Will AT&T Start Filtering Your Connection?

We have another essay from Bennett Haselton for you to peruse. "Last week's coverage of AT&T's newly announced "anti-piracy initiative" mostly downplayed the key part of AT&T's proposal, which is filtering what their end users can access in the first place, not finding pirates or suing them after the fact. Friday's Associated Press article, which was reprinted on many news sites with headlines like "AT&T to Help Hollywood Track Down Internet Pirates" and "AT&T to ID Offshore Web Pirates", actually said only that "the effort is primarily aimed at pirates who set up operations in other countries" -- and since you can't really "aim" at pirates in Russia and China with anything except missiles, the statement suggests not identifying pirates or tracking them down, but pre-emptively blocking people from connecting to their servers. Only the Red Herring nailed it with their article title, "AT&T to Block Pirated Content"." Follow the magical URL to read the rest of Bennett's words on the matter.

I think this is a crucial distinction, because efforts to filter end users' connections (as opposed to making them pay consequences for their actions after the fact) have always been controversial, even when the content is illegal. The Center for Democracy and Technology successfully overturned a Pennsylvania law that required ISPs to block overseas child pornography sites, partly on the grounds that the filtering included many third-party Web sites as collateral damage. I've argued that a similar private-sector initiative called Canada Cleanfeed, where Canadian ISPs attempt to block child pornography Web sites, would do more harm than good. On the other hand, nobody's fighting very hard for the cause of child pornography downloaders who were caught and arrested. Web sites get sued and shut down all the time, but it was bigger news when Canadian ISP Telus blocked the Web site of a Telus labor union for three days. So it's a big deal whether we're talking about "pre-emptive" filtering, or fighting piracy "reactively" by going after violators.

AT&T Senior VP James Cicconi said in e-mail that "discussion about what the technology will or won't do is premature until we can invent it", but most of the hints so far have been that the anti-piracy technology will be "pre-emptive", i.e. filtering users' connections. Cicconi said on a conference panel that AT&T has to spend billions on network maintenance to carry illegal pirated traffic -- which they probably couldn't recoup by suing people, so the only way to prevent that would be to block it. And Cicconi has referred to the technology several times as a "network-based solution" -- but what else could that mean, except filtering?

So let's assume that's what's on the horizon. Interestingly, Cicconi said that AT&T did not plan to block actual Web sites. However, he said in e-mail, "If one could, with a high degree of certainty, spot and isolate illegal traffic from an offshore site, would you not think the copyright holders would have a reasonable argument for a court order to block that traffic (as opposed to the site itself)?" Presumably this could refer to a Web page with an index of links to BitTorrent files -- so they'd be willing to block the BitTorrent links, but not the Web page? But from that point of view, why not just block Web sites too? If an overseas webpage has a list of links to pirated content, and that content is served over http from the same Web server, wouldn't they want to block it?

But I doubt this would stem much piracy in the long run, because connection filtering to fight piracy became more commonplace, then the next generation of p2p file-trading programs would all just have circumvention capabilities built into them, that let you route your connection through a friend at an unfiltered ISP. You're on AT&T, you upload a file to your friend on Verizon which earns you some "credits" with his node in the p2p network, and instead of redeeming those credits to download a file from him, you use his node as a proxy to download a file indirectly from a site in Russia that AT&T is blocking you from accessing. Advanced users can do this already with tools like Virtual Private Networks and Tor, and some tweaks in a p2p program would just bring it within the range of the casual user.

On the other hand, if AT&T starts filtering traffic, it could set a bad precedent that any time a party in a legal proceeding wants a site declared "illegal", they can demand that AT&T (or other ISPs) block the site. It could be a site libeling a person, or a site hosting a decryption tool that breaks some company's poorly-designed code, or pretty much anything that some powerful person wanted to go away. Meanwhile, if an AT&T customer did get accused of downloading pirated content, now they could invoke the "AT&T didn't stop me" defense -- they thought that AT&T was filtering illegal content, and if they could get to it, then that meant it was legal! In both cases the problem comes from someone using the argument that once AT&T started doing any filtering at all, they should have gone further.

