Bruce Schneier reports that the FCC's proposed rule would require every U.S. phone customer to hand over a government-issued ID number and physical address to their telecom, effectively ending the era of burner phones. The stated goal is fighting scammers. The actual mechanism is mandatory identity surveillance for every SIM card sold.
A Data Grab Disguised as Consumer Protection
The FCC plans to legally obligate all telecoms to collect a government-issued identification number and physical address from each new and renewing customer. Business and foreign customers would also need to disclose the intended use case of their bulk phone plan and their IP address. This isn't opt-in, and it isn't limited to prepaid lines. It covers everyone. The agency argues the data will help authorities go after robocallers and fraudsters. But the same data will sit in telecom databases, ripe for breach, subpoena, or routine sharing with law enforcement - all without a warrant.
The Real-World Impact on Privacy and Security
Burner phones have legitimate uses beyond crime. Journalists protecting sources, domestic violence survivors escaping abusers, and privacy-conscious individuals all rely on temporary, unlinked numbers. Eliminating that option forces every phone user into a permanent identity link with their carrier. Schneier compares the measures to those in authoritarian countries where buying a mobile plan without surrendering your identity is nearly impossible. The cybersecurity knock-on effect is worse: telecoms already struggle to secure customer data. Concentrating government IDs and addresses in those same systems creates a single high-value target for nation-state attackers and identity thieves.
What Happens to the Collected Data
The FCC provides a long list of other purposes the collected data could serve, well beyond scam prevention. That data can be used for law enforcement investigations, regulatory compliance, and likely civil litigation. No clear restrictions on data retention, sharing, or secondary use are spelled out in the proposed rule's summary. History shows that databases built for one noble purpose inevitably expand to serve others - often without public debate or court oversight. The choke point is the government ID requirement, which turns every phone plan into a de facto national ID registration.
The proposal is still in comment period. Privacy advocates and civil rights groups are lining up to fight it. If it passes, expect to see a surge in prepaid SIM cards routed through foreign carriers that don't comply, alongside a new cottage industry of burner-phone workarounds. The FCC might eliminate cheap anonymity, but it cannot eliminate the demand for it.
Source: The FCC Wants to Eliminate Burner Phones
Domain: schneier.com
Comments load interactively on the live page.