fsebugoutzone.org:9999

       Post AIeTMOE0UaUPST0EXw by adam@hax0rbana.social
 (DIR) More posts by adam@hax0rbana.social
 (DIR) Post #AIeTMOE0UaUPST0EXw by adam@hax0rbana.social
       2022-04-20T20:38:00Z
       
       0 likes, 2 repeats
       
       Apparently Apple is really intent on backdooring end to end encryption so they can run algorithms on people&#39;s private content.https://www.theguardian.com/technology/2022/apr/20/apple-says-new-child-safety-feature-to-be-rolled-out-for-uk-iphonesThey ditched (or more realistically: postponed) this in the US because people were outraged (largely the information security and civil rights communities).It makes me sad, not because I like Apple (I don&#39;t), but because they were the giant that was advertising that they were pro-privacy.
       
 (DIR) Post #AIeTgzfoy8VdOWpygy by adam@hax0rbana.social
       2022-04-20T20:41:42Z
       
       0 likes, 0 repeats
       
       I guess on the upside, this means that projects like the Pinephone, GrapheneOS, and the other open source technologies get a boost.  They&#39;re now *very* *clearly* the better options at protecting people&#39;s information.  IMO, they always were, but now it&#39;s no longer just the threat of theoretical access to your private data.
       
 (DIR) Post #AIeUGck7hZV2hYq6aG by stevelord@mastodon.social
       2022-04-20T20:48:08Z
       
       0 likes, 0 repeats
       
       @adam what people miss is that the move isn&#39;t about protecting kids on the messaging network hardly any kids use. Its about normalizing the idea of scanning content on your device. That boundary, once crossed will be chipped away till they&#39;re caught doing things on your device, and they&#39;ll use this to handwave it away.
       
 (DIR) Post #AIeYMWmv9dMHmrDcTw by rpf@mastodon.social
       2022-04-20T21:34:01Z
       
       0 likes, 0 repeats
       
       @adam this was enabled in the US a few months ago. The on-device scanning of photos prior to saving it to iCloud is the one that has been suspended.
       
 (DIR) Post #AIeYVC9VFNUwOOujjc by adam@hax0rbana.social
       2022-04-20T21:35:36Z
       
       0 likes, 0 repeats
       
       @rpf 😭
       
 (DIR) Post #AIeaUCuf8KSON1d4zo by carl@chaos.social
       2022-04-20T21:57:49Z
       
       0 likes, 0 repeats
       
       @adam Adam&#39;s Apple posting...*scnr*
       
 (DIR) Post #AKFYSFAynMMA0dSJdo by sumek@mastodon.social
       2022-06-07T15:51:28Z
       
       0 likes, 0 repeats
       
       @adam &quot;All the scanning is carried out “on-device”, meaning that the images are analysed by the iPhone itself, and Apple never sees either the photos being analysed or the results of the analysis&quot;
       
 (DIR) Post #AKFZ60Elkz31GDBeHA by ArneBab@rollenspiel.social
       2022-06-07T15:58:38Z
       
       0 likes, 0 repeats
       
       @adam I actually don’t mind having a user agent that alerts me of dangers I might have missed.After all, Apple is already executing all kinds of algorithms on the messages.But how can I trust that that’s all they are doing when their tools are not Free Software, buildable from source, and fully auditable?
       
 (DIR) Post #AKFa13ahxZDiAVec1w by adam@hax0rbana.social
       2022-06-07T16:08:58Z
       
       0 likes, 0 repeats
       
       @sumek Yes, I am aware of what Apple said. Just take a second and think about their claim.They say that Apple never sees the results. So who does see the results? Why doesn&#39;t Apple disclose who sees the results? Why do they talk around this point and evade the question?If nobody sees the results, what purpose does the scanning serve? They&#39;re investing money to engineer this system to detect nudity and then not telling anyone whether they find it?
       
