Chat Control Must Be Stopped
220 comments
·September 8, 2025Humorist2290
CGMthrowaway
> I wonder why there has been such silence on this
Yes, I would think that if there were any real journalism left, they would be all over this. For the sake of their profession, and the protection of their sources.
m463
Cory Doctorow points out a lot of things: https://pluralistic.net/
But I don't think mainstream journalism points out computer nonsense because they're so intertwined with it all.
I mean, "we have a surveillance state" first points to "advertising" which is their revenue stream.
conductr
Quite the leap IMO, I actually think the strongest defense of the status quo is pointing out how much worse things could be
mr_toad
Having the service provider handle the encryption is very convenient for the users. And, it turns out, the government.
Humorist2290
Sure, but the way this was written it also includes everything from Gmail to root access servers hosted by Hetzner. Gmail has been doing this for years, but (I assume) not Hetzner. If even hosting providers are dragged into this the scale grows dramatically. Can Hetzner really not even be bothered about having to comply with such ridiculous requirements?
To give a simple example: imagine a script that constantly dumps /dev/urandom into JPG-like files nonstop onto a 16 TB disk, then repeats. I've seen enterprise systems that aren't so dissimilar. If indeed the EU commission wants all files scanned, then will Hetzner need to spy on all of their machines at least enough to check for compliance? I'm guessing their board members think it can't possibly be so dumb, or stand to gain handsomely and privately.
port11
I agree with most reasons others have pointed out (fatigue, lack of good journalism, deplatforming, alienation…).
Another one: it's holiday season, a clever time to get things through.
Another one: most EU parties stand for it, even my usual go-tos, namely Greens, S&D, and The Left.
mbrochh
Time consider your party affiliation then.
api
Big tech would be for this -- it would create a huge moat in terms of costly and complicated compliance overhead that would keep small challengers and startups out.
Complicated or costly regulation is a regressive tax -- it affects smaller companies a lot more than larger ones and tends to prevent new entrants to a market.
Humorist2290
That's exactly my point though. Google, AWS, Meta etc all stand to gain from this. But plenty of middle tier providers are entirely silent even if it poses a potentially existential threat. Some people are going to get rich from this of course, but many will be ruined.
And that's before even accounting for the lives to be destroyed by a blurry photo of a tree being classified as abuse material.
varispeed
This is because they are one audit away from being off the market. This is how companies stay silent in authoritarian regimes. One wrong comms and company is toast.
marcus_holmes
Except that it creates a market for circumvention tech that would also cut Big Tech out from understanding what its users are saying to each other.
Age restriction laws don't stop underage folks from doing anything, they just increase the market demand for VPNs, and improve VPNs so they get less easily detected. The net result is that platforms can't use IP addresses to meaningfully infer anything about their users.
Same with this. This legislation will create a demand for private encryption tech that isn't part of the platform. Someone is going to provide that and make money, and in the process may remove the demand for the platform in the first place.
I get the logic you're talking about, and agree that they must be thinking this, but it's very short-sighted.
ortusdux
I hadn't thought of the regulatory capture implications. As if this could not get worse.
42lux
Fatigue? We are fighting this with different names since 2002. I guess normal people just can't hear about it anymore and that's probably on purpose.
jonaharagon
Totally. This is exactly the problem with things like Chat Control in the EU and KOSA in the US. They will just introduce the same bill over and over and over again until they get the desired result.
What we need is for legislatures to pass "NO Chat Control" and "NO KOSA" bills that specifically block this behavior, but unsurprisingly governments don't seem to be too keen about limiting their own rights, only those of their citizens.
Geezus_42
Attackers only need to win once. Defenders have to win every round.
asdfasvea
You've not been paying attention. Laws can be undone easily with laws.
Pass your 'no KOSA' law. And then when they want KOSA, they just pass KOSA with a sentence that says this KOSA law supersedes prior 'No KOSA' laws.
You need to limit their power to do that and the only way is constitutionally.
tormeh
You mean enshrine a right to messaging privacy in a constitution? That's going to be difficult.
anikom15
In Britain, such a thing is not even possible because no Parliament can limit the power of a future Parliament.
null
allenrb
It’s this. Even when an effort fails, there are no consequences for the politicians behind it. Nobody gets voted out of office. Nobody loses power. All they need to do is wait a year or two or five and try again. Eventual success is almost guaranteed.
