Maybe it’s just time to stop pretending that legislation or courts are going to protect encryption.
Conversation
Replying to
Stopping pretending that depends on taking control away from the big communications platforms and factoring applications from services/platforms. Otherwise they will do whatever govs demand.
1
2
It also depends on killing automated update deployments, which depends on rearchitecting software systems to be safe without the ability to update.
1
There can be multisig updates where multiple parties (like 3/5 or a broader scheme) need to sign off on it and enforced public logging of each release similar to Certificate Transparency. Can be done very efficiently too, not that it matters. Updates should also be anonymous.