WhatsApp, Signal and other messaging giants have signed a joint open letter criticizing the UK government’s proposed Online Safety Bill (OSB) for posing risks to “privacy and safety for all”.
While the core of the law is meant to force tech companies to take action against online abuse, the signatories of the letter argued that the requirement to monitor such messaging platforms would extend to end-to-end encryption (E2EE). I am concerned that I will lose
“We believe no company, government or individual should have the power to read private messages and will continue to defend encryption technology,” WhatsApp said in a statement. The company claims that some of the OSB “make people less safe in the UK and around the world”.
“As it is currently being drafted, legislation could break end-to-end encryption and open the door to routine, general and indiscriminate monitoring of personal messages,” the letter said. It is
This letter is signed by:
- Element CEO Matthew Hodgson
- Alex Linton, Oxen Privacy Tech Foundation and Session Director
- Signal President Meredith Whitaker
- Threema CEO Martin Blatter
- Viber CEO Ofir Eyal
- Head of WhatsApp at Meta Will Cathcart
- Wire Chief Technology Officer Alain Duric
In its current form, OBS mandates that websites and apps proactively prevent harmful content on messaging services.
Lisa Forte, Partner at Red Goat Cybersecurity said: information security, “In order to do that, we need to be able to scan all user content. and will not be used at all.”
she added, “The UK government claims it is a necessary step to catch criminals in the digital age. Solving crimes can be difficult. It is the core pillar of a free and democratic society. Criminals will likely deploy other crypto services, and only law-abiding citizens will be affected. “
read more: UK Adds New Violations to Online Safety Bill
According to Beyond Encryption CEO Paul Holland, the messaging company’s concerns are “perfectly valid.”
He argued that OSB in its current guise directly contradicts the obligations imposed on businesses by the UK’s GDPR and the Information Commissioner’s Office (ICO). Holland agrees with the assessment that the requirement for cryptographic “backdoors” undermines end-to-end encryption and renders it “useless”.
Regarding the issue, ESET Global Security Advisor Jake Moore said: If we allowed backdoors in everyone’s messages, we would simply undermine all the good work we’ve done. “
A call to common sense
But Comparitech security specialist Brian Higgins argued that common sense should be compromised on the issue, suggesting that companies like WhatsApp and Signal focus too much on profit and revenue. . Higgins also questioned how enforceable the OSB limits really are.
“Providers of encrypted messaging platforms are urged to avoid attempts to prevent harm to children, young people and vulnerable populations by granting predatory and malicious actors full access. It has been hidden behind ‘user privacy’ for a long time,” Higgins said in a statement.
He said that while these predatory actors represent only a small fraction of users, the resources needed to identify and remove them and support prosecution are “contrary to the operators’ commercial business goals. ‘ claimed.
“Common sense dictates that compromises need to be made here, but concessions certainly impact revenue and profits. It is unclear how enforceable the OSB restrictions would be if implemented in their current form, but there is certainly a middle ground that can be reached by legislators and operators. Otherwise, the only victims will remain consumers,” he said.
Nevertheless, OSB’s troubles have threatened companies like Signal and WhatsApp to withdraw their services from the UK if the proposed legislation comes into force.
“When WhatsApp says it’s better blocked in the UK than weakening the privacy of encrypted messages, it’s a strong indication of how serious the problem is,” said Moore. .
Mr Forte argued that the issue poses a great risk to all British citizens, especially those involved in investigative journalism and human rights.
For example, WhatsApp is currently banned in China, North Korea, Syria, Qatar and UAE. In China, the messaging service was blocked because parent company Meta did not want to give the Chinese government permission to control messages sent on the service.
“Removing the core protections provided by E2EE would put the UK in an exclusive club of countries that we don’t think are particularly desirable from a privacy or human rights perspective,” Forte said.
According to Holland, leveraging network authentication data is one way to solve this problem. “There are ways we can build a more secure and trustworthy online world. By leveraging network authentication data, we can verify who you are online and maintain your anonymity. We can protect children and vulnerable people when online without affecting their privacy and privacy.”
Image credit: guutesk7 / ink drop Shutterstock.com
