Mega-events, Security and Surveillance

The connection between what are often called ‘mega-events’ (international summits, major sporting competitions etc.), securitization, and he intensification of surveillance is becoming a very interesting area and one which we wrote about in our recent book on urban resilience. I am writing some further stuff on this with Kiyoshi Abe on how mega-events have been managed in Japan.

It seems that in general, such events are either used as ‘test-beds’ for new technologies and procedures which are then either continued afterwards (as with The Olympic Games and CCTV in Greece in 2004 and The FIFA World Cup and video surveillance in Japan/Korea in 2002), or become ‘islands’ of temporary exemption where normal legal human rights protections are reduced or removed and whole areas of public space are often literally, fenced off (as in Rio de Janeiro for the Pan-American Games of 2007, whose model will apparently be extended to include walling off the poor favelas in time for the 2014 FIFA World Cup). There’s going to be a very interesting conference on The Surveillance Games later this year to tie in with the Vancouver Winter Olympics.

Now The Guardian newspaper is reporting that the London Olympics 2012 may make use of a proposal originally designed to stop the proliferation of unofficial commercial advertising near games venues in order to prevent protest. The legislation even allows police to enter private houses to seize material.

Of course the government say that they have no plans to use it in this way, but it’s interesting to see the way in which the ‘standards’ being imposed by such travelling cicuses of globalization tend to end up looking more like the authoritarian regime in Beijing (host of the highly securitized 2008 Olympics) than the supposedly liberal west, whilst at the same time promoting a very controlled but highly commercialized environment. Even the original purposes of the 2006 law (necessary for London to host the Games) are an interesting reflection of the massive corporate interests involved in the Olympics, for which they apparently need a captive and docile audience.

How Many CCTV Cameras are there in Britain? (Part 6)

BBC’s Newsnight current affairs programme has used the Freedom of Information Act to ask almost 100 Local Authorities in the UK how many video surveillance cameras they operate. There are some really nice graphics here, which demonstrate what a ridiculous number of cameras we have, and particularly the way in which CCTV is becoming seen as ‘normal’ in all areas, not just big cities.

This brings up the discussion we were having earlier in the year with David Aaronovitch of The Times and Paul Lewis of The Guardian (see here, here, here, here and here!), who claimed that members of Surveillance Studies Network had knowingly fabricated figures. In fact these were scenarios and broad guesstimates and never presented as anything more than that. Newsnight in common with most media doesn’t get this either and thinks that its survey means that “there are almost one million fewer CCTV cameras in the UK than previously thought.”

However there survey was only of Local Authorities. It did not cover private systems in public open space or quasi-public space like transport systems (railways, buses and the underground) and shopping malls, let along cameras in private space. The guesstimates made by Clive Norris and Mike McCahill way back in 2001 included all cameras in public space. Norris and Gary Armstrong’s little scenario of being spotted by up to 300 cameras a day most certainly included purely private ones too – as did a real life version of the same kind of scenario conducted by The Times earlier this year – in fact, private cameras covering public space were almost twice as numerous as state ones. So in fact there are probably many more CCTV cameras than “previously thought.” The important thing is that there is almost no control over their proliferation whether nominally ‘public’ or ‘private’ and, as I wrote the other day, almost nothing apart from conscience that seems to be stopping operators from using ‘augmented’ CCTV because extra functionality like audio comes as standard on camera units these days.

For me, of course, the really interesting figures are the international comparative ones: that there are more cameras operated by the average London borough than by the whole metropolis of Tokyo. Yet in other ways, the figures are probably closer – Tokyo is as comprehensively covered as London in terms of public transport. Nothing is quite as clear-cut as it seems if you restrict the research to one type of camera system. Still, thank-you very much to the Newsnight researchers for performing a useful public service!

Big Brother isn’t listening (at least in Maryland)…

Hot on the heals of my earlier post on the subject, I have just received the news that following the publication of the report in The Baltimore Sun, the Maryland Transit Authority have pulled the proposal to use audio surveillance on their buses.