Trust only software and systems you control and even then, approach with a hefty amount of side-eye.
nullc
the price of Liberty is eternal vigilance
tremon
And periodically washing the streets with the blood of tyrants. People always seem to forget that part.
01HNNWZ0MV43FF
It's hard to reach normal people, too. At least here in America the right wing has consolidated a lot of propaganda power into cable news like Fox
beeflet
Blast! Those propagandists will soon have an iron grip over every nursing home in the country that forgot to cancel their cable subscription.
ToValueFunfetti
Cable everything is dead. FOX is doing relatively well, but they reach maybe 1% or 2% of the population, and presumably that's almost all already unshifting right-wing people. I'm not saying it's impossible that it's a propaganda power center, but I don't personally know how that would work. It feels like a leftover enemy from the early 2000s that just doesn't make sense post-internet.
null
JoshTriplett
Among many other reasons: because the proponents are using the usual "think of the children" tactics to impugn and libel the opposition.
moffkalast
We've been mostly deplatformed for any kind of organized action against it, there's just writing an email to your MEP or... a change.org petition. Yes really. Nothing official one could sign their name under.
But even so, the commission does whatever it wants anyway, they are complete autocrats when it comes to law proposal, it's up to the parliament and the courts to something about it afterwards. And they should given that it's unconstitutional in many EU countries and incompatible with GDPR as it currently exists.
gmueckl
Any EU citizen also has the right to petition the EU parliament directly.
Saline9515
Which is totally useless. Various lobbies have infinite money and time, unlike citizens.
api
Would it be correct to compare the EU's autocratic pronouncements to Presidential executive orders in the US? In the sense that they can pass whatever they want with little feedback but then the courts can tear them apart?
pas
It's ridiculously different, there's no single person or country that can do anything like that
there are multiple ways to make EU law, there are regulations (that apply directly) and directives that member states need to implement (basically ratify)
the Commission proposed something and then the Council votes on it and then there's the EP which votes on it
this one is a regulation proposal
https://en.m.wikipedia.org/wiki/Regulation_to_Prevent_and_Co...
the treaties have some areas that are under "Special legislative procedures" where the EP cannot propose amendments, but still has consent power, but in some cases like internal market exemptions and competition law only consultation right
https://www.consilium.europa.eu/en/council-eu/decision-makin...
supermatt
> they can pass whatever they want
The EC can’t pass anything.
tpm
Not at all, the Commission and the Council together can do a lot but it's important to understand both are collective bodies formed by governments of member states and can only act in some limited areas (defined very exactly by the various treaties). But then most of the important decisions have to be approved either by the directly elected Parliament or by all national parliaments (like some international agreements). And that's for legislation that doesn't have to be transposed into national law (can be applied directly), but most of the legislation has to be transposed and the member states have some leeway there.
kypro
Not really.
Unlike the president the EU commission are unelected and the commission is the only branch of government which can propose laws, however they can't force anything through in the same way the US president can with an executive order (it must go through parliament).
I guess it's good/bad, but in different ways to the US. It's bad in the sense EU citizens can't elect the people proposing their laws, but it's good in the sense that the commission can't just force things through without approval from the parliament which consists of MEPs which europeans elect.
As far as I'm aware the courts function in more or less the same way. Here in the UK parliament is sovereign and therefore can overrule any court decision with new law. This isn't true for the EU and I believe it also isn't true in the US.
Waterluvian
> Chat Control would make it mandatory for all service providers (text messaging, email, social media, cloud storage, hosting services, etc.) to scan all communications and all files (including end-to-end encrypted ones), in order to supposedly detect whatever the government deems "abusive material."
This is buried too far down the page, which is written quite poorly. A lot of meandering and jumping to a CTA and a bunch of anxiety and fear before even stating concretely what it even is. Even the section called “What is Chat Control?” takes five paragraphs before it tells you what it is.
