TechCentralTechCentral
    Facebook Twitter YouTube LinkedIn
    Facebook Twitter LinkedIn YouTube
    TechCentral TechCentral
    NEWSLETTER
    • News

      The great crypto crash: the fallout, and what happens next

      22 June 2022

      Winter 1, Eskom 0

      22 June 2022

      What it will take to bring the Guptas to justice

      22 June 2022

      Inflation in South Africa spikes higher

      22 June 2022

      Eskom announces massive escalation in load shedding

      22 June 2022
    • World

      Tether to launch a stablecoin tied to the British pound

      22 June 2022

      Tech giants form metaverse standards body, without Apple

      22 June 2022

      There are still unresolved matters in Twitter deal, Musk says

      21 June 2022

      5G subscriptions to top one billion in 2022: Ericsson

      21 June 2022

      Crypto lenders face a DeFi drubbing

      21 June 2022
    • In-depth

      Goodbye, Internet Explorer – you really won’t be missed

      19 June 2022

      Oracle’s database dominance threatened by rise of cloud-first rivals

      13 June 2022

      Everything Apple announced at WWDC – in less than 500 words

      7 June 2022

      Sheryl Sandberg’s ad empire leaves a complicated legacy

      2 June 2022

      Tulipmania meets the real economy at WhatsApp speed

      30 May 2022
    • Podcasts

      How your organisation can triage its information security risk

      22 June 2022

      Everything PC S01E06 – ‘Apple Silicon’

      15 June 2022

      The youth might just save us

      15 June 2022

      Everything PC S01E05 – ‘Nvidia: The Green Goblin’

      8 June 2022

      Everything PC S01E04 – ‘The story of Intel – part 2’

      1 June 2022
    • Opinion

      Has South Africa’s advertising industry lost its way?

      21 June 2022

      Rob Lith: What Icasa’s spectrum auction means for SA companies

      13 June 2022

      A proposed solution to crypto’s stablecoin problem

      19 May 2022

      From spectrum to roads, why fixing SA’s problems is an uphill battle

      19 April 2022

      How AI is being deployed in the fight against cybercriminals

      8 April 2022
    • Company Hubs
      • 1-grid
      • Altron Document Solutions
      • Amplitude
      • Atvance Intellect
      • Axiz
      • BOATech
      • CallMiner
      • Digital Generation
      • E4
      • ESET
      • Euphoria Telecom
      • IBM
      • Kyocera Document Solutions
      • Microsoft
      • Nutanix
      • One Trust
      • Pinnacle
      • Skybox Security
      • SkyWire
      • Tarsus on Demand
      • Videri Digital
      • Zendesk
    • Sections
      • Banking
      • Broadcasting and Media
      • Cloud computing
      • Consumer electronics
      • Cryptocurrencies
      • Education and skills
      • Energy
      • Fintech
      • Information security
      • Internet and connectivity
      • Internet of Things
      • Investment
      • IT services
      • Motoring and transport
      • Public sector
      • Science
      • Social media
      • Talent and leadership
      • Telecoms
    • Advertise
    TechCentralTechCentral
    Home»Sections»Information security»Tech giants fight spy agency’s plan to eavesdrop on encrypted chats

    Tech giants fight spy agency’s plan to eavesdrop on encrypted chats

    Information security By Jamie Harris30 May 2019
    Facebook Twitter LinkedIn WhatsApp Telegram Email
    GCHQ headquarters in the UK

    Tech giants, including Apple, Google and WhatsApp, have urged the UK’s GCHQ to abandon a proposal that would allow it to eavesdrop on encrypted chat conversations.

    More than 50 companies, civil society organisations and security experts have united to voice concern about “serious threats to cybersecurity and fundamental human rights” that a so-called “ghost protocol” could pose.

    In November, National Cyber Security Centre technical director Ian Levy and GCHQ’s technical director for cryptanalysis, Crispin Robinson, published a paper suggesting a way that could let law enforcement agencies act as a silent added participant in people’s private conversations.

    It’s relatively easy for a service provider to silently add a law enforcement participant to a group chat or call.

    They said at the time: “In a world of encrypted services, a potential solution could be to go back a few decades. It’s relatively easy for a service provider to silently add a law enforcement participant to a group chat or call.”

    It stated that “what we’re outlining here is just to start discussion” and “more detailed work is needed”.

    But in an open letter, the critics argue the proposal “creates serious threats to digital security” and risks damaging the public’s trust.

    They said: “If implemented, it will undermine the authentication process that enables users to verify that they are communicating with the right people, introduce potential unintentional vulnerabilities and increase risks that communications systems could be abused or misused.”

    ‘Threats to fundamental rights’

    “These cybersecurity risks mean that users cannot trust that their communications are secure, as users would no longer be able to trust that they know who is on the other end of their communications, thereby posing threats to fundamental human rights, including privacy and free expression.

    “Further, systems would be subject to new potential vulnerabilities and risks of abuse.

    “Beyond undermining current security tools and the system for authenticating the communicants in an encrypted chat, GCHQ’s ghost proposal could introduce significant additional security threats. There are also outstanding questions about how the proposal would be effectively implemented.

    “By requiring an exceptional access mechanism like the ghost proposal, GCHQ and UK law enforcement officials would require messaging platforms to open the door to surveillance abuses that are not possible today.”

    Image: Manuel Baumheier

    Responding to the open letter, Levy said: “We welcome this response to our request for thoughts on exceptional access to data – for example to stop terrorists. The hypothetical proposal was always intended as a starting point for discussion. It is pleasing to see support for the six principles and we welcome feedback on their practical application.

    “We will continue to engage with interested parties and look forward to having an open discussion to reach the best solutions possible.”

    Earlier this month, Norfolk police chief Simon Bailey, the UK lead for child protection, said tech firms should make a digital key for police to unlock encrypted messages in “exceptional circumstances” such as child abuse or terror cases.

    Speaking at the Independent Inquiry Into Child Sexual Abuse, he said: “If I know and you know that somebody is abusing a child or sharing abusive imagery, then you surely give up your right to privacy.”

    Apple GCHQ Google WhatsApp
    Share. Facebook Twitter LinkedIn WhatsApp Telegram Email
    Previous ArticleChina gears up to weaponise rare earths in trade war
    Next Article Apple fires salvo at critics that call it a ‘monopolist’

    Related Posts

    The great crypto crash: the fallout, and what happens next

    22 June 2022

    Winter 1, Eskom 0

    22 June 2022

    What it will take to bring the Guptas to justice

    22 June 2022
    Add A Comment

    Comments are closed.

    Promoted

    More than card machines – iKhokha diversifies to reach more SMEs

    22 June 2022

    What does it cost to be a student in 2022?

    22 June 2022

    Rugged PCs bring AI to the edge in industrial settings

    21 June 2022
    Opinion

    Has South Africa’s advertising industry lost its way?

    21 June 2022

    Rob Lith: What Icasa’s spectrum auction means for SA companies

    13 June 2022

    A proposed solution to crypto’s stablecoin problem

    19 May 2022

    Subscribe to Updates

    Get the best South African technology news and analysis delivered to your e-mail inbox every morning.

    © 2009 - 2022 NewsCentral Media

    Type above and press Enter to search. Press Esc to cancel.