NZ internet filter goes live - gov forgets to tell public

The rise of the secret censor


New Zealand’s internet filtering system went live last month – but the government forgot to mention this to its electorate until its hand was forced by online freedom campaign, Tech Liberty.

Thomas Beagle, a spokesman for the group, said he was "very disappointed that the filter is now running" and that its launch had been conducted in such a "stealthy mode". He added: "It's a sad day for the New Zealand internet."

In an interview with Computerworld this week, he claimed that the filter had gone live on February 1 but the Department of Internal Affairs (DIA) delayed announcing this at until it had met with its Independent Reference Group.

The manager of the DIA’s Censorship Compliance Unit, Steve O'Brien, denied that there had been any subterfuge. The system has been undergoing trials for two years and the media have been aware of this throughout.

He said: "The Independent Reference Group has met and the filter system processes were demonstrated as set out in the code of practice, that is that the website filtering system prevents access to known websites containing images of child sexual abuse."

While the DIA continues to be coy about exactly which ISPs are joining the filter, Tech Liberty understands that Watchdog and MaxNet have already signed-up to deploy the filter system, and that ISPs Telstra Clear, Telecom and Vodafone have said they will do so.

Orcon, Slingshot and Natcom have said that they won't or, in the case of Orcon, that more data is needed as to how the filter will impact customer service.

ISPs also appear to take differing views of what – and when – to tell their customers. Maxnet appear not to have warned their customers officially that the filter is in place: Vodafone has said it will do so when it goes live.

The system employs the Swedish Netclean Whitebox content filter - website requests are filtered by Border Gateway Protocol against a blacklist held on a central server in the government Censorship Compliance Unit. The list is maintained by the Independent Reference Group which actively reviews banned URLs each month to eliminate false positives.

Bans must be justified and signed off by three "warranted inspectors of publications". Government statistics, published in 2009, suggest that the blacklist includes more than 7,000 URLs featuring child sexual abuse – or over ten times the number of links recognised by the UK’s Internet Watch Foundation. It has been built by the censorship unit since 2005 and is affiliated with Europe’s Cospol Internet Related Child Abusive Material Project.

David Zanetti, technical spokesperson for Tech Liberty, said: "We fear that the filter will reduce the stability of the internet in New Zealand. It is a single point of failure, introduces a new and very tempting target for hackers, and by diverting traffic will cause issues with modern internet applications."

Tech Liberty is also concerned by the expansion of government powers that thefilter represents. It entrenches the principle that the government can set up a new censorship scheme and block material with no reference to existing law. Worse, the filter list stays secret, in contrast to the censorship regime that operates in respect of other media, where the Chief Censor must publish decisions banning offensive material.

Cynics have also noted that the launch of the filter comes not long before the eighth round of the Anti-Counterfeiting Trade Agreement (ACTA) negotiations, due to take place in Wellington, New Zealand in April. ®


Other stories you might like

  • 'Prolific' NetWalker extortionist pleads guilty to ransomware charges
    Canadian stole $21.5m from dozens of companies worldwide

    A former Canadian government employee has pleaded guilty in a US court to several charges related to his involvement with the NetWalker ransomware gang.

    On Tuesday, 34-year-old Sebastien Vachon-Desjardins admitted he conspired to commit computer and wire fraud, intentionally damaged a protected computer, and transmitted a demand in relation to damaging a protected computer. 

    He will also forfeit $21.5 million and 21 laptops, mobile phones, gaming consoles, and other devices, according to his plea agreement [PDF], which described Vachon-Desjardins as "one of the most prolific NetWalker Ransomware affiliates" responsible for extorting said millions of dollars from dozens of companies worldwide.

    Continue reading
  • City-killing asteroid won't hit Earth in 2052 after all
    ESA ruins our day with some bad news

    An asteroid predicted to hit Earth in 2052 has, for now, been removed from the European Space Agency's list of rocks to be worried about.

    Asteroid 2021 QM1 was described by ESA as "the riskiest asteroid known to humankind," at least among asteroids discovered in the past year. QM1 was spotted in August 2021 by Arizona-based Mount Lemmon observatory, and additional observations only made its path appear more threatening.

    "We could see its future paths around the Sun, and in 2052 it could come dangerously close to Earth. The more the asteroid was observed, the greater that risk became," said ESA Head of Planetary Defense Richard Moissl. 

