Glyn MoodyNov 9, 2023
EU-wide digital wallet: MEPs reach deal with Council - https://www.europarl.europa.eu/news/en/press-room/20231106IPR09006/eu-wide-digital-wallet-meps-reach-deal-with-council this is an absolute disgrace, it will open up everyone in EU to invisible, unstoppable government surveillance. shame on @EU_Commission and @Europarl_EN #eidas #qwacs details: https://www.techdirt.com/2023/11/03/eu-tries-to-slip-in-new-powers-to-intercept-encrypted-web-traffic-without-anyone-noticing/
EU-wide digital wallet: MEPs reach deal with Council | News | European Parliament

Parliament and Council negotiators reached a provisional agreement on Wednesday on the creation of a pan-European digital identity framework.

Show threadKevin Karhan Nov 9, 2023

@glynmoody @EU_Commission Agreed: That shit provides no benefit for the end user but solely enables #Cyberfacism and #PoliceState...

Literally making it possible to delete people from registries and locking them out of their identity makes it trivual to commit #ForcedDisappearance and illegally #deport and #denaturalize citizens into being #stateless.

A wet dream for #Christofacists like #Orban and #LePen...

Show threadBuridan's procrastinator ⁂Nov 9, 2023

@kkarhan @glynmoody

#EU #trilog and virtual trolley problem experts:

what are the next opportunities to stop this trainwreck?

Show threadGlyn MoodyNov 9, 2023
@quincy good question; I suppose we just have to kick up a big stink until they see sense, but we don't have much time @kkarhan
Show threadThomas Ekman JorgensenNov 9, 2023
@glynmoody @quincy @kkarhan I am not sure that I understand the issue: Does the use of one certificate make the issuer able to see everything that I do when not using that certificate?
Show threadGlyn MoodyNov 9, 2023
@thomasjorgensen @quincy @kkarhan a government - or rather its intelligence agency - could use a certificate claiming falsely to be any entity, allowing them to intercept traffic to that entity, then pass it on (man in the middle attack). even though the browser maker knew this was false, they would be forbidden from revoking the cert...
Show threadErik JonkerNov 9, 2023
@glynmoody @thomasjorgensen @quincy @kkarhan ...but that in itself is not something new, a government intelligence being able to intercept my traffic, for me more important are the safeguards and legal framework around it ? πŸ€”
Show threadBuridan's procrastinator ⁂Nov 9, 2023

@ErikJonker

Such a backdoor must demonstrably not exist. That's the only guarantee worth anything in the merciless digital world.

A system is compromised or it isn't, however much one could desire lawful interception in some cases.

@glynmoody @thomasjorgensen @kkarhan

Show threadErik JonkerNov 9, 2023
@quincy @glynmoody @thomasjorgensen @kkarhan ...so then an ordinary phone tapped (voice) is also unacceptable in all circumstances ?
Show threadBuridan's procrastinator ⁂

@ErikJonker Making every phone undetectably tappable is unacceptable, as far as I am concerned, yes.

@glynmoody @thomasjorgensen @kkarhan

Nov 9, 2023 at 10:37amWeb
Show threadKevin Karhan Nov 9, 2023

@quincy @ErikJonker @glynmoody @thomasjorgensen +9001%

I don't consider phomesto be secure at all.

And everyone who believes a centralized messenger like @signalapp or a privider like @protonmail will save their ass is either completely ignorant of cases besides #EncroChat & #ANØM or prefers to lie to oneself over the cold reality.

And it's not like I am the only one who works against #Cyberfacism...

And if that means I've to use a CB Radio & AFSK shit so be it!
https://github.com/KBtechnologies/PocketCrypto

GitHub - KBtechnologies/PocketCrypto: An airgapped encryption/decryption device for off-grid communication

An airgapped encryption/decryption device for off-grid communication - KBtechnologies/PocketCrypto

GitHub
Show threadErik JonkerNov 9, 2023
@quincy @glynmoody @thomasjorgensen @kkarhan ...ofcourse there must be checks& balances, legal framework, reporting (ex-post) etc, but some kind of surveillance in specific circumstances, controlled by law, must be possible, also in democratic societies. Not saying the EU proposal is without faults, i have not analysed it thoroughly...
Show threadBuridan's procrastinator ⁂Nov 9, 2023

@ErikJonker

When there's a legitimate target for tapping, that person can still be targeted with the right resources.

With due process.

But generalized mandated insecurity doesn't solve anything.

@glynmoody
@thomasjorgensen @kkarhan