Category Archives: Law: Internet Law

Can Bloggers Be Sued for Commentators’ Postings?

Posted on August 31, 2005 by Michael Froomkin

Several people have been kind enough to send me pointers to this Slashdot item on a blogger being sued for defamation and trade secret disclosures which were (at least primarily) committed by posters to his blog.

I’ve posted my comment on this at slashdot, but I suppose I should reprint it here too. And while we’re at it, I might as well improve and expand it a little…

Insofar as we’re concerned with liability for the commentator’s remarks, the Communications Decency Act, sec. 230(c)(1) says,

No
provider or user of an interactive computer service shall be treated as
the publisher or speaker of any information provided by another
information content provider.

And, in sect. 230 (f)(3),

“The term ”information content provider” means any person or
entity that is responsible, in whole or in part, for the creation
or development of information provided through the Internet or
any other interactive computer service.

if you read the full text
of sec. 230 you will see that Congress intended fairly
broad protection; in sec. 230(f)(3) it certainly wrote in very broad
terms. Why a blog with comments would be treated differently from, say, a BBS or a chat room escapes me.

The leading case on sec. 230, Zeran v. America Online, Inc. 129 F.3d 327 (4th Cir. 1997) adopts a broad reading of it, some later cases in California state court and in the Seventh Circuit critique that breadth. And to the extent they wish to impose distributor liability as opposed to publisher liability — ie you’re liable if you keep it on line after being on notice as to the problem — there may be some merit to their critique. Even so, I think that the publisher’s liability for defamation claim is covered by sec. 230, and probably the distributor liability also.

The trade secret claim is a little harder. Congress didn’t have trade secrets in mind when it wrote sec. 230. The CDA immunity in sec. 230 doesn’t create a new protection for intellectual property claims (see 230(f)). So it’s not an open-and-shut issue on the trade secrets. Nevertheless, unlike defamation law which applies to everyone, common law trade secret duties usually fall only on those who have a duty to keep the information secret, or who misappropriated it, not on innocent third parties.

A similar rule is found in the Uniform Trade Secrets Act, although the Act creates a civil right of action against third parties who “at the time of disclosure or use, knew or had reason to know that his knowledge of the trade secret was (I) derived from or through a person who had utilized improper means to acquire it.” Whether that applies to this case is of course a factual question. I suspect it wouldn’t apply in the ordinary case of a blog comment, but might if the blogger had a special knowledge about the situation.

In law there are few certainties until after a court rules, but absent unusual facts
I think the balance here points towards a finding of non-liability both
on CDA grounds and traditional trade secret grounds where innocent
receivers of information, and especially journalists who receive
information, are not usually liable.

Update: These issues and many more are discussed EFF’s Legal Guide for Bloggers.

[Edited and re-ordered for clarity.]

Posted in Law: Internet Law | 4 Comments

US Drops ICANN/DNS Bombshell (on WSIS?)

Posted on June 30, 2005 by Michael Froomkin

The US Department of Commerce has announced an unexpected new policy regarding the Domain Name System (DNS) and the Internet Corporation for Assigned Names and Numbers (ICANN).

In previous pronouncements, the US had indicated that the US would someday release its ultimate control over the “root” — the file that contains the master list of authorized registries and thus determines which TLDs show up on the consensus Internet and who shall have the valuable right to sell names in them. That day would come if and when ICANN fulfilled a number of conditions spelled out in a Memorandum of Understanding (MOU).

Today’s announcement says the opposite: the US plans to keep control of the root indefinitely, thus freezing the status quo. Nothing will change immediately as a result. But the timing is weird, coming as it does only a short time before the forthcoming meeting of the UN-sponsored World Summit on the Information Society (WSIS).

