One-Third of U.S. Online Workforce under Internet/E-Mail Surveillance
Andrew Schulman, 7/9/01
Privacy Foundation
Inexpensive Technology Drives Employee Monitoring: A new Privacy Foundation study finds that 14 million employees in the U.S. have their Internet or e-mail use under continuous surveillance at work. Worldwide, the number is estimated at 27 million, about one-quarter of the global online workforce... [Full Article]

Dealing with Deviants on Your Network
By Ellen Messmer
Network World, 03/31/03
Network logs of Internet activity at MassMutual Financial Group indicated a top executive was spending much of his time in chat rooms, where he claimed to have molested his 12-year-old daughter. That discovery by the IT department and its security team triggered a rapid investigation with help from local law enforcement that culminated in the executive's dismissal. It also led to the unraveling of the executive's family after investigators interviewed his daughter. The investigators came away convinced he hadn't molested her, but was hooked on a sick fantasy that was consuming his life... [Full Article]

"I have been using iPrism and am very pleased with its performance. iPrism has proven very effective in our corporate environment at blocking/monitoring internet content, as well as providing reporting to the department and plant managers for which they use as a tool in the management of their staff."
Patrick O'Donnell
Senior Systems Specialist
Paulo Products Company

Supreme Court Upholds Library Net filters
Vote is 6-3
By Paul Roberts, IDG News Service June 23, 2003
The U.S. Supreme Court voted 6-to-3 to uphold a law requiring the use of Internet filtering technology at public libraries that receive federal funding... [Full Article]

Enterprise Networks / Applications
Backspin: Sex, likely lies and software
By Mark Gibbs
Network World, 01/28/02
"The patterns in people's language change when they are uncertain or lying. We can compare basic patterns in words and grammatical structures vs. benchmarks to detect likely lies." -- Peter Dorrington, business solutions manager at SAS, quoted in the London Financial Times, Jan. 20....

The product, which SAS announced on Jan. 21 under the name Text Miner, can sift through e-mail and text files to "identify trends and create more actionable results for management." What is really interesting is that it heralds a new age in employee monitoring. To date, e-mail monitoring has been, in the main, about blocking dirty words and verboten URLs. There have been attempts at detecting "adult" pictures in e-mail, aka "fleshspotting," but I've heard of nothing that is really worth using.

Anyway, the whole idea of paying attention to tone, context and intention in e-mail is wild. Usually we've just looked for and acted on the anomalies - you know, the accountant who was running a spam factory sending out a million messages per day whom you detected because he got more than his usual quota of "bounces" in a week. But now we can know when our people are lying in messages traveling up and down the corporate hierarchy, as well as when we're lying to our customers and when our customers are lying to us. And the guardians who run the detection software will know all kinds of interesting things (IT Tech No. 1: "Hey, you know Bill in Engineering? He's cheating on his wife again - the detector says so." IT Tech No. 2: "Same old - give him the usual blackmail price. He's a good customer.")...[Full Article]

Civil Liberties in Cyberspace
When does hacking turn from an exercise of civil liberties into crime?
by Mitchell Kapor
published in Scientific American, September, 1991
On March 1, 1990, the U.S. Secret Service raided the offices of Steve Jackson, an entrepreneurial publisher in Austin, TX.  Carrying a search warrant, the authorities confiscated computer hardware and software, the drafts of his about-to-be-released book and many business records of his company, Steve Jackson Games.  They also seized the electronic bulletin-board system used by the publisher to communicate with customers and writers, thereby seizing all the private electronic mail on the system.  The Secret Service held some of the equipment and material for months, refusing to discuss their reasons for the raid.  The publisher was forced to reconstruct his book from old manuscripts, to delay filling orders for it and to lay off half his staff.  When the warrant application was finally unsealed months later, it confirmed that the publisher was never suspected of any crime...

Like a growing number of businesses, Steve Jackson Games operated an electronic bulletin board to facilitate contact between players of its games and their authors...

Law enforcement officers apparently became suspicious when a Steve Jackson Games employee -- on his own time and on a BBS he ran from his house -- made an innocuous comment about a public domain protocol for transferring computer files called Kermit. In addition, officials claimed that at one time the employee had had on an electronic bulletin board a copy of Phrack, a widely disseminated electronic publication, that included information they believed to have been stolen from a BellSouth computer.  The law enforcement officials interpreted these facts as unusual enough to justify not only a search and seizure at the employee's residence but also the search of Steve Jackson Games and the seizure of enough equipment to disrupt the business seriously.  Among the items confiscated were all the hard copies and electronically stored copies of the manuscript of a rule book for a role-playing game called GURPS Cyberpunk, in which inhabitants of so-called cyberspace invade corporate and government computer systems and steal sensitive data.  Law enforcement agents regarded the book, in the words of one, as "a handbook for computer crime."... [Full Article]

Song-Swapping FAQ
By Frank Ahrens
The Washington Post Wednesday, September 10, 2003; 1:30 PM
Earlier this summer, a court ruled that Internet service providers, such as Verizon, must turn over the names and addresses of customers who the RIAA believes are violating copyright law by sharing songs.  RIAA investigators search song-sharing Web sites, such as Kazaa and Grokster, looking for song titles and artists.  When the RIAA finds a customer with a significant number of song files, it begins a download, which includes the customer's Internet service provider information, identifying the customer's ISP as, say, Verizon.  Then, the RIAA gives the customer's screen name to the ISP, which must reveal the name and address of the customer.  The RIAA serves the ISP with a subpoena and the customer with a lawsuit...

The RIAA doesn't know who in the household is sharing songs so it is suing the Internet account holder. The RIAA says it doesn't care who it sues, it just wants the song-sharing stopped...

Monday's 261 lawsuits were only the first of what the RIAA promised would be thousands in the coming months. And don't believe claims of song-sharing Web sites that say you will trade anonymously.  Some of the defendants in Monday's suits used services that promised anonymity... [Full Article]

Facing the Consequences
By Michael Osterman
Network World Messaging Newsletter, 04/15/02
Regarding a government employee,
... I was caught having a Christmas greeting screensaver my family had sent me on my computer at work. An investigation was started, and every one of my e-mails and Internet sessions was delivered to my manager. While no improper material was found, my manager discovered that I had inquired about digital cameras for personal use. My defense was that I was new to the organization and my former employer encouraged employees to use the Internet and e-mail as a learning exercise.

The result of this infraction was that my rank was reduced by one grade, my salary was reduced for three months, and I am on probation for three years. Further, I am now recognized as a ‘trouble’ employee, I must remain with my current manager until I retire, there will be no chance for advancement because of the stigma of being a problem employee and because other managers don’t want to take the risk of hiring such an employee, and my manager now micromanages me. Prior to my infraction, my record was clean. It is like I have leprosy...[Full Article]

Addamark Builds a Log Watcher
By Michael Osterman
Network World Messaging Newsletter, 08/14/03
Addamark’s system would be useful for administrators who wanted to correlate messaging activity with other types of activity within a company.  For example, administrators could correlate employees’ use of the messaging system with use of other enterprise systems to understand how these systems were used together.  They could correlate messaging system activity on weekends with log data from entry door card-locks.  Or they could analyze the use of instant messaging and e-mail to gain a better understanding of how both systems are used...  [Full Article]