It is surprising. Even here, in Russia, we don't have such laws working yet. And I wonder, what Austrian authorities are going to do with foreign platforms like Telegram, which are unlikely to comply? Russian government has been trying to block Telegram using DPI for a year and didn't succeed.
What about Twitter? Reddit?
> In addition, web platforms would be required to appoint a liaison in Austria who would be responsible for making information about platform users available if it becomes necessary. If this person does not ensure that the regulation is followed, he or she could be punished with a fine of up to 100,000 euros.
This will just put foreign platforms, who will ignore the law, into an advantageous position compared to local platforms. Users might switch to foreign platforms that don't require identification.
>This will just put foreign platforms, who will ignore the law, into an advantageous position compared to local platforms. Users might switch to foreign platforms that don't require identification.
Doesn't really matter, as those things move the Overton window.
Tomorrow, when the US, China, and EU adopt similar laws, there wont be any "foreign services" to use.
Yeah, the US will never adopt a law like that. Anonymity is extremely protected by the Supreme Court, because the founders wrote and distributed pamphlets anonymously in support of the Revolution.
And if that apparatus was used to prosecute US citizens for non-major crimes with any frequency it would come under scrutiny very quickly and you'd have politicians jockeying to legislate it out of existence and take credit.
Even if you take the parallel construction angle, no politician except maybe a dinosaur that is super-secure in their position (on the federal level that would be people like Pelosi, Fienstien, etc.) is going to tolerate that because if the other side can prove you knew then you're not going to have a job after the next election.
Obviously we need to remain vigilant but there are existing feedback mechanisms that generally prevent wide spread abuse.
They are two different philosophies, and thinking about how they'll play off one another is kind of interesting.
The US philosophy is to do passive surveillance and assemble the pieces after the fact, rather than mandating ahead of time requirements. Which means that US-based services will continue to be unhindered by such requirements, appearing "anonymous" to the rest of the world.
As more people globally are turned off by ID requirements, if they're able to flee to US services, then they're actually walking into a more sophisticated passive surveillance flytrap. USG will have ever more surveillance over other countries, without even having to clandestinely place taps.
Close allies will be given access through FVEY and the like, making that relationship even more lopsided. But allies' domestic law enforcement won't be, so they'll still be clamoring for more simplistic mandates requiring ID, further driving the process.
Except the dragnet surveillers pretty much know what they're doing is illegal, or at least in a very gray area. And odds are they generally only try to deanonymize people they consider a significant national security risk (with some abuse exceptions, like LOVEINT).
This is codifying forced attribution for everyone into law.
There's a big legal difference between the government working to unmask anonymous users and making it illegal to try to be anonymous in the first place. The latter is probably brazenly unconstitutional while the former is at least a constitutional grey area.
Not American internet users, for the most part. Note that those are at least justified by being connected to foreign actors, and that some of those surveillance apparatus are illegal.
In the US you have to show your ID much more often compared to other parts of the world. Every bar you enter, or alcohol or drink you buy people ask for identification. This is not the case elsewhere.
So, it wouldn't surprise me, if the current administration would at least attempt such ideas.
This is not generally the case in most parts of the US I've lived in either.
More importantly, it's purely a private business asking for your ID in this case, and only as an age check. In the vast majority of cases they don't record or really care about anything except your date of birth. No bar I've ever been to kept any kind of record that would have enabled them to tell the government that I had visited the establishment.
I’m not a lawyer, but Arizona’s age restriction law explicitly requires recording the details via mag stripe. Whether that applies to something not straightforward in the language I don’t know.
Either way, I routinely get comments about where I live, how my hair looks now, my birthday (coincides with a major date in the US). It’s very low level invasion of privacy, but most of the time I don’t want to small talk at the grocery store, I want to finish what I need to and go. N=1 and all that, but I get the point. At least no one under 21 ever drinks here.
I seem to remember that in Europe its not unheard of for police to ask to see "papers please" and fancy that its often the darker citizens that get asked that.
