A trick question for you... What's the difference between Phorm's controversial WebWise system, and the kind of giant web proxy unveiled by Amazon yesterday? Technically, there isn't one. WebWise and Silk are doing exactly the same thing. Both intercept private web traffic – and massage it. Both also aggregate enormous amounts …
The Fire is Renamed
Simple solution to maintain privacy in the modern world...
Browse websites and topics that you actually have no interest in whatsoever. They'll build a model of the insides of your head that will be completely wrong.
For example, I pretend to like tech news, the space program, and pr0n.
Once on an airline questionaire I said I was a housewife on a business trip.
And then they'll try to sell you crap that you *really* don't want :p
Mess with their heads...
A mate of mine used to do a similar thing, pre Internet days. He´d pay a few pennies more on each utility bill, vote randomly and join various political parties, as well as express interest in publications such as People´s Friend (always good for a laugh), Readers Digest (Not Wives) a few more esoteric ones...
Not sure what the net effect of this was, but he certainly enjoyed the sporting aspect of it, as his demographic would be entirely off kilter to any marketing company with access to his data.
You underestimate the power of Bayes
Trust me, you seriously underestimate how much a well written set of Bayes stats can get out of seemingly random information.
I trully don't understand why...
Our regulators and politicians tolerate this.
Even if there are no votes or £'s in it surely there is a moral and personal intrusion/privacy aspect to this. Have we suspended principled action in favour of expediency and pragmatism?
'There is no point in fighting this battle because we can't win and the electorate don't really care, even if we think that in the long run the company is acting dangerously and in bad faith".
Clearly I'm approaching this simplistically or I live in a different world. What have I missed, please?
Because the politicians would love to have all that private and behavioural info on everyone but know they would be linched if they tried to collect it themselves.
Rather let big corps keep going down this route and when the time is right just mandate that chosen governmemt regulator/quango gets access to all the info collected - for the good of the people you understand..
..don't understand why... Our regulators and politicians tolerate this
Because neither of these expensively-financed numpty squads have got a clue about the technical side. This is why we keep reading about millions of ciizens data being lost on CDs, or filing cabinets buried in landfill sites.
The regulators have no teeth because they're driven/steered by the politicians.
Our politicians and regulators are owned lock, stock and barrel by huge commercial interests.
If they were not, then existing legislation alone would have put the CEO's of all of these companies in jail and/or fined them billions.
The fact this *never happens* is the proof they are all in the pockets of commerce.
No, no, you're not thinking this through...
The truth is that David Cameron and Nick Clegg don't actually exist. All of our media are actually under the control of the weapons manufacturers, and they use the fake cinematography techniques that were developed in the days of the so-called Apollo landings to delude the ignorant.
However, if you buy my patented magnesium-alloy delusion disruptor (available in all cranium sizes), the next time you see one of our leaders on TV, you will be able to see the strings.
Why isn't there a "product placement" icon?
You are David Icke ...
... and I claim my £5.
Why do they need it?
I was very surprised as to why Amazon choose to do this given there's a dual core processor inside. Is the OMAP that slow?
Bandwidth optimisation or some such nonsense, apparently. Odd, seeing as the Fire has no 3G*. Maybe future non-eInk Amazon tablets will.
* I find browsing over 802.11n fast enough on an original iPad, so not sure why it wouldn't be in a Fire.
I was under the impression it's more to do with the round-trip time when requesting 100 or so assets (js, images, stylesheets, xmlhttp) to load one page. This silk stuff essentially does the actual loading of the assets server side, then squirts it all back down to you in one compressed gobbet of data.
This removes the overhead associated with each individual request.
This is all crap of course. If websites were written by proper, able coders instead of designers with a different hat on, the whole internet would be a better place.
And that's the end of my rant. Cue flames.
Just who is on MY side?
I do not want ANY tracking, cookies, Phorm, Faceebok, Google, etc...........[insert technology or company name here], monitoring or using my data or communications AT ALL in ANY way!
So just who is on my side. How can I implement this without the hassle?
I can't. Because those who are supposed to be on my side, are not!
