Jonathan Mayer is a Ph.D. candidate in computer science at Stanford University, where he received his J.D. in 2013. He was named one of the Forbes 30 Under 30 in 2014, for his work on technology security and privacy. Jonathan's research and commentary frequently appears in national publications, and he has contributed to federal and state law enforcement actions.
Jonathan is a Cybersecurity Fellow at the Center for International Security and Cooperation, a Junior Affiliate Scholar at the Center for Internet and Society, and a Stanford Interdisciplinary Graduate Fellow. He earned his A.B. at Princeton University in 2009, concentrating in the Woodrow Wilson School of Public and International Affairs. Jonathan has consulted for both federal and state law enforcement agencies, and his research on consumer privacy has contributed to multiple regulatory interventions. A proud Chicago native, Jonathan is undaunted by freezing weather and enjoys celery salt on a hot dog.
He is teaching Surveillance Law in Autumn 2014 through Coursera and as a Tor hidden service.
Spy on Your Metadata
By Jonathan Mayer on December 23, 2013 at 8:32 am
Co-authored with Patrick Mutchler. This is a project of the Stanford Security Lab.
Just over a month ago we launched MetaPhone, an Android app for crowdsourcing phone metadata. Our results have already confirmed that phone activity easily reveals private relationships, is deeply interconnected, and can trivially be identified.
We’ve received lots of great feedback on the study from researchers and participants. One request has been especially consistent: show me my metadata!
Starting today, the MetaPhone app will provide personalized results about your phone metadata privacy. Read more » about Spy on Your Metadata
What’s In Your Metadata?
By Jonathan Mayer on November 13, 2013 at 10:27 am
Co-authored with Patrick Mutchler. This is a project of the Stanford Security Lab.
We’re studying the National Security Agency, and we need your help.
The NSA has confirmed that it collects American phone records. Defenders of the program insist it has little privacy impact and is “not surveillance.” Read more » about What’s In Your Metadata?
Setting the Record Straight on Google’s Safari Tracking
By Jonathan Mayer on February 21, 2012 at 4:00 pm
Our recent research on Google’s circumvention of the Safari cookie blocking feature has led to some confusion, in part owing to the company’s statement in response (reproduced in its entiretybelow). This post is an attempt to elucidate the central issues. As with the original writeup, I aim for a neutral viewpoint in the interest of establishing a common factual understanding. Read more » about Setting the Record Straight on Google’s Safari Tracking
Safari Trackers
By Jonathan Mayer on February 17, 2012 at 4:31 pm
Apple’s Safari web browser is configured to block third-party cookies by default. We identified four advertising companies that unexpectedly place trackable cookies in Safari. Google and Vibrant Media intentionally circumvent Safari’s privacy feature. Media Innovation Group and PointRoll serve scripts that appear to be derived from circumvention example code. Read more » about Safari Trackers
A Brief Overview of the Supplementary DAA Principles
By Jonathan Mayer on November 8, 2011 at 11:51 pm
Yesterday the Digital Advertising Alliance (DAA) announced a supplementary set of self-regulatory principles for third parties on the web (pdf, press release). This post is a brief — and far from comprehensive — overview of improvements, continued deficiencies, and procedural issues. Read more » about A Brief Overview of the Supplementary DAA Principles
Pages
California must lead on cybersecurity
By Jonathan Mayer and Edward W. Felten
Special to The Bee
Charges Against Chinese, and U.S. Policy on Hacking
Cross-posted from The New York Times Opinion Pages.
To the Editor:
Re “5 in China Army Face U.S. Charges of Cyberattacks” (front page, May 20): Read more » about Charges Against Chinese, and U.S. Policy on Hacking
How the NSA Piggy-Backs on Third-Party Trackers
By Edward Felten and Jonathan Mayer
Snooping on the Internet is tricky. The network is diffuse, global, and packed with potential targets. There’s no central system for identifying or locating individuals, so it’s hard to keep track of who is online and what they’re up to. What’s a spy agency to do? Read more » about How the NSA Piggy-Backs on Third-Party Trackers
Privacy Substitutes
Privacy Substitutes by Jonathan Mayer & Arvind Narayanan Read more » about Privacy Substitutes
Third-Party Web Tracking: Policy and Technology
John Mitchell and I have written a new paper that synthesizes research on policy and technology issues surrounding third-party web tracking. It will appear at the IEEE Symposium on Security and Privacy in May. Read more » about Third-Party Web Tracking: Policy and Technology
With this hire, the FCC could soon get tougher on privacy and security
"The Federal Communications Commission has hired Jonathan Mayer, a rising star in privacy circles, to serve as its technical lead for investigations into telephone, television and Internet service providers.
He will work primarily on consumer protection issues, especially those having to do with security and privacy, agency spokeswoman Shannon Gilson confirmed. Read more » about With this hire, the FCC could soon get tougher on privacy and security
FCC hires a privacy guru to help lead its telecom investigations
"If you want proof that the Federal Communications Commission is getting serious about privacy, you only need to look at its latest recruit. Read more » about FCC hires a privacy guru to help lead its telecom investigations
FCC Hires Online Tracking Expert Jonathan Mayer
"In a move that signals a focus on Web privacy, the Federal Communications Commission has tapped Jonathan Mayer to serve as chief technologist of its enforcement bureau.
