| This is not about breaking encryption. This is about creating and distributing malware to install on suspects' devices in order bypass most encryption implementations What should be most disturbing is the expected use case. It's expected to be used in run of the mill cases. When you start doing something like this at scale automating it at scale comes soon after. I don't think anyone wants to live in a world where the police have a gui button labeled "install on all suspects" and some software to infer messages of interest based on a case number. Think about all the stuff they did to identify the guys who bombed the Boston marathon. All of that can (and it looks like it will) soon be automated. Now imagine that it's applied to common crime. Imagine being picked up off the street and interrogated because you unknowingly frequented a convenience store that had a drug trafficking operation going on behind the scenes and an automated system identified you (and 50 other people). Would you like to live in a world where you can't talk about buying fireworks for the 4th because you know if you do you'll get "randomly" pulled over every time you drive back across state lines in the month of June We're rapidly marching toward a world where that sort of stuff is possible at scale. |