Just say no
You could just stop browsing the web, then there is no lose of your private data. As long as your bank, credit companies, insurance companies, employer, government agencies don't lose your data due to poor security practices....So you should be safe!!!
..don't accept cookies,ever.
Destroy all cards (loyalty, credit, debit) and pay only cash.
Send letters, not texts and emails.
if you must use email, use disposable account.
It's not everything, but it's a start.
Next thing you're being followed down the street by badly dressed plain clothes officers from the anti-terrorist squad who need to know why you're not being a techno-slave like all the other good little citizens.
Then you'll find yourself heading to room 101...sorry, Gitmo Bay and a nice comfy orange boiler suit with dark googles and matching gag!
The difference was that Phorm was deployed in secret - with no one's permission on top of a service that punters already paid for.
Silk is something that is agreed to in the terms of service on the purchase of a heavily subsidised piece of hardware.
That's the difference, and I think it's quite a large one.
That's no difference
It was deployed in secret as part of a trial. This is entirely separate (though reprehensible for different reasons) from the intended production deployment.
Do you honest believe the only problem with for was a lack of open-ness ?
Even opt in was rejected by those that were there.
Disregarding the lack of openness then:
What was the incentive for Phorm? I can't remember there being one. It was a service which would snoop on your browsing habits and serve you up ads and in exchange the user got nothing.
Silk has the incentive of a peice of hardware that is subsidised, and in exchange you use Silk, which may *or* may not snoop on your browsing habits (I don't think that's actually been established that it's the case).
Also, if you read below it's an optional service anyway.
There is a way out - your own silk server
You could run your own silk on your own ec2 instance, and have all company machines use that as a proxy.
Could also be a private service, but it would depend on how cheap of a machine you could run silk on.
They don't have to open source it, just provide an installer for Linux.
Of course the other way is for open source software to do make something with the silk API, then point your fire tablet at that.
If its a good idea, then this will be done. The AWS team have good API, so it's likely the silk API is also easy to understand.
they could just run the browser on the tablet, you know just like the others do? No need for Silk or snooping your web browsing.
Would it be possible to buy the cheap hardware then put custom firmware on it? You could get the $199/£250 (just my guess at the £ price) tablet and then put a clean andriod install on. Or buy a $70/£89 kindle and put something on that lets you read .epub natively.
Its not passive acceptance... but passive enforcement that is the problem.
Don't characterise people as gullible fools if, when they do take the trouble to complain to regulators, they are met with corruption and incompetence.
This spyware is an obvious abuse of private/confidential communications. In effect mass personal & industrial espionage, illegal interception, and copyright theft.
It should put people in jail.
But here's a challenge Andrew... Complain to the Police. Complain to the ICO. Complain to the Home Office. Complain to the European Commissioners.
And suffer the same shameless corruption people like me experienced when we railed against the crooks in BT/Phorm.
Remarkably Gmail has continued to grow
Which is probably why yahoo has jumped on the band wagon. When I was forced to accept the new T&Cs to access my mail I deleted everything and won't use yahoo again. The dozen or so pictures I have on flickr can stay until I get round to removing them also.
So, I'm not the only one.
The only @yahoo account I have left is the one I use as a spam trap.
Now'll they'll be able to send my stuff without me having to go to the trouble of ordering it.
In other words, Fire is cheap because information about you is far more valuable.
Someone's on the ball.
Sophos' own products do a man in the middle attack to sniff SSL traffic for web filtering. Why are they so alarmed by this?
Opera has been proxying and shrinking web data for mobile devices for years and it was never a problem. This makes business sense for the consumer (faster page loads) and Amazon as less data will be sent over their 3G network.
And the article should note this can be turned off, unlike Phorm.
Some defence; mentioning sophos: whataboutery.
Saying Phorm couldn't be switched off. It could.
This has way more in common with phorm than people really want to admit. Why ?
"But I like amazon, they wouldn't do anything nasty".
IIRC, Phorm required a cookie being set before it would switch off. That, in itself, was an issue, given that the only way your browser would send that coookie was if it thought you were requesting something from the relevant domain. So, with Phorm, what we actually had was a bunch of boxes sitting in the ISP, injecting fake redirects in to all requests and passing them through a seperate domain, checking the cookies, and then allowing traffic to pass unmonitored if the right cookie existed. You could never be certain that your traffic was not being monitored. It also meant that you had to "opt out" of phorm with every device on your network.
