Chatcontrol: EU Wants to Scan All Private Messages, Even in Encrypted Apps
Key topics
The EU's proposed ChatControl legislation aims to scan all private messages, including encrypted apps, sparking concerns about privacy and surveillance, with commenters debating the effectiveness and implications of such a measure.
Snapshot generated from the HN discussion
Discussion Activity
Very active discussionFirst comment
18m
Peak period
134
0-6h
Avg / period
17.8
Based on 160 loaded comments
Key moments
- 01Story posted
Sep 25, 2025 at 12:01 PM EDT
4 months ago
Step 01 - 02First comment
Sep 25, 2025 at 12:20 PM EDT
18m after posting
Step 02 - 03Peak activity
134 comments in 0-6h
Hottest window of the conversation
Step 03 - 04Latest activity
Sep 29, 2025 at 2:14 PM EDT
3 months ago
Step 04
Generating AI Summary...
Analyzing up to 500 comments to identify key contributors and discussion patterns
Want the full context?
Jump to the original sources
Read the primary article or dive into the live Hacker News thread when you're ready.
Sounds to me like the EU is looking to get a more formal approval to act on data they already have.
As the old saying goes, the price of freedom is eternal vigilance.
Prove it. Every statistic I've ever seen shows the exact opposite of this to be true.
This is literally, and provably, untrue. For example:
The Soviet Union: The Bolsheviks initially proclaimed that "the arming of the working people" was essential to prevent "restoration of the power of the exploiters". It was only later that they restricted private gun ownership.
The Nazis: Contrary to popular gun rights narratives, Nazi gun laws actually relaxed restrictions for most Germans while targeting specific groups. Sometimes authoritarianism is the same as populism.
Rwanda: Prior to the genocide, the government systematically distributed weapons to local administrators and militia groups while ensuring targeted populations remained defenseless.
Myanmar: Armed civilian resistance groups formed, but the were essentially wiped out by the overwhelming advantages in air power and heavy weaponry that an actual organized military had. The firearms were useless. Arguably, worse than useless as those who fought back died in large numbers.
Venezuela: The regime armed its supporters while systematically removing weapons from the general population. The population was well armed, they just couldn't fight back against an organized government response.
Really? Why does America, the country with the most guns by far, have the most gun deaths by far? It's very tiring arguing these very obvious points over and over.
No they haven't. Our system of checks and balances has. At no point has there been a civil war in which the US's citizens attempted to fight back against the US military. If there were, the citizens would lose without even presenting a challenge.
That's not true. The US Army spent 20 years and trillions of dollars trying to impose regime change on Afghanistan, but were defeated by a group (the Taliban) that had very little military capability beyond men with rifles and some explosives to make improvised bombs. (Yes, they also had decades-old weapons with which to shoot down helicopters.) Algeria's war of independence from France in the 1950s and early 1960s is another example where a group with very little in the way of military capability defeated one of the most powerful militaries in the world.
I don't necessarily buy the argument that the US should continue with the gun status quo just because all those guns would come in handy in a revolution, but you haven't successfully refuted the argument.
The Algerians hid within the population and gradually picked at the French, like flies biting a bull. Eventually the French got bored and wandered off to find a new form of entertainment. If anything the French lost to propaganda, not guns.
Yes, but we're discussing a civil war or revolution in the US, where the rebels or revolutionaries would be able to engage in terrorism and to hide within the population -- and where there are so many long guns in private hands that the defending force (the government) probably wouldn't be able to deprive the attacking force (the rebels) of long guns simply by punishing any civilian found with a long gun in their home.
The fact that we packed up and left eventually doesn't really change the fact that the US rolled over the men with guns like they weren't there in the early 2000's.
Which is a bit complicated here, as the EU has no real constitution and this 'law' (really a regulation) is a blatant violation of the constitutions of countries that did choose to establish secrecy of correspondence.
