> Privacy is a set of curtains drawn across the windows of our lives. And technology companies are moths that will chew through more of the fabric every year if we let them, and especially if we encourage them.
That bright future and empowering innovation that most of us expected from tech companies was really a mirage…
'will chew'?? The use of future tense is somewhat strange. We already live in a tech panopticon.
Went the other day to an old friend's house. At the door, a Ring eye unblinkingly stared at me. For a few moments I felt like crushing the metallic monstrosity under the heel of my boot: I never consented to have my face uploaded in the Cloud. Then realized how powerless we truly are: every other house, every other shop, every other car have such an eye, all connected to the AllSeeingCloudEntity. With vision tech cheap enough to match our faceprint every single step every single one of us takes in a public space. Heracles at least had a fighting chance against the Hydra. Where do we even begin reclaiming our right to not be continuously watched?
I remember Soviet block dissidents being assigned a 24/7 surveillance detail to monitor all their moves and contacts. I remember Soviet dissidents having their correspondence systematically violated by the surveillance apparatus. I remember US funded Radio Free Europe (and British BBC International) being utterly revolted by this state of affairs. Human Rights, Freedom, Democracy, Constitution, Rule of Law, Dignity. Exhibit A on why the Soviets were morally corrupt and had to go to the dustbin of history.
Fortunately for the Soviet subjects, in-person surveillance was expensive and didn't scale once the system started to crack and the number of dissidents increased from a handful to thousands.
Not so in the tech utopia. We have multiple megacorporations competing in doing every evil trick in the Soviet surveillance textbook, 24/7, at scale. Aaah, progress.
Note that the Soviets, living in a communist society, had the state watch them free of charge. I live in a capitalist society. We purchase our own surveillance here.
I know it's boring and in many places unlikely, but government is essentially the only tool that could ever be effective at quelling the continued expansion of corporate surveillance.
We can likely all come up with novel technology ideas to help ourselves, but it's a blight on all of society not just those who are conscious of it. They are our governments after all, we should be using them as tools for good as best we can.
How are we going to pressure the government, when regular people vastly underestimate the surveillance capabilities of modern ML + Cloud and willingly install surveillance endpoints in exchange of marginal convenience?
Re tech solutions, I've been hearing this for 20 years. The panopticon has been built. Anti-surveillance technologies failed to materialize.
One consequence of previous software failures with tragic outcomes was the development of technical standards that are now referred to and required in government procurement procedures, in laws and certifications, in education etc.
For example, the horrific Therac-25 incidents led to IEC 62304, a standard which specifies life cycle requirements for the development of medical software and software within medical devices:
There have been 24 years between Therac-25 and IEC 62304, with a clear smoking gun that everybody agreed it was a horrific smoking gun. With privacy, we're still in 'if you've got nothing to hide, you've got nothing to fear' stage, and we may be stuck here perpetually.
I strongly hope we are not stuck here perpetually: There are powerful companies that require privacy even in their conditions of use. For instance, to obtain a credit card from a bank, you have to sign a document stating that you will hide the PIN of your card. For example, quoting from Section 5.5 in the contract you have to sign to get a Visa Card or Mastercard https://www.cardcomplete.com/media/medialibrary/2021/03/AGBs...:
"The Cardholder must not disclose the assigned PIN, nor any
personally chosen PIN (see Item 17.8.), nor the Secure Code to
anyone, not even to employees of card complete. The Cardholder is
responsible for ensuring strict secrecy concerning all card
security details – PIN, Secure Code and mobileTANs received on
his/her telephone (to be used for authenticating a ViS/MCID
transaction and valid for a maximum of 5 minutes afterreceipt) –
and must take all reasonable precautions to ensure that they
cannot be discovered by others. The Cardholder must refrain from
writing them down on the card, keeping them in the same place as
the card, telling them to anyone, or acting in any other way that
would allow others to discover these details."
Hence, if you have a credit card, you must hide something. A bank, for example, would likely benefit from requiring a secure device for transactions as part of their conditions of use, otherwise it is unclear how exactly we can satisfy this contract as customers, and who is liable in case of problems. A common way to ensure such technical requirements is to refer to a technical standard that the device must conform to.
As a closely related example, here is a recent Austrian law, the Registrierkassensicherheitsverordnung (regulation for security of cash registers):
Note to how many technical standards the law refers to in order to ensure the security of these devices, including AES-256, SHA-256 etc. These technical standards ensure that multiple vendors can participate in bidding and all adhere to the required specifications regarding security etc.
If I look at EU legislation (not only GDPR but in general) then it seems that the needle of public opinion with respect to privacy is already there and well known to the legislators.
A problem for places like USA is that the legislators are unwilling to regulate against the interest of big companies unless the needle of public opinion is very, very, very strong to the point of it becoming the primary issue (which IMHO is not going to happen, privacy is important but there are and will be other priorities as well) - but if we're simply looking at the preferences of the population, then the public opinion is already there.
Which is, in other words, due in large part to what is referred to as "myopic engineering" or "engineering myopia": this idea that, as Heidegger writes in What is Called Thinking?, "[t]he most thought-provoking thing in our thought-provoking time is that we are still not thinking."
Ha, wait until you visit a house where there are surveilling devices blinking at your in every room.
Also, sometimes I expect a Tesla to go full “Assuming Control” mode and continue aggressive behavior of previously encountered one. Surely they record/analyze everything encountered and pass it onto central server, so no issues “remembering” me…
> 'will chew'?? The use of future tense is somewhat strange.
I notice this in the media a lot. It’s so frequent I struggle to believe it isn’t on purpose. To make people think a problem isn’t as widespread or as severe as it actually is.
It could be more like: "My computer won't start" (it currently does not start), or "don't leave this unattended or the cat will eat it" (it's actually happening right now as soon as you do).
Moth or cockroach? I feel the authors are being polite.
Not doing this provides a substantial amount of motivation for choices I make in small projects I do.
While yet to think of a blog post or snazzy term for this, which won't be posted on Medium, every action, every feature, is one to consider for the value it adds, not just it for the sake of it. And every choice not to do something is equally a choice.
Should login be via Google, Facebook, email, other? Why is login necessary? Could value for services be provided with no need for login, 80% of value, 60%, then if so, and if integrating to 3rd party services what value does that add? And what does it take away in getting padlocked to a walled ecosystem that can be slammed shut with no recourse, be that Alphabet, Tencent, or any other?
