Green Dam Youth Escort

Designed to work with Microsoft Windows operating systems, the software was developed by Zhengzhou Jinhui Computer System Engineering Ltd. (郑州金惠计算机系统工程有限公司 – Jinhui) with input from Beijing Dazheng Human Language Technology Academy Ltd. (北京大正语言知识处理科技有限公司 - Dazheng). is at least officially aimed at restricting online pornography; however, it may be used for electronic censorship and surveillance in addition to its stated purpose. Green Dam Youth Escort automatically downloads the latest updates of a list of prohibited sites from an online database, and also collects private user data. ==Scope==

A notice issued by the Ministry of Industry and Information Technology on 19 May stated that, as of 1 July 2009, manufacturers must ship machines to be sold in China with the software preloaded—either pre-installed or enclosed on a compact disc, and that manufacturers are required to report the number of machines shipped with the software to the government. A separate notice on the ministry's website required schools to install the software on every computer in their purview by the end of May. According to the directive, the aim is to "build a healthy and harmonious online environment that does not poison young people's minds". Qin Gang, spokesman for the foreign ministry, said the software would filter out pornography or violence: "The purpose of this is to effectively manage harmful material for the public and prevent it from being spread," adding that "[t]he Chinese government pushes forward the healthy development of the internet. But it lawfully manages the internet". ==Trials==

In 2008, under instructions from political leaders, the MIIT implemented a "community-oriented green open Internet filtering software project" with the support of the Central Civilisation Office and the Ministry of Finance. Its aim was to build a "green, healthy network environment, to protect the healthy growth of young people". Five leading PC vendors in mainland China, Founder, Lenovo, Tongfang, Great Wall and HEDY, also participated in trial installations. == Censorship concerns ==

Professor Jonathan Zittrain, of Harvard's Berkman Center said: "Once you've got government-mandated software installed on each machine, the software has the keys to the kingdom... While the justification may be pitched as protecting children and mostly concerning pornography, once the architecture is set up it can be used for broader purposes, such as the filtering of political ideas." Colin Maclay, another Harvard academic, said that Green Dam creates a log file of all of the pages that the user tries to access. "At the moment it's unclear whether that is reported back, but it could be." An analysis of the University of Michigan shows that Green Dam examines text input in different applications for words such as obscenities and other banned words (e.g., Falun Gong). Green Dam utilizes a word list for more complex algorithm processing in its unencrypted file "FalunWord.lib," which contains primarily words related to Falun Gong. == Reception and responses ==

Computer industry In June 2009, the computer industry advocacy organization, Computer and Communications Industry Association (CCIA), said the development was "very unfortunate". Ed Black, CCIA president criticised the move as "clearly an escalation of attempts to limit access and the freedom of the internet, [...with] economic and trade as well as cultural and social ramifications." Black said the Chinese were attempting to "not only control their own citizens' access to the internet but to force everybody into being complicit and participate in a level of censorship". The CCIA was reported to be taking up a test case for American tech companies wishing to present "a united front against censorship" and it called on the Obama administration to intervene with Beijing over the requirement that manufacturers pre-install the software on all new computers. On 8 June, Microsoft said that appropriate parental control tools were "an important societal consideration". However, "[i]n this case, we agree with others in industry and around the world that important issues such as freedom of expression, privacy, system reliability and security need to be properly addressed." An international group of business associations urged the government to scrap the Green Dam directive in a letter to Chinese Premier Wen Jiabao. The letter was signed by the heads of 22 organisations representing international businesses, including the U.S. Chamber of Commerce, the European-American Business Council, the Information Technology Industry Council and other associations from North America, Europe, and Japan. In moves which the San Francisco Chronicle suggested were politically motivated by the quest for closer ties, Taiwanese manufacturers Acer, Asus, BenQ announced they were already shipping products with Green Dam as originally ordered, joined by Sony and Lenovo. Public internet cartoon showing 'Green Dam Girl' wearing a river crab hat, and armed with a paintbrush Online polls conducted by leading Chinese web portals revealed poor acceptance of the software by netizens. On Sina and Netease, over 80% of poll participants said they would not consider or were not interested in using the software; on Tencent, over 70% of poll participants said it was unnecessary for new computers to be preloaded with filtering software; on Sohu, over 70% of poll participants said filtering software would not effectively prevent minors from browsing inappropriate websites. A poll conducted by the Southern Metropolis Daily showed similar results. A report by the OpenNet Initiative project acknowledged the broad global support for measures to help parents limit exposure of their children to harmful online material and published a detailed report on the technical and political flaws of this software and its implications. Internet citizens have created a manga-style Moe anthropomorphism named 'Green Dam Girl' (; Japanese: ), similar to the OS-tans. Many versions exist, but the common features are that she is dressed in green, wears a river crab hat, holding a rabbit (the Green Dam mascot) in hand, and armed with a paintbrush. She also commonly wears an armband with the word Discipline written on it. On 11 June 2009, a team released a third-party tool aiming to provide users with options to disable the software, change the master password and perform post-uninstallation clean-up (i.e., removing files and registry entries left behind by the uninstaller). Government and manufacturer A BBC News article reported that critics feared the new software could be used by the government to enhance the existing internet censorship system. Jinhui's general manager, [Bryan] Zhang Chenmin, rejected the accusation: "It's a sheer commercial activity, having nothing to do with the government" he said. The instruction also required online forums to block and remove "offensive speech evolved from the topic" promptly. In response to the "public concern, anger and protest" triggered by the government edict, China Daily put forward the case for free choice, saying: "Respect for an individual's right to choice is an important indicator of a free society, depriving them of which is gross transgression." On 15 June, an official of the Department of Software Service under the MIIT downplayed the compulsory aspect of the software: "The PC makers only need to save the setup files of the program on the hard drives of the computers, or provide CD-ROMs containing the program with their PC packages" he said. Users will have the final say on whether or not to install the software, he continued, "so it is misleading to say the government compels PC users to use the software ... The government's role is limited to having the software developed and providing it free". Further critical articles appeared in both the state-run ''People's Daily and the relatively liberal China Youth Daily'', a paper run by the Communist Youth League of China (CYLC) of which CCP General Secretary Hu Jintao was the former First Secretary of the CYLC. It leads to the belief that support for the MIIT's directive was divided within the Chinese government itself. On the eve of the introduction of the mandatory pre-installation of the Green Dam software on new computers, it was postponed. The MIIT said it would "keep on soliciting opinions to perfect the pre-installation plan." Ministry sources confirmed that the software had been patched, and that the government procurement procedure of the software "had complied with China's Government Procurement Law, which was open, fair, transparent, non-exclusive, [...] under strict supervision" and "in line with regulations of the World Trade Organization" US government On meeting with officials of the MIIT and the ministry of commerce about Green Dam, American diplomats in China issued a statement: == Defects and software issues ==