(there is another process which calls for a convention, but such a convention would have broad powers to change many things and so far the "two sides" (US rules tilt toward two parties rather than more) have been too scared of what might happen to do that)
https://en.m.wikipedia.org/wiki/Twenty-eighth_Amendment_of_t...
Only 59% turn out, and the vote won 67%. So in reality less than 40% of the population were for it.
I have vague memories of people saying that the treaty was indecipherable. The EU were like, "Here, vote yes for this big bag of 'misc', or else"
This wasn't the first time they reran a referendum for an EU treaty. They did it back in 2003!
https://en.m.wikipedia.org/wiki/Twenty-sixth_Amendment_of_th...
If the UK wanted to avoid BREXIT all they had to do was look a few miles to the west for the knack.
And the willingness and ability to enforce it. The current iteration of ChatControl is pushed by Denmark, which is at present the President of the Council of the European Union. The Danish Constitution itself enshrines the right to privacy of communication [0], but this is not stopping Denmark from wanting to ratify ChatControl anyway.
[0]: https://danskelove.dk/grundloven/72
Sometimes there are some mechanisms to block unconstitutional (or other regulation) laws from passing but they're limited
Not sure how that would apply at the EU level or even at the Danish level
I think it’s always the case, no? Unless the unconstitutional law is approved, there is nothing to dispute in court.
What the TLDR of the motivation behind this? Is it just politicians playing to their base (think of the children) or corporate lobbying. or religion, etc?
Seems to me that the negatives of passing something like this are super obvious and dystopian.
Generally speaking, there is a lot of dark money in Danish politics, and the EU has repeatedly flagged Denmark as a country lacking in transparency with regards to corporate lobbying: https://www.altinget.dk/artikel/eu-kritik-af-danmark-puster-...
Generally speaking, the Danish government also tends to behave in authoritarian ways. E.g., Denmark has wilfully violated EU regulations on data retention for many, many years. In 2021, a Danish court ruled that the Danish Ministry of Justice could continue its mass surveillance practices even though they were (and still are) illegal under EU law: https://www.information.dk/indland/2021/06/justitsministerie...
Currently Denmark is also trying to leverage its position as the President of the Council of the EU to legalise, on a EU-wide level, the form of data retention that Denmark has been illegally practising: https://ec.europa.eu/info/law/better-regulation/have-your-sa...
Sometimes it could be malice or personal gains. Sometimes, I think, it could be just a strong bias towards some idea that causes a mental blindness. Such blindness can happen to anyone, at any level of power (or lack thereof), politicians are not unique in this - the only difference is the scope of impact due to the power they have. And we aren't particularly filtering them against such behavior - on the contrary, I feel that many people want politicians to have an agenda and even cheer when they put their agenda above the actual reality, any consequences be damned.
In the charter, the protection of personal data and privacy is a recognized right. So chat control is also probably against the EU law.
I would hope the EU courts would disagree, but I'm not sure if anyone can say until it's tested directly.
> The CLS concludes that, in the light of the case law of the Court of Justice at this stage, the regime of the detection order, as currently provided for by the proposed Regulation with regard to interpersonal communications, constitutes a particularly serious limitation to the rights to privacy and personal data protection enshrined in Article 7 and 8 of the Charter.
https://data.consilium.europa.eu/doc/document/ST-8787-2023-I...
The right to private communications was modified by the ECHR to give an exemption for prevention of crime/protection of morals/etc.[1] and the right to protection of personal data exempts any legitimate basis laid down by law[2].
I imagine they'd be able to figure out some form of Chat Control that passed legal muster. Perhaps a reduced version of Chat Control, say, demanding secret key escrow, but only demanding data access/scans of those suspected of a crime rather than everyone.
Legal rulings also seem to indicate that general scanning could be permitted if there was a serious threat to national security, so once a system to allow breaking encryption and scanning is in place, then it could be extended to what they want with the right excuse.
[1] https://fra.europa.eu/en/eu-charter/article/7-respect-privat...
[2] https://fra.europa.eu/en/eu-charter/article/8-protection-per...