Five years ago, in Wrong Turn in Cyberspace, I wrote (footnote 42, reformatted slightly):

Whether and under what circumstances DoC would turn over the root to ICANN has been the subject of somewhat contradictory pronouncements. In the White Paper, DoC stated, “The U.S. Government would prefer that this transition be complete before the year 2000. To the extent that the new corporation is established and operationally stable, September 30, 2000 is intended to be, and remains, an ‘outside’ date.'” White Paper, supra note 15, at 31,744. More recently, DoC assured Congress that it intends to retain its rights over the DNS:

The Department of Commerce has no intention of transferring control over the root system to ICANN at this time [July 8, 1999]. . . . If and when the Department of Commerce transfers operational responsibility for the authoritative root server for the root server system to ICANN, an [sic] separate contract would be required to obligate ICANN to operate the authoritative root under the direction of the United States government.

Letter from Andrew J. Pincus, DoC General Counsel, to Rep. Tom Bliley, Chairman, United States House Committee on Commerce (July 8, 1999), National Telecommunications and Information Administration.

Meanwhile, or at best slightly later, DoC apparently assured the European Union that it intends to give ICANN full control over the DNS by October 2000:

[T]he U.S. Department of Commerce has repeatedly reassured the Commission that it is still their intention to withdraw from the control of these Internet infrastructure functions and complete the transfer to ICANN by October 2000. . . . The Commission has confirmed to the US authorities that these remaining powers retained by the United States DoC regarding ICANN should be effectively divested, as foreseen in the US White Paper.

Commission of the European Communities, Communication from the Commission to the Council and the European Parliament: The Organization and Management of the Internet International and European Policy Issues 1998-2000, at 14 (Apr. 7, 2000) (emphasis added), Information Society Promotion Office. Recently, DoC assured the GAO that “it has no current plans to transfer policy authority for the authoritative root server to ICANN, nor has it developed a scenario or set of circumstances under which such control would be transferred.” GAO Report, supra note 28, at 30. ICANN meanwhile stated on June 30, 2000, that “[s]ince it appears that all of the continuing tasks under the joint project may not be completed by the current termination date of the MOU, the MOU should be extended until all the conditions required to complete full transition to ICANN are accomplished.” Second Status Report Under ICANN/US Government Memorandum of Understanding (30 June 2000), § D.4, (June 30, 2000).

Since then, every time the MOU with ICANN has lapsed, the US has observed that the terms were not met — but extended the agreement. And every time, ICANN has said that it’s just about to meet all the necessary conditions any day now…although it never does. And in fact, ICANN has come closer and closer, although one or two major, perhaps insurmountable, obstacles remain (agreements with the root server operators and especially agreement with the ccTLD operators).

Thus, the ambiguity remained. Most recently, in fact, Commerce had sent signals suggesting it was leaning in ICANN’s favor, notably an announcement that the current MOU extension would be the last one — leading me and other observers to think the fix was in for turning ICANN loose.

But today, in a surprise statement by the Commerce Department, the US government took out the ambiguity — and said it intended to keep its authority over the root. In the short and medium term, the implications of this statement are political, not operational as the status quo for operations remains unchanged.

Continue reading

Posted in Internet, Law: Internet Law, Politics: International | 8 Comments

Country Names in the DNS

Posted on April 8, 2005 by Michael Froomkin

Bret Fausett reports on today's Friday Board Meeting at ICANN, including this item:

ICANN has provisionally reserved (countrynames).jobs and (countrynames).travel pending further review and consideration of a request from the GAC. The issue will go to the GNSO for discussion and possible resolution.

This seems like a good opportunity to plug my article on the legal status of country names in top and second-level domain names: When We Say US™, We Mean It!.

Posted in Law: Internet Law | Comments Off on Country Names in the DNS

Ed Hasbrouck on .travel

Posted on April 4, 2005 by Michael Froomkin

Ed Hasbrouck, whom I consider to be an extremely reliable source on matters relating to travel, and to ICANN's relation with the travel industry, reports on what should be a major scandal: ICANN reveals “.travel” sponsor is a front. He also predicts no one will care, and ICANN will get away with this sham.

