Search Mailing List Archives


Limit search to: Subject & Body Subject Author
Sort by: Reverse Sort
Limit to: All This Week Last Week This Month Last Month
Select Date Range     through    

[liberationtech] Urgent request for tech review/input Mobile communications security/tracking/spoofing/jamming - Mexico new warrantless tracking law

Lisa Brownlee lmbscholarly2 at gmail.com
Thu Mar 29 09:50:21 PDT 2012


Hi Robert and Eric,

Thanks! I sent the attachment twice!  I had a serious hack last week and am
beginning to think it corrupted my gmail account.  All in a day's work for
privacy/security activist!

Thank you SO much!

Lisa

Here is text embedded instead of attached:

*Lisa M. Brownlee,  Esq.*

Mexico

* *

*SECOND PRELIMINARY DRAFT –NOT FOR FURTHER DISTRIBUTION/PUBLIC POSTING*

Privacy Commissioners

Via: Jules Polonetsky <http://www.facebook.com/JulesPolonetsky>, Director,
Future of Privacy Forum**

30 March 2012

*Re:      Mexico law revisions – Cellphone data – Parliamentary Gazette
Volume X, Number 3455-II, Tuesday, February 21, 2012 (hereinafter “*
LeyGeolocalización <https://twitter.com/#!/search/%23LeyGeolocalización>*MX”)
*

This memo sets forth my opinion as experienced privacy, technology/digital
rights legal scholar and practitioner, expatriate resident Mexico.  My
credentials are provided in the appended C.V.  I will be publishing my
conclusions in an article to be published by Bureau of National Affairs
(BNA) E-Commerce Law Report, which will receive international distribution
and press coverage.

The impetus behind
LeyGeolocalización<https://twitter.com/#!/search/%23LeyGeolocalización>MX
is to help mitigate MX crime problems. In particular,
LeyGeolocalización <https://twitter.com/#!/search/%23LeyGeolocalización> MX
is intended to enable the Mexican government “to investigate possible
crimes (organized crime, kidnapping, extortion, or threats) more
effectively.”[1]<file:///C:/Users/LMB/Documents/PRIVACY/Mexico%20law%20revisions%20-%20v2%20-%2030%20March%202012%20-%20Brownlee.docx#_ftn1>
No one can refute the need for and merits of such efforts. Mexico’s
crime/cartel war is an international shame. However, this law will not
cease the war. It will make it worse.

In *theory*, the measures passed would be effective to combat
cartels/organized crime. However, in *practice*, these measures suffer from
technological defects which will result in an extreme worsening of crime in
Mexico.  The Mexican public will be put at much greater risk of harm as a
result of these reforms, for the reasons herein outlined.

In addition, the measures suffer from Constitutional infirmities that,
aside from the obvious violation of rights of Mexican citizens, will
undoubtedly result in the law’s annulment by the Supreme Court, costing
millions of pesos to litigate. The goals behind these reforms are
honorable.  However,
LeyGeolocalización<https://twitter.com/#!/search/%23LeyGeolocalización>MX
is bad law and will result in substantial harm.

In short, the reforms will not achieve their intended purpose, to “inhibit
the theft of mobile phones and their use for criminal
purposes”,[2]<file:///C:/Users/LMB/Documents/PRIVACY/Mexico%20law%20revisions%20-%20v2%20-%2030%20March%202012%20-%20Brownlee.docx#_ftn2>
but instead put the Mexican public at much greater risk, giving
organized
crime both advantage and profit, and irreparably harm this country and its
people.

The defects in the reforms are outlined below.



* *
I.  Defects - # LeyGeolocalización harms the MX public

* *

*1.  The technological reform of realtime geolocation data is readily
circumvented and is being routinely, demonstrably circumvented by organized
crime.*



The overwhelming evidence of scientific/engineering research demonstrates
that circumvention—in the form of jamming and spoofing--of geolocation data
is successful and is not yet able to be defended
against.*[3]*<file:///C:/Users/LMB/Documents/PRIVACY/Mexico%20law%20revisions%20-%20v2%20-%2030%20March%202012%20-%20Brownlee.docx#_ftn3>
 I have reviewed the expert literature.  At best, defense against
jamming/spoofing is far in the
future.[4]<file:///C:/Users/LMB/Documents/PRIVACY/Mexico%20law%20revisions%20-%20v2%20-%2030%20March%202012%20-%20Brownlee.docx#_ftn4>The
burden of proof is on the government to demonstrate that this
technological intrusion on privacy a) cannot be circumvented; and

b) even in absence of circumvention, has sufficient reliability to warrant
the intrusion. As stated by one security expert, “there is no securing
these phones. Everything you connect with is an avenue of attack.”
[5]<file:///C:/Users/LMB/Documents/PRIVACY/Mexico%20law%20revisions%20-%20v2%20-%2030%20March%202012%20-%20Brownlee.docx#_ftn5>