Isn't that pretty much excatly how it is done in Russia, which was ruled by ECHR to be illegal[0]?
https://hudoc.echr.coe.int/fre#{%22itemid%22:[%22001-230854%...
For example, in the EU you technically have the right to freedom of expression, but you can also be arrested if you say something that could offend someone.
Similarly rights to privacy are often ignored whenever a justification can be made that it's appropriate to do so.
I don't know about elsewhere in the world, but here in the UK you don't even have a right to remain silent because the government added a loophole so that if you're arrested in a UK airport they can arbitrarily force you to answer their questions and provide passwords for any private devices. For this reason you often here reports of people being randomly arrested in UK airports, and the government does this deliberately so they can violate your rights.
You probably mean hate speech.
We have laws like that too in Canada. It is a good thing.
It's one thing to be disruptive and enforce immigration law "by the books" but entirely separate to then go out of your way to not enforce it legally while at the same time violating or attempting to violate the constitution on pretty fundamental levels.
So you actually don't have freedom of expression?
Your right to something ends were a right of someone else is violated. That's the case here.
Ah yes, that memorable trifecta: Life, Liberty, and the Right to Never Hear Mean Words.
> violence because then words quickly become a justification for violence
When you don't have a way to fight back and make something stop, without resorting to physical aggression, then your only way is to punch back. When the legal system allows you to fight back, then you can walk away, knowing you can call your lawyer or the police.
Have you had a broken leg? When you're young it's an alright thing to deal with, when you're older it can be life altering (it might hurt forever or alter your gait). However most spontaneous violence doesn't result in broken legs but rather hits to the head which can very quickly end up at CTEs or other brain trauma.
In an equal society, you really don't want actual violence to be on the same spectrum as speech of any kind. One problem is that ~50% of the population has a massive natural advantage in the realm of actual violence. Would a husband beating his wife because of "violent words" she inflicted on him be ok under the "speech is violence" rubric?
https://en.wikipedia.org/wiki/United_States_free_speech_exce...
You can freely express your opinions regarding any political party or head of state and so, but not directly and specifically offend them. You can say "their performance this year wasn't good due to that or this". But cant say "They should eat shit!" or "deserve to be shot" which kinda is also OK because the former doesn't contribute to anything and the latter we all agree is highly immoral or inhumane.
PS: I'm talking from the perspective of Germany, not entirely sure about other countries.
Like, constitution both defines the rights of citizens and the limits of those rights and the same goes for the states.
I feel as if the creators of constitutions think that it is a set of checks and balances...
Just as if how a citizen violates something written in the constitution, the state can punish it.
In the same manner, I believe that the constitution thought that if the state violates some constitutional right of citizen, then citizens can point that out and (punish?) the state as the legitimacy of state is through that constitution which they might be breaking...
I concur (fancy word for believe which I wanted to share lol) you are talking about america. The thing is, revolutions are often messy and so much things are happening in america that I think that people are just overwhelmed and have even forgotten all the stuff happening in the past... Like tarrifs were huge thing, then epstein news then this I think autism thing by trump.
Like, the amount of political discourse is happening less and idk, oh shit, just remembered the uh person deporting thing which was illegal which was done anyway
If these things happened in isolation, they would all have huge actions against govt. but they are happening back to back and so everyone's just kinda silent I think, frankly I believe overwhelmed.
I believe that just as in nepal, in america everyone is whining on social media but nobody's taking action. Nepal blocked social media and so people in nepal were kinda forced to take action irl and it worked kinda nice in the end tbh
So maybe its social media which is enabling this thing.... which is funny to me as I am doing the same thing right now lol
All for sweet internet points tho.
Just a heads up but concur means "agree", not "believe"
Kinda liked it, so thanks lol
An error that should be discussed for generations :sob: /jk
IN all fairness though, I don't know why I wrote concur, I just thought of it and thought it meant believe...
What would be a fancier word of believe if I may ask ya that you would suggest me to use..
Also I am sorry that I made a mistake tbh, I hope ya get it and thanks for correcting me!
