Google Declines To Turn Over Harvested Wi-Fi Data

An anonymous reader writes "Google declined to submit data collected as part of the 'Spy-Fi' flap, and Connecticut Attorney General Richard Blumenthal is now promising further action: '"I certainly will be pressing for continued involvement at the federal level in coordination with the states," Blumenthal told Politico Monday, just days after promising to explore "additional enforcement actions" if Google does not share the data soon. Asked to describe what those federal efforts might include, the outgoing attorney general said, "There's a range of potential opportunities for oversight and scrutiny by a member of the US Congress – including letters, meetings, hearings, and potentially even legislation." For its part, Google has tried to defuse the issue by offering to delete the data. The company reaffirmed that position in a Friday statement, promising to work with Blumenthal in the coming weeks, but declined to comment further on Monday.'"

Should have deleted it from the start

[alvinrod]

Google should have deleted the data before they even publicly announced that they had accidentally collected it. Would have made the matter a whole lot simpler and would have left less room for political grandstanding.

Re:

[kanto]

Google should have deleted the data before they even publicly announced that they had accidentally collected it. Would have made the matter a whole lot simpler and would have left less room for political grandstanding.

It'll probably end up on wikileaks once a government body gets it's paws on it; safer to chuck those discs in the microwave.

Re:Should have deleted it from the start

[icebike]

It'll probably end up on wikileaks once a government body gets it's paws on it; safer to chuck those discs in the microwave.

Exactly.

I'm rooting for Google to stand fast. What possible use would the government have for these account names and passwords.

When the government can prove that they can hold onto their own secret data then maybe they can be entrusted with this. (NAH, what was I thinking!?)

If it is released to the government, (AND Government) it will be leaked.

Re:

[drinkypoo]

Forget leaks, there is only one reason the Government could want a bunch of our passwords and it has nothing whatsoever to do with Google.

Re:

[kiwimate]

Oh come on. Put away the conspiracy theories.

“We’re not asking for names or addresses. We want to see the nature of the data they have,” he added. “Their claim is that none of it was obtained illegally anyway, so it kind of contradicts their underlying contention they’ve done nothing legally wrong.”

And, by the way, also from the story:

The company has since settled with many concerned regulators, sharing the data with Germany, France and Spain

I have not followed the story, so perhaps someone else can explain why Google would share the data with three other countries but not the U.S. (Not wild conspiracy theories, either - I mean Google's rationale or explanation.)

Re:

[cayenne8]

"I have not followed the story, so perhaps someone else can explain why Google would share the data with three other countries but not the U.S. (Not wild conspiracy theories, either - I mean Google's rationale or explanation.)"

I believe this is likely due to Germany, and the other countries in the EU, having specific privacy laws that may have been breached during the Google drive thru.

The US, to the best of my knowledge has no such privacy laws on any state or federal level.

Therefore, I'm guessing that

Re:

[gknoy]

If I recall correctly, they were leveraging an existing open source tool for reading network information, and basically built the infrastructure of sampling, collecting, storing, and collating the information themself. Unfortunately, the tool they used collected more than they though it did. Or something like that. Hopefully someone else can give you a better explanation.

Re:

[anyGould]

Probably not much better, but I'll try...

As I understand it, they were intending to grab the beginning of each packet (the part that has the SSID, signal strength), which they would use to map where the hotspots are, so that when you're at the hotspot, Google can use the info to geolocate you.

The error was that their software was reading and storing too much of the packet, which meant they were getting some data that was being transmitted (instead of just the header). Most of the time it was just random chu

Re:

[hannson]

IIRC they were mapping broadcast SSID to GPS locations to get more accurate location system for Android phones.

Re:

[Kjella]

Meh, this is turning out to a textbook example of why companies don't do the right thing. Right now I bet Google wish they'd deleted the data, buried the case, burned the records and none of those involved were ever heard from ever again.... ok maybe not the last part, but seriously? When you know the result of admitting jaywalking is to be take out back and put before an execution squad, you're not going to find many turning themselves in.

Re:Do the Right Thing

[TaoPhoenix]

Maybe, but Google is one of the 5 companies I think is smart enough to play the Long-Script game.

Of course they could have played Corporation Games and squashed it, but instead maybe they're using a carefully chosen test-case to get certain predictable events "over with".

Right after the early Dot-Com crash I (among many to be sure) I noticed the Gaping Abyss concept: once the original "This Time Will Be Different" sales-mood of Dot Com 1.0 crashed, I felt that medium-soon we'll just be staring at a bunch of

Re:

[Linker3000]

I believe that someone's always playing Corporation Games.