Do I need to access your location and photos for a todo app? If so, that's not a todo app, or some pretty poorly thought-out feature creep is being build in from the start. Is having access to your contacts going to make me the next unicorn? It's been done already. Too competitive today for the next big thing which will be something different anyway, the next big iteration in the sense of not being very revolutionary at all. Has the potential for liability been thought of when sloppy code deletes valuable pictures, or causes a device failure that does so?
The noun that was 'creativity' has been replaced by the corporate-safe one-step-at-a-time 'innovation'. Nobody got fired for innovating. Marketers get bonuses for dressing up the mediocre-inducing term innovation as something remotely creative.
The future is here and was here all along. It's for us to see.
Given how Samsung compromise every other nook and cranny of Galaxy phones, I wouldn't have any expectations of this being actually secure or private.
This is my own conclusion after owning several Galaxy devices and eventually giving up trying to get them secure. At this point, they can't be trusted more than Xiaomi or Huawei.
I previously owned a Samsung, and got confused by the Fort Knox feature. The description of the feature said that only I could access it, but required me to sign up for an Samsung account to use it. I never understood why I needed an online account to use an offline feature, and it also said I needed to register in case I forgot the password and would need to regain access.
I was determined not to have a Samsung account to use the phone, so I never got try it out, but I assume that anyone with access to the Samsung account have access to the secure folder
> The logic of catching a few evil actors by denying the cloak of privacy to everyone will inexorably expand to more and more areas that powerful societal factions want to target.
I see the outline of a public change in attitude towards this sentiment.
With War on Terror and also War on Drugs everyone bought into the premise. Now twenty years later it's more of a stalemate than anything else.
Then came the Corona epidemic where most accepted very serious limits in their freedom, e.g. Ireland introduced curfew.
Now Apple is trying to introduce surveillance of your device. I believe that this idea from Apple is a step too far, in that the public will not accept it on any terms.
Apple has long been promoting privacy, but now they also want to promote surveillance. They can choose one but not both, which is the dilemma Apple is in.
So my hope is that the public will no longer accept overreaction due to a large-scale event and it starts with Apple and phone privacy.
> With War on Terror and also War on Drugs everyone bought into the premise.
I was a teenager when the "War on Terror" was announced and even back then I thought that this is a silly concept, because:
1) Terror is a concept. How can you fight and win a war against a concept?
2) The goal of Terror is to use violence and fear to rally a political point. If we change our entire way of living because of terrorists, doesn't that somehow mean we give them more leaverage over our way of living than we should?
As it now turned out, the whole "War on Terror" didn't work out, couldn't have worked out etc. People are kinda fed up with this "we all have to give up $freedom to gain a slight edge against $virtual_threat". I mean there are even people who wouldn't give up a bit of comfort for a real and imidiate threat like Covid.
Lies have consequences. Big lies have big consequences.
Winning war on Terror is easy. Become the source of terror.
There are no terrorist possible in feudal states. Because acts of terrorism back then would be just a drop in the bucket. And any benefit would quickly disappear in ensuing retaliation.
Terrorism is the attempt to reach political goals through acts of violence meant to stoke fear.
You don't get rid of terrorism by choosing a power structure where terror is the norm.
I'd say you can never get rid of terror per se until you establish absolute power and absolute control. That means any free society has to accept a certain amount of terrorism and therefore has to focus work on preventing root causes of terrorism as well as preventing the fallout a single terrorist attack can have.
It is clear that nobody buys in to the premise of the War on X because usually the premise is senseless. There is no connection at all between 9/11 and the necessity for the US to have launched what turned out to be a 20 year occupation of Afghanistan. None. The punishment and crime are not just disconnected but absurdly independent of each other. And the response did far more damage than anything else to American freedoms.
There is a probably a nice write-up somewhere of how that is the point; some sort of tribe bonding exercise or something. Showing that people pull together as a community because they are a community rather than because of a rational reason. The fact that the premise is farcical isn't a factor. Don't expect logical consistency.
I actually agree with you that the war in Afghanistan was an absurdly wrong move, and have thought this since it started.
However this statement:
> There is no connection at all between 9/11 and the necessity for the US to have launched what turned out to be a 20 year occupation of Afghanistan. None.
> There is no connection at all between 9/11 and the necessity for the US to have launched what turned out to be a 20 year occupation of Afghanistan. None.
Of course there is a connection. Poltics felt obligated to do something. In purely practical terms the US (and the world) might have been better off if instead of going for a war in Afghanistan, the US did nothing instead (except for a proper investigation of course).
But wars are not often about purely practical matters anyways. Sometimes they are more domestic politics than foreign, sometimes they are more about telling and selling stories than about survival.
It used to be possible to board an airplane without ID if you underwent additional screening, which was a compromise following the introduction of a post-9/11 ID requirement. Yesterday’s compromise is today’s loophole, so TSA got rid of additional screening, and a few months from now the TSA will be denying people with legal and valid ID the ability to board a flight as a way to coerce states into accepting a nationalized Real ID program.
One day you might find yourself on a secret government no fly list because you checked out the wrong book at the library or spent too much time watching lock-picking videos. And there will be nothing you can do because we spent the last several decades building a highly efficient array of surveillance and population control systems.
We need a nested encrypted containers and dual log in for plausible deniability. I mean you should be able to login to a different profile depending on password. This way you can protect your privacy even if you are forced to disclose your password.
Ricky Gervais called him out on national television about his use of child labor and the partnership with the CCP. His reaction was this smug, stone cold expression, and absolutely no acknowledgement or action afterward.
Probably because it was a stupid remark made to elicit emotion and try to blame one person/entity and diffuse responsibility from those responsible, which is everyone.
Even Apple is not capable of being able to sell a product that can’t take advantage of the economies of scale of Chinese/southeast Asian electronics manufacturing, or the metals that come from the middle of Africa.
No one is going to pay $10k for an iPhone versus a $1k Samsung. One company might be able to push the wages and quality of life a little bit, and be able to sell at a 10% or 30% premium. But it is not going to be enough.