The latter has been on my mind for quite some time.
The logical conclusion of "people can't govern themselves generally" kind of gestures at religion as a solution - after all, if man cannot govern themselves, why not rely on a higher power to manage them?
Of course, the problem with that point of view is that from the atheistic perspective, there is no higher power, and from the agnostic perspective, whatever higher power there is is inscrutable and beyond our ken.
This then leads me to the conclusion that religion is ultimately a creation of men, and are thus prone to the same power-corrupting vices as any other institution created by men.
Except that leaves no real solution the problem of the governance of people. And it's a quandary I see no realistic chance of escape from.
Its not that the logical conclusion is "people can't govern themselves generally"
Its that, we have created a system which incentivizes corruption or basically evil things for the most part from TOP TO BOTTOM partially influenced by biological factors beyond our control.
Sure, one answer to the "people can't govern themselves generally" is to decentralize the power.
I live in India and I loathed my political system thinking that it wasn't good and I really appreciated american political system but the more I think about it, fundamentally Indian political system is one of the best actually.
It has 3 levels of decentralization with Strong Right to information and uh multi party system with Even Universal basic income which I came to know from an american which is a real shocker I know.
Yet I still see people begging and there being some chaos, My logical answer to it is corruption from TOP TO BOTTOM which I observed atleast.
I sort of believe that the same thing happens everywhere to be honest if that can make sense...
Like, there is corruption and human evils which is what people select in real life anonymous things as compared to true morality that one can reason through. Simply for one's own profit.
It also might be one of those debates that India might have a good political system but simply the people don't have enough money or something and they want more or everyone does it which is a common answer that I actually hear.
I believe that the reason why people can't govern themselves generally is that there is a biological answer to it in the sense that for people to govern themselves, we would prefer /need an altruist society and in an altruist society, and how the genes which favour a bit of evil in altruist society might reproduce more and spread sort of thus creating an equilibra of sorts and combining with that the idea on how interlinked/interinfluential each of us is to one other through language.
It was a catharsis to me, The answer might be depressing. But its fundamentally logic. Life just sort of happened and then it got way too focused on spreading itself / the one which did survived and boom that's biology which then gets to this political thing...
Like it was sort of meant to happen y'know? atleast that's my current understanding of it. Would love to discuss tho.
It shouldn't, America is two very distinct nations. The shape and nature of those nations vary wildly in classical Baudrilliardian sidewinding progression, but it's rooted in the very early history of British North America. Two distinct primogenitor colonies and societies, Jamestown and Plymouth. Founded for different reasons, in different contexts, by different people. Understanding the disparity is key to understanding a great deal about America. This divide has always persisted. Jefferson was of Tidewater, Hamilton was of Yankeedom. Democrats vs Whigs. Dixie vs Yankeedom. This split persists in history, and is much the reason why America is ostensibly a two party system. Even if the regional divide is not as hard and fast as it once was, even if the matters in which they differ change radically over time, the divide itself will always persist. It's wrapped up in the pre-revolutionary context the country was founded on. America will always be two countries in a trenchcoat, two echoes of wildly different cultures set against each other for dominance. You should always be keen to remember that. The union isn't of 13 distinct colonies, but two distinct cultures always in tension. It's a fundamental structure within our larger cultural blueprint.
The US had a Civil War in the 19th century over the fear of the southern states that the northern states would not only refuse to continue to be complicit in the institution of slavery, but eventually end it.
The seceding states wrote slavery, as well as protections of the property rights of slave-owners, into their constitution.
After the war came the scaling back of Lincoln's planned reconstruction, sharecropping and Jim Crow. There are people alive today who remember segregation.
White supremacy is as American as apple pie.
What cultural group today is Jamestown and which is Plymouth?
It's mostly a book about the civil war, but it introduces some post-revolution pre-war history and names. That gives you more resources to dig up. You should read as much as you can and form your own opinions on that.
It seems like both the spirit of Plymouth and Jamestown are inside the big tent of the Republican party today. But that doesn't sound like what you intended it to mean. Or maybe it is?
