Patriot Act Dampening Cloud Computing?

Julie188 writes "Governments are turning the Internet into a cyberspace reflection of real-world geographic conflicts. One report says that the Canadian government is forbidding its IT organizations to use services that store or host the government's data outside their sovereign territory. They especially cannot use services where the data is stored in the United States because of fears over the Patriot Act. What kinds of jurisdiction issues might people face — think Google cooperating with the Chinese government — as cloud computing becomes the norm and your data is stored in 'offshore parts' of the cloud?"

I said it before, I say it again

[Opportunist]

The Patriot Act hurts the US IT industry.

Why should a foreign investor risk it to bring his IP to the US with the threat hanging over his head that suddenly it's declared illegal to export it, should he discover something the US deems "useful for terrorism" (read: something we'd rather have in the hands of US companies than others)?

Re:

[TheRecklessWanderer]

I'm sure the US Government would not allow sensitive (or any) information to be stored on a foreign soil server, so why should Canada be any different.

Re:I said it before, I say it again

[Opportunist]

It's not even about sensitivity. It's simply the uncertainty that the US government deems it their right to, at any time, for any harebrained reason, snoop into your data. No sane company or even governmental institution would accept that. It's like legalizing industrial (and other) espionage.

Re:I said it before, I say it again

[iago-vL]

That's exactly correct. I work for the security department of a Canadian government, and we've decreed that no data can be stored on American servers, sensitive or otherwise.

Re:

[c_g_hills]

Out of interest, why would a sovereign nation even consider hosting data outside its own borders? For large countries such as Canada and the U.S.A. I cannot think of a reason. The U.K. however has a government completely incapable of looking after the security of its data so I can understand they might prefer to put it in the hands of a country that is more capable of ensuring security.

Re:

[TDyl]

This El Reg Story [theregister.co.uk] talks about our dear Labour party possibly out-sourcing our entire 2011 census data to Lockheed Martin. I find it extremely worrying that such personal and private data (this time they're going to be asking us about sex habits - with criminal penalties for not answering) could even be considered as being able to be off-shored. Our current government are a laughing-stock and, unfortunately, very dangerous to personal privacy as well. They seem not to be able to learn from mistakes and c

Re:

[c_g_hills]

The U.K. is the one I have most experience with, and one of the compelling reasons that I emigrated to Denmark.

Re:

[OeLeWaPpErKe]

Actually the post was mostly about the Canadian government.

And all governments claim the right to do whatever they want (with approval of parliament in case of America, in other words : the people that represent you) within their territory.

That's obviously what makes it necessary for other governments to keep their data away from eachother. That's not strange, that's just a fact.

Geographical conflicts exist in the real world, as everybody knows. Here's a newsflash : so do you. Nature, it seems, has not seen

Re:I said it before, I say it again

[mpe]

It's not even about sensitivity. It's simply the uncertainty that the US government deems it their right to, at any time, for any harebrained reason, snoop into your data. No sane company or even governmental institution would accept that. It's like legalizing industrial (and other) espionage.

If you were from somewhere with data protection laws then it's most likely to be illegal to store certain kinds of data anywhere which dosn't have at least similar laws and/or the appropriate treaties in place.

Re:

[kent_eh]

Combine that with the requirements of the Privacy Act [wikipedia.org] and the government's policy is a no-brainer.

Re:

[jo42]

The idiot US Government already gets its Crackberry emails via servers outside the US.

Facism here we come! Heil Bush! And all that...

Re:

[dwater]

> I'm sure the US Government would not allow sensitive (or any) information to be stored on a foreign soil server,
> so why should Canada be any different.

> think Google cooperating with the Chinese government

...or China for that matter.

People seem to forget that the Chinese gov consider the US to be just as 'bad' as the US gov considers them; and, in many ways, they have a point, but it's the perception that's the key in this case, not the reality (whatever it might be).

Not just canada.

[sjwest]

http://news.bbc.co.uk/1/hi/uk_politics/7231186.stm [bbc.co.uk] Has this issue. Trustworthy and patriotic - something loses in that war.

Comment removed

[account_deleted]

Comment removed based on user account deletion

Re:

[Opportunist]

How would that help? I'm fairly sure some part of the Patriot Act allows the US government to demand handing over the keys.

Re:encryption

[Anonymous Coward]

The keys would be kept in Canada.

Re:

[Opportunist]

Yay, a reason to piss off and attack yet another country! And this time it ain't far at least.

