Posted on Mar 3, 2015 by Rick Falkvinge

Linkage: Understanding The Combination Of Electronic Tracks You Leave Behind

In the movie Citizenfour, Jake Appelbaum is seen briefly giving a security primer to activists. He’s talking about linkage: what happens when you supply two pieces of identity at the same time, and how that means they’re forever linked. Identity doesn’t have to be an ID card; it could be a subway card or a cellphone.

The danger to privacy doesn’t primarily lie in when you identify yourself using one method – MAC address (your network card’s unique address), IP address, credit card, login, IMEI (your phone’s unique identity), et cetera. The danger lies in when two of those are linked together.

It’s not the tracks you leave behind. It’s the combination of different tracks you leave behind, and the intersections of those tracks.

If you’re ever using your laptop on a wi-fi network, that network knows when it’s you coming back, for example, because the wi-fi component on your laptop is presenting itself with a unique name. That unique network component name (called a MAC address) can be shared across networks, and only one of them need to know something more about you, for all of them to know that about you. Did you ever use a credit card somewhere to get access to a public wi-fi, for example? That’s enough for every public wi-fi to know you by name – not just going forward, but historically as well.

This is why it’s crucial to not link accounts together. Don’t use your primary email when signing up for an anoymization service. Don’t use your regular credit card, or a credit card with your name on it at all, or a credit card in the first place, when signing up with an anonymization service. (Four years ago, I wrote that you should never trust a VPN service that doesn’t accept bitcoin. PIA accepts bitcoin, of course.)

Even more importantly, the cross-referencing doesn’t have to be automatic, nor does it have to happen at the same time.

Let me take a tangible example from the Swedish Pirate community to illustrate this in practice. Some five years ago, there was a new person in the comments field who claimed to be 20-something female pirate sympathizer, but who was rather aggressive and adamant things had to change radically. Overall, this person was acting rather abrasive and demoralizing in the comment field on a number of blogs.

We didn’t know who this was, but we had a feeling something just wasn’t quite right – that this person was not who they claimed to be. So a bunch of us used the only thing we had – the IP address of the comments – and just typed it into the WordPress search field on some two dozen different blogs, each on their own, a considerably larger scope than where this person had been demoralizing the community.

Bingo. The same IP had been used almost a year prior on a different blog entirely, for two random snarky comments. Now, that wouldn’t normally be enough to claim it was the same person – if it weren’t for the identical language style and that this person was actually a 50-something male with the copyright industry.

That’s what we were able to do using nothing but a stock WordPress install, no web server logs, no nothing.

(How we used that information? One of us asked in a response to a snarky comment, “Ohai again, Y. You’re using the same computer that a person named X used a year ago. Do you two know each other?” The so-called 20-something female was never seen again after that.)

Now, this was a real life example from something that’s not built for surveillance at all, merely using some two dozen different websites in a nonprofit community. Consider then for a moment what IMSI catchers, boxes that record and timestamp the identity of every passing mobile phone within a 500-meter range, are able to do when deployed by the tens of thousands. (Changing your phone is not enough – if you repeat the same pattern you performed with your previous phone, any pattern such as travel schedule or company or similar, you’re most likely re-identified.)

Privacy remains your own responsibility.

About Rick Falkvinge

Rick is Head of Privacy at Private Internet Access. He is also the founder of the first Pirate Party and is a political evangelist, traveling around Europe and the world to talk and write about ideas of a sensible information policy. Additionally, he has a tech entrepreneur background and loves good whisky and fast motorcycles.


VPN Service

Leave a Reply

Your email address will not be published. Required fields are marked *

2 Comments

  1. Erbulo

    A guide for how to compartmentalize information would be useful and who it would or would not protect you from. This article on its own does confirm many concerns I’ve had, but it does not offer any guidance.

    3 years ago
    Reply
  2. Antimon555

    This is one of the most important things about surveillance that “normal” people doesn’t understand.

    Before I realized that there is no use blogging for the general public, since only people who already have similar opinions and knowledge, and the strongly opposing like the “20-year old female”, will ever read it, I wrote an article on this subject of correlation of data and what unimaginably different kinds of data can blend to make both identification and knowing things about the person, possible.

    I don’t think it was entirely useless though, I believe that even many privacy advocates doesn’t know very much of this.

    It is in Swedish, so it’s no use linking it here, but I used a few examples like always bringing the cell phone, and start blogging, commenting with a unique name or the like soon after coming home. Since these things often come with exponential math, calculating one individual out of Sweden’s 9 million could be possible.

    Speed cameras and cellphones could also be a bad combination, using ANPR and tracking what cellphones pass when what car passes. Then they could send a fine if you speed for just some 100 meters between cameras, even if your average speed is well below the limit.

    Also, on the odd-combinations account, there was a study showing correlation between crime and music preference. Individuals listening to certain kinds of music are more likely to commit crimes. If the police makes a deal with Spotify or similar service, you can guess what would happen.

    3 years ago
    Reply