The page talks about wearing people down, but these kinds of pages wear me down too. I want sober, calm presentation of a problem, why I should care, and what to do about it. I have enough frenetic sky is falling anxiety in my life already!
mnls
Don't worry people. If you are not a European let me tell you how it goes.
The 'Unofficial' boss of European Union is Germany. If Germany will vote against it, more countries will back off and it won't pass. If Germany wants ChatControl, it's over. It will pass and all other undecided countries will support it.
Thankfully, Germany (so far) is against it.
wsc981
> ... The 'Unofficial' boss of European Union is Germany. ...
I disagree with this sentence. The unofficial bosses are both Germany and France. Which is also the reason why the people in the richer EU countries will suffer economically when the upcoming bailout for France /will/ happen.
7373737373
The new German government has not spoken out or acted against this (despite similar efforts having been ruled unconstitutional by its highest court)
dv_dt
europeans should still use the opportunity to organize against it and future attempts
giveita
Would this have been UK/Germany back in the day?
enlyth
Probably better for you guys that UK is out now, our government would have been salivating at the thought of spying on every citizen without repercussions
tremon
It's one of the reasons they wanted out. Theresa May was very explicit that she considered the European Court of Human Rights an obstacle.
gausswho
The UK got what they wanted. Apple still hasn't reenabled ADP so iCloud backups are available for snooping.
octo888
UK-Germany-France collectively I think
on_the_train
Germany isn't the boss of anything. When it comes to yielding power, France always gets the upper hand. Always
thw_9a83c
As both an EU citizen and a computer programmer, I applaud this article, and I generally agree with its sentiment. But let's be realistic. Chat control is going to happen sooner or later. This is a Hacker News forum. The audience here is very knowledgeable about computer science and fully aware of how technologically impractical the idea of fighting CSAM in this way is. But the general public is somewhere else entirely. They genuinely believe that this will help, to whatever they think it will help. They have no idea that real CSAM distributors will simply adapt by encrypting files into ZIP (or whatever) with strong passwords or using different channels. I've tried explaining this to some of my non-IT friends and family members. I think they now think I'm a pedophile. It's kind of stupid for a father of two teenage daughters, but that's the general public. They want it; they'll get it.
eigenspace
I dont think it should be taken as a given that it'll happen. While this may be something the public is generally in favour of or ambivalent towards, there's a LOT of EU countries and MEPs that are not at all in favour of this, and already a few EU countries whose courts have ruled that this would violate their constitutions.
While its certainly possible it'll happen, it's far from certain. It can be stopped. Of all the currently 'undecided' countries, if just Germany came out against it, that'd be enough to sink it. Germans are pretty pro-privacy people, and the government would win no popularity by supporting it. Even if the German government supported it though, the German MEPs would likely still end up mostly voting no
thw_9a83c
I know there are some countries that are surprisingly sane in this respect, and Germany is one of them. Also, the EU parliament is probably still mostly against it, too. So it will certainly be some time before this happens. However, we should never underestimate the "salami" method, this matter will certainly go through.
latexr
> Chat control is going to happen sooner or later.
Even if that is true—which you don’t know, because you cannot predict the future—later is definitely better than sooner. Later is worth fighting for.
Your defeatist attitude is exactly what these bad actors want, you’re playing right into their hands. Thankfully not everyone thinks like you, or Chat Control would have passed first time and no positive change would have been enacted ever about anything.
thw_9a83c
I beg your pardon. :) I already explained that I did my part and the result was hopeless. Perhaps you should do your part, too. Don't bother arguing on Hacker News, because it has no material effect on the EU population outside the narrow IT crowd. Besides, I'm not a defeatist at all, because I know GnuPG! However, the non-IT EU civilians who also coincidentally agreed with this, are unfortunately lost.
asdff
Of course the elephant in the room is all of this content and bad behavior predates the internet entirely. The internet is used because it is more convenient than mailing polaroids to a dead drop address. Not because it enables anything that wasn't happening previously. Makes it a little easier perhaps, but even that is arguable given the oversight today.
thw_9a83c
This "bad behavior" could easily regress into encrypted files stored on CD-R discs and distributed via the postal service at any time. However, we will all suffer from an invasion of privacy due to constant, non-transparent online monitoring. The real criminals won't notice anything, and the rest of us will simply accept that we are being constantly watched by mega-corporations, the police, and the government.
tpm
I don't really understand this attitude because clearly if this passes, it will create a (black) market of new communication tools to bypass this and so on and will end up locking down every connected device so we can't run anything that is not government approved. It does not matter there will be ways around this - what matters is they will be illegal. So no, this can't be allowed to happen.
riazrizvi
Some thoughts if you have them, are illegal to express, even in private, for your own consumption. This is the law that means none of our devices or possessions are protected from snooping.