Re:encryption

[PPH]

Doing daily business would require bringing the keys and the data together. Whoever is empowered to do so for normal operations will simply be waterboarded until the keys appear.

Better to move the keys, data, servers and administrative staff to a friendlier jurisdiction.

Re:

[WindowlessView]

And that would work because no Canadian ever needs to travel to the US and the US is never above arresting a visitor for something that they did somewhere else.

Or any other nationality. Certainly never to this [wikipedia.org] guy.

Re:

[CrimsonAvenger]

How would that help? I'm fairly sure some part of the Patriot Act allows the US government to demand handing over the keys.

No. Can you say "I take the Fifth"? Sure you can....

Re:

[Opportunist]

Have you ever? First, it's usually as good as pleading guilty in the eyes of a jury. Yeah, they may not use it, yaddayadda, sure. I sure want to see someone go free after taking the fifth when facing a jury.

And second, I doubt it works when the Patriot Act comes into play.

Re:

[CrimsonAvenger]

Have you ever? First, it's usually as good as pleading guilty in the eyes of a jury. Yeah, they may not use it, yaddayadda, sure. I sure want to see someone go free after taking the fifth when facing a jury.

Have I ever? Of course not. You have to be caught to go in front of a Jury. Of course, this isn't something that goes to a Jury, in any case. The cops (feds) ask the question, you say "I want to speak to my lawyer", interview with the cops ends.

Later, someone else may bring you a Search Warrant for

Re:

[ehrichweiss]

Did you miss the part where the Unites States was involved in the Patriot Act? I don't know if you noticed but the way we bomb^H^H^H^Hcompel other countries to do our bidding doesn't have to have anything whatsoever to do with the Patriot Act, though that'll be the excuse for certain.

Governments and outsourcing?

[compumike]

Shouldn't governments be particularly sensitive about not having a role in picking economic winners and losers?

Beyond that, their stance seems relatively well founded. Take a look at the new privacy policies for Google Health [google.com]... saying that they might release your records in some situations when required to do so by law.

But, I think the summary doesn't make it sufficiently clear that this is just government IT departments, not all information technology in Canada. Private citizens and businesses can still do as they wish.

--
Electronics kits for the digital generation. [nerdkits.com]

Re:Governments and outsourcing?

[Opportunist]

Yes, a government should actually do quite the opposite of what's happening: Making sure that everyone has the same chance to succeed, offering a level play field for enterprises, make them compete with each other, let the best one win chosen by the customer who picks the supplyer making the best offer.

IIRC from my economy courses, that's what free market is about.

Instead we get more and more laws lobbied into existance by large companies to ensure those companies have an edge over anyone trying to muscle into the field. Worse yet, outdated and obsolete structures and business models are being propped up by laws that go directly against anything free market represents.

Re:Governments and outsourcing?

[garett_spencley]

Not everyone agrees that a free market is what's best for society. There are always going to be political lobbyists, politicians and voting citizens who opt for more regulation. In fact, I'm personally surprised by how many of my peers seem to favour more communist-like systems.

The other day a friend of mine was watching a Youtube video of a speech given by one of the founding members of the Canadian Action Party [wikipedia.org] and he, not being canadian, asked me who this guy was. I explained to him what the CAP was all about. Said that while I agree with their Canadian Nationalist views they feel that globalization is a big conspiracy by the corporations in order to rule the world and make everyone their slaves. His response was "well isn't that already true ?"

It seems that a large portion of the public feels that corporations have far too much power and that free market has failed. They want government to further regulate the markets because they would rather have the government control their lives than corporations (they refuse to see that the public gives the corporations their power just as we give the government it's power).

Since I've failed to remain neutral I might as well just add that I am a pro-free-market libertarian and I think it will take a couple of wars before we can claim that the corporations enslave people. I do agree, however, that they get away with too much, but not because of a lack of regulation. It's because money buys justice and politicians. THAT is what that needs to be fixed. Yet many people don't look that deep into it. I can say with assertion that most people that I know in person certainly don't. They see that money = corporations = free market = evil and thus want more regulation.

Oh and it doesn't help matters when every single case of deregulation has resulted in short term economic upheaval while things balance out. Forget about selling long term advantages if it's going to cost people jobs and higher prices in the short term.

Re:Governments and outsourcing?

[Opportunist]

May I sum it up?

The time of enlightenment brought us the separation of church and state. What we need is a second time of enlightenment, separating enterprises and state.

Re:

[koekepeer]

Yes, indeed.

