No.53265
The Access and Assistance Bill gives law enforcement the ability to force technology companies to provide access encrypted messages. Supporters say it will help law enforcement prevent terrorism while opponents argue it will weaken Australians' online security and privacy.
____________________________
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53266
Source: https://www.pcmag.com/news/365335/australia-oks-controversial-anti-encryption-law
>The Australian government has passed an unprecedented and controversial anti-encryption bill, which has been opposed by Apple, Google, Facebook, and other tech giants.
>The Access and Assistance Bill gives law enforcement the ability to force technology companies operating in Australia—including Facebook-owned WhatsApp, smartphone makers like Apple, and website owners—to provide access to encrypted messages, according to the Australian Broadcasting Corporation.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53286
As long as the company pulls an Apple and pretends they can't decrypt the data, everything should be fine.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53305
>>53265
Very shy on the technical detail.
What does this actually mean they can force the provider to do? If the platform doesn't host the private keys, what happens?
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53330
>>53286
>implying they did not decrypt it
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53360
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53371
>>53305
They think encryption is like lemon juice.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53372
Progressive tyranny. It also makes Australians easy targets for cyber crime.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53374
More details about this came to light.
The government can force individuals to place backdoors in their employers codebase. The individual is not allowed to tell anyone about it, or they face prison time, including their employer.
So you either get fired during code review and are blacklisted by employers for trying to sneak exploits into production, or you go to jail for refusing to do so.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53380
>>53374
link?
this is dystopian.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53386
>>53380
Here you go anon.
>The new law also allows officials to approach specific individuals—such as key employees within a company—with these demands, rather than the institution itself.
>In practice, they can force the engineer or IT administrator in charge of vetting and pushing out a product's updates to undermine its security. In some situations, the government could even compel the individual or a small group of people to carry this out in secret.
>Under the Australian law, companies that fail or refuse to comply with these orders will face fines up to about $7.3 million. Individuals who resist could face prison time.
https://www.wired.com/story/australia-encryption-law-global-impact/
>"Furthermore, the legislation also covers an individual if '… the person develops, supplies or updates software used, for use, or likely to be used, in connection with: (a) a listed carriage service; or (b) an electronic service that has one or more end users in Australia', which appears to cover every piece of software, or mobile app, that connects to internet or produces content that is going to be used on the internet.
https://www.zdnet.com/article/australias-anti-encryption-law-will-merely-relocate-the-backdoors-expert/
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53393
>>53386
>liberal democracy
>free world
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53394
I'm surprised by little it's being discussed in the infosec community.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53397
>>53386
Whats to stop people from using tools like GnuPG or compiling signal themselves?
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53398
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53400
>>53398
It's rather unfortunate that most people are completely devoid of the skills needed to implement encryption on their own.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53403
>>53400
Some part of me believes the government is doing this at least somewhat for the right reasons; catching low hanging fruit like Arabs. It'll meet their needs in that case.
For anyone who rolls their own builds, or holds their own keys, they won't have much luck.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53406
>>53403
Even if it did target Arabs it will eventually be used against all groups that are real or imagined threats to the system ala the Patriot Act.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53407
>>53406
>it will eventually be used against all groups
That's part of the point though, it can't be.
The government likely doesn't understand how encryption works, most platforms don't hold the private keys, and anyone worth their salt doesn't rely on modern messaging platforms like Facebook/WhatsApp.
PGP for e-mails, FiSHLiM for IRC, OTR for Pidgin.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53419
>>53407
Besides E2E encryption, I think that any other measure can have a backdoor.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53430
YouTube embed. Click thumbnail to play.
seems relevant. He talks about what measures will need to implemented to actually appease nation states in their never ending quest for control.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53437
>>53430
This guy is great. He's basically the only real reason to watch Computerphile.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53438
>>53437
There's also the AI guy
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53466
>>53403
>Some part of me believes the government is doing this at least somewhat for the right reasons
You don't belong here, shill.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53472
Another threat to encryption is a quantum computing modeling system I have been watching the development process for a little under a year.
This exists on this very chan as /vqc/. It is a co-op of math nerds and programmers contributing slices to this larger project; which aims to exploit semi primes within RSA. Beyond that, possibly lay the groundwork for quantum computing based software languages. I have had the opportunity to watch their discord server which naturally moves along quicker.
You can read the intro thread here https://8ch.net/vqc/res/6415.html
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53473
>>53472
QC only breaks asymmetric encryption (inb4 Grover's, doubling the keyspace on symmetric is trivial), and even then we already have QC proof implementations.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53478
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53479
>>53473
So you mean asymmetrical encryption that is also salted?