Re:

[dangitman]

Okay, if Web 1.0 was Sales, 2.0 was Sharing, one candidate for 3.0 is Walled Garden & Censorship, and I speculate that 4.0 will be a Privacy Revolt.

How about a revolt against the inane idea that the web has version numbers? Or that the web as a whole even has some sort of overarching narrative?

Re:

[TaoPhoenix]

I'm having fun with the version numbers based on Buzzword Bingo, but I do think there's the overarching narrative effect. Since I'm not that original, I'm pretty sure someone out there has a Citation.

Re:

[GameboyRMH]

I assume 2.0 refers to the early-2000s "golden age" of file sharing (in terms of the number of file sharers), and the current social media fits into 3.0 (which I truly hope is a fad and not a new way of doing things...if it's a fad, I think we're approaching the bust point).

Can't wait for 4.0, social media needs to die as a business. Human relationships should not be commercialized.

Re:sig

[TaoPhoenix]

Thanks AC.
I didn't take "Computer Science" .. er... Typing in high school.

Re:Should have deleted it from the start

[beakerMeep]

Destroying evidence while being investigated by the FCC/FTC is usually frowned upon. But I'm glad they are declining to hand it over for what you aptly called grandstanding. Honestly I think Google has handled it the best they can given the situation. Seeing politicians exploit the situation is beginning to irk me too though.

Re:

[account_deleted]

Comment removed based on user account deletion

Re:

[Anonymous Coward]

I don't think Google really minds an investigation about this incident, or the government even investigating the data. I think they just don't like the way the government is demanding to investigate the data.

Google did the right thing when they told the world about it. We deserve to know. And if they had not told us about this and we somehow found out, we'd be asking why they kept silent and what conspiracy this is related to.
The government wanting to investigate the incident and view the data as part of th

Re:Should have deleted it from the start

[AltairDusk]

Well the whole thing just seems like an ever climbing level of stupid. First Google collects data that while not illegal certainly wouldn't look good for the company: Dumb. Then they announce it to the world: Extra Dumb The governments demand to see the data...why? Just to see if there are any juicy bits? :Really Dumb, and now Google refuses to hand any of it over rather than just redact the names and let them have the boring bits: Extra Super dumb.

First Google accidentally collected the data, they didn't do it on purpose. Then after realizing they had collected it they decided to come forward and do the right thing rather than doing what most corporations would have done and covering it up. Then instead of governments realizing "hey they screwed up and they've admitted it, we want to encourage this kind of behavior rather than cover-ups" all of the governments involved have done a fine job making the cover-up look like the smart choice over doing what's right.

Re:

[tcr]

I wouldn't say they didn't need the data...
SSIDs are geopoints are required if you're going to put together your own aGPS service as an alternative [gigaom.com] to SkyHook.

Re:

[icebike]

Destroying evidence while being investigated by the FCC/FTC is usually frowned upon.

It wasn't evidence till they admitted having it and everybody started demanding it. The GP was right, they should have destroyed it first, then fessed up that they had un-permitted data (which still has not been proven in a court of law) and that they did the right thing by destroying it.

Re:Should have deleted it from the start

[qubezz]

Oh noes! Google might have recorded an unencrypted packet or two of someone checking gmail while they were driving through a neighborhood! They are clearly guilty of receiving and recording electromagnetic signals IN A FREQUENCY THAT IS PUBLIC AND UNLICENSED, by devices that were advertising their SSID and transmitting unencrypted data. Guilty of doing something completely legal and completely trivial.

I trust Google with my personal contacts and emails, documents, schedule, voice mail, etc. I do not trust and never authorized the State of Connecticut to have access to any data of mine, and neither should you. Go away extortionist attorney general.

Re:Should have deleted it from the start

[whoever57]

They are clearly guilty of receiving and recording electromagnetic signals IN A FREQUENCY THAT IS PUBLIC AND UNLICENSED, by devices that were advertising their SSID and transmitting unencrypted data

I think that there is a good case that privacy concepts need to be re-thought in the light of what is possible now through data-mining. Today, private information can be derived from amassing and relating lots of disparate public information. This is an issue that is not simply dispatched by pointing out that the source information was public. I think that we need new concepts of privacy.