That's the part I'm curious about; who is Plymouth and who is Jamestown in 2025 in your eyes?
I should note these geists extend far beyond legitimate political guise.
My question is whether two different cultures can in fact coexist with each other for a single system of governance.
Like, Why do we focus so much on our differences as a species that we forget how much common we are on literally everything.
What is a solution to this problem that's kinda impacting the world right now. America moves in pendulum in a political cycle completely 180'ing but yet at the same time, I feel like no real change is being made against lobbying/corruption which sort of infiltrates the world too.
Bernie sanders and now maybe zohran are the two democrats who are genuinely tryna do something for america which I deeply respect tbh. Yet there wasn't really a way for one to vote for them directly y'know?
Are these differences of cultures really that distinct to basically split a country in half in everything except the borders?
Was there no way of integrating them without having them idk being the way that they are right now?
Right wingers will look you straight in the eye and tell you that they support suppression of gun rights and speech when it hurts their enemies. Their enemies often live many states away. I have seen the entire country flip on an issue just because the context changes.
The bloodless resolution would be to just agree to not hang out anymore. But I think citizens of a once empire would feel somehow aggrieved to lose that empire. So you guys are going to have to figure this out after spilling a bunch of blood.
Constitutions don't enforce themselves. The US constitution has a crystal clear right to bear arms but multiple jurisdictions ignore it and multiple supreme court rulings and make firearm ownership functionally impossible anyway. Free speech regulations have, thankfully, been more robust.
The only thing that stops bad things happening is a critical mass of people who believe in the values the constitution memorializes and who have enough veto power to stop attempts to erode these values.
The US has such a critical mass, the gun debate notwithstanding. Does the EU have enough people who still believe in freedom?
People do believe in freedom of speech in the US, thankfully, even if they've stopped defending gun rights in some places.
EU free speech protections are in the same position gun rights are in the US, and for surprisingly similar reasons.
HN is to a large extent a popularity contest, and people here are more in favor of free speech than guns. the US record on protecting free speech is very good.
You have accidentally properly identified the european problem and precisely the reason that chat control will pass: shortsightedness. If people only rise up to protect rights "they need", soon no rights will be left.
But guns are vastly insufficient in this century to overthrow the state, you basically only harm your fellow citizens with them.
This is because until the 14th Amendment and the incorporation doctrine, the Bill of Rights only restricted the Federal government, not the States. Prior to the that, state and local governments could (and did) restrict not just firearms, but other rights as well.
Hell, the Bill of Rights still hasn't been fully incorporated, so for instance, despite the 7th Amendment stating otherwise, you don't have the right to a jury trial in civil cases in every state nor the right to indictment by grand jury (5th Amendment).
Of course, some states copied parts of the constitution into their own and had some form of protection, but it was by no means universal. Massachusetts even had a state church until 1833.
Historically, courts have maintained that legislation is pursued under "good faith". This was the justification for not overturning ACA on the grounds of it being an unconstitutional tax: the lawmakers didn't mean to make it an unapportioned tax, even though it effectively is, so it's okay yall. Washington St just did this with income taxes on capital gains in direct violation of their state constitution a year or two ago.
Where I live, you cannot open carry. That is a direct violation of 2A, but the courts have said it's okay baby because it's not an undue burden to pay a fee and waste a day of your life. Pure nonsense. Just change the constitution for goodness sake.
It looks like it was drafted by an ESL speaker. It's by far the worst-drafted amendment, grammatically speaking:
> A well regulated Militia, being necessary to the security of a free State, the right of the people to keep and bear Arms, shall not be infringed.
It's not even a valid English sentence, and it certainly never bothers to define "Arms." Not to mention that, as written, it appears to make it illegal for me to tell you that you cannot come to my house with a gun, because that's me infringing your right. It doesn't constrain Congress. It constrained anyone who wants to take away your right to bear arms.
Sheer lunacy as written. Ungrammatical and implies some insane shit.
