IWF News:  
Thu, 20th November, 2008
 
Homepage > Corporate Area > Board minutes > Board 12 October 2004 > Commercialising database
 

Commercialising the database

Commercialising the CAI Database
Policy recommendations 
 
Author – Tony Fagelman
Input: Howard Lamb, Peter Robbins, FC and Board
 
Overview:
At meetings of the Board and Funding Council in July 2004, a document was presented that outlined the issues and opportunities surrounding the interest in the Child Abuse Images database, with a subsequent addendum that provided more information. Since details of BT’s Cleanfeed project entered the public domain there has been intense national and international interest in our database
 
This document draws on the original documents and brings together various views of contributors into some specific policy recommendations for adoption.
 
Primary purpose of the IWF
In the context of this paper the IWFs primary aim is to minimise the availability of potentially illegal child abuse images on the Internet hosted anywhere in the world.
 
Underlying principles
  1. The working assumption is that only subscribing members of the IWF will have access to the CAI URL service and subject to negotiation and agreement, INHOPE members as well.
  2. Given the unique status of the IWF together with its desire to become a charity we have no profit motivated aspiration to sell the CAI service but recognise that some income could be generated if the data was licensed to members who use the data to enhance the commercial viability of a member product.
  3. The IWF recognises that security and integrity of the data is critical and to this end it will seek to maintain that security via a legal agreement with all members who opt to take the service.
 
Reason for making the CAI data available to members
Due to inconsistencies that exist around the world in having child abuse content ‘taken down’ the IWF database of child abuse URLs may help to reduce the possibility of internet consumers gaining access to potentially illegal child abuse images whether inadvertently or through actively seeking out the content, by providing data for filtering options to as many organisations as possible.
 
Background
At their meeting on the 18th July 2002 and following legal advice, IWF Board decided to release the child abuse URL section of the IWF database to subscribing companies to use the data to block access to potentially illegal child abuse content.
 
Termed the Child Abuse Images URL service or CAI URL service, this is a dynamic system, up-dated daily as new URL’s are added. For inclusion on the list, the URL must contain images of child abuse that are deemed potentially illegal according to UK law, including the URLs of websites which advertise indecent images of children. If the potentially illegal images are displayed on the home page then the entire site or top level URL is included, but if they are only found in specific locations within that site, then only those URL’s containing such content are recorded and added.
 
The CAI database holds every confirmed child abuse URL that has been reported to the IWF since inception. This data has always been passed to law enforcement agencies and to European and International Hotlines where they exist and where potentially illegal child abuse images are apparently hosted.
 
The IWF employs analysts, working full-time viewing, classifying and tracing images. The analysts undergo a comprehensive in-house training programme as well as attending training days with police experts.
 
Sentencing Advisory Panel Guidelines
The IWF uses the image classifying system as stipulated by the Sentencing Advisory Panel. These guidelines list five levels of abuse from Level 1, i.e. children under the age of 18 depicted in erotic poses through to Level 5, i.e. children engaged in sadism and bestiality. At least two analysts must confirm that the image is Level 1 before it is added to the database. All reports include the name of both the analysts involved in such a classification. Quality control mechanisms are in place to ensure consistency of decision making.
 
Security and integrity of the data
Once a request to receive information stored in the database is received, the IWF set up a secure unique access point through its web-site. Each client is allocated their own specific URL login page with unique password. The system authenticates the client then opens a secure link to generate a request to the CAI database. This in turn passes the data to the web-site and then to the client. At no time does a client have direct access to the database.
 
Data can be transferred to the client either manually, i.e. the client requests a full six month download, or an up-date, since their last request. The system acts like an anti-virus service, the client can request regular updates or they can refresh their entire list. If the client has an automatic update arrangement the system knows what to deliver when a request is made.
 
The data is downloaded using industry standard 128bit encryption using SSL and HTPPS, similar to the method personal online banking services are managed.
 
The IWF adds approximately eighty new URL’s to the list weekly. The system also has a built in reminder system, so that random URL’s are tested after three months inclusion to check their status.
 
The IWF also will also maintain a list of “removed” URL’s. These are URL’s that would be considered as containing potentially illegal data, but might have become “legal”. It should be noted, that there are no URL’s on this list.
 
