is SMTP a candidate for OPES ?

The attached piece of real world's information seems to be worthconsideration. This is legal, political and US centric. Nevertheless itmeans that SMTP (mail transfer) is not seen by many (legally andtechnically) as a stream but as fast store and forward and that differentlegal rules (and therefore applications/business/demands/offers may beconceived depending on where is the filter (on the protocol or on the node).

It seems to me this is another contradiction of OPES/ONES with the"protocol on the wire" and "dumb network/smart host" concepts. I am not anSMPT pro, but I suppose that the difference is that in HTTP forwards a flowof datagrams while SMTP stops+store+forwards a group of datagrams buildingan entire message. For example, you cannot know the true user's value of amail before you got to the attachement or to the final signature.

jfc

--------------

From the New York Times --http://www.nytimes.com/2004/07/06/technology/06net.html


You've Got Mail (and Court Says Others Can Read It)
By SAUL HANSELL

When everything is working right, an e-mail message appears to zipinstantaneously from the sender to the recipient's inbox. But in reality,most messages make several momentary stops as they are processed by variouscomputers en route to their destination.

Those short stops may make no difference to the users, but they make anenormous difference to the privacy that e-mail is accorded under federal law.

Last week a federal appeals court in Boston ruled that federal wiretap lawsdo not apply to e-mail messages if they are stored, even for a millisecond,on the computers of the Internet providers that process them - meaning thatit can be legal for the government or others to read such messages withouta court order.

The ruling was a surprise to many people, because in 1986 Congressspecifically amended the wiretap laws to incorporate new technologies likee-mail. Some argue that the ruling's implications could affect emergingapplications like Internet-based phone calls and Gmail, Google's new e-mailservice, which shows advertising based on the content of a subscriber'se-mail messages.

"The court has eviscerated the protections that Congress established backin the 1980's," said Marc Rotenberg, the executive director of theElectronic Privacy Information Center, a civil liberties group.

But other experts argue that the Boston case will have little practicaleffect. The outcry, said Stuart Baker, a privacy lawyer with Steptoe &Johnson in Washington, is "much ado about nothing."

Mr. Baker pointed out that even under the broadest interpretation of thelaw, Congress made it easier for prosecutors and lawyers in civil cases toread other people's e-mail messages than to listen to their phone calls.The wiretap law - which requires prosecutors to prove their need for awiretap and forbids civil litigants from ever using them - applies toe-mail messages only when they are in transit.

But in a 1986 law, Congress created a second category, called storedcommunication, for messages that had been delivered to recipients' inboxesbut not yet read. That law, the Stored Communications Act, grantssignificant protection to e-mail messages, but does not go as far as thewiretap law: it lets prosecutors have access to stored messages with asearch warrant, while imposing stricter requirements on parties in civil suits.

Interestingly, messages that have been read but remain on the Internetprovider's computer system have very little protection. Prosecutors cantypically gain access to an opened e-mail message with a simple subpoenarather than a search warrant. Similarly, lawyers in civil cases, includingdivorces, can subpoena opened e-mail messages.

The case in Boston involved an online bookseller, now called Alibris. In1998, the company offered e-mail accounts to book dealers and, hoping togain market advantage, secretly copied messages they received fromAmazon.com. In 1999, Alibris and one employee pleaded guilty to criminalwiretapping charges.

But a supervisor, Bradford C. Councilman, fought the charges, saying he didnot know about the scheme. He also moved to have the case dismissed on theground that the wiretapping law did not apply. He argued that because themessages had been on the hard drive of Alibris's computer while they werebeing processed for delivery, they counted as stored communication. Thewiretap law bans a company from monitoring the communications of itscustomers, except in a few cases. But it does not ban a company fromreading customers' stored communications.

"Congress recognized that any time you store communication, there is aninherent loss of privacy," said Mr. Councilman's lawyer, Andrew Good ofGood & Cormier in Boston.

In 2003, a federal district court in Boston agreed with Mr. Councilman'sinterpretation of the wiretap law and dismissed the case. Last week, theFirst Circuit Court of Appeals, in a 2-to-1 decision, affirmed that decision.

Because most major Internet providers have explicit policies againstreading their customers' e-mail messages, the ruling would seem to havelittle effect on most people.

But this year Google is testing a service called Gmail, whichelectronically scans the content of the e-mail messages its customersreceive and then displays related ads. Privacy groups have argued that theservice is intrusive, and some have claimed it violates wiretap laws. TheCouncilman decision, if it stands, could undercut that argument.

Federal prosecutors, who often argue that wiretap restrictions do not applyin government investigations, were in the somewhat surprising position ofarguing that those same laws should apply to Mr. Councilman's conduct. Aspokesman for the United States attorney's office in Boston said thedepartment had not decided whether to appeal.

Mr. Baker said that another federal appeals court ruling, in San Francisco,is already making it hard for prosecutors to retrieve e-mail that has beenread and remains on an Internet provider's system.

In that case, Theofel v. Farey-Jones, a small Internet provider respondedto a subpoena by giving a lawyer copies of 339 e-mail messages received bytwo of its customers.

The customers claimed the subpoena was so broad it violated the wiretap andstored communication laws. A district court agreed the subpoenas were toobroad, but ruled they were within the law. The plaintiffs appealed, and theJustice Department filed a friend of the court brief arguing that theStored Communications Act should not apply.

In February, the appeals court ruled that e-mail stored on the computerserver of an Internet provider is indeed covered by the StoredCommunications Act, even after it has been read. The court noted that theact refers both to messages before they are delivered and to backup copieskept by the Internet provider. "An obvious purpose for storing a message onan I.S.P.'s server after delivery," the court wrote, " is to provide asecond copy of the message in the event that the user needs to download itagain - if, for example, the message is accidentally erased from the user'sown computer."

Calling e-mail "stored communication" does not necessarily reduce privacyprotections for most e-mail users. While the Councilman ruling would limitthe applicability of wiretap laws to e-mail, it appears to apply to a verysmall number of potential cases. The Theofel decision, by contrast, bydefining more e-mail as "stored communications," is restricting access toe-mail in a wide range of cases in the Ninth Circuit, and could have a fargreater effect on privacy if courts in the rest of the country follow thatruling.