Watching
Monday, May 29th, 2017I happened across a tweet from CPMG last week,and retweeted it (amd, indeed, responded to it with both a reply and by completing the survey (which I’d encourage you to do). The conversation that resulted can be viewed on twitter by clicking the first link, but is also screenshotted below:
An interesting conversation, rapidly joined by Livestream Data Systems, who, in their own words, provide backend systems for ANPR. Almost as if they were ready, watching for replies, huh?
They made the very valid point that a number plate (VRM) is public data, publicly visible all the time. This is true, of course, but it’s trivial for people to associate my number plate with me- especially should the “they” be law enforcement, who can look it up in seconds.
Continuing that, it’s pretty trivial to track me by combining ANPR with a few other things. A thought occurred to me as an example: I completed the survey from the holiday flat we rented. I checked the public-side IP of the broadband connection, and it geolocated to within a few miles of my location (I was in Torquay, it said Dawlish). So, taking only public or non-personal data along with potential ANPR data (the camera locations are not public) I follow CPMG on twitter. I completed the survey from a location near Torquay having clicked through from Twitter (this data could be obtained from server logs).
CPMG probably don’t have many followers on the English Riviera, as they’re a Midlands unit.
Now search the ANPR data for cars travelling between the Midlands and the South West. Add in from the server logs that I used Linux, google a bit, and you have me, most likely. You know where I am, what car I drive, and you have my opinions on ANPR, without having to apply for a court order or similar. Analyse ny tweets, dig over this blog and there’s plenty to learn (of course, what I tweet or post here I’m voluntarily supplying, thank fuck I don’t use Facebook).
That might sound a little paranoid, but it’s an example, and it’s why we should all remain vigilant and wary. I don’t have anything to hide, and you could therefore take the view of “who cares”, but are you comfortable with being tracked?
There’s going to be a lot of pressure in coming times for greater surveillance, especially given recent terror events: but one thing to consider here is that if a terrorist is willing to kill or injure many people with explosives, I don’t think using false plates and/or changing vehicles is going to bother them, whereas the majority of us use one or two vehicles regularly, so it’s far easier to track ordinary citizens than the criminals. Most of us voluntarily carry a tracking device (smartphone), use bank cards: do the bad guys do that?
I’d like to make it clear I fully support CPMGs work, keeping the road safe for us all, but I’m a bit concerned about data use (and misuse) here, and this isn’t the first time. It’s the work of seconds to reveal misuse of anti-terror legislation for things as trivial as school catchment areas, and there’s prior cases of ANPR misuse. That’s even before we consider that companies like Livestream- a private company- may be providing the back end and processing for the national network (I don’t know exactly who does), and therefore we could be trusting their systems and employees with this data.
A quick Google search revealed a supplier of services to councils who apparently encrypt ANPR data with SQL.
Oooh- what’s that black helicopter overhead?