Re:Should have deleted it from the start

[AltairDusk]

While I agree I also think there needs to be some clear indication that privacy is desired. Encrypted WiFi, however weak the encryption may be, clearly signals a desire for privacy and the argument can convincingly be made that anyone cracking the encryption is willfully violating privacy. Unencrypted WiFi should carry the same expectation of privacy as talking over a clear channel on a CB radio, the concept is actually quite similar.

What really should have happened here is that the government should have asked Google "Ok, you screwed up, now what are you going to do about it? How about you fund a campaign to educate the public on privacy matters and the importance of encrypting their WiFi?" That would have been a better solution for everyone involved. The government still gets to look like they stepped in and took care of the issue. Google still pays for the mistake, while helping people in the process. The public gets to use this incident and all of the publicity surrounding it as a lesson and many more people will encrypt their wireless networks or clamor to their ISPs to provide their wireless routers with encryption already set up. Very large missed opportunity here.

Re:

[Skater]

Destroying evidence while being investigated by the FCC/FTC is usually frowned upon.

It wasn't evidence till they admitted having it and everybody started demanding it. The GP was right, they should have destroyed it first, then fessed up that they had un-permitted data (which still has not been proven in a court of law) and that they did the right thing by destroying it.

Except then half of Slashdot would be going off about how Google is evil and their proof would be that Google deleted the data before anyone could look at it.

Re:

[Dan East]

Google should have the right to do anything they want with this data. If it is unencrypted and transmitted over open airwaves (AKA no WPA or even WEP for that matter) then that's not Google's fault. If it were encrypted then that might be a different matter, but I am still of the opinion that anyone has the right to receive RF communication as long as they do not trespass, etc, to do so.

they didn't "accidentally" collect it

[SuperBanana]

1)You don't "accidentally" retain sniffed traffic logs of that size, across your entire international operations, for months if not years, "accidentally." See http://gizmodo.com/5671049/google-street-view-cars-collected-emails-and-passwords [gizmodo.com] I mean come on...someone would have noticed the drives filling up, wondered why, etc. These people are supposedly geniuses, right?

2)There's no political grandstanding here. This is a major privacy invasion. The "grandstanding" has been international, because people

Re:they didn't "accidentally" collect it

[Neil Boekend]

I mean come on...someone would have noticed the drives filling up, wondered why, etc. These people are supposedly geniuses, right?

You apparently have no idea how much harddrive space Google has.

Re:

[GameboyRMH]

He's also not a programmer, or he'd know how easy it is to accidentally release an app with testing code in it and have it go unnoticed for a long time.

What probably happened is the app was rushed out with the testing code in place, put on Google's internal file servers, where it was then either automatically installed to the Street View Cars, or manually installed by toner change monkeys and interns around the world. Then their hard drives with hundreds of gigabytes or maybe many terabytes of capacity, whi

Re:

[Anonymous Coward]

I mean come on...someone would have noticed the drives filling up, wondered why, etc. These people are supposedly geniuses, right?

Because, sure, given the choice between incompetence and malice, it's always malice, right?

You make it sound like there was an army of Google's top engineers working on this one single component. If these engineers are geniuses, how many engineers do you really think they'd need? I'd guess one, maybe two. Yeah, it's got to be malice. There's no way one person would make a mistake, or fail to notice something that someone else's code was doing.

2)There's no political grandstanding here. This is a major privacy invasion. The "grandstanding" has been international, because people are PISSED. Google collected and correlated with location data...MAC addresses

Right. Google (and several other companies, and black hats w

Re:they didn't "accidentally" collect it

[whoever57]

This is a major privacy invasion.

I'm a little confused on how giving more people access to the data helps to ameliorate the supposed privacy invasion?

Re:

[scdeimos]

I'm a little confused on how giving more people access to the data helps to ameliorate the supposed privacy invasion?

Hear! Hear! This from TFA:

"We’re not asking for names or addresses. We want to see the nature of the data they have," he added.

Um, excuse me? What business is it of yours? They've already told you what types of data have been sniffed. Why do you need to see it?

Re:

[Errol backfiring]

Indeed. What's the difference between one burglar breaking into your house or having your house officially opened as a public space for everyone?

Re:they didn't "accidentally" collect it

[adamofgreyskull]

1)You don't "accidentally" retain sniffed traffic logs of that size, across your entire international operations, for months if not years, "accidentally." See http://gizmodo.com/5671049/google-street-view-cars-collected-emails-and-passwords [gizmodo.com] [gizmodo.com] I mean come on...someone would have noticed the drives filling up, wondered why, etc. These people are supposedly geniuses, right?

