Ars Technica logo. Serving the PC enthusiast for over 5x10-2 centuries  

Subscribe to Ars Technica!

Have news? Send it in.

 
Ars Guides.
  Buyer's Guide
  How-To's & Tweaks
  Product Reviews
  Ars Shopping Engine

Technopaedia.
  Technical Blackpapers
  CPU Theory & Praxis
  Ars OpenForum
  Search Ars

Columnar Edifice.
  Wankerdesk
  AskArs!
  Diary of a Geek
  Game.Ars Report   Mac.Ars takes on...
  Linux.Ars

Site Info.
  Subscribe to Ars
  Ars Merchandise
  Who We Ars
  Advertising
  Links



EFF decodes secret color laser printer spy markings

Posted October 18, 2005 @ 10:58 AM
by Jeremy Reimer

The Electronic Frontier Foundation (EFF), the nonprofit organization formed in 1990 by Lotus founder Mitch Kapor to champion users' privacy and information rights in the digital world, has cracked an undocumented set of codes used by all Xerox DocuColor laser printers.

The code is printed on every color page as a series of minuscule yellow dots, arranged on a widely-spaced rectangular 15 by 8 grid. On a regular piece of white printer paper, the faint yellow dots are almost impossible to see, even under magnification. However, when the page is illuminated by a blue LED flashlight, the dots are more clearly visible.

The top and left rows are used as parity bits, for error correction. The remaining dots in the grid are used to convey information about the document and its source, including printer model, printer configuration, printer serial number, and the date and time the page was printed.

The EFF decrypted the binary code by analyzing hundreds of sample pages sent in by volunteers willing to help the project, part of a larger effort to decode any tracking information printed on color lasers. Xerox is by no means the only printer company to have implemented this scheme. Brother, Canon, Dell, Epson, Minolta, Kyocera, Lanier, Lexmark, Savin and Toshiba have all been confirmed to have included such a feature on at least some of their models.

A statement by the EFF underscores the need for concerns about user privacy:

The ACLU recently issued a report revealing that the FBI has amassed more than 1,100 pages of documents on the organization since 2001, as well as documents concerning other non-violent groups, including Greenpeace and United for Peace and Justice. In the current political climate, it's not hard to imagine the government using the ability to determine who may have printed what document for purposes other than identifying counterfeiters.

Yet there are no laws to stop the Secret Service from using printer codes to secretly trace the origin of non-currency documents; only the privacy policy of your printer manufacturer currently protects you (if indeed such a policy exists). And no law regulates what sort of documents the Secret Service or any other domestic or foreign government agency is permitted to request for identification, not to mention how such a forensics tool could be developed and implemented in printers in the first place.

The organization has filed a Freedom of Information (FOIA) request (PDF) with the US government and are still awaiting a response. In the mean time, they encourage anyone with a color laser printer to send them samples to help with the decoding effort. All information gathered by the EFF is treated as strictly confidential, and for those with sensitive privacy concerns there is a manual dot-decoder, as well as GPL'ed source code for creating your own dot-decoder, available on the EFF web site.

[Discussion | Send to a Friend]

 

 

Recent Stories

Tokyo Game Show to grow in 2007

Posted February 1, 2007 @ 3:19 PM, by Eric Bangeman
If you think you'll miss the crushing masses of E3, you've got an alternative in Tokyo. Full Story

One Zune exec out; J Allard takes over the program

Posted February 1, 2007 @ 12:32 PM, by Nate Anderson
Bryan Lee, one of the key executives overseeing the Zune player, is out as Microsoft gives former Xbox guru J Allard total control of the music player. Full Story

Seagate introduces us to DAVE

Posted February 1, 2007 @ 12:28 PM, by Jacqui Cheng
Seagate announced its Digital Audio Video Experience (DAVE) this week: a portable hard drive that Seagate hopes will become a mobile content server for use with mobile phones and other devices. Full Story

Flickr's shift to Yahoo ID requirement sparks (virtual) rioting

Posted February 1, 2007 @ 12:06 PM, by Jon Stokes
What do hijabs and unshaven facial hair have to do with Web 2.0? Quite a bit, as Flickr is finding out. Full Story

Google earnings: search sizzles, but ads are the steak

Posted February 1, 2007 @ 11:40 AM, by Eric Bangeman
Google continues its torrid revenue growth with another big quarter. Are its multitude of partnerships and acquisitions paying off, or is it all about the advertising? Full Story

Does network neutrality mean an end to BitTorrent throttling?

Posted February 1, 2007 @ 10:21 AM, by Nate Anderson
As the BitTorrent file transfer protocol gains both popularity and legal uses, ISPs are faced with an increasingly difficult decision about whether to throttle it or not. Network neutrality agreements can make this even more complicated. Full Story

Dell returns as CEO of his namesake company

Posted February 1, 2007 @ 10:15 AM, by Eric Bangeman
Michael Dell returns to the CEO position at the company he founded in the wake of sliding market share and disappointing earnings. Will his presence in the driver's seat be enough to bring back the good old days? Full Story

Bandwidth hogs exist, but the light users are key, says report

Posted January 31, 2007 @ 5:38 PM, by Jacqui Cheng
Recent data from Internet traffic management company Ellacoya says that only five percent of users generate nearly half of all Internet traffic. However, the other 95 percent are what count when deciding what new services to provide. Full Story

 

 

Back to the Ars Technica Newsdesk