But no, you're right, it's crystal clear. Much like how the First Amendment says
> Congress shall make no law respecting an establishment of religion, or prohibiting the free exercise thereof; or abridging the freedom of speech, or of the press
which in crystal clear terms makes it legal to mass-distribute child pornography. To prohibit it would restrict the freedom of the press.
Until then, the commas are officially part of the text.
That said, the effective meaning of the Constitution is "whatever a majority of the Supreme Court agrees it is."
And to a degree, given the power to impeach Supreme Court justices, "whatever a majority of the Supreme Court agrees it is, and with Congress sufficiently on board to not impeach sufficient justices to force a shift in the balance of the Court."
>>> Remove the first and last comma and the sentence works splendidly
>> Until then, the commas are officially part of the text.
> Comma rules change over time.
Maybe the equivalence of the sentence at drafting, today is without commas?
> [Noun], being [clause], [grammatically correct sentence]
is objectively incorrect English grammar.
Eliding the "being" appositive, you're left with
> [Noun], [sentence].
Unless you're talking to the noun (as in "Hey, you, the well regulated militia! Did you know that the right to keep and bear arms . . . "), it's not grammatically correct.
The people who wrote this proposal said it themselves - "Whilst different in nature and generally speaking less intrusive, the newly created power to issue removal orders in respect of known child sexual abuse material certainly also affects fundamental rights, most notably those of the users concerned relating to freedom of expression and information."
This proposal is illegal. The fact that CJEU at least haven't issued a statement that this is illegal tells you everything you need to know about the EU and its democracy.
The issue is what is the European Commission willing to do in order to guarantee that fat contract check goes to Palantir or Thorn or whoever has the best quid pro quo of the day.
This is not Stasi this is Tech billionaires playing kings and buying the EC and Europol for pennies on the dollar and with it the privacy of virtually every citizen of zero interest for law enforcement or agencies.
This policy for example would be most helpful to enemies to the EU. It would lower the cost of acquiring the data for China and Russia as it allows them to mass acquire data in transmission without incurring the cost of local operations. The easiest system in the world to hack is that of a policy maker.
Yes, it would lower such barriers for countries that are commonly seen today as Europe's adversaries. But in this case, the U.S. (or rather, U.S. organisations and corporations) might be the primary bad actor pushing for ChatControl. See e.g.:
Thorn (organization) - https://en.wikipedia.org/wiki/Thorn_(organization)
"Thorn works with a group of technology partners who serve the organization as members of the Technology Task Force. The goal of the program includes developing technological barriers and initiatives to ensure the safety of children online and deter sexual predators on the Internet. Various corporate members of the task force include Facebook, Google, Irdeto, Microsoft, Mozilla, Palantir, Salesforce Foundation, Symantec, and Twitter.[7] ... Netzpolitik.org and the investigative platform Follow the Money criticize that "Thorn has blurred the line between advocacy for children’s rights and its own interest as a vendor of scanning software."[11][12] The possible conflict of interest has also been picked up by Balkan Insight,[13] Le Monde,[14] and El Diario.[15] A documentary by the German public-service television broadcaster ZDF criticizes Thorn’s influence on the legislative process of the European Union for a law from which Thorn would profit financially.[16][17] A move of a former member of Europol to Thorn has been found to be maladministration by the European Ombudsman Emily O'Reilly.[18][19]"
Additionally, it would not surprise me at all if Palantir is lobbying for this either. Many EU countries, like Germany and Denmark, have already integrated Palantir's software into the intelligence, defence, and policing arms of their governments.
But at the end of the day, while it is convenient to blame external actors like U.S. corporations, ultimately the blame lies solely on the shoulders of European politicians. People in positions of power will tend to seek more, and I'm sure European politicians are more than happy to wield these tools for their own gain regardless of whether Palantir or Thorn is lobbying them.
Politicians should agree to to be executed if they lose an election. Only those willing to risk their lives should be allowed to legislate. This also gives the voters the option of punishing those who pass onerous laws at the next election.