However, an interesting thing to note in this supplementary report by transport correspondent, Michael Dresser, on the paper’s blog, is that the proposal apparently came about because CCTV cameras these days come with sound-recording built in, and that other transit authorities in Cleveland, Denver and Chicago use it. The MTA administrator responsible for seeking the legal opinion on audio surveillance is quoted as saying “It’s something that’s becoming the standard of the industry.”

So, if I am reading this right here, important policy decisions that have major implications for privacy are being treated simply as technical issues because the technologies that are being purchased have the capabilities. It’s only in this case because the MTA sought a legal opinion that we know at all, let alone that anyone objected. So how many other transit, police or urban authorities or commercial venues in how many places are now regularly using the audio capabilities of cameras without ever having considered that this might be a problem? And what other built-in technical capabilities will simply be used in future simply because they are available? What about the Terahertz Wave scanning that I covered earlier on?

In the USA, Big Brother is listening…

Well, according to the Baltimore Sun, the Maryland Transit Authority will be listening if it implements a proposal for recording all conversations between passengers and employees on its buses. This is not the first attempt to introduce audio surveillance of the public. In 2006, in the Netherlands, a microphone system attached to existing CCTV cameras was introduced to supposedly prevent fights by detecting distinctive vocal sounds.

Now, there may well be problems with aggressive or abusive passengers in Maryland (although I’ve also encountered enough abusive drivers in my time!) but that does not mean that any kind of action is justified in the name of preventing or discouraging this. This, as in the Netherlands situation, is a problem of incivility (or ‘respect’ to use Tony Blair’s favourite policy word) but civility develops between people and cannot be imposed by authority or surveillance. What you get by going down this road, if indeed the strategy ‘works’ at all is simply a society of resentful, distrustful, quietude where civility is simply a set of superficial Pavlovian responses not genuinely felt values that people work to create and would want to defend. Problems of incivility are hardly going to he solved by trying to create an even more managed, automated and, fundamentally, desocialised and uncivil society. As the UK’s leading CCTV researcher, Clive Norris, remarked about the UK’s ‘shouting cameras’, introduced as part of the Blair’s ‘Respect Zones’, it is hard to imagine anything much more disrespectful of the public.

What’s particularly interesting in this story too is the way in which one form of surveillance can be used to justify another, producing an internal and self-replicating logic. The thinking is that as buses already have video cameras, then this is just the same thing, right? Stick a notice up saying you’re being recorded and all legal bases are covered. Well, no, I don’t think so. Let’s explore this further. I frequently record conversations that I have. Shocked? Actually, it’s part of my job as a researcher. I interview people and I record the interviews, but I do so with the full consent of the person being interviewed and if they do not want to be recorded, I don’t record them. However, there appears to be no room for consent around mass surveillance at all. It’s becoming clear that the (lack of) regulation of CCTV has set a dangerous precedent here, with consent being regarded as ‘impractical.’ It is really not enough in any accountable system of democracy to assume that the state can assume consent for surveillance measure on the grounds that to seek specific consent would be too hard. And in any case, the ‘acceptance’ of CCTV – even if one believes that the public does indeed ‘accept’ it rather than simply feel a sense of profound disempowerment with regard to video surveillance – does not mean that ‘anything goes’ as far as surveillance is concerned. An already dubious implied consent to one form of monitoring is not the same as consent to all monitoring. And of course, even if you did have some collective majoritarian consent, what does that imply for those in the minority? We already know that surveillance is targeted against minorities, so how can even a standard democratic procedure protect people here? Of course, this is what constitutional protections are for, and in particular in this case, the Fourth Amendment to the US Constitution but the MTA appears to think that the precedent of CCTV means that this does not apply. Round and round we go.

This, in the end, is all about organisational risk management and simply treats the public as sources of risk and as potential offenders, not people with rights, and indeed people who either are generally or, given the respect and space they deserve, would be, good. But risk-thinking seems to override even those things we are used to seeing as foundational of our societies.

‘X-ray vision’ may not be so far away…

Fascinating and disturbing news from the MIT Technology Review blog that a team of researchers appears to have cracked the problem of how to produce cheap, effective Terahertz Wave (TW) cameras and receivers. TW are found between infrared and microwave radiation, and produce what we called in A Report on the Surveillance Society, a ‘virtual strip search’, as they penetrate under layers of clothing but not much further, and can thus produce images of the body ‘stripped’ of clothing. Thus far, they’ve been used on an experimental basis in some airports and not really any further afield.