With this system, what you have is a web browser set to use a proxy server. Switch off the proxy setting, none of your traffic goes to the proxy server. No fake redirects, no promises to not look at your data, no effect on other machines attached to your network, just a complete lack of connection to those proxy servers in the first place.
So the two are actually quite different.
Silk via EC2 seems to be optional...
and by optional, I mean opt-out.
From their T&C (section 1, 4th paragraph)
"You can also choose to operate Amazon Silk in basic or “off-cloud” mode. Off-cloud mode allows web pages generally to go directly to your computer rather than pass through our servers. As such, it does not take advantage of Amazon’s cloud computing services to speed-up web content delivery."
Should be opt in.
All this analysis and complaining and it turns out you can browse normally after all!
Can't say I'm surprised, the webkit layout engine is pretty small and I'm sure it'd run fine given the specs.
good point - should've used this icon
A performance comparison between the two methods could be enlightening.
thats why its so cheap
this is almost a non story. "shock horror": company offers dicounted product, that is subsidized using adverts! Do you refuse to watch ITV too?
there is a reason ipads and android tablets are £400 and this is £200. And data collection is that reason.
> Do you refuse to watch ITV too?
Hell yes! Although that's at least partly to do with their scintillatingly bad programs.
Some people seem so very obsessed with forcing privacy upon me. They turn it into some huge idealistic idol and tell us anyone is EVIL who wants to use our data to make money.
I'd trade that privacy for better service, but the privacy zealots seem hell-bent on taking away that freedom to choose.
"I'd trade that privacy for better service, but the privacy zealots seem hell-bent on taking away that freedom to choose."
You missed the troll icon.
No one has taken away your right to trade in your own personal data - the problem is when it is taken by default without the choice being made.
If the advertising said "You can buy this device for £200, but we will monitor everything you do and use that knowledge to track your buying habits, which we will then sell to advertisers for a fortune" - you can make a choice.
However, if the ad says "Buy our cool device for £200" then you cant make a choice about your privacy. At least not an informed one.
Privacy cant be forced upon anyone but it can be taken away.
By the way, in future can you end all posts with your full name, address and telephone number please. It will enhance your life experience.
As a self-respecting geek...
... if the Kindle Fire has decent enough specs and when it inevitably gets 'rooted' and something like Cyanogenmod is available for it, I'll buy it, trash the Amazon install and snag myself a cheap Android tablet.
That's assuming the CPU & Ram is decent enough...
There's no way I'd use one under Amazons T&C's, as it's clear it's a 'shopping' tablet, with some serious privacy concerns, as has been pointed out in this article.
But a cheap (depending on the UK cost, which I suspect will start out equivalent in £ as it is in $) and powerful stock standard gingerbread would float my boat.
Going a step further, assuming the device is rooted to allow for gingerbread to be installed (which I'm sure it will be), I'll get a mate to buy me one in the US - sorted.
More respect.(*,incr) over there in thread 30
Shouldn't you rather emulate success of successive simultaneous update pushes, yet distribute tablet activity across a diametric of admiration in a group so you get the benefit of diversity; additionally of course working to enforce privacy rights, profiles, personal information audit, mathematical literacy and sensibility of the IME, portability of user (and vendor) value, and free use of regexes? How about easy modal switching from shopping to browsing RCS (all kinds,) conference video editing, compatibility with your byakko workout, and craft sewing so you never run out of cargo pockets for all those Fire.
You bought *.pfb; would you be interested in #?.abf for -£32 12p and resale rights to PsyLocke v. My Li'l Pony?
It sounds like silk would disable any client ad-blocking software (since the cloud server will pick up all the pieces and render the page) - but on the flip side, it means that the advertising companies don't get direct access to the data on who is looking at a page (since all the fetches will come from Amazon's cloud). Now Amazon will most likely sell that data to anyone who writes them a cheque - but I wonder what this does to the business model of pay-per-view ad-supported sites. Probably all bad for them - while pay-per-click is still OK.
