Sweden On Verge of Passing Sweeping Wiretap Plan

An anonymous reader writes "No one seems to have noticed that Sweden is close to passing a far-reaching wiretapping program that would greatly expand the government's spying capabilities by permitting it to monitor all email and telephone traffic coming in and out of the country. If a bill before parliament becomes law, the country's National Defence Radio Establishment (FRA) will monitor all internet traffic that passes in or out of the country. As the article notes, there's a good chance email traveling from, say, the UK to Finland would be fair game, since it's likely to traverse through Sweden before reaching its final destination. So far, there's been nary a peep from Swedish media about the plan."

Sonera moved their email servers because of this

[kaarlov]

Finnish telco Sonera, which is nowadays part of Swedish TeliaSonera moved recently their email servers back to Finland from Sweden because of this.
Apparently their customers were concerned enough.

Not entirely accurate

[j1976]

There has actually been quite a lot of fuss around this law. For example, a seldomly used law paragraph enabled the social democratic minority to delay this proposal for a year, something which gained quite some attention when it happened. If that had not been done, the law would have passed a year ago. An update to what was happening during this period is available at http://www.idg.se/2.1085/1.156736 [www.idg.se] (swedish only). IDG is the largest swedish news agency for technology-related news. At the national swedish radio homepage http://www.sr.se/cgi-bin/ekot/artikel.asp?Artikel=1242136 [www.sr.se] you can read about finlands protests against the law. They also published news about the growing criticism of the law at http://www.sr.se/Ekot/artikel.asp?artikel=1240436 [www.sr.se] (both links in swedish).

Peep? Not so.. pretty loud buzz more like it.

[Henriok]

First: As one living in Sweden I don't recognize this description. For one, there is quite a stir in IT related, and mainstream media about this. And this have been going on for several years. The current government suggested this while in opposition a couple of years ago, and it was one of the first new legislations that they announced when they got into power 2006. It's been under debateand scrutiny in media and several governmental instances since then.

Secondly: FRA is _not_ a military organization. It's a civil autority that can be used for several other governmental organizations such as the police, secret police, military or even state owned corporations. But the name is confusing, I grant you that.

One interessting thing is that FRA operates the fifth fastest computer on the Top500 list. Most people believe that is was purchased to meet the need of this new surveillance demand.

It's hardly unknown to the public, even if most are not interessted in such matters. Swedes are pretty used to governmental control and oversight, and we acually enjoy the benefits of it. Our trust in authoroty of this kind is strong since it have served us well in the past.

It's already up

[Anonymous Coward]

Today FRA has the lawful right and ability to monitor all communication that is broadcast using radio/wave-transmission, since much(most?) traffic at some point goes via satellite and/or radio link they already listen in.

The new bill gives them the right to tap into the cables directly, but it also leaves a possibility for them to share their information with other government bodies, and that is the real kicker. So if you write in an e-mail that you drove home drunk yesterday, that could be used against you in a court of law (in Sweden there are no rules against what can be used as evidence).

FRA claims that this will not be the case, but the new bill would make it lawful to do so.

So in conclusion: Everyone in the world is already being wiretapped by the Swedish government, but this would make it a bit easier for them, and also give them the right to share the information with other Swedish government bodies.

Re:But will it pass?

[nx]

This one is almost certain to pass, a majority of parliament have already professed their coming yes-votes.

Party whips takes care of those who are critical to the law: It was up for a vote last year, but got put on a year-long hold for further debate (which, naturally, never took place). One member of parliament (Fredrick Federley) who was elected on a privacy platform, among other issues, abstained from voting and took so much heat from his party that he'll be voting yes this time around. At least according to his blog.

Re:But will it pass?

[richie2000]

Unless several MPs suddenly grow a spine, this one will pass in less than two weeks.

Re:At least it's defined in law

[richie2000]

Oh, they have been doing that since 1976 (as recently revealed by a recording of FRA's director acknowledging it). This is an attempt to legalize that practice, add a few useless "control stations" and give them even more authority.

Re:It's already up

[richie2000]

Today FRA has the lawful right and ability to monitor all communication that is broadcast using radio/wave-transmission

No, they do not have that lawful right. [rickfalkvinge.se] They do have the ability, though. And they do it. Illegaly.