Not that the UK and USA don't have some problems in that area
People are very adaptable and will consider all that things new normal. XIX century Americans would consider an income tax in a peacetime grossly inappropriate, creepy and a violation of their dignity after all.
And the more or less permanent state of war we find ourselves in could also be considered a new normal we've adapted to that XIX century Americans would find creepy and grossly inappropriate.
Anybody got an ideas, on what we are supposed to do when that happens
Move to the next of the four boxes, though ideally before it happens. We need to advocate for important civil liberties and reasonable limits on the power of the state, but we do also need to then act according to that advocacy ourselves, for example by voting for people who take these issues seriously or funding legal actions to challenge excesses. A lack of public awareness of these issues and the potential implications for normal people's everyday lives is a big part of the problem, and as coldtea suggested above, shifting the Overton window is going to be crucial to improving the situation. It just needs to shift the other way from where a lot of the authoritarians in power today are trying to push it...
> Anybody got an ideas, on what we are supposed to do when that happens
only few things you can do (in that order depending on how bad it escalates),
0) start to learn about prepping and live a more unplugged live
1) flee and take refuge in a place that others call "backward"
2) take up arms and defend yourself
#2 will get you labeled a terrorist (though so was Count Stauffenberg)
Who's gonna take them? Remember that couple in Houston that put the hurt on a swat team. It doesn't take many events like that to really dampen the enthusiasm for kicking down doors (especially when you're doing it to simply confiscate property). The cops are subject to the same risk calculations as any other home invaders.
Start a “counterculture network” of onion-routed hidden services (not necessarily Tor, but something akin). Some element of steganography would likely be required to prevent government-controlled ISPs from simply dropping encrypted traffic, most likely.
It would be hard and would likely attract only technically-minded individuals to use.
Better than that, build an anonymity network with both mixing and onion routing, and full padding with chaff. And implement it as drive-by malware, with worm capability. Like WannaCry. It'd be basically a huge botnet. And it would use a covert channel in HD video, which would provide enough bandwidth for text, at least, and maybe images.
That way, participation by servers and clients would be plausibly compulsory. Both because it would evade protection, and because sympathetic admins and users could "accidentally" let it install. And that would provide plausible deniability.
A plausibly deniable user interface would be the hardest part. It'd probably need to self install, and then securely delete itself after use.
> It would be hard and would likely attract only technically-minded individuals
... and police forces: a nice feature of leaving a few gaps that motivated users can use is that the police can focus its limited resources on the those interesting targets.
This is going to be an unpopular opinion but I'm hoping someone can explain why I'm wrong.
I actually would really welcome online activities no longer being anonymous.
I feel like a large part of why people on the internet are so terrible to one another is that there's really no accountability because of the anonymity.
This is true in many areas including hate speech or posting illegal/inappropriate material.
I suppose I don't know if I think it should be LAW that requires everyone be deanonymized, but I do wish people on the internet would treat each other closer to the way they do in real life.
> I feel like a large part of why people on the internet are so terrible to one another is that there's really no accountability because of the anonymity.
Sounds plausible until you consider that many of the worst comments are written by real people logged in using their real Facebook accounts -
... and some of the best forums online don't demand anything but a username and password like here.
IMO real name policies are way less effective than some people want you to think, and they'll effectively prevent certain minorities from participating in online debates.
"I'm hoping someone can explain why I'm wrong." The answer is in your own words: " I suppose I don't know if I think it should be LAW".
I suppose you are right: you don't know. Many people know for sure that they think this is a bad idea to put in place such a law.
"This will just put foreign platforms, who will ignore the law, into an advantageous position compared to local platforms. Users might switch to foreign platforms that don't require identification."
But in the meantime --Your ISP has informed that a foreign social media provider has connected to your account, identify yourself and provide your alias used on said social platform, or [insert consequences here]
It’s common, but disingenuous to talk about the Overton window as though it was some immutable, one-way thermodynamic process. The truth of course is that it goes both ways, that discussion and dissent do exist. History, American and otherwise, is full of examples of overreach that doesn’t lead to the desired result, but the opposite.
