The U.K. Parliament has passed the Online Safety Bill (OSB), which says it will make the U.K. “the safest place” in the world to be online. In reality, the OSB will lead to a much more censored, locked-down internet for British users. The bill could empower the government to undermine not just the privacy and security of U.K. residents, but internet users worldwide.
The big thing I’m mostly concerned about is this mysterious backdoor they are supposedly forcing tech providers to build into all devices - what exactly is this and what stops anyone from learning about it and exploiting it?
It’s fairly simple: encrypted software developers will leave the UK, because no one would trust the security of their SW. I’m not sure if there is an exception for online banking, but perhaps this bill will stimulate the mattress industry and encourage return to the old ways of storing money.
Even if there are exceptions for banking apps, would you trust them? What will private companies do to protect their trade secrets? What will children and other victims of sexual abuse do when they seek help and need a safe and private environment?
Edit for an addition:
UK mass interception laws violates human rights and the fight continues… [May 2021]
The Grand Chamber of the European Court of Human Rights ruled that the UK government’s historical mass interception program violates the rights to privacy and freedom of expression.
I see your point and agree. I use online banking and I trust that my bank doesn’t want to compromise my account by adding some back-door. Having said that I have no doubt that should and government agency request access to my financial data, they would do it in a blink of an eye.
Yes, the law is a bad one and people should voice their protests, but I’m afraid that nothing will ultimately change and we’ll have more bad laws in the future.
Removed by mod
I didn’t say they’re banning encryption, I was just referring to the back-door requirement. An encryption with a back-door is no encryption at all.
Signal as far as I know isn’t based in the UK and hence not subject to these laws.
banking uses encryption for transactions exclusively between you and a bank. I don’t think the law is “no end to end encryption at all”
They apply client-side scanning. Meaning the data gets scanned before it gets encrypted. This is like someone looking over your shoulder.
Australia did something similar ages ago, just for absolutely every peace of software even if a aingle employee lives from their but this one targeting encryption is bad too, it basically means every encryption software developer will leave the UK and proper encryption will be illegal to use.
The issue is end to end encryption.
The law change requires messaging applications to be able to provide messages between people using their service.
In the 00’s, messaging applications would have a secure connection between themselves and person A and anouther secure connection between themselves and Person B.
Person A would encrypt the message, send it to the service, who would decrypt it, open a connection to Person B, encrypt the message and send to Person B.
So if the police got a warrent for communications of Person B (say the police think the person is involved in human trafficking), then the messaging service could provide all messages sent to Person B.
Message services have taken themselves out of the loop, Person A now encrypts the message and sends directly to Person B. So the police appear with a warrent and the message service shrugs its shoulders since it hasno means to get the data.
The law effectively requires messaging services to design the apps/service so they can comply with a warrent.
The issue is less encryption and more the balance between your right to privacy and states right to intrude.
This is why banks aren’t upset, they aren’t talking about back dooring encryption and bank encryption is between you and the bank so they don’t have to do/say anything.
I fucking hate this country
I have my issues with the EU and it’s current state but god damn am I ever happy that Austria is part of it, I don’t even want to know what our nutjobs would do if the european court for human rights didn’t stand in their way!
I’m also absolutely pro-EU (and I regret Brexit), but the EU has been working on its Child Sexual Abuse Regulation, CSAR for short, for a long time now as you may know. It’s basically the same thing as the UK’s so-called ‘Online Safety Bill.’
Yea, I am aware of that and also the chatcontroll proposal but it’s not the first time they and indivitual member states attempt shit like that and so far the european court saved us from the worse parts, it’s certainly more functional than our courts in Austria and a decent enough way to enforce that european human rights agreement. We will probably get a conservative and nazi coilition in Austria once again after the next election and I am thankful of everything that stands in the way of those morrons even if it’s just a little bit!
The UK parliament is showing off how smooth their brains are recently. It’s really getting quite annoying for everyone.
Maybe we should abandon the Internet at all, or at least focus on specific communication with FOSS.
wait