(-1: Redundant)

Re:

[theshowmecanuck]

We should make you the head of a new religion and elect you president. j/k

I will say that I really like your idea a lot. To do it I think will bring another or new kind of religious war though. I'm up for it.

Re:

[Opportunist]

I cannot become prez of the USA. Well, unless that amendment mentioned in Demolition Man passes.

Re:

[koekepeer]

This would never fly, period. People are too blase for a revolution, and they are being kept busy by the tremendous workload that comes with the two or more jobs they need to pay the ever increasing bills.

The only hope I have is the spread of wealth concentration. The US government doesn't seem to be interested in that, though, and here in Europe the tendency is to follow the US trend, slowly killing the social welfare systems.

Relative wealth is generated through the creation of bottlenecks (e.g. the curren

Re:

[lowsinon]

Revolution no longer occurs in the developed world in the classical sense. It is now done with wallets and votes, and I'm glad to be participating fully in the eventual decline of irresponsible business.

Re:

[CrimsonAvenger]

The US government doesn't seem to be interested in that, though, and here in Europe the tendency is to follow the US trend, slowly killing the social welfare systems.

And here I thought Europe's slow killing of the social welfare system was a result of the EU's requirement that deficit spending be kept under certain hard limits.

Note that the hard limits are actually about the same as the USA's current (excessive) deficits. but they ARE trying.

I'm curious, though. What can the EU actually do if a member s

Re:

[Opportunist]

Personal wealth is a smaller problem, I'd say. A human being usually has something a corporation lacks by definition: Morals, ethics and a consciousnes.

Ok, most do. The rest become lawyers.

Snide comments aside, a corporation cannot have any consciousness. Or rather, the people working for it can brush it aside because they're not to blame. If you are to lobby for a change of laws to further your corporation's needs, you can even see just how many people you put into misery because of it, but you're not to b

Re:

[rohan972]

I'd say. A human being usually has something a corporation lacks by definition: Morals, ethics and a consciousnes.

And a body that can be confined in a cell.

Re:

[rohan972]

Hopefully, you can see that a corporation is no different than a private citizen lots of money.

If that were true, then the rich would hold their assets in their own names rather than in corporations and trusts. Two of the significant differences are (1) there is no legal category of "Limited Liability Citizens" in the sense that there is with corporations (2) the nature of corporations is defined by corporate law, making profit the overriding motive always. Few individuals will make financial gain the over

Re:

[Tuoqui]

Unfortunately, the corporations got a bit of power... Then they in turn began to influence the governments to give themselves more power. That is the problem...

Now if the public wants to remove these corporations power they have to do it by boycotting everything really because theres so many companies and subsidiaries and what not that if you try to boycott say... Sony over the rootkit fiasco, well theres plenty of things you may end up buying that will end up having to not buy a whole lot since theres so m

Re:

[hey!]

Not everyone agrees that a free market is what's best for society.

Agreed, however you don't have to pick addlepated examples like crypto-communists to illustrate the point.

The market maximizes the efficiency of resource to the production of excludable benefits. If you want an economic system to produce iPods for around $100-$200, the market is the thing. If you want a system that will ensure breathable air and drinkable water for everyone, it's not. Not without some tinkering.

It seems that a large portio

Re:

[menace3society]

I think you actually take a far too broad view of the problem. Industry lobbyists, to pick on someone everyone hates, aren't actually against free markets *in theory*, it's just that their job is to support legislation that helps out american businesses in their industry, even if it hurts foreign businesses or other sectors. To that end, they don't need to suppress possible flaws, they simple do not present them to legislators, and since there are (by law) no cash-contributing lobbying groups that represe

Re:

[ukemike]

It is about power and corruption, but that's not the main point. The main reason corporations are dangerous is that they are legally persons, with all the attendant rights and none of the attendant responsibilities. Imagine if you created a class of people that had all the rights of other people but did not die and could not be put in jail, that could earn tremendous quantities of money but could arrange things so they were not taxed. That class of people would come to dominate all other people.

What

Re:

[rohan972]

One problem with this topic is the idea many people seem to have is that corporations in the form we have today are a part of a free market. In particular, Limited Liability Corporations only exist as a result of regulations. The idea that you can act without repercussions is not compatible with a free market but is instead a characteristic of sovereign rulers. The fiduciary duty that causes corporations to put profit above every other consideration is based on regulation, it is not a result of a free marke

Re:Governments and outsourcing?

