Internet Governance Lab hosts Data Hygiene Clinic

On Friday, October 13th from 3-4:30pm, the Internet Governance Lab, in collaboration with the Freedom of the Press Foundation, the Center for Media and Social Impact, and the Washington, D.C. chapter of the Internet Society, will host a discussion providing practical steps students, faculty, and all members of the AU community can take to protect themselves from a variety of digital threats.

Orwell’s 1984 and the Contemporary Cyber Surveillance State


On Wednesday, October 18th, from 3-4:30 pm in Batelle-Tompkins Atrium, the American University Literature Department and the Internet Governance Lab will host a colloquium on Orwell’s 1984 and its relevance to the contemporary cyber context.

All sectors of the economy and society are now digitally mediated, made possible by the Faustian bargain of pervasive and privatized surveillance in which citizens relinquish personal data in exchange for free services. Authoritarian and democratic nation-states alike enact expansive surveillance, either for politically motivated censorship, identification of dissidents, or law enforcement and intelligence gathering. The same technologies that have provided unprecedented opportunities for creative expression, innovation, and free speech are used for all manner of social, political, and economic control. Modern flashpoints such as the Snowden NSA surveillance disclosures and Russia’s cybersecurity incursions and influence campaigns during the 2016 American presidential election have attracted greater public attention to longstanding tensions between cybersecurity and human rights. This panel will bring together experts in cyberpolitics and cybersecurity to examine Orwell’s 1984 through the lens of the contemporary cyber-surveillance state. How has the language of Orwell shaped/constructed modern cyber discourses? How do the modern surveillance state and underlying political tensions differ from Orwell’s dystopian vision? How would 1984 have been re-written in light of contemporary technological capabilities? Speakers include:

Moderator: Dr. Linda Voris
Professor in the Department of Literature
American University

Dr. Derrick Cogburn
Faculty Director, Internet Governance Lab at American University
Professor in the School of International Service

Dr. Laura DeNardis
Author of The Global War for Internet Governance (Yale University Press)
SOC Professor and Faculty Director, Internet Governance Lab at American University

Dr. Eric Novotny
Professor in the School of International Service
Faculty Fellow, Internet Governance Lab at American University

Colonel (Ret) Randolph Rosin
Faculty of the National Intelligence University
Internet Governance Lab Research Fellow

Dr. Andrew Rens Joins Internet Governance Lab as Postdoctoral Fellow


By Kenneth Merrill

The Internet Governance Lab is pleased to announce that Dr. Andrew Rens will be joining us as a Postdoctoral Research Fellow. In this capacity, he will be running a research program focused on technology governance of the Internet of Things. As Dr. Rens explains:

The Internet of Things raises complex issues of ownership and control, privacy, and surveillance, ubiquity, and fragility. Some press accounts narrate these issues as consumers versus corporations in which consent is key. But the Internet of Things is mostly the Internet of Other People’s Things, we interact with these Internet-connected objects as employees, students, tenants, and citizens. The things are not simply data input devices, however intrusive but technologies with immediate physical effects such as networked 3D printers. Questions around the governance of the Internet of Things (IoT) exhibit the same super complexity as Internet governance generally; with multiple sites of governance and actors operating across legal borders.

The IoT is promising for the developing world and digital inclusion. Through cheap sensors and the ability to fabricate equipment, the IoT may dramatically lower barriers to scientific experimentation. Every classroom could potentially be a laboratory. But will the Internet of Things be configured to optimize these possibilities? How will development and human rights be taken into account when governance is neither state nor corporate but takes place through technical standards, protocols and engineering organizations.

Who will control the “things” in the IoT and what will determine this control? Will it be intellectual property law or standards? Open source offers one way in which the people most affected by a technology can exercise some control over it. Open source software and its associated governance structures have proven resistant to control through intellectual property laws. Will a combination of open source software and open hardware prove similarly robust? Even if open source methods best enables innovation will it control the potentially pernicious uses such as printing guns with a 3D printer?

