Comments for Office of the Privacy Commissioner - Deep Packet Inspection

Comment on What is Deep Packet Inspection? by Deep Packet Inspection « Utopias Digitales

Deep Packet Inspection « Utopias Digitales — Sun, 08 Nov 2009 23:15:35 +0000

[...] Sobre DPI en : http://dpi.priv.gc.ca/index.php/what-is-deep-packet-inspection/ [...]

Comment on Privacy is about use cases, not about technology by Ben

Ben — Thu, 10 Sep 2009 03:43:56 +0000

Please take note of the definitional language within the Video Privacy Protection Act; 18 USC 2710 (a)(4) “…delivery of prerecorded video cassette tapes or similar audio visual material…”. It is easily arguable that “or similar audio visual material” includes all such video content irrespective of the distribution medium.

As one of the only U.S. privacy laws with a private right of action, you can bet an online data use violation of this law will be challenged at some point soon. (Eg; The potential for de-identification of the Netflix ‘prize’ data or Brightroll providing behavioral targeting to streaming video users.)

Comment on Transport and Tracking by Kenshin

Kenshin — Fri, 07 Aug 2009 16:50:57 +0000

@jose,
the owners of the highway are few. And any decision they make affects the others.
that by it self is one VERY huge big problem.
Prioritizing and fair queueing is good and doesn’t require DPI. in a way it will ebentually free the bandwidth if not needed. (using that to manage my network, gave some services high priority and P2P the lowest, if a torrent is downloading I can surf the web without hindering its performaces — given that it’s before 16h or after 2h )
what’s going on now is that the isp (Actually one or two) is messing with the packets.
(ex: taking a TCP packet sent from A to B and transforming it to look like a RST which will cause that simply cut that connection. a thing that I’m sure A didn’t want).
Worse when people noticed the throttling and begun encrypting traffic, they deliberatly throttled any encrypted traffic regardless of it’s content. so it you’re using a VPN connection to work from home … guess what? you’re screwed.

to keep the metaphor if you want your package to be delivered faster you pay for premium service (be it with FedEx or UPS or the Canada Post ..). that’s what people paying for High speed are doing I guess. if I want to just read my emails a 56kpbs connection is more that enough, and costs a lot less.

Comment on DPI can be misused – so can a hammer by M B A

M B A — Fri, 07 Aug 2009 06:30:32 +0000

I certainly agree with you but dealing with thee threats is also possible without DPI.
and right now the ISPs are not really using this tehcnology for that exactly. instead they`re perverting it and using it to hinder their user’s (other ISP’s users fot that matter ) internet experience. choosing in the user’s place what he can use or can’t use with his purchased bandwidth. and no body is stopping them.
As somebody said is post canada allowed to open everyone’s mail and check it to see if it’s dangerous or important enough to deliver it?
the answer is obviously no.

It is true most certainly that P2P traffic can certainly be cumbersom (Bittorrent for instance fills up conection queues very quickly– depending) but there are other methods to do so. QOS and Priority Queus are one of these (personallyI use that to balance the traffic in my network). should I need an SSH connection I can without halting any P2P traffic as I gave SSh high priority and if I don;t … well P2P traffic can flow as quick as it can. and everybody is happy.
Which is not the case with ISPs. Actualy only one taht is afecting others using his position as leader in that market. If some ISP decided to put that for his client I don;t see why other ISP`s client should suffer from that.

Comment on Transport and Tracking by Jose A.

Jose A. — Fri, 12 Jun 2009 16:47:39 +0000

in the context of a ISP being a transport, perhaps and ISP should be said to be a “transporter”. ISPs not only own the highways but also the vehicles. prioritization of the content can only be done through DPI…something that FedEX or UPS do well and have competitiveness amongst.

Comment on What is Deep Packet Inspection? by LibrarianActivist.org | SaveOurNet Ottawa Town Hall meeting

LibrarianActivist.org | SaveOurNet Ottawa Town Hall meeting — Fri, 12 Jun 2009 00:51:27 +0000

[...] Packet Inspection (the privacy commissioner has raised serious privacy concerns regarding this [...]