If you need extra zing, this would also apply to recall elections, so they could even be punished early.
Hitler knew if he had lost, he would have been executed. Didn't stop him from going war.
The GP's idea is very bad. Quite to the contrary, losing power should not come with disastrous personal consequences.
Maybe a less extreme version of this is that if you become president you are stripped of all property and become the ward of the state after your term is over, enter a monastery sort of situation, for the rest of your life.
But they will probably think that is only bad when others do it to them.
We can. This has already happened with the fairly recent SALT TYPHOON hacks. China (ostensibly) abused lawful wiretapping mechanisms to spy on American (and other) citizens and politicians. The news at the time wasn't always explicit about the mechanism, but that's what happened.
China wouldn't have been able to do this if those mechanisms didn't exist in the first place.
Solve the problem it's trying to solve, then it won't be proposed again.
That's already here. I think you should consider that this law might be aiming at some other goal.
No, GP is referring to mass collection and analysis of all of your communications. Google, Apple, et. all don’t have that capability today.
Hell, apple can’t even read my text messages, nor do they know I’m writing this - and I’m doing it on an iPhone.
Take Facebook end-to-end encrypted messages for example. There are certain links it won't let you send, enough though it is supposedly E2EE. (I've seen it in situations like mentioning the piratebay domain name, which it tries to auto-preview and then fails. Hacking related websites as well I've seen the issue with.)
It likes to pretend it is a mysterious error, but if you immediately send a different link, it sends just fine. I don't use chat apps much these days, so I'm not sure if others see similar behavior, but I'd wager some do. Facebook is about the least trustworthy provider I'm likely to use, FWIW, so I expect a certain amount of smoke and mirrors from them.
Yes, they (well, google and amazon, I don't have accounts with other vendors) can terminate my accounts, but, to be honest, it is not big deal for me, especially comparing to be dragged out of my house by police, especially now, when I live in EU with residence permit and not full citizenship.
They want to erode people's privacy? Let them walk their talk first and see how that goes.
https://www.europarl.europa.eu/meps/en/home
Two cultures: https://benwheatley.github.io/blog/2024/05/25-12.04.31.html
They don't even understand that they haven't. Sure, they've written the words to exclude themselves (e.g. UK's Investigatory Powers Act), but that's just not how computers work.
The people who write these laws, live in a world where a human can personally review if evidence was gathered unlawfully, and just throw out unlawful evidence.
A hacked computer can imitate a police officer a million times a second, the hacker controlling that computer can be untraceable, and they can do it for blackmail on 98% of literally everyone with any skeleton in the closet at the same time for less than any of these people earn in a week.
The people proposing these laws just haven't internalised that yet.
If any of us software developers tried writing a law, all of the lawmakers and enforcers would laugh at how naive our efforts were — that's not us being infants, that's just a cultural difference (making us naïve about what does and doesn't matter), and the same applies in reverse.
> If they didn't know that this law would compromise security, they wouldn't have gotten carve-outs for their own communications.
It compromises their security even with carveouts for their own communications, because computers aren't smart enough to figure out which communications are theirs, nor whether the "I'm a police officer serving a warrant, pinky swear" notice came from a real officer or just from a hacker serving a million fake demands a second.
Take Germany for example. For decades now we have let SPD, CDU, Greens, FDP ruin our country. AFD won't be better by the way. Again and again we vote against our own interest out of stupidity, complacency, or whatever it is. Oh, they want to raise pensions? What a coincidence just before the elections! Aaaand all the pensioners votes are secured for a party that will further ruin the country and line their own pockets. We do the same frickin shit every single time. And now it is so bad, that if we don't do it, then we will get right extreme AFD, that has even less a clue of what should be done, is paid by Pootin, and would fuck up things even faster.