Gervais was probably wearing clothes made of materials coming from some Asian country from factories with even worse wages. Easy to criticize and make “smart” comments as a comedian, certainly easier than working in the supply chain and managing logistics for 3 decades and actually knowing what is and is not possible.
A better use of time would have been if Gervais asked Cook what can be done to speed up the improvement in working conditions or what the roadblocks are that prevent it from happening.
>Gervais was probably wearing clothes made of materials coming from some Asian country from factories with even worse wages
Impressive, usually that type of "no u" argument needs a specific target; how much more useful it is when one can tar anyone wearing clothes with the easy certainty that somewhere in the supply chain substandard working conditions exist.
Even more impressive is the snuck premise that, since Gervais is implicitly OK with his clothes (probably) originating in some sweatshop, he should be OK with the state of modern electronics in both their manufacture and their role as panopticon.
I do not know what "no u argument" means, but that is not the argument.
The argument is that even something as simple as clothing is difficult to have an economically viable business in if not sourcing from places around the world with low wages and lax labor and environmental laws. I would expect Gervais to recognize this, and understand that Tim Cook cannot be expected to have the power to completely rectify the situation regarding the inputs of the most complicated devices every made in history.
>Even more impressive is the snuck premise that, since Gervais is implicitly OK with his clothes (probably) originating in some sweatshop, he should be OK with the state of modern electronics in both their manufacture and their role as panopticon.
I do not agree with this interpretation of my premise due to the ill defined word "OK". It is possible to be realistic and expect solutions to take time, but that does not mean one would be "OK" with labor conditions if they did not have to be.
People like to blame big corporations, politicians, other countries, anyone but themselves. But push comes to shove, where is the political support for higher fossil fuel taxes? Where is the patronizing of local businesses that use local labor to make goods?
What is the purpose of asking Tim Cook about child labor when people in society destroyed every business that did not offer products at the lowest possible prices? I have known about clothing made with child labor since I was in grade school, and I am in my mid 30s, and clothes still come from Bangladesh and we (society as a whole) still buy it from there. Nobody is going to pay the premium required to make an iPhone outside of SE Asia or without the metals from Africa, it is probably not even possible.
> I have known about clothing made with child labor since I was in grade school, and I am in my mid 30s, and clothes still come from Bangladesh
There are many companies that produce and sell american made apparel. [0] I buy from several of them (on the the rare occasions when I buy more clothes.)
> Where is the patronizing of local businesses that use local labor to make goods?
Perhaps if you spent less time making assumptions about where other people buy their clothes and more time looking for local options you would actually be helping.
The end goal should not be the end of international trade but an insistance that we do not allow international trade to facilitate abuses. The core problem is that people like you and Tim Cook brush off legitimate concerns about the practices of international trade partners as "just the way things are".
Edit: I would hope that Ricky Gervais, when confronted with a question about the source of this clothing, would respond thoughfully and even consider changing where he buys his clothes. Ethical business practices may be a niche market today, but the way we expand that market share isn't by just accepting the way things are.
I'm pretty sure murica could make the same kind of phones that are built in Japan, South Korea, etc. without costing 10x the South Korean phones. And child labor isn't exactly endemic in all of SE Asia.
Samsung uses the same company to make its phones, Foxconn, that Apple does to assemble its phones. Whatever the case is about child labor, my point is expecting a single company to be able to sidestep the enormous labor arbitrage from manufacturing in China/SE Asia is naive. Surely there are many qualified people who work to determine what price premium the public is willing to pay versus going to a competitor.
Are you saying that the $1K phones that Samsung manufactures in South Korea are made by Foxconn? If you are, then please present proof. If not, then you're missing the point.
The point is everyone uses cheap labor for manufacturing if possible, whether it's China or elsewhere. If they did not, then their mass market products would probably be priced too high and customers would reward competitors and they would go out of business. No one is paying higher paid people in South Korea or Japan to assemble phones if it can be done drastically cheaper elsewhere.
Another article about Sony using Foxconn and other ODMs:
I assume LG and Samsung are big enough to have their own facilities and be ODMs themselves, but I would guess the smaller players like Sony have to outsource to them.
Yes, they've partnered with Foxconn in the past and have had (now closed) factories in China. This is not what I was asking about.
Fact is, they do manufacture phones in South Korea. Not all their phones, but they do manufacture them. Evidently it's still profitable enough to do so, and evidently they do not charge $10K for their top-of-the-line Galaxy S phones made in SK. https://www.businessinsider.com/samsung-gumi-factory-2014-5?...
Sony has also made phones in SK and Japan.
Obviously these are not contenders for the cheapest phone, but we weren't talking about the cheap Xiaomis and Huaweis anyway. And evidently lots and lots of people are happy to pay for more expensive phones. Apple has ridiculous profit margins and people still pay for it.
$10k was a made up number to show that it would add considerable expense to bring every element in the supply chain up to par with the living standards in developed countries. For example, do the South Korea phones still use materials that originate from mines in the Congo?
I assume if Samsung had figured out how to make phones with better labor practices than Apple, then they would be advertising it. Seems like pretty easy PR points to win business, so I would have to wonder why not? I am guessing it is either inconsistent across their product lines or labor practices are increasing over the years.
Wondering how scanning and submitting of private data is possible within the EU according to GPDR rules. I doubt that the EU commission will have a blind eye on that topic.
Their marketing was starting to get to me as far as being the privacy company. I was really considering buying my first iphone. They had to know they were throwing all that marketing/effort down the drain.
There is no way they are going back on this. They will just wait out the collective short term memory to move on to something else. In a year this will just be normal. In 5 years all the other things that have been added to scan for will also just be normal.
For me, I am old and just accept we will live in an ever growing dystopian surveillance state. I am so grateful I was able to live my youth the way it was. If you are young? Yea, I have no answers.
May you live in interesting times? At least we have that going for us.
So many other factors contributing to this future too.
I.e. Manual labor continuously gets automated, so less low education positions available each year.
Upcoming climate crises that's going to displace a lot of people that won't have jobs anymore.
Air quality continuously worsening. We're globally at 415 CO2 now, up from below 300 before industrialization. With each sizeable increase people will statistically perform worse on intellectual tasks. If current trends continue we'll be at 500 before 2100.