 (DIR) Post #AKFaTM3OuQMrXQZIGm by adam@hax0rbana.social
       2022-06-07T16:14:06Z
       
       0 likes, 0 repeats
       
       @sumek And that doesn&#39;t even get into the security concerns of anyone (not just children) being hacked by a malicious image that was being processed by this extra code that is doing the analysis.We know that there are a lot of exploits in the wild for iOS https://www.bleepingcomputer.com/news/security/2021-mobile-security-android-more-vulnerabilities-ios-more-zero-days/
       
 (DIR) Post #AKFccn2k8GVtl6t5KC by max@smeap.com
       2022-06-07T16:38:09Z
       
       0 likes, 0 repeats
       
       @adam @thegibson “On device” is still a privacy win from every other cloud provider’s in-cloud backdoors.Apple continues to state that they have no keys in iCloud and this system is designed to leave E2E encryption working, so it has to run on the user’s device with the files unencrypted at the ends of the process.It’s still not great that they are being forced by laws to run these snitch apps on user’s devices, but they are still preserving as much privacy in the process as they can, I feel
       
 (DIR) Post #AKFh6db4DZMCxvQjOS by adam@hax0rbana.social
       2022-06-07T17:28:25Z
       
       0 likes, 0 repeats
       
       @max @thegibson Apple has access to all backups stored in iCloud. https://www.theverge.com/2020/1/21/21075033/apple-icloud-end-to-end-encryption-scrapped-fbi-reuters-reportIt&#39;s not an either they backdoor the cloud service OR they backdoor the device, it&#39;s that they&#39;re doing both.There are no laws in the US that require them to implement any message scanning. They are choosing to do this.
       
 (DIR) Post #AKFicM6UtMhNvsos0u by max@smeap.com
       2022-06-07T17:45:14Z
       
       0 likes, 0 repeats
       
       @adam @thegibson Apple was stopped from fully implementing iCloud E2E because the FBI claimed they need it for child porn prevention. Apple developed this on device scanning so that they could turn backup E2E (back) on.It is an OR from the way Apple tells it: the outrage over the on device scanner is what has caused the issue with iCloud backups, because the FBI gets what they ask for and there are a lot of laws on the US books that say that.
       
 (DIR) Post #AKFjsQvunvfhUw6H7Q by adam@hax0rbana.social
       2022-06-07T17:59:28Z
       
       0 likes, 0 repeats
       
       @max @thegibson Again, there are no laws that require Apple to implement this.  They could just turn on e2e encryption for iCloud backups and not implement any on-device scanning.This would be similar to all the other systems which do this like Signal, Mega, and so on.The bottom line is that it is Apple&#39;s choice. I am not going to praise them for implementing a bad idea just because it&#39;s not the worst possible idea.
       
 (DIR) Post #AKFkQqsqpLCppP4xcG by max@smeap.com
       2022-06-07T18:05:41Z
       
       0 likes, 0 repeats
       
       @adam @thegibson There’s all sorts of child protection laws on the books that gives the FBI huge access to American data!Mega moved to New Zealand or somewhere like that to avoid US jurisdiction and US laws for precisely this reason! Even your own examples don’t make sense.I can absolutely believe that Apple’s hands are tied by US laws because those laws *exist* and their data centers are primarily on US soil.
       
 (DIR) Post #AKFosTXRcL4FLhUfIW by adam@hax0rbana.social
       2022-06-07T18:55:28Z
       
       0 likes, 0 repeats
       
       @max @thegibson Lets get the facts correct. Four MegaUpload executives were charged with racketeering and money laundering, not with failing to implement content scanning in their service.Can you point to one of these laws that requires content scanning?  If you provide a title and section, we can clarify the facts. You keep saying there are many of these laws, I&#39;m just asking for a single example.
       
 (DIR) Post #AKFqAVO7ZxwYFhIHfE by max@smeap.com
       2022-06-07T19:09:56Z
       
       0 likes, 0 repeats
       
       @adam @thegibson How far back do you want to go in the history of FBI and police wiretapping laws in the US for examples? The 90s? The 1960s? The 1930s?I don’t have to google it for you, pal.