|
|
|
|
|
|
by tya99
2744 days ago
|
|
|
Passing a law is easy, but putting it in practice is enough thing. We of course won't hear about that side of it because "secret". I have no doubts that the big companies which this seems mostly for will be doing everything to decentralize and remove themselves from the problem citing "systemic weakness" and then doing nothing for the government. |
|
|
ASIO has to provide statistics on how many notices they issued in their yearly reports. In addition, recipients of reports are allowed to provide statistics about his many reports they've received. See s317ZF.
> I have no doubts that the big companies which this seems mostly for will be doing everything to decentralize and remove themselves from the problem citing "systemic weakness" and then doing nothing for the government.
Except that Apple (and other such companies) have explicitly designed their e2e systems in a way that they could be backdoored (users don't need to sign new identities with a key, so Apple can add a new one -- which is how the device adding feature works).
In addition, many such companies have the ability to provide a single backdoored binary to a single user. This, according to the legislation, would not be a systemic weakness. There is work you could do to make yourself resilient to company-wide sabotage but no company I'm aware of is doing it.