    Continue reading
  • Why Wi-Fi 6 and 6E will connect factories of the future
    Tech body pushes reliability, cost savings of next-gen wireless comms for IIoT – not a typo

    Wi-Fi 6 and 6E are being promoted as technologies for enabling industrial automation and the Industrial Internet of Things (IIoT) thanks to features that provide more reliable communications and reduced costs compared with wired network alternatives, at least according to the Wireless Broadband Alliance (WBA).

    The WBA’s Wi-Fi 6/6E for IIoT working group, led by Cisco, Deutsche Telekom, and Intel, has pulled together ideas on the future of networked devices in factories and written it all up in a “Wi-Fi 6/6E for Industrial IoT: Enabling Wi-Fi Determinism in an IoT World” manifesto.

    The detailed whitepaper makes the case that wireless communications has become the preferred way to network sensors as part of IIoT deployments because it's faster and cheaper than fiber or copper infrastructure. The alliance is a collection of technology companies and service providers that work together on developing standards, coming up with certifications and guidelines, advocating for stuff that they want, and so on.

    Continue reading
  • Intel demos multi-wavelength laser array integrated on silicon wafer
    Next stop – on-chip optical interconnects? Plus it's built with 300mm tech, meaning potential volume production

    Intel is claiming a significant advancement in its photonics research with an eight-wavelength laser array that is integrated on a silicon wafer, marking another step on the road to on-chip optical interconnects.

    This development from Intel Labs will enable the production of an optical source with the required performance for future high-volume applications, the chip giant claimed. These include co-packaged optics, where the optical components are combined in the same chip package as other components such as network switch silicon, and optical interconnects between processors.

    According to Intel Labs, its demonstration laser array was built on the company's well-established 300mm wafer manufacturing technology which is already used to make optical transceivers, paving the way for high-volume manufacturing in future. The eight-wavelength array uses distributed feedback (DFB) laser diodes, which apparently refers to the use of a periodically structured element or diffraction grating inside the laser to generate a single frequency output.

    Continue reading
  • Ex-Uber security chief accused of hushing database breach must face fraud charges
    Company execs and their lawyers are paying close attention to this one

    A US judge yesterday threw out an attempt to dismiss wire fraud charges against a former Uber employee accused of trying to cover up a computer crime.

    Former Uber security chief Joseph Sullivan is set to face criminal charges after US District Judge William Orrick yesterday [PDF] rejected his claim that prosecutors did not "adequately" allege that the goal of the claimed misrepresentation of the security breach was to get Uber's drivers to stay with the platform and continue paying service fees.

    In December last year, a federal grand jury handed down a superseding indictment adding wire fraud to the list of charges pending against Sullivan for his role in the alleged attempted cover-up of the 2016 security breach at Uber. The incident led to around 57 million user and driver records being stolen.

    Continue reading
  • FabricScape: Microsoft warns of vuln in Service Fabric
    Not trying to spin this as a Linux security hole, surely?

    Microsoft is flagging up a security hole in its Service Fabric technology when using containerized Linux workloads, and urged customers to upgrade their clusters to the most recent release.

    The flaw is tracked as CVE-2022-30137, an elevation-of-privilege vulnerability in Microsoft's Service Fabric. An attacker would need read/write access to the cluster as well as the ability to execute code within a Linux container granted access to the Service Fabric runtime in order to wreak havoc.

    Through a compromised container, for instance, a miscreant could gain control of the resource's host Service Fabric node and potentially the entire cluster.

    Continue reading
  • US seeks exascale systems 10 times faster than current state-of-the-art computers
    China claims to have 10 in the pipeline and may pull ahead in HPC arms race

    The US Department of Energy is looking to vendors that will help build supercomputers up to 10 times faster than the recently inaugurated Frontier exascale system to come on stream between 2025 and 2030, and even more powerful systems than that for the 2030s.

    These details were disclosed in a request for information (RFI) issued by the DoE for computing hardware and software vendors, system integrators and others to "assist the DoE national laboratories (labs) to plan, design, commission, and acquire the next generation of supercomputing systems in the 2025 to 2030 time frame."

    Vendors have until the end of July to respond.

    Continue reading

Biting the hand that feeds IT © 1998–2022