The basic premises, that you are voted out of office, if you do badly does no longer hold here. It's all money and population brainwashing, to vote against our own interest. What our ancestors have built up from the ruins of WW2, we throw out of the window in ever election that we elect the same shitty parties again: CDU/CSU, SPD, Greens, FDP, AFD, Linke, BSW... None of these deserve our trust and vote. It apparently is asking too much of the citizens of a wannabe democratic country to check alternative parties in a Wahlomat before an election, to decide what fits best ones ideas.
We need more diverse mobile OSes that can be used as daily drivers. Right now, it's almost a mono-culture with the Apple-Google duopoly. Without this duopoly, centralization and totalitarian temptations would be less likely.
There's GrapheneOS, which is excellent and can be used without Google, but it relies on Google hardware and might be susceptible to viability issues if/when Google closes down AOSP. Nevertheless, they are working on their own device that will come with GrapheneOS pre-installed, which is exciting.
There's also SailfishOS, which has a regular GNU/Linux userland and almost usable at this stage with native applications. As a stopgap, it can also run Android applications with an emulation layer, and plenty of banking ones work just fine.
Yes but.. it can't just be vague exhortations and generalities. I didn't know the pertinent bodies previously, but after GPT'ing on it, it looks like they include:
One is "DG Home," an EU department on security that drafts legislation.
Another is Europol, a security coordination body that can't legislate but frequently advocates for this kind of legislation.
And then there's LEWP, The law enforcement working party, a "working group" comprised of security officials from member EU states, also involved in EU policy making in some capacity.
I think the blocking states should be resisting these at these respective bodies too.
European Commission: Commissioners are nominated by elected national governments and must be approved by the directly elected European Parliament.
Council of the EU: Ministers are accountable to their national parliaments, which are elected by citizens.
European Council: Composed of heads of state/government who were elected in their own countries.
European Parliament: Members are directly elected by EU citizens every five years.
With so many levels of indirection, that citizen votes are irrelevant and they don't need to care about it - only about support of major political group at the top. And surprisingly enough Parliment is relatively stable.
>Council of the EU: Ministers are accountable to their national parliaments, which are elected by citizens.
same as above.
i don't advocate for leaving the EU, but this needs to change. Those positions, which are the ones pushing for such legislation usually, need to be held accountable by citizens. At least EC.
No more rotations, or other such bullshit.
Right now EU is sitting in middle ground between federation and trade union, reaping(from citizens point of view) downsides of both systems.
Priva rights are already there in most countries constitutions, but maybe adding the digital part will make it harder to push back.
Is it patently unreasonable? Yes, but cloaked in the “combat corruption” excuse it can be just as effective in a highly-partisan society such as this - just like their “bUt WhAt AbOuT tHe ChIlDrEn” bullshit props up their demands for global surveillance.
But, amongst a few others, there is a technical problem, how do we log in to vote? That mechanism must be unhackable, configurable by computer illiterates, and it must not invade privacy.
Serious question.
We need to accept and celebrate a world in which the capabilities of states are constrained by our innovations, not merely the extremely occasional votes we cast.
After 9/11, the Bush administration was accused of abusing the crisis to expand executive power and the national security state. Those who raised the alarm about things like the Patriot Act were often dismissed as fringe alarmists.
Now, nearly 25 years later, we're seeing the downstream effects of that gradual degradation of democratic pillars.
On both sides, voters and politicians can be influenced by propaganda and campaign finance to accept small, incremental changes that don't seem dangerous in isolation, but can cumulate to crush an empire.
Every democracy carries these risks. Do we think our opponents haven't noticed?
If you want to be a servant to the public be one.
What country would be safe for hosting code that does this that people would also trust in general? Would this be hosted on the dark web or would someone actually be brave enough to host it on their private machines? Would there be DNS that could point to this?
Then how would you install the software? You'd need a way to side-load it, which means you'd want a way to sign it. Which means either adding a new root signing authority or being able to have an existing root authority sell you a signing certificate and not revoke it.
You kind of quickly end up in some weird dystopian cyberpunk setting thinking all of this through.
The most dystopian concept out of everything you mentioned is still "you can't install unsigned software" to me.
471 more comments available on Hacker News