Eric: Hey Larry, this D drive is filling up pretty quick.
Larry: Huh?
Eric: I said the D drive is filling up pretty quick.
Larry: It's probably nothing, what are you doing?
Eric: Oh, nothing..I was just going to create a new logo for the anniversary of the invention of the potato peeler and I got this message.
Larry: What did it say?
Eric: I don't remember exactly, I just clicked ok, but it said something about disk-space, and wouldn't let me create my jpeg.
Larry: Well did you check the Control Panel?
Eric: Yeah, it's saying it's all full...
Larry: What? Seriously? I thought we put a 100Gb in there a few months ago? It shouldn't be full.
Eric: Well...it is. See? All blue!
Larry: Should we delete some of it?
Eric: I did, last week, and the week before...maybe it's a virus?
Larry: What are all these? Hmmm. They look important...probably Sergey's.
Eric:Shit...Sergey. Do you think...shall we tell him? Shall we tell Sergey?
Larry: Do you want to tell him? He's going to be super pissed when he finds out you filled the new hard-drive with porn or whatever you did..
Eric: I...Good point. I'll go down to best-buy and get one of those external disk things. What should I get? 200Gb or 300Gb?
Larry:I don't know? Just get the biggest one you can, and hurry! It's his turn to use the computer next!!
Sergey: Hey guys, what's up?
Eric & Larry (together): Nothing!

End Scene.

Re:they didn't "accidentally" collect it

[guruevi]

1) Yes you can accidentally retain sniffed traffic logs. Run Kismet for instance. I have once accidentally left it on, sniffing all encrypted and non-encrypted traffic in my neighborhood (~15 networks) for about 48 hours: ~10GB. Google did not sniff all traffic, it only sniffed (or sampled) a few packets from every hotspot (maybe 10-20kb). With standard disk sizes being 250GB it takes a really, really long time to fill up your disk with random samples.

2) People are pissed for what? Not securing their own wireless? Transmitting their passwords in clear text over an insecure medium? They only correlated what any WLAN tracker/sniffer can provide. If you own a wireless network you might know that your MAC addresses and SSID's get transferred and being able to correlate them against GPS locations has been done not just by Google. Even so, it's still legal in most places to receive radio transmissions (since it's physically impossible not to) and you can do whatever you want with them those transmitting those radio transmissions should know that there can be eavesdroppers anywhere.

3) It's not slightly creepy. I have done it as have probably many others here. Ever been at a location where you need internet? Maybe at your local coffee shop or at a hotel? You open your laptop and scan for networks hoping to find an unsecured one - you're now wardriving. Doing it for profit has been done before, there are companies that sell these databases successfully since at least the last '90's, not just Google.

Re:

[he-sk]

Maybe at your local coffee shop or at a hotel? You open your laptop and scan for networks hoping to find an unsecured one - you're now wardriving.

Don't you mean warsitting? Or maybe warstarbucking?

Re:

[GameboyRMH]

Yeah I can't feel bad for the "victims" here. They send sensitive information, in plaintext, over an unsecured wireless connection, and they're upset that somebody picked up the information they were transmitting out into the world? ZOMG poor babies!!!

Re:

[1800maxim]

48 hours != years.

Re:

[iserlohn]

Accidentially != intentionally

They could have retained packet data to do statistical analysis on the type of communications occurring for example, but did not delete the data afterwards (which is the most likely explanation). There is nothing against any law that allows you to collect unencrypted transmissions in the clear on unlicensed public spectrum. It is given that in such cases, there is no presumption of privacy. In fact, the AG of Connecticut is probably on a fishing expedition to see if the can fin

Re:

[AltairDusk]

1)You don't "accidentally" retain sniffed traffic logs of that size, across your entire international operations, for months if not years, "accidentally." See http://gizmodo.com/5671049/google-street-view-cars-collected-emails-and-passwords [gizmodo.com] I mean come on...someone would have noticed the drives filling up, wondered why, etc. These people are supposedly geniuses, right?

First off, they wanted to capture some basic data about WiFi networks, SSID and possibly a few other things, not traffic. If you have a smartphone running iOS or Android (not sure about the others) both of those use WiFi to assist with location services. The way it does so is based on a database lookup of SSID + a few other factors which have been previously gathered by whatever company is running the location database.

Secondly, considering they were capturing that WiFi data along with the massive amount

Re:

[amRadioHed]

Why would Google have come out and said they accidentally collected this data if it was actually on purpose? Do you think the company is so stupid that they would intentionally do something illegal, retain the evidence, then tell the world about it?