* *

*2.  The infiltration of law enforcement by the cartels/organized crime
will place the public at severe risk of harm from abuses of the warrantless
access granted to virtually all public servants from the President down to
as-yet undefined “delegees”*

Sadly, the infiltration of Mexico’s government and law enforcement at
virtually all levels is so widely known that it hardly requires citations
in support.  Many documented cases, nonethless, are discussed in Revista
Proceso 1843.[6]<file:///C:/Users/LMB/Documents/PRIVACY/Mexico%20law%20revisions%20-%20v2%20-%2030%20March%202012%20-%20Brownlee.docx#_ftn6>If
it is simply a matter of a narco, “serving” in a position  of law
enforcement/government to obtain without warrant location data of potential
victims, we can only extrapolate the excessive abuses that will result.

*
*

*REGISTRY INFO VERY PRELIM AS THERE SEEMS TO BE PROBLEM WITH THAT PART OF
MY TRANSLATION***

*3. The registry requirement to purchase a cellphone will result in a black
market for undocumented cellphones*

The registry requirement to purchase a cellphone will result in a black
market for undocumented cellphones, causing millions if not billions of
pesos profits for cartels, as well as increase cross-border
violence.[7]<file:///C:/Users/LMB/Documents/PRIVACY/Mexico%20law%20revisions%20-%20v2%20-%2030%20March%202012%20-%20Brownlee.docx#_ftn7>Moreover,
these black market cellphones will be undocumented, leaving the
public vulnerable to crime.

*4.  The legislation violates the Constitutional rights of citizens.  *

The Constitutional concerns of this law are
globally-recognized.[8]<file:///C:/Users/LMB/Documents/PRIVACY/Mexico%20law%20revisions%20-%20v2%20-%2030%20March%202012%20-%20Brownlee.docx#_ftn8>The
potential for aggraved/criminal suppression of free speech is being
widely commented
upon.[9]<file:///C:/Users/LMB/Documents/PRIVACY/Mexico%20law%20revisions%20-%20v2%20-%2030%20March%202012%20-%20Brownlee.docx#_ftn9>

Aside from the practical considerations of this fact, discussed below, it
is incumbent upon the elected official to not violate the Constitutional
rights of the public, particularly in the name of reforms which will,
self-evidently and demonstrably, not achieve their stated purposes and that
will in fact place the public at greater risk of harm.

Even in best-case scenario, GSM geolocation data is entirely too
inaccurate, unreliable and easily circumvented/corrupted for the public to
rely upon as a safety mechanism; infringement of human rights based on this
inaccurate data is unreasonable and places public at harm of even greater
risk of harm.

For the foregoing reasons, I prevail upon President Calderon to not sign
the proposed reforms.

Respectfully submitted,


------------------------------

[1]<file:///C:/Users/LMB/Documents/PRIVACY/Mexico%20law%20revisions%20-%20v2%20-%2030%20March%202012%20-%20Brownlee.docx#_ftnref1>Mexico
*Parliamentary Gazette, year XV, Issue 3455-II, Tuesday, February 21, 2012,
*http://gaceta.diputados.gob.mx/Gaceta/61/2012/feb/20120221-II.html (last
accessed 30 March 2012)..

[2]<file:///C:/Users/LMB/Documents/PRIVACY/Mexico%20law%20revisions%20-%20v2%20-%2030%20March%202012%20-%20Brownlee.docx#_ftnref2>Id.

