WhatsApp boss says no to AI filters policing encrypted chat

It not true AI

"The UK government is proposing that app builders add an automated AI-powered scanner in the pipeline"

The government as always doesn't know what its talking about. Most AI in business is marketing bullshit, designed to make the company money at the expense of the user, much like Microsoft's "AI" code writer. The the "AI" to scan everyone's chatter and decide what to flag up isn't something the "AI" is aware of, it won't say "That seems like illegal content but hidden to avoid my scans" no, it will be based on what it has been trained on. What's to stop someone training it poorly & how many times will it flag false positives. Too many for a human to then check so people will just be automatically accused by "The AI which is never wrong".

All that will happen is another message app will appear with end2end encryption back in with no scanning.

Other Disadvantages

The government enforced program on your phone will be optimised for thorough scanning, not for conserving your battery. You will have no control over it draining all the power just when you need your phone.

Not only can they expand what is scanned, they can update the program to do other things. "Oh, there's a terrorist threat, so we had to make it send all your messages to us in clear, together with your exact location at all times"

This won't end well

Given how far the UK has collectively shoved it's head up it's arse, I would have thought Whatsapp would know what side their bread is buttered. Remember they are overseen by Nadine Dorries which is a testament to the importance the UK places on them.

I suspect this may all be theatre.

Since when have the No Such Agency and friends allowed something properly encrypted to get so big without having a sneaky little backdoor/vulnerability of their own built in? ($NSA_KEY, anyone?) Unless of course it's already in Android binaries and/or the silicon.

We'd never be allowed Internet without all the Black Boxen and fibre taps to keep an eye out for unauthorised democracy.

Of course Child Protection groups are all for this

Think of the children, eh ? How can you disagree with that, you monster ?

Yeah, well think of the journalists in a dictatorship. Think of my access to my bank account.

Sexual abuse, in any form and at any age, is abhorrent and I absolutely disapprove.

But if that means that some dictatorships will be able to find and kill journalists that are just doing their jobs, well I'm sorry, but the police need to up their game before I'll accept murder in exchange for child safety.

Not to mention that I seem to recall having read that actual cases of CSAM represent 0.2% of all reported cases.

The needs of the many is strong, point-to-point encryption. The needs of the few is better police work.

Levy and Robinson -- Comedians Facing Both Ways At Once!!

Quote: "We do not seek to suggest that anonymity on commodity services is inherently bad....."

Really? It actually looks like the long-term STASI goals are actually:

(1) Make private encryption (and the possession of encryption tools) completely illegal

(2) Make service providers responsible for blocking any message that looks like encryption

(3) Make service providers responsible for reporting anything that looks like encryption to "the authorities"

In the mean time, a "not inherently bad" confection can be whipped up using chacha20, Diffie/Helman, gcc and gmp.....you know....private encryption before private messages enter any public channel.

.....makes E2EE completely moot! ...as well as being under OUR control.....and not available for inspection by anyone in Cheltenham!

Time for WhatsApp to put its money where its mouth is

This is a good message from the boss of WhatsApp. However, he knows as well as we do that governments will eventually just impose these requirements on them, despite what he says, and that they will have no choice but to implement the demands.

What we need is for Meta to put its money where its mouth is:

1) Provide an open API which makes it easy for 3rd party apps to send messages using WhatsApp and to handle displaying received messages. Allow a good, integrated user experience to be provided by a 3rd party app with integration with WhatsApp contact lists, etc.

2) Sponsor a standardised way for 3rd party apps to handle encryption - like GPG email - to allow interoperation so we can each choose our own app and publish keys like we do for email.

This would take a tiny amount of effort from them, would enable them to dodge these sorts of requirements, and avoid people moving to smaller, niche messaging systems.

P.S. While they are about it: providing an easy-to-use GPG email app on their platforms, integrated with WhatsApp and Facebook messaging as well as SMTP email, would be useful.

My 2cents

Perhaps if governments of all flavours fostered more trust in the world, we wouldn’t need encryption in the first place

I’m not a religious type, but to know good and evil, comes personal responsibility.

Remember, the WWW started at Cern, within a highly intelligent scientific community where trust and boundaries were, probably largely respected

Maybe they are in favour of it CSAM scanning as its suitable for "idle" law enforcement?

In the UK, there have been plenty of child grooming / abuse scenarios on a massive scale e.g. Rotherham, Telford as just a couple hat have recently been in the news.

A common theme of both those 2 was concerns being raised to the authorities, but ignored.

Would digital CSAM scanning have stopped those abuses? Who knows, but they could have been stopped far earlier with normal policing but they were not.

Hint to UK police, a sexually abused young girl is a victim & you should make some serious efforts to investigate her complaints, not just brand her a "child prostitute" to be ignored.

But look at the low prosecution rates & low conviction rates for men accused of rape / sexual assault / murder (**** off with sudden mania of rough sex murder defences) against adult women. Abuse of females of whatever age seems a crime that you have a good chance of getting away with.

The UK seems to do a lot of anti sex crime talk, but reality of the situation paints a different picture.

Disclosure - not a woman, however some close female friends of mine have been badly failed by the UK criminal justice system in rape / sexual assault cases (including one who was, as a child, sexually abused by her father) so my views not as objective as I would like them to be on this topic knowing what they went through.

I have said this before

ALL governments, regardless of Labour, Conservative or Liberal hate encryption.

Don't waste your breath arguing with anyone who wants encryption for everyone but themselves. You will just get branded as a "bad person". A classic "shut down the argument" tactic.

Just use whatever messaging service M.P.s use. In the U.K. they mostly switched last year from WhatsApp to Signal.

"Some children's rights groups have been vehement that the need to protect children from exploitation should not be compromised by the argument for absolute privacy in communications. "

Fine. So let's be complete, eh? :

1) All postal mail will be scanned before being delivered.

2) We need to also scan all emails, web connections (is that site REALLY a bank??), and block all other connection types.

3) No meeting other people in private places without a government agent present.

4) No meeting other people in public places if beyond earshot, and hence allowing private conversations.

5) English. English. English. All communications - written and oral - must be in English.

6) All bags, holdalls, rucksacks must be transparent.

Four Horsemen of the Infocalypse

I'm not sure why drug dealers and organised crime are always separated in this list. Are drug dealers disorganised?

Abbreviation

Why is it "EE2E"?

Surely "End to End Encryption" should be "E2EE"?

"are verboten"

Ou, Jeff Burt lovez hisss German ssstereotypez!!

That bloke, the head of online policy blah blah

…could he be any more miserable?

I have the inescapable feeling that this "charity"'s business is to exploit the suffering of others to further their own (or someone else's) agenda. That's assuming it's not simply a cover for some of the nutters in control of the UK's political landscape.

The Register…

…really needs to have a chat with Patrick Breyer, a German MEP who is campaigning relentlessly against the EU version of this.

He puts forward some very cogent and well researched arguments.

Hell you are

Of course we don't want anyone reading our messages. What the Snoops are proposing is ludicrous and a pipe-dream. It will never happen. Companies like Meta will pull the plug on WhatsApp before they let this happen.

I'm hoping they'll make an example out of some nation, such as Australia or the UK, so I can sit back with some popcorn and enjoy watching the fall-out.

Right

So when some shonky ML system decides that you're a kiddy-fiddler, you get to spend time in a police cell, maybe get your name leaked to the tabloids and have local vigilantes laying siege to your house.

Loads of people knew about Jimmy Savile but the police did nothing. If they can sit on their arses until the ordinary person like you or I get fingered by the magic AI, we will not be treated the same.