[jlarocco]

Beyond that, their stance seems relatively well founded. Take a look at the new privacy policies for Google Health... saying that they might release your records in some situations when required to do so by law.

What the hell? Is that real? There are actually people stupid enough to upload their medical history to Google? Why?

That's the scariest thing I've seen all week.

Re:Governments and outsourcing?

[Opportunist]

Hey, what gives? You got anything to hide or what?

Some people do need to touch the hot stove. I stopped trying to keep them from doing it, people don't learn 'til they burn their hands.

Re:

[pjt33]

You got anything to hide or what?

Yes! I don't want people finding out about my Marfan's syndrome.

Hang on. How do I delete this post?

Re:

[Opportunist]

Do you think deleting this post would change anything? The info is out, and information that is out is out. There is no way to reverse time and undo it. Even with this post gone, some people will remember it and duplicate it somewhere else, where it is under no circumstances under your control.

That's the blessing and the curse of information. You cannot undo it. Despite what DRM tries to tell you.

Re:

[Anonymous Coward]

What the hell? Is that real? There are actually people stupid enough to upload their medical history to Google? Why?

That's the scariest thing I've seen all week.

I'd prefer to have all of my medical data stored by Google than to have it spread between different hospitals and private practices, each one with a different view on how they should deal with your data and none of which have ever shown me their privacy policies. Not to mention that their policies are very close to Google's, since they have to follow the same laws...

Not just governments

[Roger W Moore]

But, I think the summary doesn't make it sufficiently clear that this is just government IT departments, not all information technology in Canada. Private citizens and businesses can still do as they wish.

It is not just governments. Universities and other institutions have obligations under Canadian privacy laws. If they store data in the US, for example by using GMail accounts or online question services from text book companies, the US government can gain access to private data on Canadian students and the University will then be liable for a breach of privacy under Canadian law.

This has meant that at least some Canadian Universities are looking at implementing policies which forbid the storing of data in the US. The result undoubtedly will have some economic impact on the US since now either US companies will have to invest in Canadian based servers or be automatically disqualified from bidding on IT contracts (although I also understand that the US government can force US companies to reveal data even if it is not stored in the US so it may rule out any US company). This is not just hypothetical either - to my knowledge it has already affected contract decisions.

Re:Governments and outsourcing?

[value_added]

Shouldn't governments be particularly sensitive about not having a role in picking economic winners and losers?

I suppose, if one's outlook is a narrow view where the idealogy of capitalism overrules all other ideas. My own opinion is that one of the prime responsibilities of government is to set responsible policy. The citizenry or business interests are free to pursue things however they want in the context of the policy.

When viewed in that light, the notion of "picking winners and losers" is a construct that's as absurd as it is political. If a government chooses to raise mileage standards or raise taxes to offset the costs of environmental degradation, for example, Ford is free to go broke trying to sell SUVs, just as Toyota is free to build another plant in Ohio to meet increased sales. If the government adopts an open document format policy, Microsoft is free to adapt or continue their current practices. If there's any picking involved, it's being done in the corporate boardroom.

A sovereign government mandating local storage may indeed interfere with certain business models, but then again, so what? One door closes, another one opens. That's not to say the politics of the issue aren't interesting or worth discussing.

Re:

[Original Replica]

Shouldn't governments be particularly sensitive about not having a role in picking economic winners and losers?

Someone mod that +1 funny. How are they supposed to pay for their re-election campaigns if they don't take direct action to influence the economy? The government is made up of people who, every few years, need to raise millions of dollars on nothing but promises, the only thing they can promise that makes that worthwhile is a good return on a campaign "investment".

The Audacity!

[eternalelegy]

Patriot act hampering something more important than its intended purpose? Oh the Blasphemy!!

Good news for Canadians

[Zalgon 26 McGee]

Imagine, a government actually concerned about rampant abuses by the American Executive branch, and attempting to protect its citizens.

Re:

[Opportunist]

A government more interested in executing control over itself than its subjects? That's unpossible.

Re: Good Government

[mhollis]

Actually, it's supposed to work that way under the US Constitution.

The Legislative branch makes the law. Second, the Executive branch executes the law. Last, the Judicial branch interprets the law. Each branch has an effect on the other.

