Category: virtual worlds

State of Play: Surveillance and Security in VW

mtadros
Surveillance Panel at State of Play, NY
Surveillance Panel at State of Play, NY

Very very interesting session on surveillance and security on virtual worlds. I actually thought it would be all about ‘Muslim terrorists’ and I was quite apprehensive, but then found the session to be absolutely fantastic and very informative.

Here are my notes on the session:

Intro from British intelligence: What can they do for bad-guys: Voip, recruitment..

What can it do for good-guys: twitter for example. There was an operation Crevice to bomb London.

Wikipedia, twitter, facebook, vertical content: the possibility of it spilling over in VW is great. Re the future of VWs going to be where warfare is conducted? [e during the Gaza war: Gaza and Israel in SL].

Bart Simon: perfect surveillance – worries about invasion of privacy. Jeremy Bentham and Foucault’s panoptic. It is not about being watched, but it is about a state that requires minimal surveillance. It is about the people watching themselves – they do the surveillance themselves and they start watching and get info about themselves to police themselves. Surveillance is a systematic exertion of influence on someone’s life and the second is systematic attention. People don’t watch people any more. Now we have dataveillance: where data is collected and put in a database. The surveillance is not of the person but the data about that person and the key is to connect the data to the person. It ends when that person ‘confesses’ that you got him. But VWs make that difficult because you disengage who you are from the data about you.

Oscillating between the concept that VWs is dangerous and the concept that it is not. We don’t want their confessions any more but we want their genetic information. When we increase the individuization of avatars people make surveillance easier because they claim their data directly.

Everything in VWs lets you act as who you are not – it encourages role play and encourages you to be someone else – which real life is difficult to do. How do we create a VW where people will not role play? This is for example for marketing projects.

Charles Cohen: is surveillance technically possible? And is it lawful? [a murder case where normally you would talk to friends etc.. and trace behavior, but he spent 20 hrs online and they decided they had to go there to make the investigation]. Distribution and production of child porn. Found in VWs but as it gets more photorealistic it becomes more difficult to prosecute: is this really a child? How to prove that?

Currently it is more of a challenge than an opportunity. What about servers outside US jurisdiction?

Michael Schrage: raises sociological and legal questions. You design honeypots – in VW what constitutes a honey pot where you trap avatars to do get them – which may sound like entrapment. How do you design a honey pot? The issue is how the VW interacts with the real life. The rise is malevolent mashups. VW as media for trust and media for verficiation. Trust but verify as Reagan said. How do you verify?

Creating jihadi bots. Assembling botnets is not that hard.

The evocative aspect is not the evolution of VWs but because of the proliferation of devices we will see grey markets and black markets and improvisation. It will create interesting collaborations in the community.

Michael Theis: the world has changed fundamentally in such a way that people can steal stuff because it is in a computer in some place. It takes 3 things for protection:

1-      An aspect of trustworthiness: what do I trust and who

2-      Right size my permissions: the software does what it is designed to do. Information about them but not give out info about myself.

3-      Effective monitoring capability: not surveillance but monitoring.

We look at people in real life, and see how they would act in cyberspace. Would someone who shares music steal from best buy for example? Not necessarily.

Trustworthiness: looking at people and assessing facial and physical expressions during an investigation. It is difficult to do that in VWs and cyberspace.

People believe in anonymity but it is not true. In voice it is an issue of meter and tone etc.. pausing, the ummms.. Could I do that in VW? Could I ask questions to determine their trustworthiness?

People also act differently in different VWs. Anamiah.. people could take on multiple personalities but then after a while you can tell that the two are the same people.  What is needed is something that identifies those aspects.

We have to consider how we go about doing monitoring.

From the question/answer session:

Could griefers be prosecuted? For example for sexual harassment?

In terms of constitutional law, how much can you do in terms of going into someone’s virtual home? It has to be viewed as an intercept to do that rather than as a search of the home that needs a warrant. Currently the law does not specify that at all. But also that should fall into the laps of the VW owners and their TOS.

State of Play – New York

mtadros

I am attending State of Play conference in New York. The opening speech was interesting – by the creator of Metaplace. Here are some highlights of what he said:

Raph Koster: A New Kind of World

Where is virtual world’s relevance? Virtual worlds are web 1.0 not even 2.0 not to mention 3.D. Why does the web work today? Because it is open: html, online Mozilla, apache, CGI, CSS, DNS, Google. The biggest underlining assumption is that everyone can do what they want. Virtual Worlds don’t work this way. It is  a network and does not run on a single centralized server. Can they become relevant and can they break out of the plateau? When will VWs become more like the web? Metaplace tries to do that – it leaves open template content, etc. Problem is, we don’t know if anybody cares. What is the killer app for VW? It is wasting time and having fun – not education nor distance collaboration.

Do users care that they are beyond entertainment? What does it mean to build that? How do we evolve our thinking? If we actually give users the ability to work it as the web [not centrally managed, not on a single server etc].. how do we think about commerce? Eulas? Privacy?

Metaplace TOS: gives rights of creators and rights of users unless overridden, responsibilities of creators and users. It is rights of avatars. Freedom of expression, ownership, including earning money and running their own world, privacy, develop their own TOS. The declaration of the rights of avatars is now in place. They told users not to break the law. This was of course challenging.

Could we have this any other way? What areas are public? What things are private? What about people hopping across worlds? Which TOS do they belong to?

Modeling after the web: hotlinking or deep linking for example could it be the same when avatars are actually walking around through links?

Future: what will VWs be?

  • Ambient: are you in your browser frame?
  • Pervasive: what’s the TOS for a widget?
  • Preamble: what’s the privacy policy of a multidirectional stream?
  • Overlays: what’s a world in the first place?
  • Relevant? The new kind of world isn’t this; it’s the new hybrid.

Looking for the new model. Old worlds will not go away but there will be a change. If they are to be relevant, how much can they emulate the web and take down countries [as did Twitter].

virtual activism interviewed in second life

mtadros

As Executive Director of Virtual Activism, I was interviewed on SLCN TV for the work I have done in Second Life. The interview discussed Virtual Activism activities in Second Life as well as the creation of a replica of the St. Catherine’s Monastery in the Sinai, which had already been reviewed in the media before. To learn about the interview click here, and to see the interview click on the video below:

[youtube=http://www.youtube.com/watch?v=ODxS_VG4AXc]


lively

mtadros

Google’s virtual world has launched and it is called Lively. I tried it this morning. Funny. Very cartoonish and has a long way to go, but interesting. I was not happy that I could click on anyone and force  them to animate without their consent – so this guy kissed and hugged me and held my hand without my consent. Which made me slap him and kick him in the groin in return – without his consent.

Pretty funny though. Check it out – but you need a  google account to log in.

_________

Update: Google has pulled the plug on Lively. I guess Lively is now Deadly.

data mining of Second Life and World of Warcarft

mtadros

Here is what I found on Bill Moyers’ site:

Rick Karr on Internet Surveillance

Congress is still deadlocked over the Bush Administration’s efforts to listen in to phone calls and read emails without search warrants. The sticking point is whether or not to allow private citizens to sue telecom conglomerates, the huge firms that provide most of us with phone and internet service – and helped the Administration spy on us. Now, the Administration wants to try to spy on Americans in another way. My colleague Rick Karr has this to bring you up to speed.
-Bill Moyers

And view the video

The project is called Project Reynard, and the report may be downloaded here in pdf format.

Terrorist avatars bewaaaaaaare of the big bad wolf Reynard [incidentally, he IS a wolf].