Re:

[GameboyRMH]

Four hard drives is nothing to a huge tech megacorp regardless, but are we talking four 1GB hard drives or four 3TB hard drives here?

Re:

[MobileTatsu-NJG]

Google should have deleted the data before they even publicly announced that they had accidentally collected it.

Oh give them a break, they probably just hit 'archive' without even really thinking about it.

Re:

[GameboyRMH]

I agree, if they collected it by accident, they should have just wiped it, problem solved, done and done. Publicly admitting what they did doesn't help anyone. If they wanted to secretly gather wifi data they could do it, and there wouldn't be much we could do about it (beyond minding what plaintext traffic you run over unsecured wifi connections).

And what good could the government possibly want this information for?

Re:

[Degrees]

Revision 9 of the Federal Rules of Civil Procedure state that if a party has reason to believe that evidence may be subpoenaed, the party must keep the data (or face sanction). It's a lose-lose situation either way, and this way Google doesn't look like a place that is trying to hide a crime.

I have also learned that there is something called "in camera" which means that during a trial, you can show your data to the judge in person (he can view it with his eyes) and then make a decision whether the data sho

accidentally? you're so naive

[1800maxim]

You really think that data collection was purely accidental? And it didn't strike you that they haven't turned the "feature" off between the start of street view mapping and the end of it, which took a lengthy amount of time?

I'm sure the data collected reached its intended destination.

What could go wrong?

[Knave75]

Yes, the government is certainly a safe place to store sensitive data, what is google thinking?

Re:

[Johann Lau]

boo-hoo, the evil government! yay google, champion of freedom!!

*pukes*

The government is the one institution that people can change. It's the one institution you can affect by participation without institutional change. That's exactly why all the anger and fear is directed at the government. The government has a defect: it's potentially democratic. Corporations have no defect, they're pure tyrannies. So therefore you wanna keep corporations invisible, and focus all anger at the government. So you don't like

Re:

[Knave75]

I was not saying that google was a paragon of virtue, but duplicating the information and/or giving the only copies over to the government will certainly not enhance privacy.

Holy Crap!

[tpstigers]

"letters, meetings, hearings" - If that doesn't scare the bejesus out of Google, I don't know what will.

Re:Holy Crap!

[ColdWetDog]

"letters, meetings, hearings" - If that doesn't scare the bejesus out of Google, I don't know what will.

The Spanish Inquisition. Nobody expects the Spanish Inquisition.

Re:

[sconeu]

I don't think Google will fit into the Comfy Chair.

Re:

[Neil Boekend]

Now I do, so they won't turn up?

Re:

[Captain Hook]

Thats right, but that means that you no longer expect the Spanish Inquistion.....

Re:

[Neil Boekend]

Ah, but that results in a live lock, so nothing happens, so the Spanish Inquisition won't turn up. I am comfortable in knowing that. So I do not expect them. So they will turn up, which causes a live lock that prevents them from turning up which causes me not to expect them, resulting in them turning up GOTO begin
*gets shot by a decent programmer*

Sounds about right

[sapphire wyvern]

So let me see. The government is saying "Bad Google, shouldn't have collected all that data. That's private data that belongs to our citizens, not to you, even though it was broadcast in the clear. Now that we've established that only the originator should have that data.... let me have a peek! No, don't delete it - I really wanna see."

Very consistent. Not hypocritical at all.

Re:

[Trepidity]

Yeah, that's the part I'm missing as well. What reason are they giving for wanting this data, if they claim it should never have been collected? We can maybe guess at the real reason, but what's the official reason? Blumenthal doesn't seem to be explaining anything here.

Re:Sounds about right

[Americano]

They want it as part of an investigation into the "accidental" collection of the data. This is standard procedure for a regulatory investigation - the data Google collected is evidence relevant to the investigation.

I'm not sure why you'd be interested in pretending that you don't get this... When's the last time you heard of an investigation in which the law enforcement and legal officials involved DID NOT want to see evidence relevant to their investigation?

Whether or not Atty General Blumenthal has jurisdiction and the right to request that data is something that may need to be decided in a court, but SOME investigative body is certainly going to want to review the data that was collected, since it is (perhaps) evidence of wrongdoing on Google's part, and entirely relevant to an investigation into whether or not Google broke laws in collecting and retaining that data.

Re:

[beakerMeep]

Here's the difference: What are they investigating? They can't go trolling for wrong doing. They dont even imply what types of regulations or laws may have been broken.