You have a tough challenge to convince me it’s anything other than a mundane device to give some groups an information advantage over others in their own society, for the unfair pursuit of political and economic advantage.
port11
In other words, the people in power get to dictate which thoughts you're allowed to have/express? Even in the privacy of your own house? And if the people in power decide acts of kindness or expressing love for your children are illegal…?
riazrizvi
Rather, the expansion of surveillance legislation in 1986, and 2001, introduced the idea that private material on your computer can be criminal, which opened the door to government installed malware to monitor you, whereas before that, criminal activity involving information was restricted to communication or social organization. Then later in 2003 with the introduction of private contractors to implement this tech, there was a further expansion in the people who had access to this information. An example of what happens when people have this power is captured in this Bloomberg article [1] and this New Yorker article [2]. And we know that some Silicon Valley leaders do not believe in market fairness/competition.
[1] https://www.bloomberg.com/features/2018-palantir-peter-thiel...
[2] https://www.newyorker.com/magazine/2010/09/20/the-face-of-fa....
null
dingnuts
> Some thoughts if you have them, are illegal to express, even in private, for your own consumption.
fuck this attitude with a rake
kypro
In the UK we take this a step further – if you're by an abortion clinic and the police believe you could be praying in your head for those getting an abortion they can charge you.
There are also examples where the people have been charged for retweeting opinions or sharing lyrics which are considered grossly offensive. Although I suppose in these cases you could at least argue something is being expressed.
cobbzilla
I am curious what would happen if one of those people tried to pray while having a sign above their head that said “I’m praying for <favorite sports team> to win their next game”
Could they still arrest you?
giveita
Any case law for first claim?
bapak
Looking at the long list of faces for my country, it boggles my mind how all these people are fine letting the police just scan their phone, photos, messages at will, as if they don't have significant others or medical pictures on their phones, including of their children.
Do they think they're above it? Are they stupid and don't know what they vote for?
I do not understand.
PhantomHour
> Do they think they're above it? Are they stupid and don't know what they vote for?
They're somewhat out of touch with tech, and caught up in police narratives around encrypted apps blocking their attempts to find pedos. Tech firm lobbyists sell them some lies about the capabilities of these systems.
Ultimately these are politicians stuck in the notion of "but the police can open your [physical] letters, this isn't any different" completely unaware of how times have moved on.
Matters like how people are already being harassed by CSAM being sent to their DMs, how people raid discord servers and try to have them taking down by spamming CSAM, etc, are completely lost on these politicians.
On top of that it's just cowardice. Not daring to be seen as "aiding pedos".
giveita
WhatsApp is the new living room for families. Living rooms are part of an English house. A castle, if you like.
Humorist2290
From Patrick Brewer's analysis [0] it seems like written into the proposal is to enable members of the government to have access to excepted systems, if applied for things like law enforcement or "national security." If I had to guess, at least a few MEPs expect they will be able to use such an exemption for their personal communications.
bbarnett
But won't they hqve to email people @gmail, for their personal communications?
jonaharagon
> Do they think they're above it?
Yes, the lawmakers literally exempt themselves from this law in this law.
bapak
You can't exempt yourself from the backdoor you carry in your pocket.
77pt77
I do.
Are you going to the the "pedo" that is against protecting the children and catching predators?
I know it's diseingenuous but these laws are crafted with that in mind.
People that might take a real chance in challenging this are weeded out long before they get to these positions.
