Andy Yen says draft safety standards ‘would force online services … to access, collect and read users’ private conversations’
What the hell Australia. This isn't gonna magically help you prevent the next Emu war.
this post was submitted on 15 Dec 2023
744 points (98.9% liked)
Technology
60084 readers
2731 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
founded 2 years ago
MODERATORS
But it will help them in their corruption and self-enrichment, which is the entire purpose of all attempts to erode civil liberties.
Australia is a country with shit laws as someone who lives in Australia
Life is fine unless you somehow manage to break those stupid laws
For example there was that video of the one guy from Australia who wanted to ban anime, yeah some of our politician's are that stupid
Thankfully anime isn't banned completely but hentai is which I find stupid because it's fictional drawings
load more comments
(2 replies)
The emu are watching. Waiting. They cannot be stopped.
Or Kangawars. Or Toadwars. Or Kangatoadwars becaue you know those bastards are gonna fuck and make a super beast death machine animal...thing.
I recently switched my email from gmail to proton mail, because fuck google's.. well... everything. Glad to hear that Proton Mail keeps fighting for privacy!
I changed back when google got rid of the free "mail for your domain" and frankly its been a great thing for me. They keep announcing new things that replacing my existing apps.
They have a password manager now that I use. They are finally adding actual fuction to their online drive storage so I can sync files and backup photos.
Its been well worth the price for me. If only they had an office suite lol
The only thing I haven't found a good replacement for was how G Drive also handles Office style documents. I make use of that a lot, especially from my phone. But I agree, Proton Mail hasn't been painful one bit.
Seriously? My workplace uses google drive, and many documents are made with word. ... A very common problem is that sometimes someone opens a word doc from the web interface of google drive - which automatically can conveniently opens it with google docs, which totally screws up the formatting and then autosaves it.
(I hate google, and I resent that even after I've removed all aspects of it from my home & personal usage, I still have to use it at work.)
Dude, that email alias feature is the best thing about their password app! I've started using it all the time for services, new and old. Will make it easy as hell to find those selling my info.
Yeah the email alias rock. Especially when I was car shopping recently.
Want my email? Sure, here you go. SPAM? BEGONE, FOREVER BEGONE!
To everyone saying they've changed to protonmail, check out https://simplelogin.io/ , owned by proton and free for all paying proton members. Unlimited email aliases so you can have a unique email per service. The apps also on fdroid.
Why would I switch from Firefox relay that gives unlimited aliases at 1/4 of the price?
You dont have to switch but if someone is paying for Proton than they can utilize it for no extra charge
Ooh so if you are already a Proton Other Things subscriber you get the unlimited alias version for free? Because that's an excellent reason.
They should make that more clear in the pricing page.
Thanks!
Yeah I wish they advertised that because it's an excellent deal. I don't know if the free Simplelogin Premium applies to all levels of subscription plans but Unlimited for sure has it. Been using it and it's amazing, it allows you to add PGP encryption through protonmail and simplelogin.
I didn't try Proton's solution, but free Relay was blocked at some services I tried to use it. It was so weirdly specific since no one really knows about them, so I guess some web admins has enough time on their hands to create a whitelist of all mail services they support, and moz.com wasn't there.
I just had a company refuse to send to mozmail.com, thought they managed to charge the credit card just fine and the email address didn't throw an error on sign up. Figured it out on phone with support so they have a record of exactly why they lost that sale worth a few thousand dollars. I'd like to think they'll learn but more likely the only lesson learned was me re: shopping there.
There are github repositories where people curate a list of domains providing temporary emails or email aliases and admins can just point to the maintained list to block.
In the ~20 I've created so far I've had 2 services that wouldn't accept simple login. For those I've used proton mail's built in email alias service where you get 15 aliases with their proper domain.
I'm just finishing up that transition myself and glad to hear I made a good choice!
Same, using Proton mail and I am now blissfully Google free. Something else I found the holidays good for is finding out all the old accounts I have floating out there from sites that I interacted with over the years so I can cancel them or change the email if i decide to keep them. But, no more Google! Next on my list is Amazon.
load more comments
(8 replies)
The eSafety commissioner, Julie Inman Grant, has proposed cloud and messaging service providers should detect and remove known child abuse material and pro-terror material “where technically feasible” – as well as disrupt and deter new material of that nature.
The eSafety regulator has stressed in an associated discussion paper it “does not advocate building in weaknesses or back doors to undermine privacy and security on end-to-end encrypted services”.
I so love these magic wand-waving legislators. "Spy on your users and control what they do on your encrypted platform, but in a way that doesn't break encryption or violate privacy..."
The Australian government would have you believe that we're in the middle of some kind of CP endemic and everyone needs to suffer for it.
This will catch precisely nobody, as the criminals will immediately move to a different platform, of which there are many.
I host my own mail. If the AFP want to inspect it, they'll need a warrant.
load more comments
(4 replies)
Good. I fully support them. Fuck this shit
This is the best summary I could come up with:
The eSafety regulator has stressed in an associated discussion paper it “does not advocate building in weaknesses or back doors to undermine privacy and security on end-to-end encrypted services”.
But privacy and security groups argue the draft standards, as written, could allow the eSafety commissioner to force companies to compromise encryption to comply.
Andy Yen, the founder and chief executive of Proton, told Guardian Australia the proposed standards “would force online services, no matter whether they are end-to-end encrypted or not, to access, collect, and read their users’ private conversations”.
“These proposals could not only force companies to bypass their own encryption, but could put businesses and citizens at risk while doing little to protect people from the online harms they are intended to address,” he said.
A spokesperson for the eSafety commissioner said Inman Grant welcomed feedback on the draft standards – including on the technical feasibility exception.
“Having mandatory and enforceable codes in place, which put the onus back on industry to take meaningful action against the worst-of-the-worst content appearing on their products and services, is a tremendously important online safety milestone,” Inman Grant said.
The original article contains 468 words, the summary contains 187 words. Saved 60%. I'm a bot and I'm open source!
Hey inman grant if you ever see this, fuck you
We know your acting intentionally obtuse
Organisations and groups who want to protect privacy should come up with ways themselves on how to protect their services from certain activities.
You mean like implementing strong data privacy measures and fighting regulators to protect them? That sounds like a good idea to me. If you’re interested, that is what the article is about.
load more comments
(2 replies)
But didn't proton give up some information to like the Finnish government or something like that a couple years back? Like I mean what they're doing now is good, but what about that other thing that happened?
They follow Swiss law. The Swiss govt had a legal warrant and they only provided legally required informationafter that.
It's not anarchic. They still have to abide by the law of their jurisdiction.
They gave up information to the Swiss government after they got a warrant, and due to the way Proton works, they were only able to give them the IP address so they could arrest the person, who was also Swiss. They didn’t compromise security, because they can’t.
They don’t respond to demands from other governments, and the Swiss government haven’t cooperated with other governments either, so far as anyone knows. In the end, there isn’t really anything the Australian government can do to them if they refuse to create a backdoor for them.
It's worse then you think. As a Australian citizen you are required to comply with any order which includes leaking code and introducing back doors. Failure to comply or notifying your employer about the request will result in federal charges with a sentence between 20 to 60 years in prison. The legislation that contains this was passed almost a year ago.
Recently there's been a wave of mass disruptions and data theft in Australia including most of our ports halting operations for a day and one of our largest phone and internet service providers being compromised where millions of peoples personal information like driver licences and passports being leaked.