This is largely because of the way that TW waves have been detected up until now has basically been a bit of a kludge, a side-effect of another process. This has meant that TW equipment has been generally quite large and non-portable (amongst other things).

However one Michel Dyakonov of the University of Montpellier II in France has followed up theoretical work he did in the 1990s, with a new larger team, to show that tiny (nanoscale) ‘field effect transistors’ can – and they are still not quite sure how exactly – both produce and detect TW. The details are in Technology Review, but the crucial thing for those interested in surveillance is that:

  1. the output is ‘good enough for video’; and
  2. ‘they can be built into arrays using standard silicon CMOS technology’ which means small, cheap (and highly portable) equipment. This could be an add-on to standard video cameras.

I’m getting a genie-out-of-bottles feeling with this, but is it really as damaging to personal privacy as it feels? Does this really ‘reveal’ anything truly important? Or will it become something to which we rapidly become accustomed, and indeed with with which we quickly get bored? In some cultures, specially those that regard covering the body and modesty as being god-given, this is clearly going to present massive challenges to social and moral norms. It seems to me that there is also an immediate conflict with current constitutional and legal rights in several jurisdictions, not least the US Fourth Amendment right not to be subjected to warrantless searches and the European Convention Article Eight on the right to privacy.

But it seems that unless such a technology is banned, or at least particular commercial implementations, we’re about to cross another Rubicon almost before we’ve noticed it has happened. Ironically bans on technology can only really be effective in states where intensive surveillance and state control of behaviour is practiced. In other places, I am not sure banning can be effective even if it were desirable, as in reality, a ban simply means reserving the use of the technology to criminals, large corporations which can afford to flout laws, and the state.

Travel cards: Tokyo vs. London

NB: this post is largely incorrect… at least in the fact that actually the systems are much more similar and becoming even more so. I am not going to change the post (because being wrong is part of research and learning), but will direct you to a more recent post here.

Tokyo and London both have pre-paid smart card systems for travel on public transport. They look superficially similar but also have crucial differences.

JR East's Suica card
JR East's Suica card

In fact, first of all, there are several smart cards from different railway companies in Japan. Each of main privatised regional railway companies has one: the most common in Tokyo are the Suica card operated by JR Higashi (East Japan Railways) and the Pasmo card issued by a collection of smaller private railway companies as well as the TOEI subway, bus and Tokyo Metro systems. JR NIshi (JR West) and JR Toukai (JR Central) also have their own cards, ICOCA and TOICA respectively. They are all now pretty much interchangeable and Suica, which is the oldest system in operation since 2001, in particular can now be used for other kinds of payments in station shops and the ubiquitous Lawson chain of konbini (convenience stores) elsewhere in the city. It also now has a keitai denwa (mobile phone) enabled version in which the card is virtually present as a piece of phone software.

Great! It’s convenient, costs no more than buying tickets separately and if you forgot to bring any cash for your morning paper, you can use Suica for that too.

So, just like London’s Oyster card then?

Well, no.

TfL's Oyster card
TfL's Oyster card

The Oyster card, issued by Transport for London, looks pretty much the same and operates along similar technological lines, but because it also requires the user to register using a verifiable name, address and telephone number, with which the card is then associated, it is effectively also a tracking system, which is gradually producing an enormous database of movement surveillance. And of course this has not gone unnoticed to the UK’s police and security services who have reserved the right to mine this database for reasons of ‘national security’ and detection of crime. If you lose your card or have it stolen, then not only do you lose your £3 deposit, you’d better tell the authorities too or you might end up having some criminal activity associated with your name on the database.

Suica cards, on the other hand, can be bought from any ticket machine, require no deposit and no registration, and it doesn’t matter if you lose them, or leave the country, even for several years.

Tokyo and London’s transport systems have both experienced terrorist attacks so there’s no particular reason why Japan’s authorities shouldn’t have demanded a similar database (if you accept the UK’s reasoning). Tokyo also has a far more extensive, complex and multiply-owned transport infrastructure. Surely this must inevitably lead to an insecure and out-of-control system where disaster is inevitable.

