You know that's based on a comic from like half a century ago, right?
I'm not arguing against democracy: it's the worst system except all the other ones. I didn't think much of Brexit, I think they really shafted themselves, but at the same time I get the strong impression that EU…
Maybe I'm just too jaded but I don't think "making voices heard" matters -- in the link I posted upthread, the overwhelming majority of voters did not want the Chat Control measure to pass, but it did anyway, "for the…
Your post I originally replied to said > They've tried to do this for decades and have failed.... Let's see how voters like it. My "point" is that I thought the same way you did -- look what a mess Clipper Chip was,…
If you think EU policy only impacts the EU, you didn't pay attention to what happened with GDPR. Some companies might scan only EU-to-EU communications, some might scan communications where only one end is in the EU,…
If you care about the issue, this post[1] does a pretty good job explaining what people are worried about. 1: https://www.hackerfactor.com/blog/index.php?/archives/929-On...
If you believe this, then you don't understand what their system can do.
Just to be clear, the EU already voted to allow snooping, the law "currently in the works" is to require it: https://www.patrick-breyer.de/en/posts/message-screening/?la...
Bad news, buddy: https://www.patrick-breyer.de/en/posts/message-screening/?la... ETA: in short, about a month ago they did get the votes, at least in the EU, and it's now "allowed" for providers to scan all content. In…
Does that 30k number include iCloud Photo data? Do you have a citation for this?
I posted more detail upthread but what I've found suggests that Apple does have a key to decrypt pictures but they claim to use it only to respond to a warrant. (They could of course be lying about that, but I don't…
From everything that I've read, iCloud Photo Library is currently encrypted on the server, with a key that Apple only uses when presented with a warrant. If I ran the company (disclaimer: I do not) I'd implement this…
...if a human actually gets the file, figures out what type it is, and examines it for themselves, they'd be obligated to report it. With the number of Win10 devices in the world, how big would their security team have…
Tweens, yes. Teens can be opted into the feature but it only offers the (teen) user a warning before viewing the image, it never notifies the parent.
Well, since Talking About Statistics Is Hard, you have to look at the exact phrasing from the website: it "ensures less than a one in one trillion chance per year of incorrectly flagging a given account". So, each of…
I think your take is correct but doesn't answer the question about why this matching has to take place on the device, if it's only for photos that are going into iCloud, and the iCloud contents are already being stored…
I still don't understand how there are people on HN who think that giving their kids less access to technology is somehow a virtuous position to take. When I was the same age as my kids I could have gotten into all…
Dumb question: do we know from what they've released publicly if it will be possible for security researchers to snag a copy of the database, perform the same perceptual hash algorithm on a given image, and determine if…
If the software is scanning everything, and they were already scanning uploaded content, why have a press release at all? If you're deploying an unrestricted panopticon to all your devices, why on earth would you go to…
"It is an effective deterrent" to using this one specific platform to distribute CSAM. The problem with this solution is the exact same problem with the tired old "solution" to E2E encryption that gets trotted out every…
From that same page: "Apple further transforms this database into an unreadable set of hashes that is securely stored on users’ devices". The phone is downloading the hash database.
2021 is the Year of the Linux Handheld?
For a backup use case, I haven't been able to beat the value of a Microsoft premium-whatever family plan. Routinely on sale for $60/yr, it gets you 1TB of backup plus an Office license for 6 users. Obviously you don't…
It probably helps that it sounds like you mostly use it as a dumb terminal. If you had a compute-intensive workload, it would make sense to upgrade, since even a quite powerful 12-year-old desktop is likely outperformed…
This. They did a bad job of explaining why they chose an expiration date in the draft RFC[1]. > If information and resources referenced in a "security.txt" file are incorrect or not kept up to date, this can result in…
You know that's based on a comic from like half a century ago, right?
I'm not arguing against democracy: it's the worst system except all the other ones. I didn't think much of Brexit, I think they really shafted themselves, but at the same time I get the strong impression that EU…
Maybe I'm just too jaded but I don't think "making voices heard" matters -- in the link I posted upthread, the overwhelming majority of voters did not want the Chat Control measure to pass, but it did anyway, "for the…
Your post I originally replied to said > They've tried to do this for decades and have failed.... Let's see how voters like it. My "point" is that I thought the same way you did -- look what a mess Clipper Chip was,…
If you think EU policy only impacts the EU, you didn't pay attention to what happened with GDPR. Some companies might scan only EU-to-EU communications, some might scan communications where only one end is in the EU,…
If you care about the issue, this post[1] does a pretty good job explaining what people are worried about. 1: https://www.hackerfactor.com/blog/index.php?/archives/929-On...
If you believe this, then you don't understand what their system can do.
Just to be clear, the EU already voted to allow snooping, the law "currently in the works" is to require it: https://www.patrick-breyer.de/en/posts/message-screening/?la...
Bad news, buddy: https://www.patrick-breyer.de/en/posts/message-screening/?la... ETA: in short, about a month ago they did get the votes, at least in the EU, and it's now "allowed" for providers to scan all content. In…
Does that 30k number include iCloud Photo data? Do you have a citation for this?
I posted more detail upthread but what I've found suggests that Apple does have a key to decrypt pictures but they claim to use it only to respond to a warrant. (They could of course be lying about that, but I don't…
From everything that I've read, iCloud Photo Library is currently encrypted on the server, with a key that Apple only uses when presented with a warrant. If I ran the company (disclaimer: I do not) I'd implement this…
...if a human actually gets the file, figures out what type it is, and examines it for themselves, they'd be obligated to report it. With the number of Win10 devices in the world, how big would their security team have…
Tweens, yes. Teens can be opted into the feature but it only offers the (teen) user a warning before viewing the image, it never notifies the parent.
Well, since Talking About Statistics Is Hard, you have to look at the exact phrasing from the website: it "ensures less than a one in one trillion chance per year of incorrectly flagging a given account". So, each of…
I think your take is correct but doesn't answer the question about why this matching has to take place on the device, if it's only for photos that are going into iCloud, and the iCloud contents are already being stored…
I still don't understand how there are people on HN who think that giving their kids less access to technology is somehow a virtuous position to take. When I was the same age as my kids I could have gotten into all…
Dumb question: do we know from what they've released publicly if it will be possible for security researchers to snag a copy of the database, perform the same perceptual hash algorithm on a given image, and determine if…
If the software is scanning everything, and they were already scanning uploaded content, why have a press release at all? If you're deploying an unrestricted panopticon to all your devices, why on earth would you go to…
"It is an effective deterrent" to using this one specific platform to distribute CSAM. The problem with this solution is the exact same problem with the tired old "solution" to E2E encryption that gets trotted out every…
From that same page: "Apple further transforms this database into an unreadable set of hashes that is securely stored on users’ devices". The phone is downloading the hash database.
2021 is the Year of the Linux Handheld?
For a backup use case, I haven't been able to beat the value of a Microsoft premium-whatever family plan. Routinely on sale for $60/yr, it gets you 1TB of backup plus an Office license for 6 users. Obviously you don't…
It probably helps that it sounds like you mostly use it as a dumb terminal. If you had a compute-intensive workload, it would make sense to upgrade, since even a quite powerful 12-year-old desktop is likely outperformed…
This. They did a bad job of explaining why they chose an expiration date in the draft RFC[1]. > If information and resources referenced in a "security.txt" file are incorrect or not kept up to date, this can result in…