Bender
I expect moms sharing bathtime pictures and videos with each other to get caught up in this as the censors get aroused by the content and project their own feelings of arousal and cognitive dissonance onto the parents sending bobbies and armed police to kick down doors. The legal costs and permenant damage to reputation will undoubtedly destroy many people.
the_sleaze_
Please direct your complaints to our friendly chatbot who is always there to assist 24/7 365
jasonlotito
> Are you going to the the "pedo" that is against protecting the children and catching predators? [sic]
This is already happening. This is not about that.
mmaunder
“We want to be able to look into all your private spaces to ensure you’re not a child rapist. If you’re not ok with that you must be a child rapist. Now. Do you support keeping our children safe?”.
This needs to be a South Park episode if it isn’t already.
piker
It seems like the golden age of freedom is behind us for now, and we’re going to descend for a while back into nationalism and authoritarianism
gobdovan
Funniest part is, current EU politicians are setting these systems up just as nationalist and authoritarian politicians (their adversaries) start to dominate the scene. Introducing this now seems like self-sabotage.
getcrunk
Or … part of the plan
octo888
WW2 was the immense shock that gave us that golden age of the 1960s-1990s. But WW2 is now a distant memory for most.
morkalork
It's eerie how immediate the regression is right around when the last eyewitnesses are dying. Did their children not listen to their parents at all?
Belopolye
No fellow citizen- as long as it's in the name of Liberal Democracy and the Open Society™, the means in question are rather ephemeral.
seneca
While I agree with you about rising authoritarianism, I'm confused what this has to do with nationalism. Chat Control is being created by the EU, a supranational organization. If anything, this sort of transnational authoritarianism is a bigger threat, and likely to promote nationalist backlash.
piker
I meant them as independent threats.
noduerme
Questions for people who have used phones in China:
How hard is it to disable the state spyware on a phone you buy there?
Can you buy a phone from outside China, put in a Chinese SIM card, and do everything over a VPN? Or will they shut down your connection?
alisonatwork
You're not thinking about it the right way.
Of course there are mechanisms to defeat privacy-invading software (and hardware), but the point is that most ordinary people don't want to. Most ordinary people actually want to hang out on the same social networks that all their friends and family are on, they want to watch the same TV shows, they want to be able to easily make payments at their local restaurants and the grocery store, they want to be able to use public transport etc etc.
When forced to choose, it turns out that convenience beats privacy for almost everyone.
noduerme
>> You're not thinking about it the right way.
I'm well aware of the tendency of societies to accept convenience over privacy, of the underlying risk of surveillance at scale and of the stripping of privacy from off-the-shelf applications that users are unlikely to abandon.
You seem to be assuming I was making a case that people will just get around these invasions of privacy en masse, and I'm not making any such case. Nor were my questions designed to undermine the original article or to dismiss the harms or the totalitarian nature of these laws.
More difficult privacy means less privacy for everyone, and it means no privacy for the bulk of the population. I agree.
So I don't need a lecture in how my questions misalign with the absolute need to preserve encryption. My questions are geared toward understanding what individuals can do in a society which has already turned completely into a panopticon. And I don't think it's useless to ask those questions, nor to educate people in how to protect themselves in such a situation, even if the task seems hopeless on a mass scale. Such a situation appears increasingly inevitable in the West, and I think it's valuable to take whatever lessons we can from societies that are already further down this road. My family fled a totalitarian dictatorship long before such powerful surveillance technologies could even be imagined. I think knowing how people cope with and attempt to preserve a modicum of provacy under the present conditions in modern dictatorships is instructive in preparing at least some part of our population for it.
alisonatwork
If you are starting from the point of view that Chinese society is a panopticon, and that no other society has ever experienced or had to deal with anything comparable, but totalitarian laws are about to make it inevitable in the west, and therefore it's important for someone to ask questions on HN if people in China can obtain phones that allow them to avoid state spyware... I don't know what to say. The line of questioning comes across as nonsequitous in a discussion of the proposed regulations and how they might affect people in the EU.
The answer you seem to be looking for is that in China, just like in every other country, there are devices that exist which do not come with a state spyware component that is constantly transmitting everything to the authorities. Some devices are locally manufactured, others are imported, some are regulated, others are not, and people communicate using those devices and others, across all forms of media, including face-to-face.