Legislative Branch

• Checks on the Executive
  • Impeachment power (House)
  • Trial of impeachments (Senate)
  • Selection of the President (House) and Vice President (Senate) in the case of no majority of electoral votes
  • May override Presidential vetoes
  • Senate approves departmental appointments
  • Senate approves treaties and ambassadors
  • Approval of replacement Vice President
  • Power to declare war
  • Power to enact taxes and allocate funds
  • President must, from time-to-time, deliver a State of the Union address
• Checks on the Judiciary
  • Senate approves federal judges
  • Impeachment power (House)
  • Trial of impeachments (Senate)
  • Power to initiate constitutional amendments
  • Power to set courts inferior to the Supreme Court
  • Power to set jurisdiction of courts
  • Power to alter the size of the Supreme Court
• Checks on the Legislature - because it is bicameral, the Legislative branch has a degree of self-checking.
  • Bills must be passed by both houses of Congress
  • House must originate revenue bills
  • Neither house may adjourn for more than three days without the consent of the other house
  • All journals are to be published

Executive Branch

• Checks on the Legislature
  • Veto power
  • Vice President is President of the Senate
  • Commander in chief of the military
  • Recess appointments
  • Emergency calling into session of one or both houses of Congress
  • May force adjournment when both houses cannot agree on adjournment
  • Compensation cannot be diminished
• Checks on the Judiciary
  • Power to appoint judges
  • Pardon power
• Checks on the Executive
  • Vice President and Cabinet can vote that the President is unable to discharge his duties

Judicial Branch

• Checks on the Legislature
  • Judicial review
  • Seats are held on good behavior
  • Compensation cannot be diminished
• Checks on the Executive
  • Judicial review
  • Chief Justice sits as President of the Senate during presidential impeachment

These checks are inefficient. And this inefficiency is borne out when one political party in the US system captures all three of the branches (as it has) and then, for the purpose of extending the power of that party, fails to exercise restraint and to provide a check on the other branches.

What I have noted is that the only branch that has actually decided to act in a manner consistent with Constitutional checks and balances is the Supreme Court. To the extent the Legislative Branch (or branches of the various States) have worked to mandate sentencing or require judges to act without their power to interpret, the Supreme Court has ruled these requirements as nothing more than guidelines. And this has gone on despite a rather radical shift in the Supreme Court to the political right. And I would agree with them, even though my own political direction differs strongly from many of their recent decisions and statements.

The Orwellian-named "USA Patriot Act" was a bill that was utterly altered -- in its entirety -- in the middle of the night by Bush's Attorney General, John Ashcroft within a committee that was also completely asleep at the switch. This is part of the rules of Congress, where a committee will take in a b

Re:

[Opportunist]

I'd rather vote for someone who is soft on terror than someone who is soft on defending freedom.

But I noticed the US voters want "strong" leaders. People who make decisions and follow them through, no matter what. If they're wrong, they're wrong, but that's still better than changing their mind.

I guess, as a European, I won't fully understand that. And I guess neither would any US voter understand why we can vote for parties and politicians who tell you the exact opposite they told you 5 years ago.

Re:

[mhollis]

I suppose the European systems have their flaws. Some don't even have written constitutions (oh horrors!). But Americans do want leaders who appear strong and able. And I'd imagine Europeans do as well, as I cannot think of any leader in Europe who appears weak to me.

The issue with the US system of government is that our Executive is not directly elected by the people. And, I suppose, European Executive power, mostly being vested in Parliaments isn't either.

The various US States elect our President. And e

Re: Good Government

[Opportunist]

There are two extremes. One is "winner takes all", which invariably leads to a (mostly) two party system, with little hope for a third party to rise to importance. The other one is "let everyone in who gets a vote", a system Italy had for a long time, leading to dozens of minuscle parties holding a seat or two, with coalitions between so many parties that governments fall apart, on average, after a year (that's pretty much Italy's average).

Either system is, in my opinion, doomed to be dissatisfying for the voter. The former because if the parties are too similar (as they are now, to an outsider's view), there is no real choice. The latter because you just know it doesn't matter how you vote, they won't get anything done anyway because no idea gets a majority.

Most European countries today have a minimum limit to get a seat in the parlament. You need at least 4-7% (varying between countries) to have a seat. Usually, gaining that much support already gives you a few seats right away. And while 4% doesn't sound like a lot, it pretty much means that the average European parlament contains about 4-6 parties.

This usually (if not almost always) leads to coalition governments. Which has its advantages (radical changes in policies are nearly unheard of) and of course disadvantages. Today, the disadvantages start to show a lot more than they did in the past, it seems our parties are too concerned to show "weakness" to cooperate anymore. More than one country has a coalition today that can't get anything sensibly done because the coalition partners are unwilling or unable to agree on compromises, because they fear their voters will feel they "lost their line" and "gave in".

