<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"
	xmlns:content="http://purl.org/rss/1.0/modules/content/"
	xmlns:wfw="http://wellformedweb.org/CommentAPI/"
	xmlns:dc="http://purl.org/dc/elements/1.1/"
	xmlns:atom="http://www.w3.org/2005/Atom"
	xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
	xmlns:slash="http://purl.org/rss/1.0/modules/slash/"
	>

<channel>
	<title>metadata &#8211; Noise</title>
	<atom:link href="https://noise.getoto.net/tag/metadata/feed/" rel="self" type="application/rss+xml" />
	<link>https://noise.getoto.net</link>
	<description>The collective thoughts of the interwebz</description>
	<lastBuildDate>Mon, 29 Jan 2024 20:19:21 +0000</lastBuildDate>
	<language>en-US</language>
	<sy:updatePeriod>
	hourly	</sy:updatePeriod>
	<sy:updateFrequency>
	1	</sy:updateFrequency>
	<generator>https://wordpress.org/?v=6.8.2</generator>
	<item>
		<title>NSA Buying Bulk Surveillance Data on Americans without a Warrant</title>
		<link>https://noise.getoto.net/2024/01/30/nsa-buying-bulk-surveillance-data-on-americans-without-a-warrant/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Tue, 30 Jan 2024 12:12:30 +0000</pubDate>
				<category><![CDATA[data collection]]></category>
		<category><![CDATA[data privacy]]></category>
		<category><![CDATA[metadata]]></category>
		<category><![CDATA[NSA]]></category>
		<category><![CDATA[Privacy]]></category>
		<category><![CDATA[surveillance]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=68371</guid>

					<description><![CDATA[It finally admitted to buying bulk data on Americans from data brokers, in response to a query by Senator Weyden.
This is almost certainly illegal, although the NSA maintains that it is legal until it&#8217;s told otherwise.
Some news articles.
]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Spying through Push Notifications</title>
		<link>https://noise.getoto.net/2023/12/07/spying-through-push-notifications/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Thu, 07 Dec 2023 12:02:07 +0000</pubDate>
				<category><![CDATA[metadata]]></category>
		<category><![CDATA[national security policy]]></category>
		<category><![CDATA[Privacy]]></category>
		<category><![CDATA[spyware]]></category>
		<category><![CDATA[surveillance]]></category>
		<category><![CDATA[transparency]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=68174</guid>

					<description><![CDATA[<p>When you get a push notification on your Apple or Google phone, those notifications go through Apple and Google servers. Which means that those companies can spy on them—either for their own reasons or in response to government demands.</p>
<p>Sen. Wyden is trying to <a href="https://www.reuters.com/technology/cybersecurity/governments-spying-apple-google-users-through-push-notifications-us-senator-2023-12-06/">get to the bottom of this</a>:</p>
<blockquote><p>In a statement, Apple said that Wyden’s letter gave them the opening they needed to share more details with the public about how governments monitored push notifications.</p>
<p>“In this case, the federal government prohibited us from sharing any information,” the company said in a statement. “Now that this method has become public we are updating our transparency reporting to detail these kinds of requests.”...</p></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>The Insecurity of Photo Cropping</title>
		<link>https://noise.getoto.net/2023/02/21/the-insecurity-of-photo-cropping/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Tue, 21 Feb 2023 12:14:28 +0000</pubDate>
				<category><![CDATA[Forensics]]></category>
		<category><![CDATA[metadata]]></category>
		<category><![CDATA[photos]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<category><![CDATA[whistleblowers]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=66948</guid>

					<description><![CDATA[<p>The <i>Intercept</i> has a <a href="https://theintercept.com/2023/02/14/whistleblower-image-crop-document/">long article</a> on the insecurity of photo cropping:</p>
<blockquote><p>One of the hazards lies in the fact that, for some of the programs, downstream crop reversals are possible for viewers or readers of the document, not just the file’s creators or editors. Official instruction manuals, help pages, and promotional materials may mention that cropping is reversible, but this documentation at times fails to note that these operations are reversible by any viewers of a given image or document.</p>
<p>[…]</p>
<p>Uncropped versions of images can be preserved not just in Office apps, but also in a file’s own metadata. A photograph taken with a modern digital camera contains all types of metadata. Many image files record text-based metadata such as the camera make and model or the GPS coordinates at which the image was captured. Some photos also include binary data such as a thumbnail version of the original photo that may persist in the file’s metadata even after the photo has been edited in an image editor...</p></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Interview with Signal’s New President</title>
		<link>https://noise.getoto.net/2022/10/20/interview-with-signals-new-president/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Thu, 20 Oct 2022 11:47:42 +0000</pubDate>
				<category><![CDATA[Facebook]]></category>
		<category><![CDATA[interviews]]></category>
		<category><![CDATA[metadata]]></category>
		<category><![CDATA[Privacy]]></category>
		<category><![CDATA[signal]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<category><![CDATA[whatsapp]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=65989</guid>