To elaborate: China isn't a totalitarian hellscape where everyone has a gun pointed at their head and they're all forced to use the same, identical, CCP-branded phone or else face execution. It's a huge, diverse country filled with millions of hackers and entrepreneurs, people with different interests, people with different means. There are countless devices and app stores and popular trends. Regulations are often unclear and are enforced differently in different regions and by different layers of the bureaucracy. Not everybody's threat model is the same. Just as in the west, people find ways to communicate that meet their comfort level - sometimes that's through systems monitored by the authorities, other times not. There's no one special technology or technique.
The main difference in China is that citizens can be disappeared without much recourse because the legal system is opaque and there is no free press or democratic process to hold the government to account. But that's not the case in most of the EU. There is certainly democratic backsliding happening in parts of the EU, but that's a separate discussion.
Nursie
Add to that - most normal, everyday people are entirely in favour of invasive government monitoring if it can be painted as being 'for the children' or 'to catch terrorists'.
So it's not a case that convenience beats privacy, AFAICT they're largely in favour of giving up that privacy anyway.
svachalek
As someone who's only visited, a foreign phone with foreign SIM will get you out. But I think using VPN on a Chinese SIM is somewhere on the range of very difficult to completely impossible these days.
oefrha
> somewhere on the range of very difficult to completely impossible these days.
It’s completely fucking trivial, there are a gazillion services and a number of well supported v2ray/ss/etc. capable VPN apps. SIM has nothing to do with VPNs after all (except in the DPI sense but various protocols already bypass that).
betaby
> How hard is it to disable the state spyware on a phone you buy there?
Are you referring to something specific? Or you are just guessing?
null
anikom15
The Chinese SIM is the key. If you are a foreigner and want to use a phone, either use a burner phone with a Chinese SIM or use international roaming with a non-Chinese SIM. You should not use a Chinese SIM.
Other restrictions are tied to the account which are based on the region of the Apple account, so any phone with a Chinese account will have various restrictions.
causal
The article gives some examples of scope creep but missed the biggest one IMO: copyright enforcement. I suspect if you follow the money, copyright is what keeps things like Chat Control coming back. Fully expect Sony, Disney and other IP to be added to the list of flagged content, keeping us safe from dangerous pirates.
dkdcio
it would be great if this article actually explained what Chat Control is somewhere at the top. it says it will, but I’m quite a few paragraphs in and have no idea what I’m supposed to be mad about yet
warkdarrior
If you follow the link for "Chat Control" in the first sentence, and then scroll down for a while, you will find a subsection titled "What Is Chat Control". Probably they assume that if you do not know what it is, you should not care about it.
From that section:
> "In 2021, the EU approved a derogation to the ePrivacy Directive to allow communication service providers to scan all exchanged messages to detect child sexual abuse material (CSAM). Although this first derogation was not mandatory, some policymakers kept pushing with new propositions.
> A year later, a new regulation (CSAR) was proposed by the European Commissioner for Home Affairs to make scanning messages for CSAM mandatory for all EU countries, and also allow them to break end-to-end encryption. In 2023, the UK passed a similar legislation called the Online Safety Act. These types of messaging mass scanning regulations have been called by critics Chat Control."
dwedge
People who know about it are generally already annoyed. The trouble is most people don't know what it is, and those are the people who should be targeted
dkdcio
right and if you read that subsection, it does not tell you what Chat Control is. which I find odd. it just goes on about how bad it is (after making an analogy earlier about police entering my home every morning). am I missing the explanation in the article of what Chat Control actually is?
the article also explicitly says it affects non-Europeans. I’m interested! I just can’t figure out what it is
warkdarrior
The other page I was referring to does have some more detail: https://www.privacyguides.org/articles/2025/02/03/the-future...
SV_BubbleTime
A bit of a scroll past the probably justified but still alarmism is the actually bad proposal.
> The most recent proposal for Chat Control comes from the EU Council Danish presidency pushing for the regulation misleadingly called the Child Sexual Abuse Regulation (CSAR). Despite its seemingly caring name, this regulation will not help fight child abuse, and will even likely worsen it, impacting negatively what is already being done to fight child abuse (more on this in the next section).