Rens earned a Doctor of Juridical Science (SJD) from Duke University Law School for research on using open copyright licenses in education. As a Shuttleworth Foundation Fellowship, he pioneered work on access to knowledge, IP law reform and open education in South Africa. Andrew Rens has been a fellow at the Stanford Center for Internet and Society, a research associate at the LINK Center at the University of the Witwatersrand, Johannesburg, and the University of Cape Town Intellectual Property Law Research Unit. As founding Legal Lead of Creative Commons South Africa, he ported the South African licensing suite to South African law. He earned a Master of Laws from the University of the Witwatersrand for research on Internet legal issues. He has taught Master’s courses in Intellectual Property, Telecommunications, Broadcasting, Space and Satellite, and Media and Information Technology Law at the Law School of the University of the Witwatersrand. He has also taught Telecommunications Law and Electronic Intellectual Property Law at the University of Cape Town Law School.

Please join us in welcoming Dr. Rens to the Internet Governance Lab and AU and we look forward to hearing from him soon on the always evolving intersection of the IoT and Internet governance.

Ukrainian Cyber Expert Andrii Paziuk to speak at Internet Governance Lab Roundtable

 Andrii Paziuk is a Hubert Humphrey Fellow at American University's Washington College of Law.

Andrii Paziuk is a Hubert Humphrey Fellow at American University's Washington College of Law.

By Kenneth Merrill

On Wednesday, September 20, 2017, Ukranian cyber expert Andrii Paziuk will discuss “Digital Policy, Civil Rights, and Security” as part of the Internet Governance Lab’s Roundtable Speaker Series. The event will take place at 2:30 pm in McKinley Room 305.

As a 2017-18 Humphrey Fellow at AU’s Washington College of Law, Mr. Paziuk’s work draws on his experience in government, industry, and academia to explore questions focused on the intersection of cybersecurity, privacy, and transborder data flows.

Prior to joining AU Mr. Paziuk worked for the Parliament of Ukraine as a legal adviser and an assistant to Members of Parliament. Since 2012, Mr. Paziuk has been a lecturer and LL.M. program moderator of International Cyber Law at Taras Shevchenko National University of Kyiv. He completed his Ph.D. thesis on the protection of privacy and personal data trans-border flows in 2004 and his post-doctoral thesis on International Cyber Law in 2016. Paziuk is also an adviser to the State Special Telecommunications and Information Protection Service, a member of the Steering Committee of Ukrainian National Internet Governance Forum, and co-founder and chairman of the NGO Partners for Digital Rights Defenders and Vice-President to the Ukrainian Academy of Cyber Security. His current research is focused on ‘The Rule of Law and Internet Governance’ exploring recent trends in digital policy and law, civil rights, and security issues. 

Internet Governance Lab Fellow and PhD Candidate Olga Khrustaleva at IETF 99 in Prague

 Olga Khrustaleva is a PhD student at American University's School of Communication

Olga Khrustaleva is a PhD student at American University's School of Communication

By Kenneth Merrill

Most Internet users are familiar with status code 404 “Not Found,” used when a requested web page is unavailable. Less recognizable, at least until recently, was status code 451, a new protocol standardized in 2016 and used to signal when a requested resource is unavailable “for legal reasons.” A reference to Ray Bradbury’s dystopian novel Fahrenheit 451, the new status code applies to resources inaccessible for a host of legal considerations, including national security, copyright violations, privacy, and local laws proscribing certain types of content (e.g. hate speech, blasphemy laws, etc.). 

Last week, SOC Ph.D. Candidate and Internet Governance Law fellow Olga Khrustaleva, who this summer is working as an Internet of Rights fellow with Article 19, a London-based digital rights advocacy group, presented research at the 99th meeting of the Internet Engineering Task Force (IETF) in Prague on the implications of status code 451 for human rights, both globally and in various national contexts. Using a web crawler that searches top-level resources for content being blocked or otherwise censored, the crawler reports any instances of 451 status codes and analyzes them to see what categories of content are being blocked where. 

Using a web crawler that searches top-level resources for content being blocked or otherwise censored, the crawler reports any instances of 451 status codes and analyzes them to see what categories of content are being blocked where. 