So in which of the two cities does the transport system work far more efficiently? And where is that you are actually less likely to be a victim of crime, and feel safer?

I’ll give you a clue – it isn’t London.

India to issue biometric ID cards

According to The Times (and many other sources), this week, India is to create a central database, a unique identification number and biometric ID cards for all of its citizens. The scheme will be run by the newly-created Unique Identification Authority and cost an estimated £3 Billion (or around $5 Billion US).

As in Brazil, there is a felt need for such a system because of the proliferation of IDs and the dangers of anonymity and invisibility in a society where this can be a life or death issue. None of this, of course, means that the particular measures chosen will achieve their aims or will not create other problems. The Times with predictable journalistic cliche, calls this the largest Big Brother scheme in the world and the leader of the project is talking about a “ubiquitous online database” . However, it is rather difficult to see how it will be anything like that when most of India’s chaotic multi-level bureaucracy, especially at local level, still ‘works’ on the basis of paper-based filing systems.

There are suggestions too that this has purposes in crime-fighting and anti-terrorism, although the Indian government website on the scheme makes no such claims (which have in any case been discredited in the discussion about the proposed UK National Identity Register and ID card). It instead focuses on how ‘the Unique ID will be helpful in reducing identity related fraud and allow only targeted people to get the benefits from the government’ (MIT website).

Discussions on listservs has also served to question claims made in The Times article. The paper talks about ‘1.2 Billion’ people being enrolled, but in fact the scheme would only cover over-18s, which would be less than 2/3 of that number It also seems unclear exactly how the cards will be biometric. If it is just a photograph and fingerprint, this would be much the same as the Brazilian scheme. Of course the UK had more ambitious plans, but these were scrapped due to cost and reliability concerns.

Japan, where I am now, has instituted its own central database, and unique ID number, juki-net, and I will be talking to one of the people responsible for dealing with the technology that enables local governments to use the system this coming week…

(Thanks to John Bredehoft for pointing out the problem with the figures).

Community Safety in Shinjuku

As well as trying to interview officials at national and city level here, I am also looking at a few different areas of the city, including Shinjuku, where I have done some work before. Shinjuku is a central ward of Tokyo that includes the Tokyo Metropolitan Government (TMG) buildings, part of a growing high-rise district, possibly the busiest railway station in the world, one of the most extensive entertainment districts in the city (not just Kabukicho, the conventional ‘red light’ district, but also a lot of gay clubs and bars), and substantial Korean and Chinese communities.

We had an interesting interview this week with the two officials seconded from the Metropolitan Police Department (keishicho), to run the efforts in Shinjuku (as usual there is a lot more than I can summarise here). We met in the Emergency Control Room, a cramped space full of monitors old and new, walkie-talkies and lots and lots of yellow telephones. We had a brief chat about emergency planning, but as we there to talk security and surveillance, we moved on.

Anzen anshin (or bohan) machizukuri (community safety (or security) development) in Tokyo derives from a TMG ordinance (jourei) of 2003 which encourages all ku (city wards) to implement it. The main reason was that recorded crimes had reached a record high in the city in 2002 (I’ll consider crime figures in Japan and their reliability in another post). There were a patchwork of existing community safety organisations but these appear to have been separate from the chounaikai (local community associations). What the 2003 ordinance did was to make community safety the responsibility of the chounaikai with co-ordination, information and encouragement from the ku administration.

The Shinjuku authorities are very keen on this, much more so than some others, for example, Arakawa-ku where we are living and which I am also examining, which tends to rely on much more conventional policing. This may be a matter of money (Arakawa is nowhere near as wealthy as Shinjuku), but it may also be down to the attitudes of the public and local state officials. This kind of community safety work is time-intensive, and requires a substantial commitment in order to carry out things like citizen patrols (which seem to be one of the core elements).

