alecm

@alecm@alecmuffett.com

7,980 posts

302 followers

Blog: alecmuffett.com
Profile: alecmuffett.com
Homepage: alecmuffett.com

INDEX: Religion, Spirituality, & Religious Kooks on the #Darknet

It used to be that people got drugs on the “darknet”*; now they get “Soul-Raising Sessions with Shiva” *Aside: there is no “darknet”, there is only “browser software and communications protocols with better-than-typical security.” Source. Bible4u uncensored Bible for Darknet https://bible4u2lvhacg4b3to2e2veqpwmrc2c3tjf2wuuqiz332vlwmr4xbad.onion/ Welcome To Meru University – A Spiritual University For Advanced Initiates https://w4r7ow7g7qj2mpbjqfoqgjzl442caal62mi3wcml7rwdsyfahydh2zqd.onion/ HeartsCentre: Experience…
Advice to a Novice Infosec: Work Commitment and Personal Life

Dear Novice Infosec, I will probably get criticised for writing this, but dammit, I’m now at a point in my life where I don’t have to care about that any more, so I might as well exercise this freedom for “good”. Every so often you will encounter some fool trying to “gatekeep” access to the…
So @pwnallthethings decided to try calling out @wcathcart and @WhatsApp as “scanning content” like Apple; here’s why that’s incorrect & misleading

First up: a disclaimer: I worked at Facebook between 2013-16 and I led the team which built “Messenger Secret Conversations”, referenced below. I know my shit, but I may be a little dated. Also: I am currently working on an Internet-Draft with the intention of it becoming an RFC, to help people understand and falsify…
A “Duck Test” for End-to-End Secure Messaging

I’ll be presenting this to the CFRG (Crypto Forum Research Group) at IETF 111, late on Friday evening (London time) “A ‘Duck Test’ for End-to-End Secure Messaging”https://alecmuffett.com/alecm/ietf-111/draft-muffett-e2esm-v1.18a.pdf It’s a simple, robust, and easily understood metric for people to use when judging assertions like: “The GCHQ ‘Ghost’ Proposal does not harm End-to-End Security” …claims which are popular in…
A long thread discussing End-to-End Encryption with @terrorwatchdog …

This is possibly the longest and politest thread I’ve had on Twitter; it’s required some unpicking to make it into a linear narrative but I’ve done my best, below. PART 1 THREAD: That’s a great question, and there are benefits to end-to-end technologies in several dimensions – to the people who use it, to the…
#Identity, #OnlineSafety & #AgeVerification – notes on “Can facial analysis technology create a child-safe internet?”

A few days ago I was asked some questions by Alex Hern, towards an article which came out in today’s Observer. In response, I sent him an essay, which I attach mildly edited and with entirely rephrased questions (to avoid quoting) attached below… Question: what are the main challenges of online identity? I’m going to…
The unexpected difference between “Age Verification” and “AgeVerification”

Following my previous blogpost which provides a pre-formatted Twitter search query for issues around “end to end encryption”, I decided to build something similar for Twitter discussion surrounding age-verification… and have discovered something rather odd… Simply: you can do a relatively-enormous search across verbose, abstract text strings like “age assurance” and “verification of children online”,…
TwitterSearch #ageverification

Long search with many, nuanced terms CLICK HERE FOR SEARCH Blunt search for “age verification” CLICK HERE FOR SEARCH “age verification” List of relevant Twitter accounts CLICK HERE FOR PEOPLE LIST
This is your occasional reminder that some self-styled “privacy” activists will unwisely demand ALL of 1/ software monoculture 2/ gratuitous interoperability 3/ scraping protection; these are bad ideas singularly, and worse when combined

It would be a massively bad idea for everyone to use the same software From 2019, Ashkan Soltani writes: Resulting Thread Screencap Screencapped because Twitter limits unrolling of old threads – if you want to read the thread in-context, click HERE – plus Ashkan now blocks me because he doesn’t like being argued with, which…
This is an important and awesome thread on #ANOM #TrojanShield by @granick (+ unrolled)

Unrolled The #ANOM #TrojanShield news is really disturbing. I'm surprised that Twitter is not more up in arms. First, let's remember that everything we know right now is FBI public relations. This is the best story they can tell for why the public should support #TrojanShield. We don't really know what happened. But some of…
#UyghurTribunal Day 4

#UyghurTribunal Day 4: An anonymous PRC former camp guard is giving key testimony from Germany, where he has been given asylum. He testifies that all #Uyghurs are treated as political prisoners (terrorists, enemies of the state), also that "the rules are different in #Xinjiang". Describes torture methods designed to extract confessions: beating; inserting a pipe…
BBC Instagram: Pakistani journalists under attack, censorship

https://www.instagram.com/tv/CPrwjgRMUJ9/

Dropsafe

My Profile

Your Profile

INDEX: Religion, Spirituality, & Religious Kooks on the #Darknet

Advice to a Novice Infosec: Work Commitment and Personal Life

So @pwnallthethings decided to try calling out @wcathcart and @WhatsApp as “scanning content” like Apple; here’s why that’s incorrect & misleading

A “Duck Test” for End-to-End Secure Messaging

A long thread discussing End-to-End Encryption with @terrorwatchdog …

#Identity, #OnlineSafety & #AgeVerification – notes on “Can facial analysis technology create a child-safe internet?”

The unexpected difference between “Age Verification” and “AgeVerification”

TwitterSearch #ageverification

This is your occasional reminder that some self-styled “privacy” activists will unwisely demand ALL of 1/ software monoculture 2/ gratuitous interoperability 3/ scraping protection; these are bad ideas singularly, and worse when combined

This is an important and awesome thread on #ANOM #TrojanShield by @granick (+ unrolled)

#UyghurTribunal Day 4

BBC Instagram: Pakistani journalists under attack, censorship