While the project is in its early stages — the research tools were unveiled at an IETF-sponsored “hackathon” in Prague last week — initial findings focusing on Reddit in Turkey showed that LGBT content was among the largest categories of content returning the status code. Similarly, the tools are being used to investigate occurrences of status code 451 in Russia, where LinkedIn was recently blocked due to the company’s refusal to comply with the country’s data localization law

The researchers expect to augment these initial findings with data collected from the team’s browser extension, with the goal of extending the project to other national contexts going forward. As Ms. Khrustaleva explains, “status code 451 makes digital censorship more transparent and gives more clarity to the end users who get a better idea why the page they are trying to access is unavailable.” But understanding how the code is used and under what circumstances will help shed light on how content filtering is implemented across national contexts. 

Internet Governance Lab Welcomes Faculty Fellow Dr. Eric Novotny

 Dr. Eric Novotny is the Hurst Adjunct Professorial Lecturer in the School of International Service at American University. 

Dr. Eric Novotny is the Hurst Adjunct Professorial Lecturer in the School of International Service at American University. 

By Kenneth Merrill

Joining the Internet Governance Lab as a Faculty Fellow, Dr. Eric Novotny is the Hurst Adjunct Professorial Lecturer in the School of International Service at American University. He is also Senior Advisor, Democracy, and Technology, at the U.S. Agency for International Development. In this position, Dr. Novotny designs and manages a large portfolio of programs that use advanced information and communication technologies (ICTs) to stimulate economic growth, improve democratic processes, and reform governance policies in developing countries. Some of these efforts are stand-alone technology and governance projects while others embed advanced ICTs in larger development projects in applied areas such as service delivery and critical infrastructure. USAID has assistance programs in 80 countries worldwide. He holds a B.A. in Political Science, and M.A. in Government, and a Ph.D. in International Relations from Georgetown University, as well as an M.Phil in Management Studies from Oxford.

Dr. Novotny also serves as a faculty coordinator and coach for the Cyber 9/12 Student Challenge (along with Washington College of Law professor Melanie Teplinksi), a global competition designed to “encourage and educate the next generation of foreign policy leaders in cyber security issues.” Sponsored by the Atlantic Council, the annual event features teams of students from universities around the world competing to analyze, synthesize, and respond to the technical, legal, and policy issues involved in a fictional cyber security related scenario. In 2017 46 teams from 35 universities participated with AU teams winning awards three out of the past five years.

As the Program Director for the School of International Service Masters program in US Foreign Policy and Security Studies in the Fall, Dr. Novotny will teach courses in International Communication and Cyber Security Policy. In this capacity, Dr. Novotny will also continue his research, which focuses broadly on the intersection of Cyber Security and Internet Freedom, including projects titled, “Building Anti-Censorship into the Core Internet Architecture,” “Cyber Security Risk Management for Non-governmental Organizations,” and “Cyber Cabalities and Interference in the Electoral Process.”

Internet Governance Lab at Cyber Week in Tel Aviv

By Kenneth Merrill

As a massive cyberattack spread across the globe on Tuesday, cybersecurity experts gathered in Tel Aviv for Cyber Week 2017, an annual conference bringing together scholars, industry leaders, and government officials to share methods and knowledge on a range of topics relevant to cybersecurity.

Among the experts in attendance was American University School of Communication Professor and Internet Governance Lab Co-director Dr. Laura DeNardis, who delivered a presentation titled “Privacy Complications in Cyber Physical Systems,” examining the privacy and security implications of the “Internet of Things.”

Also at the conference was Washington College of Law Professor and Internet Governance Lab Faculty Fellow Jennifer Daskal, who presented her work “Data and Territory: A Round Peg in a Square Hole,” addressing conflicts of law occurring at the intersection of the Internet and jurisdiction.

Both presentations, and indeed the entire conference, could not have been more timely.

On Tuesday ransomware attacks spread from Ukraine across the globe, crippling thousands of systems, including a major shipping company, at least one airport, ATM machines, and supermarket cash registers. Coming on the heels of a similar attack in May using the WannaCry ransomware, Tuesday’s Petya ransomware attack also used Eternal Blue, one of several hacking tools stolen from the National Security Administration and leaked by a group called the Shadow Brokers. And while it is still unclear who may be behind this latest attack (the fact that neither ransomware attacks collected much in the way of ransoms is leading some to suggest proxies working on behalf of nation-states), Professor DeNardis’s presentation underscored the extent to which the Internet of things introduces countless new vectors through which malicious code can spread.

