Privacy

Another layer of secrecy is being stripped from Australian internet users. At a time when users are being forced to and over personal ID data in the name of age verification, it seems that governments will be quick in demanding that internet companies have to hand over such data to them.

It was announced that internet companies will now be forced to reveal the ages of active users supposedly so that the Australian Government can get a grip on the impact these platforms are having on Australian kids.

Last week the Albanese Government announced sweeping reforms intended to boost transparency and accountability for digital platforms used by Australians including popular social media, messaging and gaming services. Communications Minister Michelle Rowland said the government had amended the Basic Online Safety Expectations to better address new and emerging online safety issues and help hold the tech industry accountable.

The new Determination will also require companies to provide, on request of the eSafety Commissioner, a report on the number of active end-users of services in Australia, broken down according to the number of users who are children or adults.

eSafety Commissioner Julie Inman Grant said that without information on users' ages, the Government was flying blind. Inman Grant said these strengthened powers meant her office would now be able to find out precisely how many children are on specific services. She said:

This needs to be a starting point of understanding how many under-aged users are on these platforms today, otherwise governments are flying blind. If we're serious about effectively managing the ages and stages at which a child can partake in social media, we need to move forward with all technology companies deploying effective age-assurance systems.

EU governments might soon implement messaging surveillance, euphemistically labelled as chat control, based on a new proposal by Belgium's Minister of the Interior. According to a leak obtained by Pirate Party MEP and shadow rapporteur Patrick Breyer , this could happen as early as June.

The proposal mandates that users of communication apps must agree to have all images and videos they send automatically scanned and potentially reported to the EU and police.

This agreement would be obtained through terms and conditions or pop-up messages. To facilitate this, secure end-to-end encrypted messenger services would need to implement monitoring backdoors, effectively causing a ban on private messaging. The Belgian proposal frames this as upload moderation, claiming it differs from client-side scanning. Users who refuse to consent would still be able to send text messages but would be barred from sharing images and videos.

The proposal first introduced on 8 May, has surprisingly gained support from several governments that were initially critical. It will be revisited on 24 May, and EU interior ministers are set to meet immediately following the European elections to potentially approve the legislation.

X (Twitter) is now mandating the use of a government ID-based account verification system for users that earn revenue on the platform -- either for advertising or for paid subscriptions.

To implement this system, X has partnered with Au10tix, an Israeli company known for its identity verification solutions. #

The move raises profound questions about privacy and free speech, as X claims itself to be a free speech platform, and free speech and anonymity often go hand-in-hand.

X explains:

Starting today, all new creators must verify their ID to receive payouts. All existing creators must do so by July 1, 2024, the update to X's verification page now reads:

 

 

 

European police chiefs have called for Europeans to be deprived of basic internet security used to protect against Russian & Chinese spies, scammers, thieves and blackmailers. The police chiefs write:

Joint Declaration of the European Police Chiefs

We, the European Police Chiefs, recognise that law enforcement and the technology industry have a shared duty to keep the public safe, especially children. We have a proud partnership of complementary actions towards that end. That partnership is at risk.

Two key capabilities are crucial to supporting online safety.

First, the ability of technology companies to reactively provide to law enforcement investigations  --  on the basis of a lawful authority with strong safeguards and oversight  -- the data of suspected criminals on their service. This is known as lawful access.

Second, the ability of technology companies proactively to identify illegal and harmful activity on their platforms. This is especially true in regards to detecting users who have a sexual interest in children, exchange images of abuse and seek to commit contact sexual offences. The companies currently have the ability to alert the proper authorities  -- with the result that many thousands of children have been safeguarded, and perpetrators arrested and brought to justice.

These are quite different capabilities, but together they help us save many lives and protect the vulnerable in all our countries on a daily basis from the most heinous of crimes, including but not limited to terrorism, child sexual abuse, human trafficking, drugs smuggling, murder and economic crime. They also provide the evidence that leads to prosecutions and justice for victims of crime.

We are, therefore, deeply concerned that end to end encryption is being rolled out in a way that will undermine both of these capabilities. Companies will not be able to respond effectively to a lawful authority. Nor will they be able to identify or report illegal activity on their platforms. As a result, we will simply not be able to keep the public safe.

Our societies have not previously tolerated spaces that are beyond the reach of law enforcement, where criminals can communicate safely and child abuse can flourish. They should not now. We cannot let ourselves be blinded to crime. We know from the protections afforded by the darkweb how rapidly and extensively criminals exploit such anonymity.

We are committed to supporting the development of critical innovations, such as encryption, as a means of strengthening the cyber security and privacy of citizens. However, we do not accept that there need be a binary choice between cyber security or privacy on the one hand and public safety on the other. Absolutism on either side is not helpful. Our view is that technical solutions do exist; they simply require flexibility from industry as well as from governments. We recognise that the solutions will be different for each capability, and also differ between platforms.

We therefore call on the technology industry to build in security by design, to ensure they maintain the ability to both identify and report harmful and illegal activities, such as child sexual exploitation, and to lawfully and exceptionally act on a lawful authority.

We call on our democratic governments to put in place frameworks that give us the information we need to keep our publics safe.

Trends in crime are deeply concerning and show how offenders increasingly use technology to find and exploit victims and to communicate with each other within and across international boundaries. It must be our shared objective to ensure that those who seek to abuse these platforms are identified and caught, and that the platforms become more safe not less.

See article from reclaimthenet.org

Here we have Europol and the UK's National Crime Agency (NCA), teaming up to attack Meta for the one thing the company is apparently trying to do right. And that's implementing in its products end-to-end encryption (E2EE), the very, necessary, irreplaceable software backbone of a safe and secure internet for everybody. Yet that is what many governments, and here we see the EU via Europol, and the UK, keep attempting to damage.

But mass surveillance is a hard sell, so the established pitch is to link the global and overall internet problem, to that of the safety of children online, and justify it that way.

The Europol executive director, Catherine De Bolle, compared E2EE to sending your child into a room full of strangers and locking the door. And yet, the technological truth and reality of the situation is that undermining E2EE is akin to giving the key to your front door and access to everybody in it, children included, to somebody you trust (say, governments and organizations who like you to take their trustworthiness for granted).

But once a copy of that key is out, it can be obtained and used by anybody out there to get into your house at any time, for any reason. That includes governments and organizations you don't trust or like, straight-up criminals -- and anything active on the web in between.