The best part of the “going dark” debate is that we have to pretend sophisticated attacks by nation-states and criminals are some kind of Gibsonian sci-fi fantasy. It’s 2019. Theres a multi-billion dollar industry around attacking phone security systems.https://www.fastcompany.com/90307864/u-s-fund-sells-israeli-hacking-firm-nso-group-amid-spy-mystery …
-
Show this thread
-
Replying to @matthew_d_green @rmhrisk
As a thought experiment, if you had to choose between a key escrow system accessible to due process (with all the risks you've spelled out) xor eliminating criminal/state access to 0day exploits, which would you choose? (I'm not making a point, just curious about your position).
6 replies 2 retweets 23 likes -
Right, but everyone can already do all those things with 0day. I'm asking if we could choose one of the other, which is better? I agree our only realistic options are one or both, but if that wasn't the case.
2 replies 1 retweet 1 like -
Replying to @taviso @angelovescio and
Having to bypass security limits government power in a way that procedural safeguards are unlikely to. I'm more worried about mass surveillance and key escrow than zero days.
1 reply 0 retweets 0 likes
Yeah, I think it's a strong argument, but Governments hoarding 0day puts everyone at risk, because there's no way to prevent adversaries from discovering vulnerabilities independently. Of course, the Government wants 0days and key escrow, so they can't use that argument!
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.