We also talked about CCTV, which Tokyo started to implement in 2003 as well for the same ostensible reasons. Of course Kabukicho is one of the city-centre pilot areas (along with Ikebukuro, Shibuya, Ropongi and the later addition of Ueno), with over 50 cameras operated by the city police. Given their position it is hardly surprising that they had little time for talk of a ‘surveillance society’ (or indeed even the idea of ‘surveillance’ – the word kanshi provokes quite a strong reaction here – no, no – they are definitely not doing surveillance). They also talked about the co-ordination of shoutenkai (shopkeepers’ association) CCTV systems. It seems that despite their large numbers, these systems are generally not monitored, i.e. there is not control room and no-one is watching. The officials were also certain that the shoutenkai operators themselves were not even allowed to view footage without permission from local police. This is something I will have to investigate more as I have read in the past of shoutenkai representatives claiming the opposite – that they had to give permission for the police to view footage. It seems that both shoutenkai and chounaikai are being encouraged to install CCTV systems, and there are grant systems in place – basically one third comes from the city, one third from the ku, and one third has to be found by the organisation itself from its members.

This means that coverage is very uneven and tends to be restricted to wealthy and / or particularly committed –kai. Shinjuku has many, many shoutenkai systems. Nippori, in Arakawa, in contrast has three cameras – not three systems, but three cameras…

(Thank-you very much to Mr Takahashi and Mr Yabe for their time and patience with my questions).

USA builds massive new space surveillance system

My headline is a slightly more accurate version of the way that news of the new ‘Space Fence’ system has been headlined, for example here in Computerworld. The Space Fence system, whose first stage is a $30 Million US project for Northrop-Grumman, will replace a 1961 VHF radio infrastructure known as the Air Force Space Surveillance System built in 1961.

Although the spin is that the system is all about tracking space debris, this is actually part of the DoD’s satellite tracking operations – which certainly does cover debris, insofar as they are a threat to US satellites, but is also crucially to make sure that an accurate picture of the increasing number of smaller ‘micro-satellites’ from an every-expanding number of countries can be obtained. In that sense, this program is indeed a ‘fence’, a further attempt to enforce the notion that space is effectively US territory.

Data Protection in Japan

Comprehensive data protection in Japan is fairly recent. Until 2003, data protection was still governed under much two earlier ‘ information society initiatives: firstly, the Act for the Protection of Computer Processed Personal Data Held by Administrative Organisation (1988) and secondly, the Protection of Computer Processed Personal Data Act (1990), which are based on the 1980 OECD Guidelines on the Protection of Privacy and Transborder Flows of Personal Data. These laws were limited an applied only to the state, and within that, only to some national government organisations rather than all of them.

Lawyers and those concerned with privacy within and without government were well aware of these limitations, and in the late 90s, a special Privacy Issues Study Working Group was set upby the Electronic Commerce Promotion Council of Japan (ECom). This committee issued Guidelines Concerning Protection of Personal Data in Electronic Commerce in the Private Sector in March 1998. The Chair of that committee, Professor Masao Horibe, provides an account here.

Subsequently, a Personal Data Protection Legislation Special Committee was established in January 2000 under the Advanced Information and Telecommunications Society Promotion Headquarters (now the IT Strategic Headquarters), a body responsible directly to the Japanese cabinet. This body has issued all the laws and directions regarding IT, e-Japan etc.

The need to “protect personal data” (kojin deta) was mentioned in Article 22 of the Basic Law on the Formation of an Advanced Information and Telecommunications Network Society within the rubric of ‘security’. This was followed up by the e-Japan strategy of January 2001, which under the section on the Facilitation of E-Commerce, recommended that “Necessary legislative measures should be taken to win the confidence of consumers, including submission of a bill to protect personal data to the ordinary session of the Diet in 2001.”

The Bill was introduced in March 2001, but as a result of concerns about its effects on the freedom of the press, was left to fall by 2002. However the Personal Information Protection Bill was passed in 2003, one of five bills with implications for data protections to be passed in that Diet session.The bill came into force in 2005. I’ll discuss the content and operation of the bill later, but there’s a good summary in English from when the Bill was passed here.

The one particularly interesting thing to note here is that it doesn’t designate or establish any one body to oversee the operation of the law or the enforcement of rights, or deal with complaints as in European countries and Canada, for example, Instead it keeps data protection as an internal matter for designated government ministries (and for companies), with legal action an option if all else fails. The law is generally on the side of data flow and commercial / administrative convenience, which is not surprising given its origins in industry-led e-commerce promotion organisations.