Meanwhile, Professor Daskal’s discussion focusing on the incongruities of territorial sovereignty in cyberspace proved especially salient on Wednesday as Canada’s Supreme Court ruled that it could force Google to remove search results worldwide. Also on Wednesday, Pavel Durov, founder of the controversial messaging app Telegram, agreed to comply with a Russian law that requires information technology companies operating in the country to store data locally, as well as agreeing to hand over information to Russian authorities on request.

Cyber Week 2017 runs through Thursday, June 28th. You can follow along at #CyberWeek.

SOC PhD candidate Fernanda Rosa awarded Columbia University grant to study IXPs

 Fernanda Rosa is a PhD student in Communication at American University. 

Fernanda Rosa is a PhD student in Communication at American University. 

SOC Ph.D. candidate Fernanda Rosa has been awarded a prestigious grant from Columbia University’s School of International and Public Affairs (SIPA) to fund her dissertation research investigating the role of Internet exchange points (IXPs) in Internet governance. The project, titled “Global Internet, Local Governance: A Sociotechnical Approach to Internet Exchange Points,” examines these important sites in the Internet’s physical infrastructure from a science and technology studies (STS) perspective while making visible their impact on Internet governance and freedom of expression online.

Additionally, Ms. Rosa was awarded a 2017 Google Policy Fellowship, which will take her to Mexico City this summer where she will be conducting research for her dissertation and working with Red en Defensa de los Derechos Digitales (R3D), a Mexican organization dedicated to the defense of human rights in the digital sphere.

We congratulate Fernanda on these impressive accomplishments and look forward to seeing what she discovers as her research proceeds. You can follow her on Twitter @fefe_rosa

Are we coding for the future we want? Dr. Isabelle Zaugg on Digital Standards and Lost Languages

 Dr. Isabelle Zaugg received her PhD from American University's School of Communication in 2017. 

Dr. Isabelle Zaugg received her PhD from American University's School of Communication in 2017. 

American University SOC Ph.D. student Dr. Isabelle Zaugg successfully defended her dissertation on Wednesday titled “Digitizing Ethiopic: Coding for Linguistic Continuity in the Face of Digital Extinction.” Drawing on field work conducted in Ethiopia last year as part of a Fulbright-Hays Doctoral Dissertation Research Abroad Fellowship, Dr. Zaugg’s project investigates the relationship between the growth of information communication technologies and rapid declines in language diversity.

Abstract: Despite the growing sophistication of digital technologies, it appears they are contributing to language extinction on a par with devastating losses in biodiversity.  With language extinction comes loss of identity, inter-generational cohesion, culture, and a global wealth of knowledge to address future problems facing humanity.  Linguists estimate a 50%-90% loss of language diversity during the 21st century, with the lack of digital support for minority languages and scripts a contributing factor.

Over time, digital design has come to support an increasing number of languages, but this process has been largely market-driven, excluding languages of communities too small or poor to represent viable markets.  Lack of support for a language in the digital sphere means that language communities begin using other more dominant or “prestigious’ languages for digital communication.  This results in “digital extinction,” including the impossibility of raising youth fluent in their mother-tongue.  Once the youth in a community have stopped using a language, it is typically on the path to extinction within the next few generations.

This research investigates the role of digital design and governance in including or excluding languages from the digital sphere through the instrumental case study of Ethiopic, a script that supports a number of languages at risk of digital extinction, including the national language of Ethiopia.  Using qualitative and quantitative methods, the dissertation investigates late 20th century efforts to include the Ethiopic script in Unicode-ISO/IEC 10646, the dominant digital sister standards that allow scripts of the world to appear on devices, websites, and software, as well as the ongoing challenges Ethiopic-based languages face for full digital viability in the 21st century.

Concluding with policy recommendations and best practices for digital design, governance, and advocacy efforts to preserve language diversity, this research sheds light on far-reaching implications for the public good of digital design and governance.  The decisions we make about digital technologies will impact generations to come, and this dissertation asks, “Are we coding for the future we want?”