For it to work properly Amazon's servers will need access to your cookies and other browser state, so they can impersonate the client. So advertisers won't notice the difference unless Amazon chooses to hide that information.
"Amazon, like Phorm, is betting that you don't care enough about privacy to shop elsewhere. And from the gradual privacy ratchet, and the certain absence of opposition from rivals – nobody wants to poison the well – it may well succeed."
In part correct but, and it is not a trick question.. Perhaps you might care to read that statement again and point out where you went wrong.
read that statement again and point out where you went wrong.
Well, I'm not Andrew, but you intrigue me. I've read the passage you quote several times, and I can't see what you're objecting to. I would ask for a clue, but you seem to think it's "not a trick question".
So, what the fuck are you talking about?
Time To Coin A New Word
And that word is Privacytard.
Sheesh, in what way is this different from what Opera Mini has been doing (quite brilliantly I may add) for the best part of a decade?
The most "evil" that's likely to come of this is the "Amazon recommends..." email and sidebars will target something you've been browsing. Know what, there isn't yet "No Click" ordering. No one is *making* you buy these products.
If you're that susceptible to advertising then more fool you.
You, Tony, ARE susceptible, whether you know it or not
Ever watched a gentleman by the name of Derren Brown? Think you've got the Jedi cojones to beat masters like him at his own game?
Think again, buddy.
The people behind the advertising industry have been studying human behaviour for decades, with one only objective in mind: to get inside your head and make you want to buy what they're selling, by fair means or foul. This is an industry that lacks any semblance of morals or respect for human sovereignty and dignity; if there were a means of directly controlling your mind to make you go out and buy something, they'd use it without any compunction and with smiles on their sociopathic faces.
And these people know how to get inside your head. Why do you think all these companies are going to such incredible lengths to find out everything you do with your life? The better they know you, the better they can figure out what your weaknesses - your Achilles' heels - are, the better to exploit those weakness in ways you will not even be aware of.
Trust me, Tony. I've worked with such people professionally. I, too, once thought as you did - that I'm immune to the kind of psychological manipulation employed by them. One of them, after talking to me for a mere 5 minutes, was able to make accurate statements about my interests, personal life and even sexual preferences despite the fact that I had volunteered none of it. He then proceeded to demonstrate - and this was with full knowledge aforethought on my part - how the advertising industry uses that information to manipulate you. After a few minutes, he had me ready to actually buy his laptop off him, despite the fact that I neither needed one nor that buying it would have meant not eating that week. Only the fact that he didn't really want to sell it stopped him - and me.
Mate, I'm 45 years old and I didn't come down in the last shower. Those who know me describe me as intelligent, articulate, and observant, if a bit abrasive. I don't usually miss a trick. But this guy, with his years of training, ran rings around me. And it's people like him who work out how to get into your head with advertising, and make you do things you wouldn't normally do. And yes, Tony, he'd run rings around you too, whether you're prepared to admit it or not. That's not a reflection of your intelligence mate, it's simple honesty about what years of training and studying people can do. To think otherwise is deluding yourself.
So I, like many others who harbour no false illusions about what the advertising industry is and what it's capable of, don't want these bastards building detailed profiles on me. I don't want to be profiled and analysed and decompiled as if I were some computer program, for the mere purpose of emptying my wallet. When I do buy something, I'd like it to be my own decision, rather than the result of some mindbending marketroid pushing my buttons.
So I won't be using the Fire or Amazon's Silk service. But where I object to your stance is that if too many people approached privacy with your attitude, pretty soon those of us who still value it won't have any choice, because privacy-invasive companies like Google, Facebook, Amazon and the rest, would then be the only way to get anything done, because they - and all their customers like you - will have subsumed any alternatives.
- +Comment Trips to Mars may be OFF: The SUN has changed in a way we've NEVER SEEN
- OnePlus One cut-price Android phone on sale to all... for 1 HOUR
- MARS NEEDS WOMEN, claims NASA pseudo 'naut: They eat less
- Back to the ... drawing board: 'Hoverboard' will disappoint Marty McFly wannabes
- Vid Do you STRUGGLE with EMAIL? You need ANOTHER INBOX, says Google