CircleID

An extensive report released today by The National Research Council (NRC), titled "Protecting Individual Privacy in the Struggle Against Terrorists: A Framework for Assessment", examines the balance between security and privacy. According to the report, all U.S. agencies with counterterrorism programs that collect or "mine" personal data—such as phone, medical, and travel records or websites visited—should be required to systematically evaluate the programs' effectiveness, lawfulness, and impacts on privacy.

"The danger of terror attacks on the U.S. is real and serious, and we should use the information technologies at our disposal to combat this threat. However, the threat does not justify government activities that violate the law, or fundamental changes in the level of privacy protection to which Americans are entitled," said William Perry, co-chair of the committee that wrote the report, former U.S. secretary of defense, and Michael and Barbara Berberian Professor at Stanford University.

Declan McCullagh, reporting at CNet News: "A National Research Council report, years in the making and scheduled to be released Tuesday, concludes that automated identification of terrorists through data mining or any other mechanism 'is neither feasible as an objective nor desirable as a goal of technology development efforts. Inevitable false positives will result in 'ordinary, law-abiding citizens and businesses' being incorrectly flagged as suspects."

Read full story: CNET News

Related topics: Policy & Regulation, Privacy, Security