Showing posts with label FOI. Show all posts
Showing posts with label FOI. Show all posts

Thursday, 30 August 2012

e-tax 2012 on Mac and Linux FOI Part 2

I have received a reply to my freedom of information request for the source code of the etax client. The letter is dated the 9th of August 2012, but I have been too busy to blog about it because I am a candidate in the upcoming Parramatta council election. I also have not had time to reply to it.

In short it was refused.

It was a two page letter (I will scan it later) but the key paragraph is:
"I consider there is an increased likelihood of hacking if the source code is released and the serious ramifications of this outweigh the public factors in favour of release. I have therefore exempted the source code from release under Section 47E of the FOI Act."

In my appeal I will point out that various open-source software is developed with the source code publicly available and is just as secure as closed source equivalents - for example Apache and Linux. I will point out that Apache is used by the majority of webservers and Linux is widely deployed without any greater number of security issues.

Another key paragraph is:
"Section 11C of the FOI Act requires the office to publish details of information released under the Act on our website and make the information availble to the public unless it would result in the unreasonable release of personal or business information or it would be unreasonable to publish the information. If we were to release the code to you, we would be obliged to release it to the general public also."

While this is true that section 11C subsection 3 does require the release of the material, no mention is made of section 11C subsection 1c and subsection 2 which states that the Information Commissioner may make a determination that the information should not be published to the general public.

So my avenues of approach will be:
  • Appeal on the basis that numerous open-source projects are as secure as closed-source projects
  • During appeal clarify that request is only for etax client
  • I was also referred to a press release stating that a Mac OSX client is planned for 2013 but a cross-platform version was promised in 2007 - how can we be sure a Mac OSX version will be completed
  • Consult with the Office of the Information Commisioner to get a publication exception, so there is no chance of source code falling into the hands of "hackers"
  • If this FOI request fails, then launch a new FOI which requests a list of Windows function calls which are used during the pre-fill and lodgement processes
I have 30 days in which to appeal for a review by the ATO - so the 8th of September 2012. I have 60 days in which to appeal for a review by the OIC - so the 8th of October.
Posted by at 3 comments:
Labels: ,

Friday, 13 July 2012

e-tax 2012 on Mac and Linux FOI

Applicant Details


<removed>



Description of Documents

Access requested: Photocopies

This freedom of information request is for the complete source code of the e-tax 2012 computer program. Any encryption keys or passwords should be redacted.

Source code is defined as “...any collection of computer instructions (possibly with comments) written using some human-readable computer language...” [1]

An encryption key is defined as “...a piece of information (a parameter) that determines the functional output of a cryptographic algorithm or cipher.” [2]

A password is defined as “a secret word or string of characters that is used for authentication, to prove identity or gain access to a resource.” [3]



Background

The purpose of this freedom of information request is to improve interoperability between e-tax and non-Windows operating systems (such as Apple Mac OS X and Linux). There is no intention of modifying the e-tax software or interfacing directly to ATO servers.

Australia has one of the highest rates of tax agent usage in the world [4]. Enabling the 7-14% [5] of computer users who use a Mac or Linux to use etax would be helpful in lowering this figure.

In addition the tax commissioner announced in 2007 the ATO were developing a cross-platform version. "Looking even further ahead we will redevelop e-tax to make it compatible with any computer system that has internet access." [6] I am trying to help the Australian people and the ATO by doing this patch in my spare time.

UPDATE: e-tax 2012 on Mac and Linux FOI Part 2

References


  1. http://en.wikipedia.org/wiki/Source_code
  2. http://en.wikipedia.org/wiki/Encryption_key
  3. http://en.wikipedia.org/wiki/Password
  4. http://www.news.com.au/money/money-matters/most-australians-still-use-tax-agent/story-e6frfmd9-1225845045302
  5. http://en.wikipedia.org/wiki/Usage_share_of_operating_systems#Web_clients
  6. http://www.ato.gov.au/corporate/content.aspx?doc=/content/83847.htm

       

Posted by at 3 comments:
Labels:
Subscribe to: Posts (Atom)