Comment on Deep Packet Inspection is Essential for Net Neutrality by Michael_M

Michael_M — Wed, 29 Apr 2009 03:51:28 +0000

I believe that one important aspect of the overall issue (DSI as the necessary evil?) is missing in the discussion. The problem I see is the inevitable business dilemma for the ISP providers: expand the network bandwidth (more expensive option) or limit/throttle the usage using DPI approach. The DSI option must not be used to promote inefficient monopoly relying on the non existent business ethics especially as I don’t see how the use of the DSI is going to be tightly controlled and it misuse prevented.
I personally don’t believe in the “laissez-faire” approach to free enterprise and consequently in the existence of the ethical business practice without the adequate measures independently ensuring general public protection. We just have to look at Enrons of our era and the consequence of “ethical” business practices in the business behavior of unregulated financial institutions in the global financial market to come to the conclusions that the DSI throttling will inevitably be misused as the cost effective approach to avoid necessary and costly capacity upgrades of ISP networks unless the application of these throttling techniques are not tightly controlled.
The question is then whether the sufficient control measures exist to prevent misuse and if not, what these measures should be and how to establish them!

Comment on Review of the Internet traffic management practices of Internet service providers by luke

luke — Mon, 27 Apr 2009 01:09:49 +0000

This is a very good report that touches on many important issues of privacy that surround DPI. The report does not offer any recommendations in terms of specific policy, but raises many familiar questions that Canadians should be concerned about.

Comment on Authors by Roy Firestein » Deep packet inspection and the thoughts of some experts

Roy Firestein » Deep packet inspection and the thoughts of some experts — Mon, 20 Apr 2009 21:31:56 +0000

[...] resulting project site presents the work of these academics, lawyers, researchers, activists and industry professionals. We value the time they invested in preparing their essays, and we are happy to present their work [...]

Comment on Deep Packet Inspection is Essential for Net Neutrality by Anil

Anil — Sun, 12 Apr 2009 02:55:56 +0000

Old fashioned routers just looked at the IP packet header: really, just the destination IP address. Now networking gear look beyond the IP header into the TCP header (for connection tracking) and then into the application-level headers (i.e. HTTP headers) and below. Inspection of application-level headers is “deep packet inspection” since it goes beyond the standard IP and TCP/UDP headers.

But, as Matthias points out, traffic management equipment, such as that produced by Sandvine, also analyzes the pattern of packets. Turns out a lot of traffic can be identified merely by watching the pattern of packets. Recent research has even shown that shell commands going over SSH can be identified – all without breaking the underlying encryption. So, even universal encryption would not stop all traffic throttling or even network-level user profiling.

Dan – The OSI model has no clear mapping to the modern Internet. How do you define DPI in terms of current networking technology?

Michael – note that DPI is not something that can easily be an “opt-in” technology. When you’re trying to identify a spreading worm or a spam flood from a botnet, the contributions from individual hosts can be relatively modest; they are only problematic in aggregate.

While I don’t condone what Bell has been doing to the smaller ISPs, I can see why they might be doing it: if traffic from all sources is getting pushed onto Bell’s backbone without any labeling, then they would be left with either shaping the traffic of everyone or nobody. But really, if this is the case then this is an example of incompetence: they implemented a bad network architecture and now they are stuck with it. This is probably all the more reason, though, that we need good regulations and regulators.

That was the point of my essay – DPI is a set of networking technologies that have both legitimate and illegitimate uses. The bad part is not looking in payloads; the bad part is looking at payloads for the wrong reason (advertising vs. legit traffic management) or in the wrong way (exposing private communications to humans, rather than algorithms).

Internet traffic must be managed because there are always circumstances where there are insufficient resources – in crisis situations, sometimes much, much less. To manage traffic you have to understand it in some way. For multiple reasons the information necessary for understanding modern Internet traffic is more than that supplied by standard packet headers.

I’m actually a bit worried about universal encryption of network traffic because it would make traffic management a lot more difficult. I care about privacy a lot. (I digitally sign my email with GNU Privacy Guard and encrypt with everyone I can – do you?) But I care about the Internet working as well.

But that’s the topic for another essay.

–Anil