More on this from Swedish Pirate Party leader

[CrystalFalcon]

Read more about this from the Pirate Party leader Rick Falkvinge:

More on the Ubiquitous Wiretapping Bill [rickfalkvinge.se]

Swedish NSA to monitor all phones, Internet [rickfalkvinge.se]

Excerpt from first link:

The bill's name is en anpassad försvarsunderrättelseverksamhet [regeringen.se], translating roughly to a better adapted military intelligence gathering. Key points of the bill:

• At about 20 points in the national information infrastructure network, all traffic is spliced off and fed into the Försvarets Radioanstalt (FRA) agency. These points are placed as to catch all traffic entering and leaving the Swedish borders, but will catch much - if not most - domestic traffic too, for technical routing reasons. Electronic traffic, in particular, always takes the scenic route.
• This affects all Internet traffic and all telephony traffic, meaning web surfing, e-mail, phone, and fax are affected, to mention but a few.
• The FRA will scan all traffic in real time according to about 250,000 search criteria. The traffic that matches will be automatically saved for manual intelligence analysis. This obviously takes a lot of computing power. We don't know the exact extent of FRA's computing power, but we do know that they have the world's fifth most powerful computer [top500.org], in competition mostly with nuclear physics labs.
• "Customers" that will be able to place requests for searches include all authorities (all some 500 of them including Department of Transportation, Department of Agriculture, etc., but notably the police, secret service and customs).
• The political administration may order (not request, but order) a political wiretapping to catch communications they are interested in.
• Major businesses will also get access to the wiretapping grid, but will have to go through an authority.
• The bill specifically allows for singling out Swedish people for specific wiretapping, although only under certain qualifiers.
• The mandate for the agency's own intelligence gathering is broadened from "external military threats" to "external threats", which are exemplified as international crime; trafficking in drugs, weapons, or people; migration movements; religious or cultural conflicts; environmental imbalances and threats; raw materials shortages; and currency speculation. More examples are listed.

Re:ECHELON?

[steelneck]

The difference is that the FRA have not been spying in wire before. That is illegal, today the telcos are not allowed to give out any traffic or personal data without a specific court order, some of the data they are not even allowed to save. This bill, and the EU-dataretention bill is about to change all of that. The FRA (roughly The Defence Radio Agency) have been listening only to radio, satellites and such. But in the recent debate we have come to learn that even that practise is illegal according to swedish constitution and the european human rights. It is not allowed for the state to actively take part of private communications without a positive law support. This bill will of course change that too (and be in breach of human rights, and probably upset citizens in other cuntries since IP-traffic usually takes "the scenic route"). The base is: Citizens are allowed to do anything not forbidden, for the state it is the other way around, anything they do must be allowed by law first. This have not been the case, and the normal thing to do, is not to allow things afterwards and pretend its raining, it is to prosecute the perps. The FRA have also recently bought the 5th most powerful computer in the world (on top500.org), gee wonder why..

Re:Hate to say this but...

[Chainsaw]

FRA stands for FÃrsvarets Radioanstalt, if you really want the swedish word for it.

Re:Peep? Not so.. pretty loud buzz more like it.

[Anonymous Coward]

First: As one living in Sweden I don't recognize this description. For one, there is quite a stir in IT related, and mainstream media about this.
Really? Has any mainstream newspapers covered this that you are aware of??? The people (you know the ones who voted in the sitting government) are very much in the dark on this. I have not heard a single comment from anyone (besides from the techno /. crowd)

Secondly: FRA is _not_ a military organization. It's a civil autority that can be used for several other governmental organizations such as the police, secret police, military or even state owned corporations. But the name is confusing, I grant you that.

F = Forsvaret = The (Military) Defence('s)
R = Radio = Radio
A = Anstalt = Facility

Due to rethoric, in Sweden we do no have "armed forces", we have "the defence" (which as the name implies can never be used offensively :-)

Just because a military organization helps the civil authorities does not make it non-military.
The name is correct and you are confusing.

One interessting thing is that FRA operates the fifth fastest computer on the Top500 list. Most people believe that is was purchased to meet the need of this new surveillance demand.

Most people know that a swedish military organization was tasked with monitoring Russian / Soviet military movements and intercepting and decrypting their radio traffic. Would such an organization ever need massive computers to do its job? Yes... The organization was the FRA: the Defence's Radio Facility.

---

The FRA will probably monitor all your emails from now on, concidering how you seem to represent "most people".

Re:Sonera moved their email servers because of thi

[jhol13]

Actually Finnish law required that.

According to Finnish law e-mail has very high level of privacy protection.

So in order not to break Finnish law they were practically forced to move the servers to Finland as they could not guarantee e-mail privacy otherwise.

Re:FRA got new hardware last year

[aliquis]

That's what I wanted to say, was looking for a comment if someone had already mentioned it.

According to "Ny Teknik" or whatever page I found it's made up of a cluster of 2128 blade servers from HP.

Theoretical max 182 Tflops, seems like it made second place when compared to the june list / when it was done / news out.

It's number fifth on november 2007 list:
http://www.top500.org/lists/2007/11 [top500.org]

System in question:
http://www.top500.org/system/8819 [top500.org]

Federley's Blog

[Dobeln]

From his blog: http://federley.blogspot.com/ [blogspot.com]

"Vad som kommer att ske den 17 juni? Ja vem vet. Kan ju bli pÃ¥kÃrd, sjuk, vara pÃ¥ resande fot, bli gravid eller bara vara dÃr och rÃsta ja. Vem vet. Den dagen den sorgen."

