France accused of tabling 'Patriot Act' style surveillance law

No, it’s a completely different type of power expansion


Privacy advocates have criticised French plans to expand digital surveillance as badly thought out and rushed.

A bill (“Projet de Loi Relatif au Renseignement”) – which was drawn up before the Charlie Hebdo and Hyper Casher supermarket attacks – is due to go before the National Assembly next week under an accelerated legislative procedure that dispenses with the need for a second reading.

However, international non-governmental organization Human Rights Watch (HRW) argues that the measures are packed full of problematic clauses.

Most notably, there is a lack of meaningful judicial oversight; requirements for private service providers to monitor and analyze user data (and report suspicious patterns); prolonged retention periods for some captured data; and little public transparency.

The charity lambastes the bill as a French version of the much criticised US Patriot Act.

“Though the goal of the bill is to place France’s surveillance practices under the rule of law, it in fact uses law to clothe a naked expansion of surveillance powers,” said Dinah PoKempner, HRW general counsel.

“France can do much better than this, especially if it wants to distance itself from the over-reaching and secretive mass surveillance practices of the US and the UK that have attracted so many legal challenges," she added.

The bill recognises the general right to privacy before setting out seven "public interests" that might justify surveillance, including the nation’s "economic and scientific priorities", "foreign policy", and "the execution of international engagements" 1.

International human rights law recognises the protection of national security and public safety as justifying surveillance. HRW warns the French laws extend well beyond that, and go towards laying the foundations of a surveillance state.

HRW singles out a measure calling for service providers to install secret, unspecified, state-provided means of tracking web traffic to terrorist websites.

The provision, which was recommended for deletion by the Digital Commission but retained by the National Assembly’s Law Commission, effectively turns ISPs staffers into surrogate national security analysts.

Service providers would be legally required to keep their actions (on behalf of the government) confidential, further eroding transparency.

"The most repressive governments might thank France for setting a legal precedent of forcing major net companies to monitor not just signs of 'terrorism' but signs of incipient dissent, or even just independent thought," PoKempner warned.

The bill contains no requirement for judicial review of surveillance measures before they are put into effect, unless a majority of the nine appointed members of a new executive advisory body, the National Control Commission on Intelligence Techniques, disagree with the French prime minister’s decision.

In those rare cases, the matter would be referred to the State Council, France’s highest court for administrative justice, for review.

In contrast, it takes only one commission member to approve a measure, and if the commission is silent during a brief one-to-three day review period, the measure could go into effect.

HRW argues that the French prime minister would be given wide-ranging powers to run surveillance ops practically unconstrained by the "rather toothless" new Commission.

Surveillance measures – which may include hacking and malware – could be indefinitely renewed without judicial scrutiny or notification to the target. Data obtained through surveillance may be retained for five years, or even indefinitely in some circumstances.

"Shortly after the [9/11] attacks, the Bush administration rammed through the little-understood powers of the Patriot Act without much legislative debate or examination," PoKempner concluded. "Prime Minister Valls insists this is no Patriot Act, but this type of surveillance mandate requires thoughtful examination, rather than a stampede through the parliament." ®

Bugnote

1 France, like most countries, is already busy spying on trade talks, foreign diplomats and the like, so these measures arguably regulate existing practice rather than adding new justifications for spying. For example, France is sometimes mentioned alongside the obvious suspects of Russia, China and Iran as a country actively involved in spying against US interests.

Similar topics


Other stories you might like

  • Everything you wanted to know about modern network congestion control but were perhaps too afraid to ask

    In which a little unfairness can be quite beneficial

    Systems Approach It’s hard not to be amazed by the amount of active research on congestion control over the past 30-plus years. From theory to practice, and with more than its fair share of flame wars, the question of how to manage congestion in the network is a technical challenge that resists an optimal solution while offering countless options for incremental improvement.

    This seems like a good time to take stock of where we are, and ask ourselves what might happen next.

    Congestion control is fundamentally an issue of resource allocation — trying to meet the competing demands that applications have for resources (in a network, these are primarily link bandwidth and router buffers), which ultimately reduces to deciding when to say no and to whom. The best framing of the problem I know traces back to a paper [PDF] by Frank Kelly in 1997, when he characterized congestion control as “a distributed algorithm to share network resources among competing sources, where the goal is to choose source rate so as to maximize aggregate source utility subject to capacity constraints.”

    Continue reading
  • How business makes streaming faster and cheaper with CDN and HESP support

    Ensure a high video streaming transmission rate

    Paid Post Here is everything about how the HESP integration helps CDN and the streaming platform by G-Core Labs ensure a high video streaming transmission rate for e-sports and gaming, efficient scalability for e-learning and telemedicine and high quality and minimum latencies for online streams, media and TV broadcasters.

    HESP (High Efficiency Stream Protocol) is a brand new adaptive video streaming protocol. It allows delivery of content with latencies of up to 2 seconds without compromising video quality and broadcasting stability. Unlike comparable solutions, this protocol requires less bandwidth for streaming, which allows businesses to save a lot of money on delivery of content to a large audience.

    Since HESP is based on HTTP, it is suitable for video transmission over CDNs. G-Core Labs was among the world’s first companies to have embedded this protocol in its CDN. With 120 points of presence across 5 continents and over 6,000 peer-to-peer partners, this allows a service provider to deliver videos to millions of viewers, to any devices, anywhere in the world without compromising even 8K video quality. And all this comes at a minimum streaming cost.

    Continue reading
  • Cisco deprecates Microsoft management integrations for UCS servers

    Working on Azure integration – but not there yet

    Cisco has deprecated support for some third-party management integrations for its UCS servers, and emerged unable to play nice with Microsoft's most recent offerings.

    Late last week the server contender slipped out an end-of-life notice [PDF] for integrations with Microsoft System Center's Configuration Manager, Operations Manager, and Virtual Machine Manager. Support for plugins to VMware vCenter Orchestrator and vRealize Orchestrator have also been taken out behind an empty rack with a shotgun.

    The Register inquired about the deprecations, and has good news and bad news.

    Continue reading

Biting the hand that feeds IT © 1998–2021