So I would watch the situation closely, even if you're not an AT&T user, and don't assume the situation will take care of itself. Cicconi said, "If a company like ours does dumb things and upsets our customers, we will lose them to someone else," which is something I'm skeptical of whenever I hear it used to defend various draconian anti-spam measures, but in this case I think it's even less applicable. When you're talking about spam filters, at least they always bring some benefit to the user (less spam), and the question is whether the free market weighs those benefits properly against the costs (more lost mail). On the other hand, if an ISP filters the user's connection, that brings no benefit to the user, and in a truly efficient market, all customers of such an ISP would just switch to an unfiltered one -- if that doesn't happen, it simply means the market in that case is not efficient. Is your ISP filtering your connection right now? Probably not, but how could you tell if they were? Right now we assume that ISPs don't filter connections because generally it's "just not done" (except when it is). In a few years we might not be so sure.

Compensated

[Anonymous Coward]

"jams the network in ways we're not compensated for. He said AT&T is spending about $18 billion on network maintenance, a significant chunk of which is required just to keep up with tremendous growth of traffic on its backbone."

They were compensated.

The $200 Billion Broadband Scandal

New investigative ebook offers micro-history of Verizon, SBC, Qwest, and BellSouth's (the Bell companies) fiber optic broadband promises and the consequence harms to America's economic growth because they never delivered and kept most of the money, about $200 billion.

This is one of the largest scandals in American history. America is 16th in the world in broadband and the US DSL current offerings are 100 times slower than other countries such has Japan and Korea. How did we go from Number 1 in the web to 16th in broadband and falling?

Starting in the early 1990's, with a push from the Clinton-Gore Administration's "Information Superhighway", every Bell company -- SBC, Verizon, BellSouth and Qwest -- made commitments to rewire America, state by state. Fiber optic wires would replace the 100-year old copper wiring. The push caused techno-frenzy of major proportions. By 2006, 86 million households should have had a service capable of 45 Mbps in both directions, (to and from the customer) could handle over 500 channels of high quality video and be deployed in rural, urban and suburban areas equally. And these networks were open to ALL competition.

In order to pay for these upgrades, in state after state, the public service commissions and state legislatures acquiesced to the Bells' promises by removing the constraints on the Bells' profits as well as gave other financial perks. They were able to print money -- billions of dollars per state -- all collected in the form of higher phone rates and tax perks. (Note: each state is different.)

* ADSL is not what was promised and paid for. It goes over the old copper wiring, can't achieve the speed, has problems in rural areas and is mostly one-way.
* 0% of the Bell companies' customers have 45 Mbps residential services.

The fiber optic infrastructure you paid for was never delivered.

http://www.muniwireless.com/article/articleview/50 11 [muniwireless.com]

Re:Dumb question...

[Control Group]

AT&T, the ISP, is not a common carrier, they are an "information service."

AT&T, the phone company, is a common carrier.

No

[Anonymous Coward]

Thats not how it works. Competing DSL providers pay AT&T for space in their CO. From there, its off to the competiting provider's network.

Re:Dumb question...

[Anonymous Coward]

haven't they then lost their common carrier status?

They fought hard to get rid of that long ago for their DSL lines, thanks to the oh-so-onerous requirements of actually providing the service they were selling. Cable companies were never common carriers to begin with.

BTW, you don't "lose" your status from doing something against common-carrier regulations, you get fined to hell and back, if not arrested. If some guy at the post office decided to read all your mail, it's not the post office that "loses" anything.

Re:No

[Anonymous Coward]

You have to remember that AT&T is one of the 6 internet tier 1 communications vendors. So basically if they decide to filter Flickr (China blocks Flickr) then any of the ISPs that use AT&T's network will be blocked. They're one of the big dogs.

It's basically already happening. I've not been able to reach Demonoid.com, OiNK or any of my other private Torrent tracker sites for a few weeks. While I have no problems here at the office. Which isn't an AT&T ISP.

l7-filter

[wytcld]

To the posters wondering how they can do it, look at l7-filter for iptables [sourceforge.net]. Now, this is what you can do - fairly effectively people are reporting - to filter p2p with a Linux router. (There's also ipp2p [ipp2p.org] for Linux, but that's judged only partially effective.) You can bet that what open source can do, AT&T's Ciscos can do too. Doing that level of inspection is going to add quite a computational load, on the one hand. On the other hand, blocking the p2p stuff will take a huge load off of the pipes.

Is the l7-filter's approach something that p2p software's next generation can get around? Maybe, but it won't be as simple as port hopping. There will always be ways to get a few files though, but the question is whether large-scale p2p operations will remain viable in a context of widespread packet filtering.

Re:Dumb question...

[Red Flayer]

haven't they then lost their common carrier status?

They don't have common carrier status for the internet service they provide over DSL. They do, however still have third-party immunity from copyright violations, due to the DMCA.