Re:

[Americano]

Two different federal groups were investigating: the Federal Trade Commission, on consumer privacy grounds (they concluded their investigation, and basically said that 'since Google has improved their collection and promised not to do it again, no action is necessary.'), and the Federal Communications Commission, which is actively (at least, active as of the latest I've heard) looking at whether or not Google's intercepting these transmissions is a violation of FCC regulations and relevant Communications A

Re:Sounds about right

[TapeCutter]

"Whether or not Atty General Blumenthal has jurisdiction and the right to request that data is something that may need to be decided in a court, but SOME investigative body is certainly going to want to review the data that was collected, since it is (perhaps) evidence of wrongdoing on Google's part, and entirely relevant to an investigation into whether or not Google broke laws in collecting and retaining that data."

Evidence for what charge? What you are describing above is commonly known as a "fishing expedition". If Google has been accused of a crime then by all means go to court and get a search warrant to collect evidence, but demanding evidence so that you can go away and scour the books to see if you can find a crime is not how it's supposed to work.

Re:

[whoever57]

I'm not sure why you'd be interested in pretending that you don't get this... When's the last time you heard of an investigation in which the law enforcement and legal officials involved DID NOT want to see evidence relevant to their investigation?

I think that you are being obtuse if you can't see the difference between this data (which is claimed to be a privacy breach) and other types of evidence.

If the data really is private, then surely the government should obtain a warrant to get the data? Or is it

Re:

[Stuntmonkey]

the data Google collected is evidence relevant to the investigation.

So, the investigators should get a subpoena. That's how the system works. If you can't convince a judge to issue a subpoena, you don't have a leg to stand on. I don't think Google -- or any other company -- should just hand out potentially sensitive user information to anyone who asks for it. Maybe that's how it works in China, but that isn't how it works in the USA.

Re:

[Americano]

Yes, because nobody's ever been exonerated by evidence in a court of law. Ever. In the entire the history of western jurisprudence.

It's just been one railroading after another of poor innocent guys who never hurt a fly in their whole life, because the corrupt government prosecutors habitually and willfully ignored ironclad evidence that would exonerate the suspect.

Re:Sounds about right

[beakerMeep]

The fact that his answer was so evasive is actually very telling. If they had a good reason to be looking at the data they'd have a warrant in hand.

“There’s a range of potential opportunities for oversight and scrutiny by a member of the U.S. Congress – including letters, meetings hearings, and potentially even legislation.”

Translation: we got nothing, so we're gonna try and invent some reason to get the data.

Re:

[beakerMeep]

There's all kinds of things that data could show, leading to any number of possible charges against (and eventual fines collected from) Google.

Like what? Can you give some examples?

Re:

[Dexter Herbivore]

Why do you trust Google more than the government? The government might leak the data and cause bad things, Google's whole aim to begin with is probably bad things.

What... you don't believe Google when they say "Do No Evil"?

Re:

[beakerMeep]

It's "Don't be evil" and it's a tired tired joke at this point. Yes it's a silly corporate slogan and, yes, some of the stuff they do is considered evil by some people -- probably rightly so.

But I also don't believe that

-my world will be delivered by ATT
-Apple thinks differently
-UPS brown wants to know what they can do for me
-Diet Coke is just for the taste of it
-Verizon rules the air
-Mcdonalds will make me love it
-TBS is very funny
-Fox is fair and balanced
-Nike will make me just do it
-Or that Slashdot is

Re:

[c0lo]

You can't be serious. There's all kinds of things that data could show, leading to any number of possible charges against (and eventual fines collected from) Google.

...

The government might leak the data and cause bad things, Google's whole aim to begin with is probably bad things.

Hell yeah... What if Google collected the traffic while (allegedly) Manning leaked the cables? I say.. now, think about it... what if Google collected them... wouldn't this be a conspiracy to hide the evidence and obstruct the military justice?
Of course this justifies even a Senate enquiry!

/tongue-in-cheek

My point: instead of escalating, wouldn't it be better the Attney to ask for the data that would be relevant to the investigation instead of asking all the data?

Re:Sounds about right

[TapeCutter]

"There's all kinds of things that data could show, leading to any number of possible charges against (and eventual fines collected from) Google."

Sure, just like a cop without a search warrant could find lots of things in your home to hang you with. It's not about trusting either google or the government it's about the rule of law which says the authorities must have probable cause. In this case they don't have probable cause, they don't even have an allegation, which is why they don't have a search warrant.

"You're naivety is astounding!"