Please join us in congratulating Dr. Zaugg on her defense and wishing her well as she begins a Mellon-Sawyer Seminar Postdoctoral Fellowship in “Global Language Justice” at the Institute for Comparative Literature and Society at Columbia University in the Fall.

Recap: Will the Internet Fragment? A Conversation with Milton Mueller

By Kenneth Merrill

Following last week’s terror attacks in London, Prime Minister Theresa May stated unequivocally that “enough is enough,” adding that there is “far too much tolerance of extremism” in British society. In particular, Ms. May called out Internet companies to do more to shut down online “safe spaces,” suggesting that her government would look to broker “international agreements to regulate cyber space so that terrorists cannot plan online.”

What such international agreements might look like in practice is unclear, but according to Internet governance scholar Milton Mueller, Prime Minister May’s comments reflect a growing trend, in which nation-states are looking to assert a greater degree of control over global data flows.

“It is an attempt to fit the round peg of global communications into the square hole of territorial states,” explained Dr. Mueller on Tuesday at an event marking the release of his new book Will the Internet Fragment?: Sovereignty, Globalization, and Cyberspace. Hosted by New America’s Open Technology Institute, the event was moderated by Internet Governance Lab Co-Director Dr. Derrick Cogburn and featured Dr. Mueller in conversation with Rebecca MacKinnon, Director of the Ranking Digital Rights project at New America; Tim Mauer, Co-director of the Cyber Policy Initiative at the Carnegie Endowment for International Peace; and Angela McKay, Senior Director of Cybersecurity Policy and Strategy at Microsoft. 

A video of the event is available here.

In answering the book’s title question, Dr. Mueller began the discussion by interrogating the concept of “fragmentation,” suggesting that the term “realignment” more precisely captures current efforts to assert notions of territorial sovereignty in cyberspace. In this way, Mueller’s remarks contextualized “efforts to set up gateways to filter content, using data localization to keep internet routing within state borders, and requiring governments and users to use local companies to store data” as attempts to “partition cyberspace in order to subordinate its [the Internet’s] control to sovereign states.”

“Governments are trying to have their cake and eat it too,” explained Rebecca MacKinnon, who’s 2012 book Consent of the Networked described new modes of Internet censorship and the ways in which private companies have assumed governance functions formerly reserved for nation-states. But as governments bemoan the inability to regulate content within their borders many of these same nation-states are happy to extend locally developed policies extraterritorially, explained Ms. MacKinnon, citing the Microsoft/Ireland caseand efforts to apply the EU’s “right to be forgotten” globally as examples of this sort of extraterritorial extension.

These cases, along with Prime Minister May’s recent comments, help underscore the fact that efforts to realign the Internet to fit Westphalian notions of territorial sovereignty are no longer merely the Orwellian fantasies of authoritarian states but are gaining legitimacy in more democratic national contexts. In response to these trends, Mueller proposes “a liberation movement for cyberspace, in which we recognize that we’re creating a globally interconnected polity around the Internet,” suggesting that “perhaps it is time for this polity to assert its own identity and own authority and come up with global organizations for Internet governance.”

But as Tim Mauer pointed out, the prospects for such a liberation movement seem increasingly remote given large-scale structural changes to the existing liberal order. As geopolitical developments point towards a more neo-realist order, Mauer argued that we could expect to see more “contested forms of [Internet] governance” as opposed to international agreements and transnational consensus.

Meanwhile, Angela McKay of Microsoft presented several ways in which emerging technologies like the adoption of cloud computing and the Internet of Things might present challenges and opportunities for realignment. In particular, Ms. McKay highlighted cloud adoption as an example of a fundamental change in Internet architecture and the way its governed, with a more homogeneous set of firms managing a more diffuse, heterogeneous set of end-points. Conversely, with the growth of the Internet of Things, a new set of formerly non-technical industries will be thrust into Internet governance and information technology policy discussions, bringing with them a new set of norms, best-practices, and values that will alter the dynamics of existing private-public partnerships and require new modes of Internet governance going forward.