[3]<file:///C:/Users/LMB/Documents/PRIVACY/Mexico%20law%20revisions%20-%20v2%20-%2030%20March%202012%20-%20Brownlee.docx#_ftnref3>
See,
Know Your Enemy, Signal Characteristics of Civil GPS Jammer,
http://radionavlab.ae.utexas.edu/images/stories/files/papers/jammerCharacterizationGPSWorld_Mitch.pdf;
Organised crime ‘routinely jamming GPS’,
http://www.telegraph.co.uk/technology/news/9096080/Organised-crime-routinely-jamming-GPS.html.
In reviewing the technical reports and correspondence with which I have
been provided, and in view of study of extensive evidence and arguments to
the contrary, s*ee e.g. e-mail *Todd Humphreys
todd.humphreys at mail.utexas.edu.to  author (“[accurate to] nearest tower"
data.’  So I don't think it's fair to say that our study on GPS jamming is
"irrefutable tech evidence of the problems with  #LeyGeolocalización MX”) . I
studied all references from Dr. Humphreys. I remain unconvinced that
current GSM tracking is safe from jamming/spoofing—whether
multilateralization/cell tower-based or otherwise.  See, Royal Academy of
Engneering,   “Global Navigation Systems: reliance and vulnerabilities,“
http://www.raeng.org.uk/news/publications/list/reports/RAoE_Global_Navigation_Systems_Report.pdf;
see also, “

Straight Talk on Anti-Spoofing: Securing the Future of PN
http://radionavlab.ae.utexas.edu/images/stories/files/papers/antiSpoofStraightTalk_Wesson.pdf(Describing
myriad vulnerabilities and only long-range possible defenses).

[4]<file:///C:/Users/LMB/Documents/PRIVACY/Mexico%20law%20revisions%20-%20v2%20-%2030%20March%202012%20-%20Brownlee.docx#_ftnref4>Need
cite here.

[5]<file:///C:/Users/LMB/Documents/PRIVACY/Mexico%20law%20revisions%20-%20v2%20-%2030%20March%202012%20-%20Brownlee.docx#_ftnref5>Telephone
conference with Ron Garrett dated 30 March 2012 [his credentials
here -*MI Vet, former police chief*].

[6]<file:///C:/Users/LMB/Documents/PRIVACY/Mexico%20law%20revisions%20-%20v2%20-%2030%20March%202012%20-%20Brownlee.docx#_ftnref6>(
http://bit.ly/GOXGjh)

[7]<file:///C:/Users/LMB/Documents/PRIVACY/Mexico%20law%20revisions%20-%20v2%20-%2030%20March%202012%20-%20Brownlee.docx#_ftnref7>Black
Market, Black Economy, Grey Market, Gray Market, Economy Watch,
http://www.economywatch.com/market/market-types/black-market.html

[8]<file:///C:/Users/LMB/Documents/PRIVACY/Mexico%20law%20revisions%20-%20v2%20-%2030%20March%202012%20-%20Brownlee.docx#_ftnref8>

[9]<file:///C:/Users/LMB/Documents/PRIVACY/Mexico%20law%20revisions%20-%20v2%20-%2030%20March%202012%20-%20Brownlee.docx#_ftnref9>Once
upon a time in Mexico…, PAUL
BERNAL'S BLOG <http://paulbernal.wordpress.com/>, *Privacy, Human Rights,
The Internet and more, *
http://paulbernal.wordpress.com/2012/03/19/once-upon-a-time-in-mexico/.;
Tumbolian’s blog; SoMe enVivo, Ktitza Rodgriguez, Global Voices blogger
(cited in SoMe) + other sites at page 3**





On Thu, Mar 29, 2012 at 9:27 AM, Robert Guerra <robert at citizenlab.org>wrote:

