Dropsafe

The more I think about it, the more I realise quite what a *genius* ploy #messenger #interoperability is for those who want to surveil the world or resist it gaining “mass end-to-end encryption” #IOP

2022/03/31 14:21:56 BST

Interoperability as currently called-for … extends the social graph beyond individual platforms so that they crosslink with each other, leak disjoint identities, etc; see: XKeyScore sows confusion regarding any particular platform’s security (“…am I using E2E in this group chat, or not?”) any new, secure platform that gets big will be hobbled eventually, to the
(more…)

end to end encryption interoperability
MatrixDotOrg actively calling for everyone’s security to be weakened so that perhaps more people will adopt them

2022/03/26 10:52:40 GMT

Unroll 2/ No exaggeration about “extremism” here, for instance this is today’s blogpost from @matrixdotorg regarding the proposal, and frankly I am horrified in multiple dimensions that they could propose any of this, for the following reasons: 3/ In reverse order: THE WHOLE POINT of an end-to-end encrypted environment is that “your data” is locked
(more…)

end to end encryption interoperability matrix regulation
Explaining fundamental problems of the EU #DMA demanding instant #messenger #interoperability, via fun analogies with food & sex — #endtoendencryption #e2ee

2022/03/25 22:00:00 GMT

Thomas Urbain (AFP) Thanks for getting back to me. Here are some questions: What are the main issues with implementing interoperability for messaging apps ? Would it require standard protocols to be implemented by all participating players ? How far are we from it becoming a reality ? Could end to end encryption work from
(more…)

end to end encryption interoperability privacy regulation
Notes for interview with @DanMilmo in saturday’s @Guardian regarding @Twitter, @TorProject and bypassing censorship

2022/03/12 00:01:00 GMT

Dan asked me some questions in respect of an upcoming article, and this is what I wrote in response, as well as one additional postscript which I added for Dan, and another postscript from another conversation I had elsewhere, which I am sharing here for relevance. Very little of my input survived the editing process.
(more…)

facebook facebookcorewwwi onion tor tor project twitter
Why offer an Onion Address rather than just encourage browsing-over-Tor?

2022/03/08 22:56:19 GMT

There are a bunch of reasons to launch an onion site, and a bunch of benefits, all of which have provided value to platforms such as Facebook, the BBC or NYT Onions. The first benefits are authenticity and availability: if you are running Tor Browser and if you click/type in exactly the proper Onion address,
(more…)

onion online abuse tor tor project
Notes on mining the #facebookcorewwwi onion address

2022/03/01 23:45:48 GMT

Seeing as it has been conveniently leaked by Frances Haugen, I thought it would be nice to write briefly on the mining of the (now defunct) Version-2 Tor Onion address which was known as “facebookcorewwwi” — the v2 onion-address for Facebook. As already reported — because we shared that much — the onion address was a
(more…)

facebook facebookcorewwwi onion tor tor project
Long-deferred reading finally arrived from Amazon

2022/03/01 22:03:39 GMT

(more…)
On Nuclear War and Eating cold Pop-Tarts

2022/02/25 23:44:19 GMT

I was going to simply quote-tweet "Can confirm" to this hilarious and accurate joke; but then I made the mistake of reading the replies from butthurt younguns shouting "…but when did Gen-X fear World War 3?" People: It literally defined our generation. I got a degree in astronomy is that amongst all the US-Soviet tub-thumping
(more…)

generation x nuclear war pop tarts
Increasingly frantic attempts by the #AgeVerification & #OnlineSafetyBill community to dissuade people of the obvious logic that…

2022/02/23 14:32:57 GMT

Increasingly frantic attempts by the #AgeVerification & #OnlineSafetyBill community to dissuade people of the obvious logic that: in order to exclude a community from a website, just as much as to include one, in both cases you MUST process their data: I believe that the rationale is this: that the #ChildProtection and #OnlineSafety advocates DO
(more…)

age assurance age verification online harms online safety
“UK government opens consultation on medic-style register for Brit #infosec pros”

2022/01/26 08:41:27 GMT

#HEADSUP — I blogged the screencapped post in 2013, and turns out that I was right: "UK government opens consultation on medic-style register for Brit #infosec pros" …it's a great and obvious way for Gov't both to whip-in dissent from the UK infosec community: Props to @GazTheJourno for the article: https://www.theregister.com/2022/01/25/ukgov_cybersecurity_profession_regulation_ukcsc/ My original concern was
(more…)

cyber regulation
The Fallacy of “Privacy vs: [Children’s] Safety”: why Privacy always wins over any singular concern, and why deployment of #EndToEndEncryption is essentially a binary choice, explained for #NoPlaceToHide

2022/01/20 22:41:37 GMT

The #NoPlaceToHide campaign has, as-ever, flushed out a lot of argument like this: This is pretty easily explained and dismissed; but first, a quick digression. Metcalfe’s Law (and its nitpicks) There’s a famous law of communications that the ‘value’ (whatever that means) of a ‘network’ increases as the square of the number of participants; this
(more…)

end to end encryption metcalfe's law noplacetohide online abuse online safety
How #NoPlaceToHide is cover for creation of #DigitalStopAndSearch for the Global Internet

2022/01/20 17:41:01 GMT

https://www.theregister.com/2022/01/20/no_place_hide_campaign_anti_e2ee_ukgov/ Re: this @GazTheJourno observation that he makes about #NoPlaceToHide, deserves a LOT of public discussion: > prevents them from trawling through conversations at random and seizing on anything they don’t like the look of… Quite. This is #DigitalStopAndSearch: This is a point which I made to Baroness @NickyMorgan01 but have not yet heard back
(more…)

end to end encryption noplacetohide stop and search sus laws