Voulenteering ANY information to an investigation that is spending a pile of taxpayer's money looking for a reason to hang you, is not just naive, it's stupid.

Save the trouble..

[markass530]

They said they would delete, just do so, effectively telling the gov't to f' off, which they need to hear from time to time.

Why not the US government?

[sapphire wyvern]

Apparently Google has already given some or all of the sniffed data to authorities in Germany, Spain and France. I wonder why the US is causing so much more controversy?

Perhaps the US government is asking for more data (eg data from other countries) or has refused to meet conditions Google had set for the European governments, when handing over their shares of the data?

Re:Why not the US government?

[melted]

IANAL, but maybe it's because by law of _this_ country they _don't have to_ turn it over without a court order?

Re:Why not the US government?

[Lloyd_Bryant]

Apparently Google has already given some or all of the sniffed data to authorities in Germany, Spain and France. I wonder why the US is causing so much more controversy?

Perhaps the US government is asking for more data (eg data from other countries) or has refused to meet conditions Google had set for the European governments, when handing over their shares of the data?

The issue is that it is *not* the US Government asking to see the data, it's the Attorney General of the State of Connecticut. Who may or may not have any legal justification for even asking for it.

Google has already underwent an FTC investigation over this issue, and an FCC investigation is still pending.

So how many levels in our kludgeocracy should Google have to explain its actions to?

Re:

[DRJlaw]

The issue is that it is *not* the US Government asking to see the data, it's the Attorney General of the State of Connecticut. Who may or may not have any legal justification for even asking for it.

Every state is a soverign entity with general police and lawmaking powers, whereas the federal government in theory has powers limited to those enumerated in the Constitution. The attorney general of a state is the elected head law enforcement officer of that state (presuming that you view law enforcement as inc

Re:

[w_dragon]

And apparently in Connecticut Google's lawyers believe that the Attorney General saying 'pretty please' is not enough to force them to hand over data. Charge them and get a warrant and I'm sure they'll comply. This data may be evidence in a federal court given the investigations going on, would it really look good on Google if they just started handing it out to anyone who asked without a legal obligation to do so?

Re:

[beakerMeep]

I'd hazard a guess that another reason might be that those countries actually have privacy laws that could compel Google to turn over the information.

7-year rule?

[beaverdownunder]

I think perhaps the headache for Google is that they may be required under US law to hold all records for 7 years -- since any data collected is a 'record', they simply can't delete it without the authorisation of the US Government, else they could find themselves in trouble, corporately-speaking. However, it seems this particular politician wants to engage in a little electronic-voyeurism -- which although unsurprising is still a bit unsettling -- and is standing in the way of Google obtaining the necessa

Re:

[beakerMeep]

Are you talking about Sarbanes -Oxley? Doesnt that apply more towards accounting records? Say Google wanted to delete its maps of the US, they wouldn't need permission for that. But if they wanted to delete expense reports they would.

Blumenthal is a publicy whore

[schwit1]

He will do anything to keep his face in the media.

Re:

[coolmoose25]

"He will do anything to keep his face in the media."

You know, as I was reading this thread, I kept asking myself why he is still doing this kind of stuff. I'm from CT (and no, I didn't vote for this guy, I can't STAND him) but I kept thinking "Jeez, the election is OVER, and he won. Why is he doing this?"

Thanks for answering my question for me. It was so obvious it evaded me. Wish I had mod points!

If it's so important, just gather it yourself

[kawabago]

This information is still available, you just have to drive around collecting it. The government could attach sniffers to all postal trucks and quickly map out the entire country, they don't need Google. Of course it would be highly unpopular if someone tries to do it.

Nothing keeps data secure....

[trawg]

....like letting more people have access to it

thank goodness

[Charliemopps]

I'm just glad our government has found something else to focus on other than the economy, tax reform, the 2 wars we're involved in, net neutrality or any of the other pressing issues that are so difficult to tackle.

No right.

[El_Muerte_TDS]

The government has no right to access this incorrectly and even illegally collected data. Google has confessed their mistake, now they should delete that data and receive the punishment for their actions. If Google doesn't agree with the verdict, then they can choose to use the data to help their case, and not the other way around (where the Government uses the data to make their case.)

Re:

[sumdumass]

Well, no. It rarely works out that way.

You see, once the investigation is initiated, the government has a right to pursue any evidence that may pertain to the case- even if it implicates other crimes or aids the conviction of the crime. Normally, how this would work is the government would get a judge to issue a warrant to produce the item or information if asking for it doesn't work.