Posted in Law: Internet Law | 1 Comment

Long-awaited DNS Report from National Academy of Sciences Released

Posted on March 31, 2005 by Michael Froomkin

[cross-posted from ICANNWAtch.org]
Today the National Academy of Sciences’ National Research Council (NRC) released its report on
Internet Navigation and the Domain Name System.

The most important conclusion in the report is that it lays to rest, once and for all, any lingering technical controversies about the addition of new top-level domains.

The Committee did not find any purely technical reasons that the root name servers could not provide the same level of response with a much larger root zone file. Indeed, the ability of the .com name servers to respond to billions of queries a day against the .com zone file, with over 20 million entries, is a demonstration of the technical capacity that could be applied to the root zone, if necessary.

The only technical arguments put forward against new TLDs suggested that it was necessary to limit the rate of addition. The committee agreed that the acceptable rate is tens of TLDs – which means anywhere from 20 to 90 per period. The committee thus arrived at the following conclusion:

Considering technical and operational performance alone, the addition of tens of gTLDs per year for several years would pose minimal risk to the stability of the root.

Old hands in the DNS wars will immediately be reminded of two pieces of ancient history: First, that Jon Postel himself proposed adding 50 new TLDs per year to the root. Second, that in all the years of its operation, ICANN – – which claims to be a technical coordination body (when that suits it) – – and which is single-handedly responsible for the current artificial cap on new TLDs never once dared commission a study of what would be technologically safe…perhaps because it feared the answer.

Continue reading

Posted in Law: Internet Law | Comments Off on Long-awaited DNS Report from National Academy of Sciences Released

Toledo Cybersecurities Conference

Posted on January 14, 2005 by Michael Froomkin

The University of Toldeo College of Law is sponsoring what sounds like it will be a great conference on Cybersecurities regulation. I wish I could go. But as the first presenter on the first panel is my wife, someone has to stay home.

The Tenth Anniversary of Cybersecurities Law

Friday, April 8, 2005
9:00 a.m. to 2:30 p.m.
University of Toledo College of Law

Co-sponsored by the Cybersecurities Law Institute, the Stranahan National Issues Forum, and the University of Toledo Law Review

Keynote speaker:

John Reed Stark, Chief of Office of Internet Enforcement and Counselor to Director of Enforcement, U.S. Securities and Exchange Commission
Recent Developments in Cybersecurities Fraud Enforcement

Moderator: Prof. Howard M. Friedman, Director, Cybersecurities Law Institute, University of Toledo

Presenters:

Panel I: The Challenge of Technology

Prof. Caroline M. Bradley, University of Miami School of Law
Information Society Challenges to Financial Regulation

Prof. Olufunmilayo Arewa , Case Western Reserve University School of Law: Securities Law and Technology: Translation and Accommodation in Cyberspace

Panel II: The SEC's New Securities Offering Rules (Proposals)

Broc Romanek, Esq., Editor, TheCorporateCounsel.net
David C. Lee, Esq., Gibson, Dunn & Crutcher, Washington, D.C.
E-Communications by Public Companies: Inside and Outside the Offering Context

Panel III: Innovative Uses of Cyberspace

Prof. Christine Hurt, Marquette University Law School
What Google Can't Tell Us About IPO Auctions (And What It Can)

Dr. Dirk Zetzsch, Heinrich Heine University (Dusseldorf)
Corporate Governance in Cyberspace-The Impact of Virtual Shareholder Meetings

Panel IV: The Internet and International Securities Issues
Dr. Paul U. Ali, University of New South Wales
Cyberderivatives-Online Retail Markets in International Equity Betting

Prof. Dimity Kingsford-Smith, University of New South Wales
Follow My Leader? Similarities and Differences in Australian and US Online Investing Regulation

Posted in Law: Internet Law | Comments Off on Toledo Cybersecurities Conference