fbpx

Free tools and resources for Data Protection Officers!

Tag Archives for " encryption "

Facebook and Google back changes to laws which break encryption

Industry groups including the representative of tech giants Facebook, Google, Twitter and Amazon, have backed several Labor amendments to the Australia’s encryption bill.

Under Labor’s plan, law enforcement agencies would require a fresh warrant before ordering tech companies to assist or build a new capability to access electronic communications and the bill’s prohibition against creating a “systemic weakness” would be strengthened.

Source: Facebook and Google back Labor changes to laws which break encryption | Technology | The Guardian

The hidden threat in GDPR’s encryption push

Organisations are, quite rightly, increasingly deploying encryption solutions to secure their data, particularly since the introduction of GDPR. Encryption is the process of encoding data so that it is meaningless to any anyone accessing it without authorisation.

Full article: The hidden threat in GDPR’s encryption push

British intelligence officials propose way to access encrypted group chats

Two British intelligence officials have proposed what they see as a potential solution to a key challenge facing law enforcement agencies — an inability to intercept encrypted group calls and messages through services such as WhatsApp and Signal.

Their idea: Add law enforcement as a “silent” user to the chat or call.

Full article: The Cybersecurity 202: British intelligence officials propose way to access encrypted group chats – The Washington Post

Australia’s horrific new encryption law likely to obliterate its tech scene

Australia‘s government signed a bill into law last week giving law enforcement agencies the right to force technology companies to reveal users’ encrypted messages. Another way of putting it: Australia‘s tech scene will soon be located on the Wayback Machine.

The law was introduced as the Telecommunications and Other Legislation Amendment (Assistance and Access) Bill 2018, but now it’s official. And there’s a lot to be concerned about, even if you don’t live or work in Australia.

Full article: Australia’s horrific new encryption law likely to obliterate its tech scene

Australian bill spells trouble for data privacy around the world

ech companies, start-ups and digital consumer rights groups has locked horns with the Australian government over its proposed anti-data encryption law, currently under review by the Parliamentary Joint Committee on Intelligence and Security (PJCIS).

Now, concerns are rising over just how far world governments, including the United States, will go to compromise citizen’s liberties for the sake of national security.

Full article: Australian bill spells trouble for data privacy around the world | TheHill

Signal’s “Sealed Sender” Is a Clever New Way to Shield Your Identity | WIRED

Signal is the leading encrypted messaging app with effort to minimize the amount of data or metadata each message leaves behind. Now, it hopes to encrypt even information about which users are messaging each other on the platform. Signal is testing this “sealed sender” feature in its beta release.

Source: Signal’s “Sealed Sender” Is a Clever New Way to Shield Your Identity | WIRED

Cisco contradicts Dutton’s claim breaking digital encryption won’t create ‘back doors’

The telecommunications provider Cisco has contradicted Peter Dutton’s claims the government’s new bill to compel tech companies to break digital encryption will not result in “back doors” in their products.

At a committee hearing in Canberra on Friday, witnesses from Cisco, Optus and Telstra called for a better definition of the bill’s main safeguard that tech companies cannot be asked to build “systemic” weaknesses into their products.

Full article: Cisco contradicts Dutton’s claim breaking digital encryption won’t create ‘back doors’ | World news | The Guardian

German Lawyer Sanctioned Due to Incomplete GDPR Policy

An interim injunction has been issued by Würzburg Regional Court against a lawyer who displayed an unfinished Privacy Policy on her firm’s website which also included an unencrypted and unprotected contact form. Reaction to the ruling has been mixed as the sanction due to the unfinished GDPR policy was understandable but ruling regarding the unencrypted form was more confusing as this does not affect the transfer of information.

Source: German Lawyer Sanctioned Due to Incomplete GDPR Policy – Compliance Junction

Google and Facebook join rights groups to fight Australia’s encryption bill

Google and Facebook have joined civil and digital rights groups in an unusual alliance aimed at defeating Australia’s planned encryption laws. The bill gives law enforcement new powers to conduct covert surveillance on electronic devices and compel technology companies to assist in decrypting private communications.

Source: Google and Facebook join rights groups to fight Australia’s encryption bill | Technology | The Guardian

Worries arise about security of new WebAuthn protocol

A team of security researchers has raised the alarm about some cryptography-related issues with the newly released WebAuthn passwordless authentication protocol.

WebAuthn was officially launched earlier this year, in April. It’s a standard developed under the patronage of the World Wide Web Consortium (W3C), the official body for all web standards. Cryptography experts point out that new WebAuthn protocol recommends or requires the implementation of old and weak algorithms known to be vulnerable to attacks for years.

Source: Worries arise about security of new WebAuthn protocol | ZDNet

>