The problem here is that there is no clear evidence of a crime or that the government has jurisdiction to conduct an investig

Re:

[sumdumass]

Well, no. Sometimes destroying evidence can be bigger evidence in convincing a jury that you are guilty. But it's a crime to destroy evidence in the least to begin with.

If they were going to destroy it, the time to do so would be before any mention of a case or investigation at all. Once there is a reasonable belief that there is potential litigation and the item might be evidence, you have to preserve it to the best of your ability. If they didn't, they could be busted with destroying evidence. And this de

Storm in a teacup blown out of all proportion

[dbIII]

Most of this is Rupert Murdoch's media sources pointing out that his main competitor for the advertising dollar could be almost as evil as one of his British newspapers. Didn't you all notice the Murdoch media raving for a while about how google was evil even before this mistake landed in their journalists laps?

Why do they want it?

[HalAtWork]

If the data was gathered illegally, then legally it shouldn't be used for anything. It should be deleted. How is replicating the data going to fix the situation? They shouldn't be looking at it or combing through it, they shouldn't be spreading it around, so why aren't they ordering it deleted? Why do they want the data?

Re:What if an individual did what Google did here?

[_Sprocket_]

Wouldn't the state just extradite and prosecute? What is different in the process for a corporation?

They would ignore it. Fun fact for you: Google was doing the same thing thousands of hobbiests are doing every day using the same tools. But it's different for Google since there's political hay to be made.

Re:

[_Sprocket_]

Pointing at others, are you?

No. Pointing at me. I'm one of those people.

Of course the difference is the MASSIVE SCALE of google's sniffing operations. Fun fact for you: there's a difference between one guy sniffing around in his neighborhood, and one of the biggest companies in the world or a huge government sniffing out everybody, by design and system.

Fair enough point. But scale alone does change things. What's legal for me is legal for Google.

Of course you are going to disagree, but you won't explain what political advantage there was to be gained anyway either, because there is none, and empirically the government is proven not to give a sh*t about your privacy or your perception about them giving a sh*t about your privacy.

You're entirely wrong. Public officials care very much about perception. They do a lot of things for perception alone. They may not care about a particular individual. But they will do things to make large groups of people feel good about them and their job (or future jobs).

Let me put it another way. Port scanning and scanning for security bugs is not illegal. What if google or the government scanned EVERY computer for such things, whether they are open, and read and store as much as they can off the harddrive such as passwords and private information? I guess if you're a fanboy, you'd find that just fine, because some hobbyist can scan a port as well. It would scare the hell out of a normal person.

You're probably going to be terrified at what you find at google.com then. They scan open

Re:

[c0lo]

Wouldn't the state just extradite and prosecute?

No!!! It is fashionable now to start an investigation on rape allegations first... as a foreplay. Jumping straight into extradition is totally bad-taste.

What is different in the process for a corporation?

You see... it is very hard to alllege an entire corporation raped 2 women... but I reckon they'll be working on it for the future.

Re:

[Stuntmonkey]

What makes you naive people believe that Google wasn't collecting this data at the behest of the NSA ?

The same thing that makes me believe (a) our government is not guarding extraterrestrial technology in Area 51, and (b) the Apollo landings on the moon could not have been fabricated. Conspiracies with more than 20 people never work. Although I admit life would be more interesting if they did.

Re:

[GameboyRMH]

The fact that they admitted to it?

Bad analogies, all of you!

[GameboyRMH]

First of all this isn't like sending secret info on a postcard. It's like shouting it over a megaphone. Anyone listening can hear it, no special action required.

And like all human brains remember everything they hear whether they like to or not, the flawed software on the Street View cars recorded everything, regardless of what it was.

Re:

[GameboyRMH]

Specialized equipment? Most regular off-the-shelf wifi adapters can do the job, and there is plenty of free software that can reconfigure the card to do it with one click.

Re:

[GameboyRMH]

Specially configured, maybe, but it is an officially supported function, not a firmware hack or anything, no different from putting your wifi adapter into ad-hoc host mode or searching for APs from a technical standpoint.

And a regular off-the-shelf wifi adapter as found in most off-the-shelf PCs is about as far from specialized as you can get.

Re:

[amRadioHed]

It's not possible to not listen to Wi-fi data when you are trying to collected Wi-fi data, as these trucks were. The just happened to collect extra data that they didn't need.

Re:

[amRadioHed]

Umm, the MAC addresses weren't collected accidentally. Google readily admits that they were collecting MAC addresses and location data to build their own version of the SkyHook location database. That's not the issue.