Since November 2003, the IWF has provided access to the database to member companies on an individual request basis. Each member signs a detailed legally drafted agreement that covers the terms of use, the IP, the liabilities and other standard contractual clauses in preserving the integrity of the data.
 
The IWF currently delivers the data via a secure encrypted method. However, once the data has arrived with the member it is in a raw format and is readable by anyone who has access to it. The agreement requires the member to limit access to that data and if asked, provide the IWF with a list of all personnel who have access to that raw data, and that those personnel must be kept to a minimum. Additionally, the agreement recommends that an automated service be setup that requests the data and passes it directly into the filtering service the member is using.
 
The IWF has considered a number of methods for delivery of the data and subsequent capture by the member, but because of the diverse filtering options that are available, it was decided to provide the data in its simplest form, i.e. .csv file format. The IWF could adopt a policy whereby a more secure method is agreed and that all licensees had to adhere to that method.
 
Complaints and appeals procedure
Any person or organisation that feels that a URL has been included on the CAI list incorrectly, can appeal. If, on receipt of a complaint, the relevant URL is subsequently found not to contain potentially illegal images, then the URL will be removed from the database. If, however, in the expert opinion of the management at the IWF, the content is still potentially illegal under UK law, then the URL will remain on the list. The complainant can then make further representations in which case the matter will be referred to the NCS POLIT (National Crime Squads Paedophile Online Investigation Team) who will further review the URL concerned and make their judgement. The police judgement is final.
 
 
Issues
three issues have emerged:-
 
1)                 use of the CAI data by non-member organisations
2)                 use of the CAI data by members who wish to commercialise it
3)                 members with an international presence who wish to offer the list to their clients/users
 
Recommendations:
 
  • that the data is made available free of charge to members that use it for non-commercial gain.
 
  • member companies who wish to exploit the data to enhance a product, service or range of products and/or services, which will be advertised as carrying the data, should be charged an annual license fee. However, this fee will be relative and proportional in contributing towards the costs of creating, maintaining and enhancing the database.
 
  • where the CAI data is incorporated into another database, there will only be the option to either include ALL the data or none at all. There will be no option to select certain data under differing criteria.
 
  • members can sub-license the agreement to wholly owned or part-owned companies of theirs.
 
  • members are allowed to sub-license the agreement to 3rd party companies that are providing managed services to the member that require access to the data, providing it is used only for that member. Terms of use will need to be replicated in the service agreements between the member and service company.
 
  • the IWF agree to provide on a reciprocal basis the CAI list free of charge to hotlines affiliated to INHOPE who can consider the entire list of URL’s by the application their own laws.
 
  • members with international holdings will be licensed to utilise the list in territories outside of the UK on the understanding that members take appropriate measures not to infringe legal systems in other countries.
 
  • where the CAI database is incorporated into another larger database, the IWF data must be obscured so it cannot be reverse engineered nor must it be able to be searched and read as individual files.
 
  • the IWF will provide the data to national police forces throughout the world and organisations that are working closely or are affiliated to national police forces throughout the world to assist in the delivery of better tools for the investigation of individuals engaged in the possession and distribution of child abuse images.
 
Points to note:
For international consumption it is possible to provide segregated lists that exclude “level 1” images. Such segregation will then render the list compatible with many non UK territories, however, differences in law in different territories means that the IWF cannot be responsible for images that are illegal under UK law, not being deemed illegal under a specific countries law, where the list may be being used as a filter. The member must consider the use of the list both under the countries laws and under its acceptable use policies.
 
The IWF is currently considering two potential options to improve the security of the CAI list.
 
1)                 The use of cryptography to maintain the data in a form that is unreadable from when it is requested from the IWF through to when it is placed in the filtering solution.
2)                 The use of Digital Rights Management as a method of ensuring that only the specific people or machines can access the data and then limit the actual use of that data. i.e. only allow the file to be opened once.
 
Both of these require more investigation, but at the moment, the crypto solutions is looking increasingly unlikely, without enforcing the need for a specific single solution that all licensees must adopt, which may be prohibitive to some due to increased costs.
 
A further option could be for the IWF to provide a separate Server that contains the unique software for each specific service that enables the CAI list to be encrypted in those services. The licensee would then query the separate server as required to obtain their own unique code. Such a service will require further investigation.
 
Tony Fagelman
General Manager

Page Created: Tue, November 2nd, 2004
Page Modified: Wed, September 6th, 2006

Back to Top