Re:

[pjt33]

The former because if the parties are too similar (as they are now, to an outsider's view), there is no real choice.

It's stronger than that. In an effort to attract the "swing voters" the two parties drift towards each other, so over time they will become similar.

Re:

[Opportunist]

It works akin to the ice cream vendors theory.

Imagine a beach, stretching for a mile. There are people lying on the right, people on the left, scattered over the beach. There are two vendors of ice cream, positioned pretty much at 25% and 75% of the beach. Both of them make ample business.

Then one vendor ponders. If I move towards the middle, some people from the other side might come to me when I'm closer. The ones on the far end have to come to me anyway, since the other vendor is even further away.

Of cou

Re:

[dajak]

The other one is "let everyone in who gets a vote", a system Italy had for a long time, leading to dozens of minuscle parties holding a seat or two, with coalitions between so many parties that governments fall apart, on average, after a year (that's pretty much Italy's average).

The Netherlands has no voting threshold whatsoever, and has been pretty stable (even to the point of being extremely dull) over most of its history as a democracy. You need just 0.667% of the votes to get into the 150 seat parliamen

Re:

[ColdWetDog]

Nice summary.

Keep on making sense like this and we'll either revoke your Slashdot ID or your US Citizenship.

Or maybe both.

Re:

[CrimsonAvenger]

Power to alter the size of the Supreme Court

That's covered by the "Power to initiate constitutional amendments". Since Roosevelt tried to pack the Supremes, we've passed an Amendment mandating the size of the Court. Congress has no power to affect it further without another Amendment.

DUH!!!

[Jane Q. Public]

Do not store sensitive data on somebody else's server!!! This is not a genius-level concept, folks!

Re:

[ceoyoyo]

That kind of kills cloud computing then.

Job Security & National Security

[Doc Ruby]

Especially while American workers and domestic operated industries are hurting and threatened with even more hurt, the American people's security, both economic security and the resulting national security, would benefit by the American people investing more in American workers. American legal jurisdiction and yes, even patriotism, also make domestic operations even more securable than those outsourced to foreign corporations whose security integrity can be bought, perhaps as cheaply as Americans bought the

Re:

[Doc Ruby]

Moderation 0
    50% Insightful
    50% Overrated

TrollMods think Americans' job security and national security are "overrated", so they don't even want to talk about it. Because talking about it in public could protect it.

Re:

[dryeo]

While the comment itself is insightful, where you put it is a bit trollish. This is a discussion about Canada and you jumped in with your pro-American comment.
I (as a Canadian) found your comment out of place.

Re:

[Doc Ruby]

Where I put it? I put it in reply to a story about Canadians protecting their own data (and jobs, according to my argument) by not leaving it in a foreign country, the United States. I put a comment about Americans putting their data in a foreign country.

Now, what you're describing (a valid comment in the wrong place) is known as "Offtopic", not "Overrated". But my comment was on-topic, but from the reverse perspective.

How is that "trollish"? What were the "predictable comments" which would be the sole purp

Re:

[dryeo]

I guess what it is is that Americans often come across as arrogant. Perhaps we in Canada are a bit hypersensitive but unluckily America has to much history of acting like bullies.
Even if you had started your comment out with something like "We in America have the same problems as the Canadians ..." it would of not been so jarring of a comment.
I'm not agreeing that you should of been modded down, just describing how I felt when I first read your comment.
Generally I like reading your comments but occasionally

Patriot Act Aside ...

[garett_spencley]

I'm not really sure how "news worthy" this is. As one example, the Ontario Education Act prohibits public schools in Ontario from using text books that are not written by Canadian authors.

The Canadian government trying to keep things in Canada is very standard practice. I didn't RTFA and I'm sure it mentions the Patriot Act, but I really doubt the Patriot Act is the sole reason that they won't outsource hosting companies to the US. Their policy is most likely that they can not outsource anything to anywhere outside of Canada unless they have no choice.

Re:Patriot Act Aside ...

[Fox_1]

Well the newsworthyness is lower for the Canadians who have been dealing with hyper-aggressive Americans since 2001. There were a number of obvious abuses of power that clued Canada in quick.
http://www.aclu.org/safefree/general/26684res20060906.html [aclu.org]
and most of those were just against other Americans by their own government.
If they treat their own citizens like that, why would we expect them to respect the rights of another nations citizens. Particularly over things like privacy which has been long protected to a higher standard in Canada than the US.

