DS Agent
TutaChat Control 1.0 lets Big Tech scan ALL your messages. π
And the EU wants this to continue. Decision is this WEDNESDAY.
β‘ Call your MEPs now! β‘
β‘οΈ https://fightchatcontrol.eu/
#ChatControl must be stopped because it:
π¨ Undermines Europe's digital sovereignty
π¨ Weakens everybody's security
Curious if your emails are safe? Check here which providers scan your data:
π https://tuta.com/blog/voluntary-scanning-google-microsoft
Gmail, Microsoft, Meta, LinkedIn: They already scan your messages - voluntarily! | Tuta
Voluntary Chat Control is already in place since 2021, named Regulation (EU) 2021/1232. Similar to scanning obligations in the UK and the USA, this regulation allows Big Tech to scan all your data. But what do services scan based on this regulation, do they also scan old messages, and what does this mean for data protection and privacy? A deep dive.
DigitalDigger@Tutanota interesting numbers. I would be interested in the false positive rate of those flags
Bill Zaumen@Tutanota I can send messages over gmail that Google can't scan because gmail supports IMAP 4, and my mail client supports GPG encrypted email. Google can still see subject lines and email addresses, but not the contents of those messages. My open-source mail client is not provided by Google. The catch: I don't know people who normally use GPG.
Harald Hannelius 
Jon George@jg @Tutanota GPG is used a lot more than one would think if you include indirect uses such as signing Debian packages. For "in case the house burns down" backups, I wrote a program that sets up a LUKS file system on a flash drive and mounts it, with the LUKS password (a long random one) stored on the flash drive in a GPG-encrypted file. I keep the flash drive with my house keys and don't take my GPG keyring with me.
Cyclist@Tutanota How do you propose to detect people recruited by the KGB to commit acts of sabotage? https://theins.ru/news/278528
Der Spiegel: Π ΠΠ΅ΡΠΌΠ°Π½ΠΈΠΈ Π΄ΠΈΠ²Π΅ΡΡΠ°Π½ΡΡ ΠΏΠΎ Π·Π°ΠΊΠ°Π·Ρ Π ΠΎΡΡΠΈΠΈ ΠΏΠΎΠ²ΡΠ΅Π΄ΠΈΠ»ΠΈ Π±ΠΎΠ»Π΅Π΅ 270 Π°Π²ΡΠΎΠΌΠΎΠ±ΠΈΠ»Π΅ΠΉ Π² ΡΠ°ΠΌΠΊΠ°Ρ Π°ΡΠ°ΠΊΠΈ Π½Π° Β«ΠΠ΅Π»Π΅...
Π ΠΠ΅ΡΠΌΠ°Π½ΠΈΠΈ Π±ΡΠ»Π° ΡΠΎΠ²Π΅ΡΡΠ΅Π½Π° ΡΠ΅ΡΠΈΡ Π΄ΠΈΠ²Π΅ΡΡΠΈΠΉ, ΠΊΠΎΡΠΎΡΡΠ΅, ΠΊΠ°ΠΊ Π²ΡΡΡΠ½ΠΈΠ» Der Spiegel, ΠΊΠΎΠ½ΡΡΠΎΠ»ΠΈΡΠΎΠ²Π°Π»ΠΈΡΡ ΡΠΎΡΡΠΈΠΉΡΠΊΠΈΠΌΠΈ Π·Π°ΠΊΠ°Π·ΡΠΈΠΊΠ°ΠΌΠΈ
Azarilhβ₯@Tutanota Wow. My country, Italy, for once is on the good side of history.
Elisabetta@gilraen79 Incredibile ma vero.
Dr. Sundancer@Tutanota I'm not a tech person: how can encrypted messages be scanned? Isn't that the whole pointof E2E encryption?
:ulfr:@ix9 If they somehow gain access to end users' devices, they can scan before sending / after reception. As long as one party of a conversation or group chat takes part with a compromised device, all contents decrypted by that device will leak. If they have a legal lever against vendors, new devices and updates to old ones will come pre-compromised f.ex. on the operating system level. Futute versions of iOS or Android will be forced to provide means for "lawful" interception. Which is in quotes because according to fundamental rights, there can be no such thing. @Tutanota
Epic Null@ix9 @Tutanota To explain it in a non-tech way:
Imagine you had a letter and a friend you want to send it to. I want to read your letter.
The envelope can only be opened by your friend.
This sounds safe, right?
Well, if I can install a camera on your shoulder (yes I consider it that invasive), I can read the letter either as you write it, or as your friend recieves it.
Chat control is the camera. The envelope is E2EE.
They will not actually break encryption. The encryption is sort of the envelope in classic postal mail and will not be touched.
Your chat tool is like a paper and pencil. Right now you use normal paper. They will take care you can only use thosehwrite through paper (known from paper forms).
Once you hit 'send': the write through form gets split - the pages are
1. For your envelope, which is transported safely
2. For them - to see if you do evil
ohir@ix9 @Tutanota Infrastructure is ready for the task, at least at Windows and Android. The e2e encryption is irrelevant, the message is accessed and assessed on the screen (or speakers) β the problem US tech companies had that what they do is illegal. They went to the politicians with some 0.00001% of value of this scam and um, get them convinced about a bright affluent future for all engaged parties.
aeva
PaweΕ GΓ³ralski
nokturnal@Tutanota Although Poland seems to be on proper side of the fence this time (can't believe it), but I've sent mail to be more sure anyway that politicans will do proper thing like show up on voting. At least they can't tell that they didn't know.
ε
Miakoda 
Nic3
Didek@Nic3 @Tutanota @AboutSignalNL
Signal won't be legal under such legislation.
@didek @Tutanota @AboutSignalNL so, the Chat Control is gonna lose :) (atleast that is what i think/hope)
Reid 
@Tutanota why do they keep up thag bullshit... The world is on fire, the united states is a rogue wildcard threatening to dismantle NATO, there's a war at the eastern border, internal issues like wealth inequality are tearing the union and its member states appart, but instead of focusing on that they keep trying to push for this shit.
Zelgaav@Tutanota a reminder that considering mechanisms to circumvent this abominable law once it's implemented misses a critical issue:
Circumventing the scanning puts you on the wrong side of the law, making you fair game for prosecution. You are now in the same bucket as the terrorists and CSAM distributors.
This is a classic authoritarian catalyst: change the law so you can "legally" persecute your enemies.
These kinds of power grabs must be stopped before they are approved in the first place.