>The CSAR proposal (Chat Control) could be implemented as early as next month, if we do not stop it. Chat Control would make it mandatory for all service providers (text messaging, email, social media, cloud storage, hosting services, etc.) to scan all communications and all files (including end-to-end encrypted ones), in order to supposedly detect whatever the government deems "abusive material."
dkdcio
ah this is the relevant piece, which I did skim over given I was getting annoyed at paragraph after paragraph not telling me what it is:
> Chat Control would make it mandatory for all service providers (text messaging, email, social media, cloud storage, hosting services, etc.) to scan all communications and all files (including end-to-end encrypted ones), in order to supposedly detect whatever the government deems "abusive material."
thanks!
jonaharagon
I shared your comment with the author and we're going to reorder some of the sentences in a little bit to highlight the fact it's a backdoor earlier. We've talked about Chat Control so much over so many years (because it keeps reappearing) that it's easy to forget many haven't heard of it lol
awesome_dude
> including end-to-end encrypted ones
How the hang are they planning to do that?
I mean, if someone has an end to end encrypted conversation, it's encrypted when it gets to the carrier, and the carrier shouldn't (technically, not anything related about whether they are allowed to or not) be able to decrypt the conversation.
If the carrier is terminating the connection, then it's either not end to end encrypted, or it's broken.
edit: sorted the grammar/punctuation at the end to improve clarity
zmmmmm
Of all the arguments presented I'm surprised to see absent the one that seems most obvious to me: encryption is just math, there's no way to actually ban it. If criminals think their conversations are going to be detected they aren't going to just say "oh well let's not crime now". They are going to simply spin up their own e2e encrypted channels. The software is nearly trivial, the technical barriers are very low - it's hard to think why it won't happen.
So then what? They start outlawing encryption altogether? knowledge of math? How would you claw back all the public and freely available software that people can already use to encrypt messages to each other?
jonaharagon
> They start outlawing encryption altogether?
This is the direction places like the UK have gone in, yes. Can't decrypt something? Then we assume it is illegal content.
Tade0
Steganography it is then. Can't assume something is illegal, if it's hidden.
int_19h
Sure you can. For example, UK will jail you if you refuse to disclose a cryptographic key for something encrypted that the court wants to see, so long as the judge is convinced that you know it. I could easily see that extending to steganography: "there's no rational justification for you to have this file, and statistical analysis patterns show that it likely has a steganographic payload".
Nursie
I mean, not just the UK - it eventually changed in the US, but anything deemed too strong to crack was classified as a munition for a while in the 90s and 00s, and some things are still banned from being shipped to some places -
https://en.wikipedia.org/wiki/Export_of_cryptography_from_th...
"It's just math, you can't ban it" has never been true.
zamadatix
I'm sure many core proponents of Chat Control would like to also make it illegal to "hide" from scanning by applying your own encryption (and, even if not caught directly, it would add to the list of crimes someone might be charged with) but that large of a change probably puts it too far outside the Overton Window of today in a single push.
jihadjihad
dlivingston
> Any image file or an executable program can be regarded as simply a very large binary number.
This had never occurred to me before but is totally obvious in hindsight. An interesting corollary is that, given an infinite natural number space, all programs that have ever and will ever exist can be found as a single point on this natural number plane. The larger the number, the more complex the program. What else is emergent from this property?
ImPostingOnHN
Sounds like The Library of Babel:
Nursie
People have been selectively "banning math" for decades -
https://en.wikipedia.org/wiki/Export_of_cryptography_from_th...
> Chat Control would make it mandatory for all service providers (text messaging, email, social media, cloud storage, hosting services, etc.) to scan all communications and all files (including end-to-end encrypted ones), in order to supposedly detect whatever the government deems "abusive material."
I wonder why there has been such silence on this, with the exception of a handful of well written blog posts. The scope of such a dragnet, the economic impact, the societal damage, all seems rather broad. Yet why don't any major operators in the EU take a stance? Is it really so below the radar, or being kept so below the radar?
Just the network egress costs to whatever state sanctioned scanner gets built will in aggregate probably exceed a few hundred MEUR yearly.