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53481
can QC be used to perform mitm attacks on ssl/tls? say you are running an ftp server and know the sha256 fingerprint. can it forge a cert with the same fingerprint. I believe this is called a collision attack but I may be mistaken.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53530
>>53372
>progressive
>"fighting terrorism"
Please fuck off, stormfag.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53531
>>53403
Good boy, stormfag. We'll just get those damn [other people] for you. We're only keeping you safe. :)
Your facebook will still work just fine, so who cares, right?
We protect you from the brown people. They naturally hate you because of their genetics and there's nothing we can do to change that.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53562
>>53530
>>53531
>defending progressives
>brown people
Spotted the antifa cocksucker. Choke on a shotgun, you whiny little faggot.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53615
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53617
>People in this thread are defending the police state.
Nice try, Five Eyes.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53648
>>53531
>being dumb enough to use facebook
Fuck off Kike.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53688
This q may be a little bit ghei…
By the govt forcing the big
(((Companies))) to cuck their own security, doesn’t that force the market onto open-sauce devs?
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53690
>>53615
>>53562
You don't belong here. Go back to your containment board.
>>53648
>implying any part of my post even began to imply I use facebook
Autistic retard.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53691
>>53688
Privacy would become a thoughtcrime of passion. Any alternative service that accepted payments is subject to tax law and ultimately at the mercy of the govt if they provide those services. Not only are they subject to the taxes but also the firewall.
Open source would be the option, but the current state of the meritocracy once determining quality in Linux and the hubs of FOSS have also been cucked by corporate normies. Partly from the ideology of the organization or from payment processors.
My question for you then, what kind of service would you need to find a substitute for, say if the encrypted feature of it were compromised? VPN, email, ISP, domain hosting, MMS app?
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53694
>>53530
>not knowing how to use greentext
>hurr durr, anyone who isn't liberal is a neon-nazi
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53695
>>53690
I started this thread faggot. What have you contributed to this board. Get the fuck out now.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53696
>>53691
>the current state of the meritocracy once determining quality in Linux and the hubs of FOSS have also been cucked by corporate normies.
I hope that there will be many privacy startups who will not be fooled into trusting Big Tech incursion into open source.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53697
>>53690
This is a tranny-free board.
Into the >>>oven you go.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53698
>>53696
Thppbbt, no. I meant to say if any business is subject to this law then it can't come from startups. It'd have to exist on the fringe outside of the ridiculous rules. Only payments maybe made to a crypto wallet.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53699
>>53696
You don't have to have your startup in a 5/14 eyes country.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53709
>>53696
>privacy startup
if people wanted privacy google and facebook wouldn't exist in their current form. normies don't care about privacy unless it's about their tranny porn binge watching habit
prepare for total dystopia akin to chinese social points because that's what we're getting
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53710
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53712
>>53709
I don't have any sympathy for Facebook fags, however Google has become necessary for finding important information quickly (e.g. travel information, software development, health and fitness, education).
Google, like the oil and rail Barons of the 19th and 20th century, have built momentum which is what they are living off now.
If one were to challenge them it would be better to do so now than never. Market dominance is not an excuse for inactivity.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53713
>>53430
>I have nothing to hide.
In other words, he is happy to be at the mercy of the current order; utterly pathetic and cowardly. Imagine living your entire life grovelling to the nanny state. I know that the British are formerly "subjects" of the Crown but that doesn't mean you have to grovel like a dog.
Whenever someone says that they "have nothing to hide" ask them if they secure their phones, computers, banking information or lock their house.
Are there any controversial figures left in academia that oppose the technological police state?
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53829
>>53286
>implying they will lose an entire market over one dumb straya cunt
>>53305
Politicians dont know how anything works be it tech or the economy
>>53374
I was just thinking of the LoGH clip
>The government can force individuals to place backdoors in their employers codebase. The individual is not allowed to tell anyone about it, or they face prison time, including their employer.
So basically don't hire any strayans, ever. They just destroyed an entire source of well paid jobs.
>>53398
As long as you dont get caught
>>53403
>catching low hanging fruit like Arabs.
Kebab have been found using fucking plaintext SMS to plan attacks and nothing happened, why? because politicians are scarred shitless of muhracism and losing votes for that
Dont fucking think for a minute that its about that, its about keeping YOU under their boot, the cops are not legally obligated to help or protect you and neither is the state
>>53713
The best comeback is to demand their passwords and access to all their stuff since they have "nothing to hide" there is no risk to them.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
No.53830
>>53829
>The best comeback is to demand their passwords and access to all their stuff since they have "nothing to hide" there is no risk to them.
Exactly.
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.