Continuously improving neural networks/"ai" will make fully automated armed defenses on private properties viable, so this is likely the first time in history in which people in power won't be dependent on their guards, making worker uprisings basically impossible
I am glad as well that Im always well into my 30th and make an effort to enjoy each day without thinking too much about the future. It's looking grim, so all the more reason to enjoy the present
> If current trends continue we'll be at 500 before 2100.
Urban areas are already regularly over 500ppm. I know because my dad certified hospital air systems with a 500ppm limit. Hospitals are having to put carbon filter on their air intakes.
Instead of petitioning Apple (how humiliating is that?) to reverse course, people should petition the government to outlaw smart phones, since their primary use is clearly of a criminal nature.
Then you can gleefully watch Apple getting on its knees very fast.
Sure; Apple, the world’s largest company at $2.1T, will get on their knees and beg if you file a petition to the government to ban smartphones. Get on that! Problem solved.
If people devote the same amount of resources to that cause as they do to bashing white rural farmers who feed them and have never done anything wrong in their lives, it could work.
How many Apple stores are there in the U.S.? Post 2 student activists at each of them and let them explain that the iPhone belongs to Apple and not the user.
In 2007 a photo album came to light of guards at Auschwitz relaxing at a resort not far from a death camp, with gas chambers and ovens and such, the details of which they were well aware. In the photos they can be seen laughing, smiling, making funny faces, singing and joking about running out of blueberries. Historians asked; how could these people be so callous? How could they disconnect and compartmentalize like that? What went wrong with that generation? Why didn’t they care?
Now today we know certain things to be true. If Apple, the world’s largest company, deploys this scanning technology on a billion handsets then many offenders will be caught and they will go to jail, and as a consequence a large number of children will be spared the type of abuse that totally destroys lives. Those victims lose everything.
I’d wager that for the majority of people on this forum, if they witnessed an adult sexually assault a child in person then they would intervene. Even if considerable risk was involved. There’s plenty of reward in saving a helpless child. But take that reward away, without the incentive, different colors show.
Do you care so little about the wellbeing of children you’d let child rapists walk free around the community rather than let a company scan your cellphone for contraband?
Perhaps we need to think less about how much we trust the government we elected or fear the potential negative future consequences of technology, and think more about being remembered as a human being that simply cared for others.
It is not clear that these measures will reduce actual criminal activities in the first place.
Then, same as anyone can plant heroin in your apartment, anyone can plant "evidence" on your iPhone. Possession laws are extremely dangerous. In the simplest case, someone sends you a spam with an attachment that ends up on iCloud.
Physical problems need to be addressed at the physical level, even if that means that the authorities have to get up from their comfortable chairs again and have to stop staring at monitors.
It's worse than that IMO. Apple has (very publicly) announced that existing CSAM can get scanned for, so it's dangerous to possess it. Newly-created CSAM, however, is much safer, since until it gets added to a database these perceptual hashes will be less likely to detect it. So Apple is indirectly encouraging the creation of new CSAM.
Of course Apple's scanning isn't the only thing that encourages such creation, but it's a newly publicized thing.
I don't know where you're trying to go with this comparison. Do you think those guards would have been persecuted if their cameras would have surveilled their photos? Or are you implying that people that oppose Apple's indiscriminate scanning of personal data are as bad as these Nazi murderers?
Child abuse happens within families in the majority of cases. People who commercialize child abuse will move to a different platform if they even
If you really want to enforce policies that protect children from abuse then you'll have to speak up for improved social work, professionalized points of contact for school children and so on and so on. I'm not a professional in this field but I'm sure there is a lot of literature on this.
The implication of what Apple does, on the other hand, is officially giving up on protecting their users' data. If people oppose this, they don't oppose protecting children. They oppose a policy that has no proven effectiveness against child abuse while having high potential to becoming a generalized surveillance tool.
No if they oppose this and succeed many children will be abused as a direct consequence, it’s obvious causality so don’t shy away from what is a clear material choice - make a decision and accept responsibility for that, because it says plenty about where your values are at. And the idea that this will progress into a generalized surveillance tool is wild speculation. It might.
Yes I do believe this illustrates a similar social dynamic. People here could care less about the extreme suffering these children stand to experience.
Email privacy is more important than preventing child rape. Does that sound right to you?
Although I'm more skeptical than the OP, you have to realize: the idea that the majority of society currently accepts is that privacy is less important than protecting children. Are those in opposition to the scanning of personal data willing to argue against the idea that the proliferation of CSAM directly leads to child abuse? Unless there is hard evidence that refutes such a claim, nothing about Apple's policy is going to change. And not only Apple's policy, but the policies of all other tech companies and the governments of dozens of countries throughout the world that compel the creation of those policies and the related laws.
Personally, I believe that those policies have good intentions, and that ending them will cause great harm to children on a significant scale.
Please don't take this to imply I'm calling you out personally, because as far as I can tell, you're just stating a position you believe is common, not your own position.
Almost all child abuse happens at the hands of parents and siblings. The simplest way to prevent it isn't to scan photos on iPhone. Most people at this point have webcams and microphones in their homes. Device vendors could simply make these always on and flag recordings of possible abuse to manually review and send to law enforcement.
As far as I can tell, exactly no one thinks we should do this. But it's completely analogous. People who abuse children often have recording devices of some sort near them. Forcing those recording devices to automatically scan and detect abuse in their data streams would almost certainly prevent some amount of abuse.
It is trivial to stop any and all crime with a sufficiently invasive police state, provided you redefine covert surveillance and the psychological harm done to people who know they are always being watched as not being crimes. So why do we accept some panopticons and not others? What is the actual difference here? People have a right to privacy and we have a formal process whereby law enforcement need to convince a judge of probable cause and only then can they be surveilled to find evidence against them. It has never been acceptable in American jurisprudence to just surveil everyone in case they might be a criminal. When did that change?
Obviously, there is a tradeoff here. We allow people privacy and dominion in their homes. As a result, stronger people who live with weaker people quite often abuse them. Great harm to children and spouses and girlfriends and pets on a significant scale absolutely happens because we allow presumption of innocence and privacy in one's own home. But that has always been considered worth it.
One of the major issues around this policy is the line that is drawn between privacy versus security. Why is invasive scanning of existing data generally accepted but surveillance of one's private space not?
I'm thinking it has to do with the idea that "you" are the one that owns "your" device, whose subversion is the cause of a lot of the backlash.
