The stupid thing about web history logging is that it is not web history logging at all. It is internet connection logging. The analogy made by Teresa may that it is an "itemised phone bill for the 21st century" shows a complete lack of understanding of the difference between circuit switched networks (e.g the PSTN phone network) and a packet switched network (e.g the internet).
Far as I understand it, the current draft will require ISPs to log all IP connections made, and some other metadata from the packets.
This will be a potentially huge amount of data that ISPs will have to store for 12 months, and it will largely be useless data; as by the time this is enshrined in law and ISPs have this implemented, we will be a lot further down the path that we are currently headed with regards to increasing use of HTTPS and HTTP/2.
All you will be able to gain from this information is ip addresses & hostnames connected to. URLs and other information are all transmitted inside the encrypted session.
Aside from this, terrorists, nefarious types, and increasingly; any technically competent, law abiding citizen with a reasonable desire for privacy will use VPNs, TOR, etc, making it even more pointless.
But if you read the articles recently published on this in the past week or so, they go on to state that in certain circumstances the content or web page detail would be investigable. So this means it is still "full take" to put it in Snowden terms. They are not just storing meta data, they are storing everything and only allowing the meta data to be "freely" searched.
And Theresa May's analogy with itemised phone bills is completely ridiculous. Web domain logging is not the same.
You might be browsing though TOR or a VPN but if you ever dare log into your account, you will be identified. There could be spying from outside or inside, or keys compromised. So you can read, but you cannot use your accounts on any site, or make perfect isolation of the anonymous account and never log into it from your real IP. This feels more like trying to maintain perfect hygiene than hacking. People will be sloppy and a single mistake can unravel a previously anonymous activity. The whole process will be much more difficult and people would not be disposed to do all that work, thinking that they will be OK without it. Because the level of discipline necessary for real anonymity is huge, I think we need to focus on that problem.
I envision a modified browser that has a registry of all your private information and enforces it's protection from the web browsing activity. You will not be able to send over the net your name, email, nickname, identifying cookies, your IP will be hidden, basically it will be like a nanny protecting you from sending any identifying information over the lines. That would be a place where people will be anonymous, but, again, you can't contact anyone you know or use any account that you have used from your real IP in the past, so it will be a different kind of browsing experience.
Far as I understand it, the current draft will require ISPs to log all IP connections made, and some other metadata from the packets.
This will be a potentially huge amount of data that ISPs will have to store for 12 months, and it will largely be useless data; as by the time this is enshrined in law and ISPs have this implemented, we will be a lot further down the path that we are currently headed with regards to increasing use of HTTPS and HTTP/2.
All you will be able to gain from this information is ip addresses & hostnames connected to. URLs and other information are all transmitted inside the encrypted session.
Aside from this, terrorists, nefarious types, and increasingly; any technically competent, law abiding citizen with a reasonable desire for privacy will use VPNs, TOR, etc, making it even more pointless.