Re:

[Cragen]

Agreed. I doubt any American gov't. agencies host any of their data outside the USA. Indeed, I doubt there is any gov't. anywhere that stores its data anywhwere outside its own borders. What an idiotic article.

C

Re:

[Silvrmane]

The reason is that Canadian companies are required by law to adhere to the principles of the PIDPEDA act. Because of the Patriot Act in the US, and its provisions for examination of private data, by thanywhere, at any time, for reasons of national security, there is no way to guarantee the privacy of Canadian data stored on US servers. Therefore they cannot be used, QED.

Re:

[mpe]

The Canadian government trying to keep things in Canada is very standard practice. I didn't RTFA and I'm sure it mentions the Patriot Act, but I really doubt the Patriot Act is the sole reason that they won't outsource hosting companies to the US. Their policy is most likely that they can not outsource anything to anywhere outside of Canada unless they have no choice.

Thus you could call Canada's actions a "patriot policy" or even a "patriot act" :) Being reluctant to outsource anything outside one's count

Re:

[garett_spencley]

Canadian English = British English

Re:

[pjt33]

Nonsense [wikipedia.org].

Re:

[dwater]

Well, IMO, that's not true on two counts.

1) It's "English", not "British English" (the Scotts, Welsh, and Irish have their own languages). The language spoken in England is simply "English" - call it "English English" if you must; and
2) Canadian English is different to English anyway.

Re:

[dwater]

Ah, thanks for the spelling correction.

However, I don't see that the other statistics prove anything.

My god!

[MagdJTK]

You mean the US's total disregard for everyone's rights in the name of the "War on Terror(ism)" makes people wary of allowing them near themselves or their data?

I'd never have guessed...

Can't you just encrypt it?

[Jeremy Erwin]

Or is strong encryption some how not in keeping with the cloud computing metaphor?

Re:

[Ephemeriis]

Can't you just encrypt it? Or is strong encryption some how not in keeping with the cloud computing metaphor?

Depending on what you're doing with the cloud, no, you might not be able to encrypt it.

If you're looking at something like simple file storage then you could certainly encrypt your data. Encrypt it on your machine...upload it for storage...download it when you need it...decrypt it again on your machine. That's fine.

But if you're looking to use somebody else's CPU cycles that doesn't work so well. Your data has to be in some kind of executable state as it passes through their CPU. Even if the data is tr

Re:

[Jeremy Erwin]

Ok. Thanks. I was a bit unclear on the concept of "cloud computing". So, essentially, these companies trust Google, amazon, etc, not to mine their trade secrets?

"Cloud computing" has other problems

[Animats]

From capacity to "service level agreements" that guarantee little, cloud computing has business problems.

I went to this talk [stanford.edu] at Stanford by the head of "cloud computing" at Amazon. Technically, Amazon's approach to "cloud computing" is quite impressive. As a business, it works for a special reason - Amazon's load is 4X greater than normal during the buying season before Xmas. Amazon has to size their data centers for the Xmas buying season. For the rest of the year they have vast excess capacity. That's why Amazon's "cloud" is so cheap to use.

So Amazon's "cloud" is a great service, unless you need it during November and December.

Good

[HangingChad]

They especially cannot use services where the data is stored in the United States because of fears over the Patriot Act.

Good. It's about time our knee-jerk fear-inspired legislation started hitting us in the pocketbook. And I hope the TSA and Customs Service attitude toward searching laptops at the border provides one more reason for people not to come here. I hope the visa and passport requirements encourage overseas travelers to travel and shop elsewhere. I hope all this silly crap comes back to bi

I disagree with your tag

[Jane Q. Public]

Re: the topic of discussion: I think "UNDO" would be a wise choice.

Point being?

[bluefoxlucid]

What moron stores extremely sensitive data on random untrusted systems? Especially any kind of sensitive government data.

Sure, let's let Lockheed Martin store their working research on what they're building as our next latest stealth spy planes on computers in Germany and Canada. This is a great idea.

Re:

[ozonepriest]

Funny you mention Lockheed Martin: they're one of the companies we have a problem with. See this [wikipedia.org] wikipedia article and search for "Lockheed."

Lets get real...

[3seas]

...you want your data to be secure?

Disconnect it from the net.

given the vast amount of digital leakage and other human errors, who are you really putting trust in?

Re:

[hey!]

...you want your data to be secure?

Disconnect it from the net.