Mayer, a lawyer and computer scientist, is known for exposing questionable privacy practices of tech companies, ranging from large corporations like Google to ad tech companies like Epic Markeplace. Read more » about FCC Hires Online Tracking Expert Jonathan Mayer
US Cops Are Asking Facebook to Wiretap More Chats Than Ever Before
"As we keep moving our lives online, criminals do the same, so we can expect that police will follow and investigate crimes online. But the latest government requests report from Facebook revealed an unexpected and dramatic rise in real-time interceptions, or wiretaps. In the first six months of 2015, US law enforcement agencies sent Facebook 201 wiretap requests (referred to as “Title III” in the report) for 279 users or accounts. Read more » about US Cops Are Asking Facebook to Wiretap More Chats Than Ever Before
Court Says Tracking Web Histories Can Violate Wiretap Act
"“This is a pretty big deal for law enforcement,” says Jonathan Mayer, a Stanford fellow in computer science and law whose research into Google’s circumvention of cookie-blocking technology helped to spark the class action as well as the search giant’s $17 million settlement with 37 states on the issue. Read more » about Court Says Tracking Web Histories Can Violate Wiretap Act
Pages
Saving Privacy (Past Event)
Because of Edward Snowden’s remarkable public service, we know that the National Security Agency, with the cooperation of some large firms, has amassed an unprecedented database of personal information. The ostensible goal in collecting that information is to protect national security. The effect, according to Reed Hundt, is to undermine democracy. Read more » about Saving Privacy
The Science of Surveillance (Past Event)
This talk presents an empirical assessment of the NSA’s legal restrictions, including research cited by President Obama’s intelligence review group. We find that present limits on bulk surveillance programs come up far short; authorities to intercept international Internet traffic and domestic telephone metadata place ordinary Americans at risk. Read more » about The Science of Surveillance
Big Data and Privacy: Making Ends Meet (Past Event)
Solutions to many pressing economic and societal challenges lie in better understanding data. New tools for analyzing disparate information sets, called Big Data, have revolutionized our ability to find signals amongst the noise. Big Data techniques hold promise for breakthroughs ranging from better health care, a cleaner environment, safer cities, and more effective marketing. Yet, privacy advocates are concerned that the same advances will upend the power relationships between government, business and individuals, and lead to prosecutorial abuse, racial or other profiling, discrimination, redlining, overcriminalization, and other restricted freedoms. Read more » about Big Data and Privacy: Making Ends Meet
Innovation or Exploitation? (Past Event)
Have you ever borrowed a smartphone without asking? Modified a URL? Scraped a website? Called an undocumented API? Congratulations: you might have violated federal law! A 1986 statute, the Computer Fraud and Abuse Act (CFAA), provides both civil and criminal remedies for mere "unauthorized" access to a computer. Read more » about Innovation or Exploitation?
Behavioral Advertising and Privacy Law Reboot - US and International Legal Trends and Best Practices for Internet, Cloud and E-Commerce Companies (Past Event)
Hosted by the Stanford Center for E-Commerce.
5:30 pm - 6:30 pm: Registration/Reception (Manning Faculty Lounge, second floor breezeway fo Stanford Law School) Read more » about Behavioral Advertising and Privacy Law Reboot - US and International Legal Trends and Best Practices for Internet, Cloud and E-Commerce Companies
Pages
Raw Data- Episode 1: Uploaded
September 24, 2015
In this first episode, Mike and I explore how your simplest digital footprints – fragments of Google searches, Facebook likes, and innocuous tweets – can expose deeply intimate facts about you. Like whether your parents are divorced and whether you own a gun. In fact, these vanilla datasets that we all generate every time we use the Internet reveal surprising clues about our personalities and behavior. So how can that information be used, and who is collecting it? We talk to Michal Kosinski of Stanford’s Graduate School of Business, and Jonathan Mayer, a computer scientist and lawyer. Read more » about Raw Data- Episode 1: Uploaded
New Snowden Documents Reveal Government Collection Of Online Data
June 4, 2015
"WELNA: It could indeed. Hackers, by definition, are trying to break into other people's computer accounts and steal their information, so monitoring their activity means watching them poach on other people's Internet usage and private data. I talked with Jonathan Mayer, a computer security fellow at Stanford who's reviewed these latest Snowden documents. He says because of the way the surveillance law is written, the NSA can actually hang on to that hacked information. Read more » about New Snowden Documents Reveal Government Collection Of Online Data
Jonathan Mayer - Hearsay Culture Show #231 - KZSU-FM
March 4, 2015
CIS Affiliate Scholar David Levine interviews Jonathan Mayer, Stanford Ph.D. candidate in computer science, author of Terms of Abuse: An Empirical Assessment of the Federal Hacking Law, and How to Fix It. Read more » about Jonathan Mayer - Hearsay Culture Show #231 - KZSU-FM
The battle over which company has your number
September 29, 2014
Listen to the full piece at Marketplace.org.
"Now Neustar might lose the contract to Ericsson, which is based in Sweden. Neustar says this would be bad for national security, said Jonathan Mayer, a fellow at Stanford's Center for International Security and Cooperation.
“It certainly is a legitimate concern that the company that routes calls is in position to know a fair amount about law enforcement and intelligence investigations,” Mayer said." Read more » about The battle over which company has your number
Just how much personal information does phone metadata reveal?
May 29, 2014
View the CBS News Broadcast here.
"Stanford University Ph.D. student Jonathan Mayer and his research partner created an Android app called MetaPhone that asked users to volunteer their phone records in an effort to learn what could be uncovered from metadata. More than 500 people signed up. Read more » about Just how much personal information does phone metadata reveal?