> Telegram already authenticates by the phone number, which setup was successfully used by Russian forces to hijack accounts of opposition.
While this is bad, IIRC if it has PFS this means that the phone number rerouting cannot be used to recover messages sent before this intercept. And also IIRC this phone number could only be used to trigger re-keying, which is detectable.
> IIRC this phone number could only be used to trigger re-keying, which is detectable
Dunno about currently, but afaik at the time this went down nothing was detectable, you just log into a user's account and read the history since e2e conversations aren't the default.
> The default method of authentication that Telegram uses for logins is SMS-based single-factor authentication. All that is needed in order to log into an account and gain access to that user's cloud-based messages is a one-time passcode that is sent via SMS to the user's phone number. These login SMS messages are known to have been intercepted in Iran, Russia and Germany, possibly in coordination with phone companies.
Russia requires foreign owned services to host data about Russian users inside of Russia. That way the data can be retrieved by the government and used to de-anonymize users. [1]
Data localisation is an up and coming regulatory thing, and more countries are picking it up. [2] Having a handle doesn't make you anonymous.
Although this requirement has been in effect for 3 years, foreign services ingore it. For example, recently, Facebook was fined for an amount equivalent to about 50 dollars for not providing information about users' data localization and now has 9 more months to solve this problem [1]. In Facebook's case it is easier to pay the fine than transfer the data into Russia.
LinkedIn is blocked under the same law though.
Telegram is officially blocked in Russia (for not providing access to users' messages), but it works without any special setup.
> That way the data can be retrieved by the government and used to de-anonymize users.
That was probably the intention of lawmakers but there is no requirement to keep the data unencrypted.
In case anyone wants to know how this should work, this is the explanation by the minister:
There are "technical possibilities where software can run on the backend that can immediately identify: Does the registered mobile phone number match the name and address or not?" - derstandard.at/2000101678440/Minister-Bluemels-Ominous-De-Anonymization-Software
(from https://derstandard.at/2000101678440/Minister-Bluemels-Omino...)
Translating it as "backend" is very friendly as he literally said "a software in the rear end".
I think the important part is that they have mobile number stored, and later police can verify whether it matches the name or not, and if it doesn't, I assume, there will be additional penalty for providing false identification information.
The important part is that they want the online communities to store name and address of individuals, already verified, by authenticating the user against a third party service like Mobile Connect. The authorities wouldn't have to match name and telephone number. They just have to audit that the account registration is correctly connected to that external service (and not doing so would result in penalties).
To get a sim card (even prepaid) in Austria you need to provide a valid ID/passport. If it's not an Austrian/German/Swiss ID you will need to go in person to activate your sim card. This would make it really difficult for someone to manage a few accounts.
So tell me how this will work. Will you swap SIM cards just to post anonymously sometimes and let the telecom providers (among others) find out what your other SIM cards are through your device ID? Or will you get a SIM card from another country to use exclusively and pay roaming costs / live with a worse data plan in Austria?
People apparently forget that telecoms providers cooperate with authorities, new legislation is planned for this too.
> So tell me how this will work. Will you swap SIM cards just to post anonymously sometimes and let the telecom providers (among others) find out what your other SIM cards are through your device ID? Or will you get a SIM card from another country to use exclusively and pay roaming costs / live with a worse data plan in Austria?
> People apparently forget that telecoms providers cooperate with authorities, new legislation is planned for this too.
Also remember that as soon as you connect to the cell phone network, your location is made known. If you ever slip up and use your personal and private sims in a more private place, you are likely to get caught. Coupled with other potential identifier leakage (like device id as you mentioned) the opsec bar is high for this use case.
I cannot say for sure but as I remember EU countries eliminated roaming charges, even for prepaid.
