Joseph Lorenzo Hall, PhD

1/ Huge win for encryption, confidentiality, and integrity in the EU with new text for the CSA proposal:

"Cybersecurity measures, in particular encryption technologies, including end-to-end encryption, are critical tools to safeguard the security of information within the Union

Jun 12, 2023 at 9:40pmWeb
Show threadJoseph Lorenzo Hall, PhDJun 12, 2023
2/ as well as trust, accountability and transparency in the online environment. Therefore, this Regulation should not adversely affect the use of such measures, notably encryption technologies.
Show threadJoseph Lorenzo Hall, PhDJun 12, 2023
3/ Any weakening or circumventing of encryption could potentially be abused by malicious third parties.
Show threadJoseph Lorenzo Hall, PhDJun 12, 2023
4/ In particular, any mitigation or detection measures should not prohibit, make impossible, weaken, circumvent or otherwise undermine cybersecurity measures irrespective of whether the data is processed at the device of the user before the encryption is applied or
Show threadJoseph Lorenzo Hall, PhDJun 12, 2023
5/ while the data is processed in transit or stored by the service provider."
Show threadDennyJun 12, 2023
@joebeone Another Brexit Benefit, yay 😢​
Show threadJoseph Lorenzo Hall, PhDJun 12, 2023
@denny damn, I did not think about it like that! Lots of hard work to do on the UK OSB
Show threadDennyJun 12, 2023
@joebeone We have bailed out of so many things that were benefitting everybody who hadn't just shorted a load of stock or currency. 😭
Show threadPatrick TownsendJun 14, 2023
@joebeone Good news indeed. So many compliance regulations are weak on this point. GDPR addresses pseudonomisation, but not the integrity of an encryption implementation.