Digital Security Requires a Legislative Overhaul

Michael Chertoff by Michael Chertoff, Chertoff Group
Friday, February 12, 2016

Building on the EU-U.S. Privacy Shield and the U.S.-U.K. negotiations, we must continue to move beyond a system in which critical digital privacy issues are governed in an ad hoc manner. This system is broken. The time is ripe for a comprehensive legislative overhaul of the antiquated laws that currently govern when and how law enforcement officials may access citizens’ private electronic communications.

Surfing the body-worn camera wave

Paul Rosenzweig by Paul Rosenzweig, The Chertoff Group
Wednesday, February 10, 2016

In mid-January, the International Association of Chiefs of Police, the Major Cities Chiefs Association, SafeGov.org and the Police Foundation hosted a day-long review of the current state of deployment of BWCs at the Newseum in Washington, D.C. If the expert recommendations from that event could be summarized in a single phrase it would be: “Proceed with caution.” The move to BWC deployment occurs in the context of a broader discussion of the proper role of police forces around the world and, at least in the United States, the nature of the interaction between police and the citizens they are sworn to protect. How will that change occur and what are some of the pitfalls? The key takeaway from the conference was that, first and foremost, agencies must have a plan. Many experts report departments that have moved to purchase and use BWCs without giving significant consideration to all aspects of the change. Agences that rush ahead without preparation risk being drowned in a wave of new implementation and policy contradictions. Some of the pitfalls are obvious; others have come as a shock to many who are moving toward implementation. Here are just a few of the issues that experts identified:

Cloud Storage for Camera Data?

Julie Anderson by Julie Anderson, AG Strategy Group
Monday, February 08, 2016

To secure sensitive information, U.S. law enforcement agencies must adhere to the FBI’s Criminal Justice Information Services (CJIS) security policy, which establishes guidelines for the creation, viewing, transmission and storage of criminal justice data. Recently the International Association of Chiefs of Police issued guiding principles for cloud computing that recommend data collected through body-worn cameras be stored at the highest level of security: the FBI CJIS standard. Moving forward, departments that use CJIS-compliant cloud technology will be able to minimize risk and keep video data safe. While safe and secure data storage is not cheap, it’s an investment that law enforcement agencies must make. Only when police departments take the TCO into account will they protect their video data as well as minimize their liability and safeguard the people they serve.

Commentary: Surge of body-worn police video demands we adopt policies to secure data

Jeff Gould by Jeff Gould, SafeGov.org
Wednesday, February 03, 2016

Body-worn camera video needs to be protected by the strongest data standards available. The FBI’s Criminal Justice Information Service (CJIS) Security Policy, developed over many years by the FBI with extensive input from state and local law enforcement agencies, is made-to-order for the task. The CJIS Security Policy is designed to ensure that the information which flows from the FBI’s vast national database to local law enforcement agencies is protected both from outside hackers and inside leaks.

Privacy Considerations For Evolving Video Surveillance

Bradley Shear by Bradley Shear, Law Office of Bradley S. Shear
Wednesday, January 27, 2016

During President Obama’s final State of the Union address earlier this month, he drew attention to the rapid pace of change brought about by technology and innovations, explaining that these changes are “reshaping the way we live, the way we work, our planet, our place in the world. … And whether we like it or not, the pace of this change will only accelerate.” The president could not be more correct. While the world has significantly changed since President Obama took office in 2009, the laws and regulations governing the technology that has driven this change have not kept pace.

Demand for body-worn cameras must be met with highest standards of data security

Karen Evans by Karen Evans, KE&T Partners
Friday, January 22, 2016

A group of unlikely allies came together in Washington this week to discuss the best ways to implement body-worn cameras at law enforcement agencies across the country. The event featured speakers from the International Association of Chiefs of Police, the National District Attorneys Association, the ACLU and other organizations. The participants discussed creating and managing body-worn camera programs and addressed the need for the highest data security and privacy protections for body-worn camera video.

Section 508, WCAG 2.0, Oh My!

Tracy Mitrano by Tracy Mitrano, Mitrano & Associates
Tuesday, January 12, 2016

About accessibility for higher education in the United States: I am concerned that our institutions have two sets of standards with which to comply and how higher education might respond to that fact. The first are section 508 standards of the Rehabilitation Act... The other set is that of the Web Content Accessibility Guidelines or “WCAG” 2.0.

Body-Worn Cameras: In Support of Justice on University Campuses

Tracy Mitrano by Tracy Mitrano, Mitrano & Associates
Monday, January 11, 2016

For higher education institutions, it is time to take a leadership role to ensure the strongest security protocols are in place for proper management of data produced by body-worn and surveillance cameras. In law enforcement, this is the FBI's Criminal Justice Information Services (CJIS) security policy...

Encryption is Not Enough to Protect Cloud Data — Trust Remains Essential

Jeff Gould by Jeff Gould, SafeGov.org
Monday, January 04, 2016

End-to-end encryption is not always an option for organizations that require strong data protection but cannot renounce the benefits of the cloud. The only alternative to encryption is trust. Organizations that entrust sensitive data to cloud providers for encryption-unfriendly applications such as automated video redaction must have a very high degree of confidence in those providers.

2016: Year of Internet Standards

Tracy Mitrano by Tracy Mitrano, Mitrano & Associates
Monday, January 04, 2016

Five areas of Internet law and policy stand out: privacy, security, accessibility, intellectual property and governance. A central theme undergirds them all: standards. Hence I shall deem 2016 the Year of Internet Standards. Today I begin with privacy. Privacy is the most important area of law in the 21st century. It is brought to you by technology pushing the social norms envelope. It is also sufficiently comprehensive of a topic as to cover a wide swath of different types of law. Finally, privacy just might turn out to be the vocabulary that has the greatest chance to harmonize law and policy practices on the Internet.