> Lisa,
>
> Let me virtually introduce you to Eric King from Privacy International. He
> might be able to help connect you with folks who - might be available to do
> the tech review.
>
> That being said, there was no attachment in the message you sent. Can you
> please send it to us and/or the list as well.
>
> Thanks
>
> Robert
>
>
>
>
> --
> Robert Guerra
> Senior Advisor, Citizen Lab
> Munk Centre for Global Affairs, University of Toronto
> Phone: +1 416-893-0377      Cell: +1 202 905 2081
> Twitter: twitter.com/netfreedom
> Email: robert at citizenlab.org
> Web: http://citizenlab.org
>
>
>
> On 2012-03-29, at 3:40 PM, Eric King wrote:
>
> thanks Robert ;)
>
> I saw it on libtech too - but I couldn't see an attachment?
>
> On 29 Mar 2012, at 15:35, Robert Guerra wrote:
>
> Eric,
>
>
> Great presentation just now. Just got the following email from another
> list that I thought might be of interest.
>
>
> regards
>
>
> Robert
>
>
>
> Begin forwarded message:
>
>
> From: Lisa Brownlee <lmbscholarly2 at gmail.com>
>
> Date: March 29, 2012 2:59:20 PM GMT+02:00
>
> To: liberationtech at lists.stanford.edu
>
> Cc: Thomas O'Toole <tjotoole at gmail.com>, garrettronaldm at gmail.com, Jesus
> Robles Maloof <roblesmaloof at gmail.com>
>
> Subject: [liberationtech] Urgent request for tech review/input Mobile
> communications security/tracking/spoofing/jamming - Mexico new warrantless
> tracking law
>
>
> Dear Libtech colleagues - URGENT
>
>
> Re:      Mexico law revisions – Cellphone data – Parliamentary Gazette
> Volume X, Number 3455-II, Tuesday, February 21, 2012 (hereinafter
> “LeyGeolocalización MX”)
>
>
> I am a legal scholar working on the above-referenced law. BNA E-Commerce
> Journal will be publishing my findings the second week of April. April 4-5
> is my deadline.  Attached is a letter that will be distributed when
> finalized to all privacy commissioners.
>
>
> THIS LETTER IS STILL PRELIMINARY  It will form the outline for my BNA
> article, which will include more history and more technical information.
>
>
> Seeking tech review/input ASAP of the attached.  URGENT - Wish BNA article
> to be as definitive as possible.
>
>
> A press conference with the International Human Rights Commission is
> planned to follow shortly after publication.
>
>
> NOT FOR PUBLIC POSTING
>
>
> Thank you,
>
>
> Lisa M. Brownlee
>
>
> PS Unproofed draft - I am on business trip in Mexico City with
> limited/problematic tech access - apologies
>
>
>
>
> --
>
>
> --
>
> Lisa M. Brownlee, Esq.
>
> Mexico
>
> Skype:  lisa.m.brownlee
>
> lmbscholarly2 at gmail.com
>
> lmbcontacts at yahoo.com
>
> Author's website at West Thomson Reuters
>
> About my Law Journal Press treatise
>
> Facebook: Lisa M Brownlee
>
> Twitter: lmbrownlee1
>
>
> Author of:
>
>
> Intellectual Property Due Diligence in Corporate Transactions: Investment,
> Risk Assessment and Management (West Thomson Reuters)
>
>
> Assets & Finance: Audits and Valuation of Intellectual Property (West
> Thomson Reuters)
>
>
> Federal Acquisition Regulations: Intellectual Property and Related Rights
> (Law Journal Press)
>
> _______________________________________________
>
> liberationtech mailing list
>
> liberationtech at lists.stanford.edu
>
>
> Should you need to change your subscription options, please go to:
>
>
> https://mailman.stanford.edu/mailman/listinfo/liberationtech
>
>
> If you would like to receive a daily digest, click "yes" (once you click
> above) next to "would you like to receive list mail batched in a daily
> digest?"
>
>
> You will need the user name and password you receive from the list
> moderator in monthly reminders. You may ask for a reminder here:
> https://mailman.stanford.edu/mailman/listinfo/liberationtech
>
>
> Should you need immediate assistance, please contact the list moderator.
>
>
> Please don't forget to follow us on http://twitter.com/#!/Liberationtech
>
>
> <smime.p7s>
>
>
>
>


-- 

-- 
Lisa M. Brownlee, Esq.
Mexico
Skype:  lisa.m.brownlee
lmbscholarly2 at gmail.com
lmbcontacts at yahoo.com
Author's website at West Thomson
Reuters<http://west.thomson.com/store/authorbio2.aspx?r=4889&product_id=15033039&aurec=2000017572Auth>
About my Law Journal Press
treatise<http://www.lawcatalog.com/product_detail.cfm?productID=15196&setlist=0&return=search_results&CFID=20088542&CFTOKEN=b6ddabf982b888e4-2F42CE2A-B3D2-E07B-503BCB3A910E5EEC>
Facebook: Lisa M
Brownlee<http://www.facebook.com/#%21/profile.php?id=1691642784&sk=info>

Author of:

Intellectual Property Due Diligence in Corporate Transactions: Investment,
Risk Assessment and Management (West Thomson Reuters)

Assets & Finance: Audits and Valuation of Intellectual Property (West
Thomson Reuters)

Federal Acquisition Regulations: Intellectual Property and Related Rights
(Law Journal Press)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.stanford.edu/pipermail/liberationtech/attachments/20120329/5afd4b9a/attachment.html>


More information about the liberationtech mailing list