Functional defects Jinhui claimed that Green Dam recognized pornographic images by analyzing skin-coloured regions, complemented by human face recognition. However, according to a Southern Weekly article, the software is incapable of recognizing pictures of nudity featuring black- or red-skinned characters but sensitive enough to images with large patches of yellow that it censors promotional images of the film Garfield: A Tail of Two Kitties. The article also cited an expert saying that the software's misrecognition of "inappropriate contents" in applications including Microsoft Word can lead it to forcefully close those applications without notifying the user, thus cause data losses. On 21 June 2009, Ming Pao reported that the software detected and censored pictures of Chinese political leaders as pornography. On 11 June 2009, a BBC News article reported that potential faults in the software could lead to a large-scale disaster. The report included comments by Isaac Mao, who said that there were "a series of software flaws", including the unencrypted communications between the software and the company's servers, which could allow hackers access to people's private data or place malicious script on machines on the network to "affect [a] large scale disaster". The software runs only on Microsoft Windows x86, so Microsoft Windows x86-64, Mac OS X, Linux and users of other operating systems are ignored. Also on 11 June 2009, a Netease article reported that the master password of the software could be easily cracked. The software stores the MD5 checksum of the password in a text file disguised as a DLL (C:\Windows\System32\kwpwf.dll), thus the password can be arbitrarily set by changing the contents of the file. This was ridiculed by some netizens as the software being crackable by "elementary school students". Researchers from University of Michigan found the uninstaller "appears to effectively remove Green Dam from the computer," whereas some sources state that part of the software (e.g. executables loaded on startup) cannot be removed by its own uninstaller, but that most of it (per either blogs or media reports) was removed according to the PRC government's request. Security vulnerabilities On 11 June 2009, Scott Wolchok, Randy Yao, and J. Alex Halderman from the University of Michigan published an analysis of Green Dam Youth Escort. They located various security vulnerabilities that can allow "malicious sites to steal private data, send spam, or enlist the computer in a botnet" and "the software makers or others to install malicious code during the update process". They recommended that users uninstall the software immediately for protection. Wolchok et al. indicated the existence of buffer overflow vulnerabilities which they ascribed to programming errors. Buffer overflow may occur when the software performs URL filtering or updates its blacklist filter files due to the use of fixed-length buffers, and can corrupt the execution stack and potentially allow execution of malicious code. Furthermore, the feature of automatic filter update opens the door to the computer being remotely controlled by the software's makers and possibly third parties who manage to impersonate the update server because the updates are delivered via unencrypted HTTP. Alleged software plagiarism and license violation In addition to security vulnerabilities, Wolchok, Yao and Halderman also found that a number of blacklist files used by Green Dam Youth Escort were taken from the censorship program CyberSitter, from Solid Oak Software Inc. The decrypted configuration file references blacklists with download URLs at CyberSitter's website. They also discovered in the software a news bulletin published by CyberSitter in 2004, whose inclusion was conjectured by them to be accidental. Both the Wolchok et al. report and a technical analysis released on WikiLeaks indicated that software contains code libraries and a configuration file from the BSD-licensed computer vision library OpenCV. Internet lawyer Jonathan Zittrain said that if the computers are only sold in China it would not be a violation of U.S. copyright and the issue "would have to be resolved in a Chinese court under Chinese law". In January 2010, Cybersitter filed a $2.2 billion lawsuit against the PRC government and Jinhui Computer System Engineering charging that Green Dam Youth's developers had stolen more than 5,000 lines of code from Cybersitter. In December 2010, a California court denied a motion to have the suit dropped. The motion was filed by Sony, Acer, BenQ and Asustek, who were named as defendants in a list that also includes Chinese PC makers Lenovo and Haier. Reactions of the software's makers According to an addendum to the Wolchok et al. report published on 18 June 2009, makers of Green Dam Youth Escort silently patched the software on 13 June, addressing at least the one particular buffer overflow vulnerability showcased in the original report. In spite of the patch, the software nevertheless remained vulnerable to more sophisticated attacks, as demonstrated by a new example attack page included in the addendum, leading the authors to stand by their previous recommendation that users uninstall the software immediately. In 2010, other commentators, whilst noting no change in the government's policy towards policing the Internet, said the de facto abandonment of the project was an admission of error. == See also ==