Got an FOI response almost three years late... a short thread

Back in December 2017, when I was a reporter for the Gloucestershire Echo, I went to a knife crime event where a police officer gave a talk mentioning he'd been running undercover stings on local shops - sending in underage teens to see whether the store would sell them knives.
That's an interesting story, I thought. So I asked the @Glos_Police press office for some details about the operation, and the shops which had fallen foul of it. They said they'd rather not give those details.
So I put in an FOI on December 5, 2017, hoping for a response within the 20 working day limit.

I got one on November 20, 2020, having forgotten all about it
It refuses to confirm or deny whether the info is held: "Whilst there is a public interest in providing reassurance that the Police Service are appropriately and effectively holding information of this nature, there is a stronger public interest in safeguarding national security"
I'm not criticising the decision per se (although if I happened to be reporting in court when a case related to the op came up, I'd know all about it anyway). But a three-year wait to hear it isn't good enough
I decided to have a look through the police force's What Do They Know page. It's littered with long overdue FOIs, some from the even more distant past. That's not acceptable https://t.co/bleH07YqEy
Gloucestershire Constabulary has long-running issues with transparency. When staff responsible for maintaining its vehicles sold tyres online for personal gain, the force didn't publish the investigation due to "no one getting around to it" https://t.co/2PnZhxKKUZ
. @LeighBoobyer revealed this last year, but only after a gargantuan effort. As he said at the time: "It took months to get the information as the Constabulary’s FOI team failed to provide responses on-time and, eventually, I took matters to the Information Commissioner’s Office"
Shortly after Leigh's scoop, the force erased eight years of misconduct outcomes from its website https://t.co/xHiSVHfe26
Do better, @Glos_Police - transparency is important
@WhatDoTheyKnow

More from Crime

My students @maxzks and Tushar Jois spent most of the summer going through every piece of public documentation, forensics report, and legal document we could find to figure out how police were “breaking phone encryption”. 1/


This was prompted by a claim from someone knowledgeable, who claimed that forensics companies no longer had the ability to break the Apple Secure Enclave Processor, which would make it very hard to crack the password of a locked, recent iPhone. 2/

We wrote an enormous report about what we found, which we’ll release after the holidays. The TL;DR is kind of depressing:

Authorities don’t need to break phone encryption in most cases, because modern phone encryption sort of sucks. 3/

I’ll focus on Apple here but Android is very similar. The top-level is that, to break encryption on an Apple phone you need to get the encryption keys. Since these are derived from the user’s passcode, you either need to guess that — or you need the user to have entered it. 4/

Guessing the password is hard on recent iPhones because there’s (at most) a 10-guess limit enforced by the Secure Enclave Processor (SEP). There’s good evidence that at one point in 2018 a company called GrayKey had a SEP exploit that did this for the X. See photo. 5/

You May Also Like

1/ Some initial thoughts on personal moats:

Like company moats, your personal moat should be a competitive advantage that is not only durable—it should also compound over time.

Characteristics of a personal moat below:


2/ Like a company moat, you want to build career capital while you sleep.

As Andrew Chen noted:


3/ You don’t want to build a competitive advantage that is fleeting or that will get commoditized

Things that might get commoditized over time (some longer than


4/ Before the arrival of recorded music, what used to be scarce was the actual music itself — required an in-person artist.

After recorded music, the music itself became abundant and what became scarce was curation, distribution, and self space.

5/ Similarly, in careers, what used to be (more) scarce were things like ideas, money, and exclusive relationships.

In the internet economy, what has become scarce are things like specific knowledge, rare & valuable skills, and great reputations.