God the EU Commission is exhausting. Do these people seriously think they can demand a “lawful access” backdoor in US-hosted messaging apps, and that US intelligence *won’t* use that tool to relentlessly spy on EU interests? www.politico.eu/article/encr... - ThreadSky

matthewdgreen.bsky.social • 9 days ago

God the EU Commission is exhausting. Do these people seriously think they can demand a “lawful access” backdoor in US-hosted messaging apps, and that US intelligence *won’t* use that tool to relentlessly spy on EU interests? https://www.politico.eu/article/encryption-crime-denmark-peter-hummelgaard-europe-privacy/

Comments

matthewdgreen.bsky.social•9 days ago

Maybe folks in the EU will switch to EU-operated apps. Like, um… Telegram?

michae.lv•9 days ago

isn’t telegram operated from the UAE?

diagprov.ch•9 days ago

Yes

matthewdgreen.bsky.social•9 days ago

But Durov is French now and so they comply with French law. 🤷‍♂️

diagprov.ch•9 days ago

Doesn't really matter, 99% of telegram is not end to end encrypted anyway.

diagprov.ch•9 days ago

Threema exists. It isn't my favourite UX-wise.

pulsarcube.bsky.social•9 days ago

There also Threema. Some European governments use self-hosted services based on Matrix.

But yeah, it's dumb.

spaceds8008s.bsky.social•9 days ago

bad actors are more vicious and successful than ever. centralizing information is only going to lead to more disaster, but sure. lets put holes in one of the few things that can stop them.

bijkerhans.bsky.social•8 days ago

Is Hegseth considered a backdoor?

lisaforte.bsky.social•8 days ago

Have you seen the U.K.!?! The U.K. is like “hold my beer” on this one 😂

maxsec.bsky.social•8 days ago

ok so how this works, in case anyone is watching..
the cia cant spy on its own citizens but gshq/mi6 can. gchq cant spy on it's own citizens but the cia can...
allegedly...

roflmobile.bsky.social•9 days ago

If the EU wants to be seen as credible and legitimate, it needs to stop doing totalitarian bullshit like this.

We are not America or China. It's even more important in times like these to emphasise that by dropping this stupid totalitarian nonsense.

Let us be a safe haven, not a prison.

smartcryptology.bsky.social•8 days ago

Love that quote Matt. Puts the entire stupidity of their position in a very clear way; i.e. it is not in their interests to demand this, so why do it? Unless they are stupid of course

axeldurbec.bsky.social•8 days ago

You meant the US already has backdoors and already spies on the EU but the EU shouldn't ask for a lawful access?

arbiteriapetus.bsky.social•9 days ago

And that's not even the biggest problem with backdoors. Backdoors will be discovered and exploited by the Russians, Chinese, Iranians, North Koreans, and others.

So much R&D going into trying to improve secure communications will be of academic interest, only.

https://security.apple.com/blog/imessage-pq3/

natanael.bsky.social•9 days ago

Just look at CALEA and multiple US providers having their systems hacked.

There's no way to build such a system which can handle a large volume of access requests and still prevent exploits. It will either get infiltrated or hacked eventually

arbiteriapetus.bsky.social•9 days ago

Apropos CALEA and telephone switching networks being compromised by apparent Chinese affiliated espionage groups.

https://www.lawfaremedia.org/article/calea-was-a-national-security-disaster-waiting-to-happen

alan.chung-ma.com•9 days ago

isn't SSH and TLS kind of e2ee? does that mean we'd be banning these tools and technologies, as well?

natanael.bsky.social•9 days ago

Depending on whose definition of E2EE you use. Some only cover person to person communication.

But otherwise yes, there's no rational way to define "lawful access" which doesn't either allow trivial circumvention, or which goes overboard by banning everything. Plenty of E2EE P2P VPN solutions

genericeccentric.bsky.social•8 days ago

Anything that is US-hosted is most certainly already today snooped on by the USA.

I interpret the EU Commission aspirations as the EU wanting to have access to communications from/to EU.

Other than that, implementation matters... E.g. GSM LI features have existed since the dawn of mankind 😏

crankyoldcrackpot.bsky.social•9 days ago

US intelligence isn't doing that already?

Comments

Posting Rules

Reply