But I think that if governments are able to compel companies to not let thir data warehouses become private spaces that allow criminal enterprises to flourish, they would do so. Corporations wouldn't become triggers for outrage if other forces surveil their physical or virtual premises - regulation is expected. They can grow to have too much power, and in order to continue existing they have to cooperate with external forces that keep them in check. The standards of individual liberty seem to be applied differently between individuals' private spaces and corporations.
But a lot of times, I think that there isn't an equivalent distinction between a hard drive in one's own room and one out of millions in a remote data center. Exposing a personal hard drive to the internet and breaking down someone's door both carry the possibility of criminal liability, but the former has many more legitimate use cases. It has always been possible to incriminate oneself from a sealed room with only an Internet connection depending on what kind of data you're trafficking, and maybe the possibility of on-device scanning will cause more people to learn of that fact.
I believe the misunderstanding is that Apple assumes that the impression they're giving is that only those that consent to allowing the corporation to assist them in their lives will be subjected to that corporation's policies that prohibit the assistance from being criminal in nature, and it's irrelevant if that process is moved to the device. But Apple's assumption was wrong, and many people stopped trusting them. And because of that severe loss of trust in particular, their promises stopped being effective in dismissing counterarguments. Almost everything about this issue revolves around who will be compelled to implement what technological controls by whom else, and about the only things that are being used to refute the worst case scenario are what have essentially become meaningless promises because of the significant loss of trust. But even so, meaningless promises are all that reassure us that any given corporation won't go rogue at any time, regardless of what laws or morals exist, and promising that these features will save children from harm has, up to this point, been a promise that has been accepted and forgotten about.
To be clear, I think Apple's strategy is a mistake, and that the scan should be kept off the device. That is from the standpoint of how to effectively hold corporations accountable, who hold a significant amount of power in incentivizing human behavior, be it addictive or criminal. And in the current society where corporations need to know if they're enabling criminals by learning about the nature of their interactions, complete privacy can never be achieved. There will have to be a loss of some amount of privacy at some step in the process, but there is still such a thing as losing too much privacy.
I think we’re a pretty innovative generation and we can build technologies that strike a careful balance between protecting personal liberties and keeping our children safe. Both are highly important.
The ‘all or nothing’ ‘here comes the 1984 dystopia’ argument is fear mongering. Let’s give Apple a chance and see if they can pull it off.
The issue is not what people will do today. The issue is what future generations will do. Are you comfortable with handing the keys to complete dystopia over to people who haven't even been born yet?
Future generations will inherit a very different world with new challenges, and this is the very least of them. It wasn’t that long ago biometrics were being called the doorway to dystopia and the mark of the devil. Now fingerprint scanners and facial recognition hardware is in every device and we all benefit from the convenience. Apple didn’t create an online database of our faces and fingerprints and give it to the US government so everywhere we go and everything we touch gets recorded forever. Why would they need to when we all posted our photographs on Facebook for the world to download anyway? See you’re actually dealing with superstition and prophecy of doom. Those memetic structures rely on genetic behavioral traits derived from when religious influence created selective pressure. Those psychological hooks are being commandeered by stories/memes that mimic superstition and religion. So I’m saying you don’t have objectivity.
If the existence of iCloud correlated with a surge in child abuse, maybe you'd have a point. Believe it or not, child abuse predates the iPhone. And "has nude pics" -> "is rapist" isn't exactly sound logic.
102 comments
[ 3.2 ms ] story [ 164 ms ] threadThat bright future and empowering innovation that most of us expected from tech companies was really a mirage…
Went the other day to an old friend's house. At the door, a Ring eye unblinkingly stared at me. For a few moments I felt like crushing the metallic monstrosity under the heel of my boot: I never consented to have my face uploaded in the Cloud. Then realized how powerless we truly are: every other house, every other shop, every other car have such an eye, all connected to the AllSeeingCloudEntity. With vision tech cheap enough to match our faceprint every single step every single one of us takes in a public space. Heracles at least had a fighting chance against the Hydra. Where do we even begin reclaiming our right to not be continuously watched?
'Don't use a browser'. 'Don't carry a cellphone'. 'Wear a mask'.
Next: 'Don't go outside'. 'Don't speak'. 'Don't think'.
Soon we are back to:
Don't write when you can speak, don't speak when you can nod, don't nod when you can wink - or something to that effect.
Don't think.
If you think, don't speak.
If you speak, don't write.
If you write, don't sign.
If you think, speak, write and sign, don't be surprised.
Fortunately for the Soviet subjects, in-person surveillance was expensive and didn't scale once the system started to crack and the number of dissidents increased from a handful to thousands.
Not so in the tech utopia. We have multiple megacorporations competing in doing every evil trick in the Soviet surveillance textbook, 24/7, at scale. Aaah, progress.
We can likely all come up with novel technology ideas to help ourselves, but it's a blight on all of society not just those who are conscious of it. They are our governments after all, we should be using them as tools for good as best we can.
Re tech solutions, I've been hearing this for 20 years. The panopticon has been built. Anti-surveillance technologies failed to materialize.
For example, the horrific Therac-25 incidents led to IEC 62304, a standard which specifies life cycle requirements for the development of medical software and software within medical devices:
https://en.wikipedia.org/wiki/IEC_62304
I hope analogous standards will be formulated for privacy on devices etc.
How do we move the needle of public opinion?
"The Cardholder must not disclose the assigned PIN, nor any personally chosen PIN (see Item 17.8.), nor the Secure Code to anyone, not even to employees of card complete. The Cardholder is responsible for ensuring strict secrecy concerning all card security details – PIN, Secure Code and mobileTANs received on his/her telephone (to be used for authenticating a ViS/MCID transaction and valid for a maximum of 5 minutes afterreceipt) – and must take all reasonable precautions to ensure that they cannot be discovered by others. The Cardholder must refrain from writing them down on the card, keeping them in the same place as the card, telling them to anyone, or acting in any other way that would allow others to discover these details."
Hence, if you have a credit card, you must hide something. A bank, for example, would likely benefit from requiring a secure device for transactions as part of their conditions of use, otherwise it is unclear how exactly we can satisfy this contract as customers, and who is liable in case of problems. A common way to ensure such technical requirements is to refer to a technical standard that the device must conform to.