					<description><![CDATA[<p>Long and interesting <a href="https://www.theverge.com/23409716/signal-encryption-messaging-sms-meredith-whittaker-imessage-whatsapp-china">interview</a> with Signal’s new president, Meredith Whittaker:</p>
<blockquote><p>WhatsApp uses the Signal encryption protocol to provide encryption for its messages. That was absolutely a visionary choice that Brian and his team led back in the day ­- and big props to them for doing that. But you can’t just look at that and then stop at message protection. WhatsApp does not protect metadata the way that Signal does. Signal knows nothing about who you are. It doesn’t have your profile information and it has introduced group encryption protections. We don’t know who you are talking to or who is in the membership of a group. It has gone above and beyond to minimize the collection of metadata...</p></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Bunnie Huang’s Plausibly Deniable Database</title>
		<link>https://noise.getoto.net/2022/02/10/bunnie-huangs-plausibly-deniable-database/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Thu, 10 Feb 2022 12:13:26 +0000</pubDate>
				<category><![CDATA[academic papers]]></category>
		<category><![CDATA[cryptanalysis]]></category>
		<category><![CDATA[databases]]></category>
		<category><![CDATA[deniability]]></category>
		<category><![CDATA[metadata]]></category>
		<category><![CDATA[threat models]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=65033</guid>

					<description><![CDATA[<p>Bunnie Huang has <a href="https://www.bunniestudios.com/blog/?p=6307">created</a> a Plausibly Deniable Database.</p>
<blockquote><p>Most security schemes facilitate the coercive processes of an attacker because they disclose metadata about the secret data, such as the name and size of encrypted files. This allows specific and enforceable demands to be made: “Give us the passwords for these three encrypted files with names A, B and C, or else…”. In other words, security often focuses on protecting the confidentiality of data, but lacks deniability.</p>
<p>A scheme with deniability would make even the existence of secret files difficult to prove. This makes it difficult for an attacker to formulate a coherent demand: “There’s no evidence of undisclosed data. Should we even bother to make threats?” A lack of evidence makes it more difficult to make specific and enforceable demands...</p></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Law Enforcement Access to Chat Data and Metadata</title>
		<link>https://noise.getoto.net/2021/12/10/law-enforcement-access-to-chat-data-and-metadata/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Fri, 10 Dec 2021 12:37:29 +0000</pubDate>
				<category><![CDATA[cell phones]]></category>
		<category><![CDATA[fbi]]></category>
		<category><![CDATA[law enforcement]]></category>
		<category><![CDATA[metadata]]></category>
		<category><![CDATA[Privacy]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=64627</guid>

					<description><![CDATA[<p>A January 2021 FBI <a href="https://propertyofthepeople.org/document-detail/?doc-id=21114562">document</a> outlines what types of data and metadata can be lawfully obtained by the FBI from messaging apps. <i>Rolling Stone</i> <a href="https://www.rollingstone.com/politics/politics-features/whatsapp-imessage-facebook-apple-fbi-privacy-1261816/">broke</a> the story and it’s been written about <a href="https://reason.com/2021/12/07/secret-documents-show-which-message-apps-are-the-most-fbi-proof/">elsewhere</a>.</p>
<p>I don’t see a lot of surprises in the document. Lots of apps leak all sorts of metadata: iMessage and WhatsApp seem to be the worst. Signal protects the most metadata. End-to-end encrypted message content can be available if the user uploads it to an unencrypted backup server.</p>
<p>EDITED TO ADD (12/13): <a href="https://therecord.media/fbi-document-shows-what-data-can-be-obtained-from-encrypted-messaging-apps/">Here’s</a> a more legible copy of the text.</p>
...]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
	</channel>
</rss>

<!--
Performance optimized by W3 Total Cache. Learn more: https://www.boldgrid.com/w3-total-cache/

Object Caching 30/138 objects using Memcached
Page Caching using Disk: Enhanced 
Lazy Loading (feed)
Database Caching using Memcached

Served from: noise.getoto.net @ 2025-12-09 12:35:44 by W3 Total Cache
-->