OTOH there are not so many EU countries that sell prepaid without ID.
"So tell me how this will work. Will you swap SIM cards just to post anonymously sometimes and let the telecom providers (among others) find out what your other SIM cards are through your device ID?"
Imagine connecting to the Internet using a non-phone ?
this will work for a minority who pay attention to privacy, though the majority just won't bother. The problem I think is that because it's being criminalized to have an anonymous SIM the average citizen will just comply while those who have something to say are silenced.
what you suggest is a really good technique which has the additional benefit of inheriting the social graph of whoever owned the phone before. it's easy to get them from immigrants in one of the mom+pop shops offering international "calling-home" services.
It's not yet clear (at least to the public) how the registration will actually work on a technical level. I think the idea is that there will be third party services who are responsible for validating the identity of a user (similar to what banks use for KYC purposes). Users could identify themselves via different means, e.g. by providing their phone number or by simply uploading an ID. But that's all speculation on my side.
The easiest way is when the user provides their phone number and confirms it by receiving a SMS. That's how users of public WiFi points are identified in Russia and how users of IM programs are supposed to be identified in near future.
There was a practice in Germany where people traded registered pre-paid SIM cards openly on a website created for that purpose - which was perfectly legal[1].
However they stopped when a court shot down the surveillance law that made people concerned in the first place[2].
If Austrians are even half as privacy-conscious as Germans, expect much of the same happening.
> If Austrians are even half as privacy-conscious as Germans, expect much of the same happening.
Possibly among groups of people who regularly break the law. I can't see a normal person willingly accepting this sort of risk (e.g. being persecuted for child pornography someone else downloaded) for no good reason.
Also, the authorities will find you anyway if you've ever used a SIM card with your real name in the same phone or even if you only bought the phone from a place where device IDs are registered (like Apple, presumably).
> I can't see a normal person willingly accepting this sort of risk
A lot of Germans did in fact do it. So... there.
Even my father considered doing it, being ever suspicious of the handheld tracking device that is the smartphone we forced on him.
There's not much police will (or can) do once it's established that you traded SIM-cards. It's actually discussed in the first article I linked.
There's also a good chance you weren't even remotely physically close to the phone/sim when the crime was committed.
The point is you have a path to trace if needed. Say some criminal has done that, they've established some kind of contact with the "cash strapped person" to do so - either electronically or in person. Electronic traces are pretty feasible for major nation states to uncover since they're ingesting packet traffic metadata from the whole internet traffic of countries. In-person traces can often be covered by surveillance camera records etc etc. Once there is a point of entry, there is usually a path for entities with governmental powers to investigate.
Could anyone shed some light on which problem this is supposed to solve exactly and what triggered it in the first place in Austria right now?
Have there been any issues caused by anonymous posts recently? Maybe I'm just living under a rock, but my feeling was that the main issues we're currently facing stem from political distortion caused by populism misusing platform mechanisms to spread misinformation. I don't see how this is supposed to help.
This was triggered by a defamation lawsuit where a former female MP was being harrassed via facebook, made the harassement public via twitter, and subsequently sued by the owner of the facebook account. She lost the lawsuit and was ordered to pay damages. The court found that the owner of the facebook account is not necessarily the harasser, so making the harassement public is libel.
Of course this case was only a welcome trigger to implement some law to cause FUD. Austrian government is completely illiterate in all things regarding internet, but in this case (and the case of the copyright directive), I would go as far and presume malicious intent (not just stupidity).
Maybe they were inspired by her case, but the former MP does not support it:
> Criticism also came from the former Green Party politician Sigi Maurer, whose fight against sexist posts was cited by the government as proof that the law was needed. "The government abused my case to propose this censorship law," Maurer wrote in a tweet last week. "Not in my name."