As a closely related example, here is a recent Austrian law, the Registrierkassensicherheitsverordnung (regulation for security of cash registers):
https://www.ris.bka.gv.at/GeltendeFassung.wxe?Abfrage=Bundes...
Note to how many technical standards the law refers to in order to ensure the security of these devices, including AES-256, SHA-256 etc. These technical standards ensure that multiple vendors can participate in bidding and all adhere to the required specifications regarding security etc.
Most people really don't get how much processing is happening and how much of it is a mechanical turk by the way of minimum wage contractors.
A problem for places like USA is that the legislators are unwilling to regulate against the interest of big companies unless the needle of public opinion is very, very, very strong to the point of it becoming the primary issue (which IMHO is not going to happen, privacy is important but there are and will be other priorities as well) - but if we're simply looking at the preferences of the population, then the public opinion is already there.
Unfortunately, as evidenced by the ubiquity of Google’s services, almost nobody is willing to give up an iota of convenience for their privacy.
Which is, in other words, due in large part to what is referred to as "myopic engineering" or "engineering myopia": this idea that, as Heidegger writes in What is Called Thinking?, "[t]he most thought-provoking thing in our thought-provoking time is that we are still not thinking."
Also, sometimes I expect a Tesla to go full “Assuming Control” mode and continue aggressive behavior of previously encountered one. Surely they record/analyze everything encountered and pass it onto central server, so no issues “remembering” me…
I notice this in the media a lot. It’s so frequent I struggle to believe it isn’t on purpose. To make people think a problem isn’t as widespread or as severe as it actually is.
It could be more like: "My computer won't start" (it currently does not start), or "don't leave this unattended or the cat will eat it" (it's actually happening right now as soon as you do).
Not doing this provides a substantial amount of motivation for choices I make in small projects I do.
While yet to think of a blog post or snazzy term for this, which won't be posted on Medium, every action, every feature, is one to consider for the value it adds, not just it for the sake of it. And every choice not to do something is equally a choice.
Should login be via Google, Facebook, email, other? Why is login necessary? Could value for services be provided with no need for login, 80% of value, 60%, then if so, and if integrating to 3rd party services what value does that add? And what does it take away in getting padlocked to a walled ecosystem that can be slammed shut with no recourse, be that Alphabet, Tencent, or any other?
Do I need to access your location and photos for a todo app? If so, that's not a todo app, or some pretty poorly thought-out feature creep is being build in from the start. Is having access to your contacts going to make me the next unicorn? It's been done already. Too competitive today for the next big thing which will be something different anyway, the next big iteration in the sense of not being very revolutionary at all. Has the potential for liability been thought of when sloppy code deletes valuable pictures, or causes a device failure that does so?
The noun that was 'creativity' has been replaced by the corporate-safe one-step-at-a-time 'innovation'. Nobody got fired for innovating. Marketers get bonuses for dressing up the mediocre-inducing term innovation as something remotely creative.
The future is here and was here all along. It's for us to see.
For those without a samsung it's basically an encrypted sandbox environment.
sure its not perfect but it is a good way to wall of a private environment for yourself.
This is my own conclusion after owning several Galaxy devices and eventually giving up trying to get them secure. At this point, they can't be trusted more than Xiaomi or Huawei.
I was determined not to have a Samsung account to use the phone, so I never got try it out, but I assume that anyone with access to the Samsung account have access to the secure folder
That’s the explanation HNers gave to me last time I pointed this out regarding some iCloud features.
How about companies stop adding backdoors to security features with the excuse of “data safety”?
> The logic of catching a few evil actors by denying the cloak of privacy to everyone will inexorably expand to more and more areas that powerful societal factions want to target.
With War on Terror and also War on Drugs everyone bought into the premise. Now twenty years later it's more of a stalemate than anything else.
Then came the Corona epidemic where most accepted very serious limits in their freedom, e.g. Ireland introduced curfew.
Now Apple is trying to introduce surveillance of your device. I believe that this idea from Apple is a step too far, in that the public will not accept it on any terms.
Apple has long been promoting privacy, but now they also want to promote surveillance. They can choose one but not both, which is the dilemma Apple is in.
So my hope is that the public will no longer accept overreaction due to a large-scale event and it starts with Apple and phone privacy.
I was a teenager when the "War on Terror" was announced and even back then I thought that this is a silly concept, because:
1) Terror is a concept. How can you fight and win a war against a concept?
2) The goal of Terror is to use violence and fear to rally a political point. If we change our entire way of living because of terrorists, doesn't that somehow mean we give them more leaverage over our way of living than we should?
As it now turned out, the whole "War on Terror" didn't work out, couldn't have worked out etc. People are kinda fed up with this "we all have to give up $freedom to gain a slight edge against $virtual_threat". I mean there are even people who wouldn't give up a bit of comfort for a real and imidiate threat like Covid.
Lies have consequences. Big lies have big consequences.
There are no terrorist possible in feudal states. Because acts of terrorism back then would be just a drop in the bucket. And any benefit would quickly disappear in ensuing retaliation.
You don't get rid of terrorism by choosing a power structure where terror is the norm.
I'd say you can never get rid of terror per se until you establish absolute power and absolute control. That means any free society has to accept a certain amount of terrorism and therefore has to focus work on preventing root causes of terrorism as well as preventing the fallout a single terrorist attack can have.
Terrorism is using violence to achieve political aims.
If state is built on terror and control, then others can't use it against it, since state has near monopoly on that.
There is a probably a nice write-up somewhere of how that is the point; some sort of tribe bonding exercise or something. Showing that people pull together as a community because they are a community rather than because of a rational reason. The fact that the premise is farcical isn't a factor. Don't expect logical consistency.
However this statement:
> There is no connection at all between 9/11 and the necessity for the US to have launched what turned out to be a 20 year occupation of Afghanistan. None.
Is simply not true.
Of course there is a connection. Poltics felt obligated to do something. In purely practical terms the US (and the world) might have been better off if instead of going for a war in Afghanistan, the US did nothing instead (except for a proper investigation of course).
But wars are not often about purely practical matters anyways. Sometimes they are more domestic politics than foreign, sometimes they are more about telling and selling stories than about survival.
Why do you think they picked Afghanistan?
