{"id":6561,"date":"2017-02-09T04:31:40","date_gmt":"2017-02-09T12:31:40","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2017\/02\/09\/news-385\/"},"modified":"2017-02-09T04:31:40","modified_gmt":"2017-02-09T12:31:40","slug":"news-385","status":"publish","type":"post","link":"https:\/\/www.palada.net\/index.php\/2017\/02\/09\/news-385\/","title":{"rendered":"U.S. proposal to collect travelers' passwords alarms privacy experts"},"content":{"rendered":"

<\/p>\n

Credit to Author: Michael Kan | Date: Thu, 09 Feb 2017 03:41:00 -0800<\/strong><\/p>\n

To better vet foreign travelers, the U.S. might demand that some visa applicants hand over the passwords to their social media accounts, a proposal that\u2019s alarming privacy experts.<\/p>\n

\u201cIf they don\u2019t want to give us the information, then they don\u2019t come,\u201d said John Kelly, the head of the Department of Homeland Security, on Tuesday.<\/p>\n

Kelly mentioned the proposal in a congressional hearing<\/a> when he was asked what his department was doing to look at visa applicants\u2019 social media activity.<\/p>\n

He said it was \u201cvery hard to truly vet\u201d the visa applicants from the seven Muslim-majority countries covered by the Trump administration’s travel ban, which is now in legal limbo. Many of the countries are failed states with little internal infrastructure, he said.<\/p>\n

Learning what social media services visa applicants use and asking for their passwords might become part of the vetting process, Kelly said.<\/p>\n

The department is only \u201cthinking about\u201d this idea, Kelly said. But in December, U.S. Customs and Border Protection began asking<\/a>\u00a0foreign visitors traveling under a visa waiver program to provide their social media account IDs as an optional request.<\/p>\n

John Kelly, secretary of the Department of Homeland Security.<\/p>\n

That move was designed to help U.S. authorities spot \u201cnefarious activity.\u201d However, privacy and free-speech advocates said the U.S might use the information to unfairly keep certain visitors out of the country.<\/p>\n

A key concern is that the U.S. is relying on someone’s political ideology to vet their entry, said Michael Macleod-Ball, chief of staff with the American Civil Liberties Union’s Washington Legislative Office.\u00a0<\/p>\n

“The issue is what information are they (U.S. border agents) looking for, and how are they interpreting it,” he said. “We’ve had all kinds of concerns over the ambiguities.”<\/p>\n

News that the DHS is considering an expansion of its social media monitoring by demanding passwords rattled some experts.<\/p>\n

\u201cThe price for admission into the United States shouldn\u2019t mean giving up your online life,\u201d said Robert McCaw, government affairs department director for the Council on American-Islamic Relations.<\/p>\n

He sees too much potential for the U.S. to unfairly target Muslim groups.<\/p>\n

\u201cDo you remember every email account, or Facebook account, or every message board you signed up for?\u201d he asked. \u201cIf you forgot to disclose one, wouldn\u2019t you be lying to a federal agency?\u201d<\/p>\n

Many Muslim travelers coming to the U.S. also have kin or business associates in the country. Tracking their social media activity would inevitably mean the monitoring of Muslim U.S. citizens, he said.<\/p>\n

\u201cThis will have a chilling effect on how people communicate with each other online,\u201d he said.<\/p>\n

From a security standpoint, demanding visa applicants hand over passwords and then storing them might be a huge problem in itself. The government hardly has a stellar record in keeping its own databases<\/a> safe from hackers, said Christopher Dore, a partner at privacy law firm Edelson PC.<\/p>\n

\u201cThe threat of a data breach to all that password information would be a huge danger to all those individuals,\u201d he said. \u201cIt\u2019s a recipe for disaster.\u201d<\/p>\n

Others think the DHS’s proposal is pointless and note that U.S. intelligence agencies, such as the National Security Agency, are already mining the internet for hints about terrorist activity.<\/p>\n

\u201cIt\u2019s pretty obvious that if you\u2019re a terrorist you can create a dummy social media profile,\u201d said Timothy Edgar, academic director of Brown University’s Executive Master in Cybersecurity program.<\/p>\n

\u201cAnyone who has an ounce of sense, and is plotting to do something bad, is going to get around this policy very easily,\u201d he said.<\/p>\n

Edgar said demanding passwords from visa applicants will probably dissuade certain foreign travelers, especially college students, from coming to the U.S.<\/p>\n

The impact could spread, too. Other countries might try to follow the U.S. example and demand travelers at their borders also give up their passwords<\/p>\n

\u201cWe are giving another excuse to the worst authoritarian governments to engage in widespread surveillance of social media accounts,\u201d he said. \u201cWhen a major country adopts a practice, that tends to validate it.\u201d<\/p>\n

http:\/\/www.computerworld.com\/category\/security\/index.rss<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

<\/p>\n

\n
\n

To better vet foreign travelers, the U.S. might demand that some visa applicants hand over the passwords to their social media accounts, a proposal that\u2019s alarming privacy experts.<\/p>\n

\u201cIf they don\u2019t want to give us the information, then they don\u2019t come,\u201d said John Kelly, the head of the Department of Homeland Security, on Tuesday.<\/p>\n

Kelly mentioned the proposal in a congressional hearing<\/a> when he was asked what his department was doing to look at visa applicants\u2019 social media activity.<\/p>\n

He said it was \u201cvery hard to truly vet\u201d the visa applicants from the seven Muslim-majority countries covered by the Trump administration’s travel ban, which is now in legal limbo. Many of the countries are failed states with little internal infrastructure, he said.<\/p>\n

To read this article in full or to leave a comment, please click here<\/a><\/p>\n<\/section>\n<\/article>\n","protected":false},"author":4,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[11062,10643],"tags":[11063,714,11075],"class_list":["post-6561","post","type-post","status-publish","format-standard","hentry","category-computerworld","category-independent","tag-data-privacy","tag-security","tag-technology-law-regulation"],"_links":{"self":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/6561","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=6561"}],"version-history":[{"count":0,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/6561\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=6561"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=6561"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=6561"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}