Educause Security Discussion mailing list archives

Re: RIAA Notices

From: Paul Keser <pkeser () STANFORD EDU>
Date: Mon, 5 May 2008 17:07:10 -0700

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Joe-

Can you share the details of your automation?  Either on list or off?
We are definitely looking for a way to automate processing DMCA
complaints and I am sure we are not the only one...

I remember seeing you post about it before but if there are any details
available that would be *fantastic*

Thanks

- -PaulK

Paul Keser
Assoc. Information Security Officer
Stanford University
650.724.9051
GPG Fingerprint:  DBA3 E20F CE91 28AA DA1C  4A77 3BD9 C82D 2699 24FB


Joel Rosenblatt wrote:

Hi,

Here is some facts from our automated DMCA system

Looking at the last 157 takedown notices
Average difference between timestamp in notice and verification was
388.64 seconds (6.48)
Maximum time was 3110 Seconds (51.83)
Minimum time was 0 Seconds
Significance – in one hour, we may turn over the dynamic IP address 4-6
times

Looking at the timestamp they send you is a good way to find the wrong
person if your using a dynamic IP assignment.

Since we switched (to automation), we find less than 2% bad reports.

My 2 cents
Joel Rosenblatt

Joel Rosenblatt, Manager Network & Computer Security
Columbia Information Security Office (CISO)
Columbia University, 612 W 115th Street, NY, NY 10025 / 212 854 3033
http://www.columbia.edu/~joel


--On Monday, May 05, 2008 11:27 AM -0400 Tracy Mitrano
<tbm3 () CORNELL EDU> wrote:

Yes, Pat, we have a single case of this description which we are still
investigating and one where the time stamps do not match up with any
activity on the
IP address.  


Glad you asked.  If other folks begin to see anomalies it would be
good to share that kind of information among us for the purpose of
identifying
potential patterns.


Thanks, Tracy






On Apr 28, 2008, at 4:35 PM, Falcon, Patricia wrote:


Last week we saw perhaps double or triple what we usually get in a
week.  Today we received word from two of the students who said that they
hadn't downloaded what the RIAA said they had.  Is anyone else seeing
false positives out of this group?

Pat Falcon
----------------------------------------------------------------------------

IT Security Policy and Communication Coordinator
Computing and Information Services
Brown University :: Box 1885 :: Providence, RI 02912
401.863.9259 :: 401.863.7329 [fax]
www.brown.edu/cis/itsecurity
----------------------------------------------------------------------------




Joel Rosenblatt, Manager Network & Computer Security
Columbia Information Security Office (CISO)
Columbia University, 612 W 115th Street, NY, NY 10025 / 212 854 3033
http://www.columbia.edu/~joel

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFIH6EuO9nILSaZJPsRAunpAJ9/czB/r7cH8ef1FuCFKYh207ZfJwCcDdta
ovBOj9P+sss000QmaUZxPGw=
=cR+W
-----END PGP SIGNATURE-----

Current thread:

Re: RIAA Notices, (continued)
- Re: RIAA Notices Falcon, Patricia (Apr 28)
- Re: RIAA Notices Dean Williams (Apr 28)
- Re: RIAA Notices David Taylor (May 02)
- Re: RIAA Notices Sweeny, Jonny (May 04)
- Re: RIAA Notices Tracy Mitrano (May 05)
- Re: RIAA Notices Rick Holland (May 05)
- Re: RIAA Notices Mike Hanson (May 05)
- Re: RIAA Notices Willis Marti (May 05)
- Re: RIAA Notices John Kaftan (May 05)
- Re: RIAA Notices Joel Rosenblatt (May 05)
- Re: RIAA Notices Paul Keser (May 05)
- Re: RIAA Notices Elliot Kendall (May 05)
- Re: RIAA Notices Holland II, Richard H (May 06)
- Re: RIAA Notices Brian Friday (May 06)
- Re: RIAA Notices Morrow Long (May 06)
- Re: RIAA Notices Elliot Kendall (May 06)