One day you might find yourself on a secret government no fly list because you checked out the wrong book at the library or spent too much time watching lock-picking videos. And there will be nothing you can do because we spent the last several decades building a highly efficient array of surveillance and population control systems.
And this cartoon: https://i.redd.it/ifb8agngc7dy.jpg
I guess Tim Cook isn’t the sort to have anyone tell him what to do.
Tim Cook receives zero respect from me.
Even Apple is not capable of being able to sell a product that can’t take advantage of the economies of scale of Chinese/southeast Asian electronics manufacturing, or the metals that come from the middle of Africa.
No one is going to pay $10k for an iPhone versus a $1k Samsung. One company might be able to push the wages and quality of life a little bit, and be able to sell at a 10% or 30% premium. But it is not going to be enough.
Gervais was probably wearing clothes made of materials coming from some Asian country from factories with even worse wages. Easy to criticize and make “smart” comments as a comedian, certainly easier than working in the supply chain and managing logistics for 3 decades and actually knowing what is and is not possible.
A better use of time would have been if Gervais asked Cook what can be done to speed up the improvement in working conditions or what the roadblocks are that prevent it from happening.
Impressive, usually that type of "no u" argument needs a specific target; how much more useful it is when one can tar anyone wearing clothes with the easy certainty that somewhere in the supply chain substandard working conditions exist.
Even more impressive is the snuck premise that, since Gervais is implicitly OK with his clothes (probably) originating in some sweatshop, he should be OK with the state of modern electronics in both their manufacture and their role as panopticon.
The argument is that even something as simple as clothing is difficult to have an economically viable business in if not sourcing from places around the world with low wages and lax labor and environmental laws. I would expect Gervais to recognize this, and understand that Tim Cook cannot be expected to have the power to completely rectify the situation regarding the inputs of the most complicated devices every made in history.
>Even more impressive is the snuck premise that, since Gervais is implicitly OK with his clothes (probably) originating in some sweatshop, he should be OK with the state of modern electronics in both their manufacture and their role as panopticon.
I do not agree with this interpretation of my premise due to the ill defined word "OK". It is possible to be realistic and expect solutions to take time, but that does not mean one would be "OK" with labor conditions if they did not have to be.
People like to blame big corporations, politicians, other countries, anyone but themselves. But push comes to shove, where is the political support for higher fossil fuel taxes? Where is the patronizing of local businesses that use local labor to make goods?
What is the purpose of asking Tim Cook about child labor when people in society destroyed every business that did not offer products at the lowest possible prices? I have known about clothing made with child labor since I was in grade school, and I am in my mid 30s, and clothes still come from Bangladesh and we (society as a whole) still buy it from there. Nobody is going to pay the premium required to make an iPhone outside of SE Asia or without the metals from Africa, it is probably not even possible.
There are many companies that produce and sell american made apparel. [0] I buy from several of them (on the the rare occasions when I buy more clothes.)
> Where is the patronizing of local businesses that use local labor to make goods?
Perhaps if you spent less time making assumptions about where other people buy their clothes and more time looking for local options you would actually be helping.
The end goal should not be the end of international trade but an insistance that we do not allow international trade to facilitate abuses. The core problem is that people like you and Tim Cook brush off legitimate concerns about the practices of international trade partners as "just the way things are".
Edit: I would hope that Ricky Gervais, when confronted with a question about the source of this clothing, would respond thoughfully and even consider changing where he buys his clothes. Ethical business practices may be a niche market today, but the way we expand that market share isn't by just accepting the way things are.
[0] https://www.rather-be-shopping.com/blog/american-clothing-ma...
Same for Sony, LG, etcetra.
https://www.pcworld.com/article/2023286/foxconn-samsung-face...
But Samsung has facilities in China too:
https://www.samsung.com/semiconductor/about-us/location/manu...
Another 2012 article about labor practices at Samsung factories:
https://www.theatlantic.com/technology/archive/2012/09/these...
The point is everyone uses cheap labor for manufacturing if possible, whether it's China or elsewhere. If they did not, then their mass market products would probably be priced too high and customers would reward competitors and they would go out of business. No one is paying higher paid people in South Korea or Japan to assemble phones if it can be done drastically cheaper elsewhere.
Another article about Sony using Foxconn and other ODMs:
http://www.xperiablog.net/2012/06/19/sony-mobile-partners-wi...
I assume LG and Samsung are big enough to have their own facilities and be ODMs themselves, but I would guess the smaller players like Sony have to outsource to them.
Fact is, they do manufacture phones in South Korea. Not all their phones, but they do manufacture them. Evidently it's still profitable enough to do so, and evidently they do not charge $10K for their top-of-the-line Galaxy S phones made in SK. https://www.businessinsider.com/samsung-gumi-factory-2014-5?...
Sony has also made phones in SK and Japan.
Obviously these are not contenders for the cheapest phone, but we weren't talking about the cheap Xiaomis and Huaweis anyway. And evidently lots and lots of people are happy to pay for more expensive phones. Apple has ridiculous profit margins and people still pay for it.
I assume if Samsung had figured out how to make phones with better labor practices than Apple, then they would be advertising it. Seems like pretty easy PR points to win business, so I would have to wonder why not? I am guessing it is either inconsistent across their product lines or labor practices are increasing over the years.
They dont. The only model they did that was some specific Chinese Model. And even that was small volume.
His point was dont act like you are Saint and lecturing the public when you not Saint.
Their marketing was starting to get to me as far as being the privacy company. I was really considering buying my first iphone. They had to know they were throwing all that marketing/effort down the drain.
There is no way they are going back on this. They will just wait out the collective short term memory to move on to something else. In a year this will just be normal. In 5 years all the other things that have been added to scan for will also just be normal.
For me, I am old and just accept we will live in an ever growing dystopian surveillance state. I am so grateful I was able to live my youth the way it was. If you are young? Yea, I have no answers.
May you live in interesting times? At least we have that going for us.
I.e. Manual labor continuously gets automated, so less low education positions available each year.
Upcoming climate crises that's going to displace a lot of people that won't have jobs anymore.
Air quality continuously worsening. We're globally at 415 CO2 now, up from below 300 before industrialization. With each sizeable increase people will statistically perform worse on intellectual tasks. If current trends continue we'll be at 500 before 2100.