Translation:

"What will happen on the 17:th of June? Well, who knows? I might be hit by a car, become ill, spend the day travelling, become pregnant or just be there and vote yes. That day, that sorrow..."

The sad fact of life is that Swedish MP:s serve almost entirely on the whim of their party leadership. If they make trouble, they get wiped off the list in the next election, and they're gone.

Re:Not entirely accurate

[Zironic]

Aftonbladet & Expressen arn't sources of news, they're sources of entertainment.

Actual sources of news are newspapers like DN (the daily news), Göteborgs-posten, Svenska Dagbladed, Sydsvenskan, Dagens Industri, Metro, City etc most of which are read by as many people as the tabloids.

Re:Peep? Not so.. pretty loud buzz more like it.

[nx]

Swedes are pretty used to governmental control and oversight, and we acually enjoy the benefits of it. Our trust in authoroty of this kind is strong since it have served us well in the past.

This is partly correct and partly bullshit. Swedes usually do have a positive view on turning authority over to the state, that part seems to be true. The reasons for why this is true are very much debatable. Some, like historian Peter Englund, point to the fact that the King often stood with the peasantry against the nobility (in contrast to how it was in the rest Europe, where the monarch was the enemy). The monarch being on the side of 'the people' is especially true for relatively modern times (pre-WW1).

Another explanation might be something sociologist Pierre Bourdieu has noted: the working class is much more positively predisposed to authority than upper classes. And Sweden has a large group of people who self-identify as working class.

Of course, there's probably not one isolated reason for why we trust the state as much as we do. But it is certainly not because "it has served us well in the past". We've been royally screwed by them several times in the past. IB-affären, comes to mind, as does the non-existance of civil liberties during WW2.

About IB-affären in English: http://en.wikipedia.org/wiki/Informationsbyran [wikipedia.org]

The Swedish News in English Story on this

[XavidX]

A English Source From Sweden

http://www.thelocal.se/12252/20080605/ [thelocal.se]

Re:But will it pass?

[OeLeWaPpErKe]

Actually it's quite normal for european members of parliament to be forced to go along with their party's stance. In a few countries the parties can actually override a member's vote on a law.

In all other countries it's easy to get thrown out of a party meaning that you have little chance to ever again make an impact on politics. But sometimes this means that you just got "unelected".

So acting all "courageous" wouldn't have done any good.

But the european system doesn't represent the will of the majority so much as it goes as far as what some 50% of the population will not revolt over (which isn't all that far).

This isn't America were you have coherent government. This is Europe. If you want to understand European politics think "how would a government react if the president were republican, the vice president democratic, the secretary of state republican, ...".

In other words you get the combined downsides of all parties : massive taxes (democrat), sweeping investigative powers (rep.), no freedom of speech (dem.), direct judicial interference by unions (dem.), ...

And if you have an issue like nuclear power, which one of the parties thinks unacceptable, only an absolute majority (which almost never happens, > 66% for one party) can TRY to override it, and even then you'll never hear the end of it on TV.

European governments are utterly blocked and halted things. They never do anything. The EU only manages to do things because it's a completely undemocratic institution governed by unelected (appointed by the prime minister of the respective countries) representatives. In other words : it's like the american executive power : with a few qualifications it's in the hands of one singular person, but it's a law-giving AND executive AND judicial power.

Therefore laws like this don't make sense, since the EU can simply override them. Making them worse (or better, but I've yet to see that happen)

Telia-Sonera

[SgtChaireBourne]

The outage affected key standards sites covering the OOXML problem [groklaw.net]. The outage suddenly lifted hours after the OOXML vote.

The blockage was marketed as an attempt to break net neutrality. However, choosing a network hosting key information sites at a crucial period just prior to an important decision was a bit of cleverness.

Telia-Sonera could have easily routed around the outage, but chose not to. As a result, Telia-Sonera's customers (both business and private) were blocked by actions/inactions by Telia-Sonera from accessing sites which were hosted by or used DNS services on that other network.

Sweden did this also in 1940!

[Anonymous Coward]

It is interesting that Sweden has tapped German international lines in 1940 and later and offered gathered information to Britains.

More about that here: http://www.ams.org/notices/200308/rev-bauer.pdf

Re:all of which i agree with

[steelneck]

Why they would wait? Because they cannot do it today. The state simply do not have the access today, the infrastructure required is not built. What the bill proposes is that the owners of all bordering nodes should install special hardware and cables to the FRA, but not paid by the FRA. This copying would also be illegal today. So, none of the telcos have this infrastructure today, because it would both make no sense and be illegal.