
phone, ADSL, leased line) your Internet Service Provider keeps logs of your
online activity. |
|
The amount of data, and period of time these
logs are kept varies from one ISP to another. |
|
Logs are kept for the period of time deemed
necessary by ISPs for normal billing purposes and other day to day
operational needs in relation to customer service. |
|
Current Data Protection Principles provide a
rights-based framework for governing how much data ISPs should retain, for
what purposes it should be used, and what rights you, the user has to
access that information. |
|
|
|
|
|
|
Current proposals by the Home Office ask ISPs to
retain logs for extended periods of time, and for purposes other than
normal business purposes, on a voluntary basis. |
|
These other purposes are primarily in the
Interests of ‘National Security’ and dealing with ‘Crime’ |
|
These proposals could see a number of public UK
authorities, in addition to Law Enforcement Agencies, gaining access to
communications data retained by ISPs, without judicial oversight. |
|
These proposals present concerns and challenges
to ISPs and Internet users in relation to legality, fair competition,
consumer confidence and privacy rights. |
|
|
|
|
|
|
|
|
|
|
The following slides illustrate the data that is
logged by many ISPs, when you connect to the Internet. |
|
|
|
|
userA@gn.apc.org [A] dials up from telephone number [B] to telephone number [C]
and is allocated IP address [D]. This unique IP number identifies UserA in
all online activity. |
|
|
|
Jan 14 12:18:56 2002 |
|
User-Name
= ”userA@gn.apc.org” [A] |
|
NAS-IP-Address = 62.188.74.8 |
|
NAS-Port = 116 |
|
NAS-Port-Type = Async |
|
Service-Type = Framed |
|
Acct-Status-Type = Start |
|
Acct-Delay-Time = 0 |
|
Acct-Session-Id = "372977312" |
|
Acct-Authentic = RADIUS |
|
Idle-Timeout = 0 |
|
Calling-Station-Id
= "02072291228” [B] |
|
Called-Station-Id = "08450885056” [C] |
|
Framed-Protocol = PPP |
|
Framed-IP-Address = 62.188.26.112 [D] |
|
Proxy-State = ... |
|
|
|
|
|
|
userA@gn.apc.org from 62.188.26.112, downloaded
0 messages and sent 3 messages totalling 24kb |
|
|
|
Jan 14 12:34:51 nfs1.gn.apc.org popper[13362]:
(v4.0.3) POP login by user ”userA" at (userxxxx.uk.uudial.com)
62.188.26.112 |
|
|
|
Jan 14 12:34:52 nfs1.gn.apc.org popper[13362]:
Stats: user 0 0 3 24052 62.188.26.112. |
|
|
|
|
MAIL FROM userA@gn.apc.org to userB@gn.apc.org
forwarded to user@hotmail.com |
|
|
|
Jan 14 12:28:53 nfs1.gn.apc.org sendmail[12719]:
MAA12719: from=userA@gn.apc.org, size=5, class=0, pri=30005, nrcpts=1,
msgid= <200201141228.MAA12719@nfs1.gn.apc.org>, proto=SMTP, relay=[194.202.158.101] |
|
|
|
Jan 14 12:28:56 nfs1.gn.apc.org sendmail[12746]:
MAA12719: |
|
to=user@hotmail.com, ctladdr=userB@gn.apc.org
(10942/10), delay=00:00:13,
xdelay=00:00:02,mailer=esmtp,relay=mail.hotmail.com [234.15.45.83],
stat=Sent (NAA26023 Message accepted for delivery) |
|
|
|
The entire history of mail sent to and from
UserA can be identified from this log. |
|
|
|
|
User ‘A’ URL requests (website browsing) |
|
|
|
66.80.62.58 - - [14/Jan/2002:12:24:21 +0000]
"GET / HTTP/1.0" 200 5319 |
|
203.115.97.60 - - [14/Jan/2002:12:24:38 +0000]
"GET / HTTP/1.0" 200 5319 |
|
192.35.241.134 - - [14/Jan/2002:12:24:40 +0000]
"GET / HTTP/1.1" 200 5319 |
|
209.247.40.108 - - [14/Jan/2002:12:24:42 +0000]
"GET /robots.txt HTTP/1.0" |
|
130.237.14.117 - - [03/Jan/2002:12:24:47 +0000]
Invalid URI in request GET /cgibin/ssi//%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/passwd
HTTP/1.1 |
|
|
|
The ‘IP’ numbers noted above (bold) can be
resolved to identify which web pages the user browsed. |
|
|
|
|
userA@gn.apc.org Online Activity Jan 14 12:18 -
12:30 |
|
|
|
Session Start: Jan 14 12:18:56 2002 |
|
User-Name: ”userA@gn.apc.org” |
|
Dialing up From: "02072291228” |
|
Dialling to: "08450885056” |
|
IP Number Allocated: 62.188.26.112 |
|
POP login at: Jan 14 12:19:59 2002 |
|
Downloaded: 0 Messages |
|
Sent: 3 messages (24kb) |
|
Sent Mail to: user@hotmail.com via
userB@gn.apc.org |
|
Browsed URL at: http:// 66.80.62.58 on
14/Jan/2002:12:24:21 |
|
Session Closes: Jan 14 12:30:25 |
|
Notes