Continuously improving neural networks/"ai" will make fully automated armed defenses on private properties viable, so this is likely the first time in history in which people in power won't be dependent on their guards, making worker uprisings basically impossible
I am glad as well that Im always well into my 30th and make an effort to enjoy each day without thinking too much about the future. It's looking grim, so all the more reason to enjoy the present
Urban areas are already regularly over 500ppm. I know because my dad certified hospital air systems with a 500ppm limit. Hospitals are having to put carbon filter on their air intakes.
I’m done reading.
Then you can gleefully watch Apple getting on its knees very fast.
How many Apple stores are there in the U.S.? Post 2 student activists at each of them and let them explain that the iPhone belongs to Apple and not the user.
Now today we know certain things to be true. If Apple, the world’s largest company, deploys this scanning technology on a billion handsets then many offenders will be caught and they will go to jail, and as a consequence a large number of children will be spared the type of abuse that totally destroys lives. Those victims lose everything.
I’d wager that for the majority of people on this forum, if they witnessed an adult sexually assault a child in person then they would intervene. Even if considerable risk was involved. There’s plenty of reward in saving a helpless child. But take that reward away, without the incentive, different colors show.
Do you care so little about the wellbeing of children you’d let child rapists walk free around the community rather than let a company scan your cellphone for contraband?
Perhaps we need to think less about how much we trust the government we elected or fear the potential negative future consequences of technology, and think more about being remembered as a human being that simply cared for others.
https://rarehistoricalphotos.com/laughing-at-auschwitz-1942/
Then, same as anyone can plant heroin in your apartment, anyone can plant "evidence" on your iPhone. Possession laws are extremely dangerous. In the simplest case, someone sends you a spam with an attachment that ends up on iCloud.
Physical problems need to be addressed at the physical level, even if that means that the authorities have to get up from their comfortable chairs again and have to stop staring at monitors.
Of course Apple's scanning isn't the only thing that encourages such creation, but it's a newly publicized thing.
Child abuse happens within families in the majority of cases. People who commercialize child abuse will move to a different platform if they even
If you really want to enforce policies that protect children from abuse then you'll have to speak up for improved social work, professionalized points of contact for school children and so on and so on. I'm not a professional in this field but I'm sure there is a lot of literature on this.
The implication of what Apple does, on the other hand, is officially giving up on protecting their users' data. If people oppose this, they don't oppose protecting children. They oppose a policy that has no proven effectiveness against child abuse while having high potential to becoming a generalized surveillance tool.
Yes I do believe this illustrates a similar social dynamic. People here could care less about the extreme suffering these children stand to experience.
Email privacy is more important than preventing child rape. Does that sound right to you?
Personally, I believe that those policies have good intentions, and that ending them will cause great harm to children on a significant scale.
Almost all child abuse happens at the hands of parents and siblings. The simplest way to prevent it isn't to scan photos on iPhone. Most people at this point have webcams and microphones in their homes. Device vendors could simply make these always on and flag recordings of possible abuse to manually review and send to law enforcement.
As far as I can tell, exactly no one thinks we should do this. But it's completely analogous. People who abuse children often have recording devices of some sort near them. Forcing those recording devices to automatically scan and detect abuse in their data streams would almost certainly prevent some amount of abuse.
It is trivial to stop any and all crime with a sufficiently invasive police state, provided you redefine covert surveillance and the psychological harm done to people who know they are always being watched as not being crimes. So why do we accept some panopticons and not others? What is the actual difference here? People have a right to privacy and we have a formal process whereby law enforcement need to convince a judge of probable cause and only then can they be surveilled to find evidence against them. It has never been acceptable in American jurisprudence to just surveil everyone in case they might be a criminal. When did that change?
Obviously, there is a tradeoff here. We allow people privacy and dominion in their homes. As a result, stronger people who live with weaker people quite often abuse them. Great harm to children and spouses and girlfriends and pets on a significant scale absolutely happens because we allow presumption of innocence and privacy in one's own home. But that has always been considered worth it.
I'm thinking it has to do with the idea that "you" are the one that owns "your" device, whose subversion is the cause of a lot of the backlash.
But I think that if governments are able to compel companies to not let thir data warehouses become private spaces that allow criminal enterprises to flourish, they would do so. Corporations wouldn't become triggers for outrage if other forces surveil their physical or virtual premises - regulation is expected. They can grow to have too much power, and in order to continue existing they have to cooperate with external forces that keep them in check. The standards of individual liberty seem to be applied differently between individuals' private spaces and corporations.
But a lot of times, I think that there isn't an equivalent distinction between a hard drive in one's own room and one out of millions in a remote data center. Exposing a personal hard drive to the internet and breaking down someone's door both carry the possibility of criminal liability, but the former has many more legitimate use cases. It has always been possible to incriminate oneself from a sealed room with only an Internet connection depending on what kind of data you're trafficking, and maybe the possibility of on-device scanning will cause more people to learn of that fact.
I believe the misunderstanding is that Apple assumes that the impression they're giving is that only those that consent to allowing the corporation to assist them in their lives will be subjected to that corporation's policies that prohibit the assistance from being criminal in nature, and it's irrelevant if that process is moved to the device. But Apple's assumption was wrong, and many people stopped trusting them. And because of that severe loss of trust in particular, their promises stopped being effective in dismissing counterarguments. Almost everything about this issue revolves around who will be compelled to implement what technological controls by whom else, and about the only things that are being used to refute the worst case scenario are what have essentially become meaningless promises because of the significant loss of trust. But even so, meaningless promises are all that reassure us that any given corporation won't go rogue at any time, regardless of what laws or morals exist, and promising that these features will save children from harm has, up to this point, been a promise that has been accepted and forgotten about.
To be clear, I think Apple's strategy is a mistake, and that the scan should be kept off the device. That is from the standpoint of how to effectively hold corporations accountable, who hold a significant amount of power in incentivizing human behavior, be it addictive or criminal. And in the current society where corporations need to know if they're enabling criminals by learning about the nature of their interactions, complete privacy can never be achieved. There will have to be a loss of some amount of privacy at some step in the process, but there is still such a thing as losing too much privacy.
The ‘all or nothing’ ‘here comes the 1984 dystopia’ argument is fear mongering. Let’s give Apple a chance and see if they can pull it off.