Next encrypt it with a one-time pad. Then burn all copies of the pad.

Re:

[SanityInAnarchy]

There are a lot of degrees between "Don't trust the US" and "Disconnect, entirely." Especially considering that data which is disconnected, but still in the US, is still a problem.

given the vast amount of digital leakage and other human errors, who are you really putting trust in?

Well, if the servers are in Canada, it's still going to be a very long list.

If the servers are in the US, it's pretty much going to be the same very long list, plus the US government.

Which is more secure?

Safe Harbour

[davecl]

This issue has been running for a long time. In particular the different attitudes to the privacy of individuals' data in the US and the EU has blocked [networkworld.com] a lot of data being transferred from the EU to the US. This isn't the Patriot Act - the linked article dates back to before that was enacted. As an EU citizen I like it that my personal data can't just be bundled up and sold on from one company to another without my permission.

However, there are provisions under the Safe Harbour [export.gov] rules that allow data to be t

Duh

[stabiesoft]

Why is there even an article on this? Obviously if your a foreign entity and suddenly whoever was holding your data went to war with your country, your data is their data now. Iraq proved we can go to war practically overnight. I've never thought it was a good idea to outsource email. Why in the world would you outsource your computing as a normal course of biz? Basically I have one immutable tenet, without phyiscal security you have no security. Translation, if my data is not sitting on my property, I have no idea what happens to it.

Very true

[Mr_Icon]

I work at a large Canadian university and we're expressly forbidden from storing *any* student-related information, no matter how insignificant, on non-Canadian servers. This doesn't just include things like gmail, but also various payment processing services, online storage providers (think Amazon's S3), and even things like Google Analytics. The latter is so ubiquitous, I'm not sure we're succeeding in extricating it from university-owned websites, and each time we have to explain to people why sending sensitive information about our users' browsing habits to the US is not a good idea.

I don't think this policy has much to do with the Patriot Act, though I'm sure it acted as a catalyst. We'd probably not store any data in Netherlands either. If you're an institution that has to worry about compliance with various national privacy laws, it makes sense to store all information either within the organization, or at least within the same country.

Re:

[dwater]

> It doesn't have anything to do with the patriot act as much as it has to do with slashdot's alterior motive to spread paranoia and hate about the USA.

Well, it is [slashdot.org] run by "Americans" (from the USA, not anywhere else in America), and USA people have proved that they seem hell bent on spreading paranoia about and hate for the USA - it's something they're undeniably best at.

Nations do this all the time.

[russotto]

Much as I dislike the Patriot Act, I rather suspect that Patriot Act or no Patriot Act, the US government would snoop on any foreign government's data available to it. And foreign governments (even "friendly) ones would do the same to the US. The time when gentlemen didn't read other gentleman's mail is long past.

A problem for the UK as well

[mark2003]

Aparently the UK government selected a subsidiary of Lockheed-Martin to provide the IT for the next UK census. This will be on servers located in the UK, however I believe the Patriot Act still allows the US government to access the data collected because LM is an American company.

So, and rightly so, many MPs are trying to get the contract awarded to a EU company instead to avoid privacy implications and possibly because it brings the UK goverment into conflict with EU and UK privacy laws.

Re:

[Anonymous Coward]

You could always move all your servers to Canada and not have those unnecessary insecure servers in the US. Seems like someone made a bad decision setting up your infrastructure having them in the US to begin with seeing as you have global clients.

Re:

[mpe]

You could always move all your servers to Canada and not have those unnecessary insecure servers in the US. Seems like someone made a bad decision setting up your infrastructure having them in the US to begin with seeing as you have global clients.

If they have global clients then they may not be able to have all their servers in one country. For just this kind of reason. Though they certainly don't want to locate many servers in a country which most of the rest of the planet is likely to object to having

Re:

[russotto]

work for a company that assists with clinical trials across the world. One of the things we do is store medical data until the trial is over and we can send all the data to the sponsors of the trial. No trial run out of Canada has ever let us store data or back up data to the US.

Why not encrypt your backups? Sure, it's a fair bet the NSA can decrypt them, but #1, they probably aren't who you are worried about and #2, if they're really motivated, they likely aren't going to be bothered with the fact that

Re:

[mpe]

This is just a political statement. "You can't host government data anywhere outside national boundaries."

However it's one which actually makes sense in terms of "patriotism" and "national security"

Re:

[hyades1]

Not surprising to see that there's a few fascists out there with moderator points and absolutely no sense of humour.