FBI Head Wants Strong Data Retention Rules 256
KevHead writes "Speaking at a conference of international police chiefs, FBI Director Robert Mueller called for strict data retention guidelines for US ISPs. Echoing DHS head Michael Cherthoff's assertion that the Internet was enabling terrorists to telecommute to work, Mueller went further and said that the US needs stricter data retention guidelines. '"All too often, we find that before we can catch these offenders, Internet service providers have unwittingly deleted the very records that would help us identify these offenders and protect future victims," Mueller said. The solution? Forcing ISPs to retain data for set periods of time.' If that happens, how long before the MPAA and RIAA start asking to take a peek at the data too, as they have in Europe?"
Add to "to do" list for new Congress (Score:5, Informative)
Add stopping this to the list of "things to do after the Democrats take over Congress".
Don't forget to vote, everybody.
And remember, as one leading Democrat has said, if Democrats control either house, there's going to be "oversight, oversight, oversight". Look how much has come out with the Republicans in charge: everything from the plan to divide up northern Iraq amongst oil companies to the CIA's torture program. There has to be more stuff we haven't heard about. Look forward to people like the FBI Director testifying under oath before Congress. Coming soon to a C-SPAN channel near you.
You might also want to volunteer to be a poll watcher, especially if you're in a state with Diebold voting machines.
UK Data Protection Rules (Score:3, Informative)
Please read the article before quoting... (Score:2, Informative)
While *theoretically* a good idea... (Score:3, Informative)
Phone companies do it, after all...
It is nevertheless impractical for ISP's to do the same because there are several orders of magnitude more simultaneous connections than there are with phone companies because phone calls typically last on the order of minutes, while individual IP packets take less than a fraction of a second to transmit and they are done. One could track entire TCP streams, but even those can be over in less than a second, and it wouldn't be helpful for tracking things like UDP or even raw IP. It would require absolutely huge amounts of data storage to chronicle even a single hour's usage in entirety on a major ISP, let alone keeping it around for days or weeks.
Re:Wouldn't it be cool.. (Score:3, Informative)
This is logically false. I can give you a theoretical and a practical example. Theoretically, any information is more helpful than no information. The only practical exception would be polluting good information with bad information, but since this information would be logically separate from existing information, this problem would not exist.
Practically, have you ever tracked down a hacker at your company? Logs are the BEST place to do this. Look for SQL injection attempts in URLs. Track those IP addresses to see where else they went. If you know the IP address already, you can look up what user account they were using. There's tons and tons of information in logs. You're suggesting that it's wise for a corporation to delete this data??? The argument is less concrete when you're talking about an ISP's logs, but data retention within a corporation's network is a great idea.