Wednesday December 3, 2008 7:04 AM AEST
Vulnerability Alerts
SANS
 
Microsoft
 
CERT/CC
 
 
Latest Comments
"trend is good antivirus software."
on Trend Micro OfficeScan Client/Server Edition
by jack | Dec 3, 2008 7:02 AM
 
"I feel it with you guys. These irritating interruptions on privacy MUST be stopped. It is a ..."
on Yahoo and Microsoft take aim at lottery scams
by Jan Wilmans | Dec 2, 2008 7:11 PM
 
"My AVG WILL NOT UPDATE"
on AVG update deletes critical Windows file
by James Downs | Dec 2, 2008 5:58 AM
 
"Concerned man's comments seem to intimate that if I'm using agents all will be well but the ..."
on Shavlik Technologies to broaden its patch management offerings
by Werner K | Nov 26, 2008 8:36 PM
 
"That will enhance Microsoft Office system, including SharePoint - good platform for enterprise ..."
on Companies have security to consider with in-the-cloud Office
by SGE | Nov 25, 2008 3:29 PM
Conferences

Legal spat over MIT subway hack

  • Email a Friend
  • Print Page
Related Articles
By Shaun Nichols
Aug 12, 2008 10:29 AM
Tags: Legal | MIT | subway | hack | Defcon | Student
Civil liberties groups are stepping into the battle between the federal government and three students from MIT.

The trio of students was planning to give a presentation on Sunday at the DEFCON conference in Las Vegas. The presentation detailed security flaws in the "Charlie Card" automatic payment system used by the Massachusetts Bay Transit Authority (MBTA).

The authority argued that the presentation would give users the ability to tamper with the Charlie Card system and ride Boston's subways for free. As such, the MBTA claims that the presentation violated the Computer Fraud and Abuse Act (CFFA).

In response to the claim, a US district court judge has issued a ruling which prevents the three students from disclosing any information on the subject for ten days, well after the conference has ended.

The judge's decision to issue prior restraint on the students caught the attention of the Electronic Frontier Foundation, which is now representing the three researchers in their appeal of the Judge's order.

The EFF claims that the temporary restraining order violates the students' free speech rights and distorts the CFFA.

"The court has adopted an interpretation of the statute that is blatantly unconstitutional, equating discussion in a public forum with computer intrusion, " said Jennifer Grannick, civil liberties director for the EFF.

"More importantly, squelching research and scientific discussion won't stop the attackers. It will just stop the public from knowing that these systems are vulnerable and from pressuring the companies that develop and implement them to fix security holes."

The group also argues that security flaws in RFID and magnetic stripe systems used by the MBTA and other transit systems are well-documented and have already been disclosed.

Courts in the Netherlands recently wrapped up a similar case involving London's public transit system. The judges ruled that a group of professors would be allowed to publish their findings on hacking London's Oyster card payment system.

Copyright © 2008 vnunet.com

 
Ads by Google
Thoughts on this article? Add a comment below.
Be the first to comment on this article.

Report this comment as offensive:

   * Indicates information we require to process your submission.

Name: *
Email: *
Reason for offense: *
Your report will not be displayed.  
Name:
*
 
Email:
(will not be displayed)
*
 
Comment:
(HTML not permitted)
*
 
Validation
*

Enter the code you see below:

 

 
 
 
 
 
Tripwire - Click here to win an iTouch
 
 
Risk Management Whitepapers
 
Popular Tags
charged email hack india network online pakistan providing researchers sniffer spam study tjx trojan yorker