The best part of the “going dark” debate is that we have to pretend sophisticated attacks by nation-states and criminals are some kind of Gibsonian sci-fi fantasy. It’s 2019. Theres a multi-billion dollar industry around attacking phone security systems.https://www.fastcompany.com/90307864/u-s-fund-sells-israeli-hacking-firm-nso-group-amid-spy-mystery …
-
Show this thread
-
Replying to @matthew_d_green @rmhrisk
As a thought experiment, if you had to choose between a key escrow system accessible to due process (with all the risks you've spelled out) xor eliminating criminal/state access to 0day exploits, which would you choose? (I'm not making a point, just curious about your position).
6 replies 2 retweets 23 likes -
it sounds like you don't get a choice about the latter though, so you may as well just say "no" to both
1 reply 0 retweets 4 likes -
Right, it's just a thought experiment. It will never happen, but if the USG committed to only using a lawful key escrow system, it might move the 0day market as billions of dollars fall out of it. Maybe that would have some benefits, but the economics seem complicated.
3 replies 0 retweets 8 likes -
Which legal systems? It’s entirely unrealistic to believe it would just be USG (just as it is any would promise and live up to promises not use zero days).
2 replies 0 retweets 1 like -
It's not just USG, but they sure are a big player. It would meaningfully move the market for sure. They could promise not to build a key escrow system and do it anyway, so that argument works both ways I think.
2 replies 0 retweets 0 likes -
wouldn't we know if they had built a key escrow system?
1 reply 0 retweets 0 likes
"SSL added and removed here", etc, etc.
-
-
The argument is “eventually”?
0 replies 0 retweets 0 likesThanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.