That seems like an absolutely nonsensical outcome from the court. Does anyone have the court transcript? (yes I'm aware of the risks of reading machine translated legal German, but it would be interesting to know)
(I see that Facebook's ineffective harassment policy is at the root of this again)
The case was never about anonymous hate-postings as the harasser's comments where posted under his real name, he just claimed that other people had access to his facebook-account. The case has been overruled by the higher instance a few weeks ago. I don't agree that this was the trigger for this law, the current gov consists of two right-populist parties/movements and made other irrational decisions in the past.
This would be surprising. If I remember correctly the MP was from the Green party (= centre left & environmental) while the current government is pretty much the opposite (centre right party & we're-not-nazis-but-pretty-close party).
This is just the far right interior minister enforcing his ideology of control.
If Austria is anything like the UK, I imagine it's a move designed largely to garner votes from a particular segment of the population who have been led to believe there's a terrorist round every corner, and "it's all to keep them safe".
> Could anyone shed some light on which problem this is supposed to solve exactly and what triggered it in the first place in Austria right now?
Existing hate-speech legislation allows persecution of users already, but in some cases the offenders hide too well or Facebook does not cooperate with authorities. Online newspaper forums are also now full of professionally organized dirt campaigns, sometimes tolerated by left-leaning media. The government wants to be able to persecute those who break the law and thinks it's the responsibility of media to at least make their users identifiable for authorities.
Since this is intended for international audiences, it maybe worth stating that "left-leaning" is what was considered center just a few years ago. (The idea of a general consent is somewhat a thing of a past.) Particularly "Der Standard", the newspaper the post is linking to, is now often attributed as "left" and its forum, the biggest and oldest one in Austria is subject to diffamation. (If you're reading the comments in this forum, there's a feeling that the law is meant to implement a premature censorship of sorts, an idea which is also maintained by some law and media professionals.) – While this is nothing like the US divide, there's no such thing like a common (political) perspective in Austria anymore. As a result, even comments meant to remind of the constitution and rule of law are sometimes countered by a qualification as left wing hate speech.
Edit: Previously, the political center of Austria was slightly to the left, like in most European countries. Bored with the great center coalition, the conservative party (ÖVP) has burned all bridges to the center-left social democrats (SPÖ) and is now considering the center rather more near its own right wing. Refugees and immigrants and "punishing" those are now the go-to argument for every legislative initiative. Also, governmental "message control", i.e., controlling what may be leaking of internal political communication or what may be setting an agenda, is deemed of high strategical importance by the ruling parties.
Where are there any "left-leaning" public posts of notice in Austria? This isn't the 1970s anymore, when there were actual Maoists… "Left-leaning" is now somewhat of a contested concept and there is no common consent on its meaning – which is what I was trying to point out.
All political terms and discriptors are in constant flux. That is normal. Generally speaking when you refer to left-leaning in a specific country, you mean the leftests of your contemporary time. I’m not sure what Austro-Maoists in the 1970s have to do with today’s leftists in Austria
This comes from a government in which the junior coalition partner is the far-right FPÖ, an openly pro-Putin and authoritarian party.
This law is part of their campaign to browbeat the press and public sphere into submission and it is following attempts to rein the austrian public broadcaster (orf) in.
The proposed law is useless for any legitimate purpose, as anonymity was never a problem with hate speech or other things. People are willing to engage in hate speech, libel or just in overall awful things with their name attached without reservation already.
Putin even attended the wedding of Austrian foreign minister last year[1] and nobody was outraged, in fact Austrians on social media applauded it. Vienna is also crawling with Russian spooks.
The problem in Austria is that the Russians have started buying a lot of property there decades ago. Property prices in Kitzbühel have been going through the roof thanks to Russian oligarchs buying up everything. Russians love Austria (as much as Cyprus) because it's a great place to hide and launder money, see[2]:
Peter Pilz, a member of parliament from the opposition Greens party, said the Italian mafia, especially the Calabria-based ‘Ndrangheta, had years ago used Austria as a money-laundering centre, cleansing around 2 billion euros.
“Now it is mainly a matter of Russian money. A lot of banks must be afraid that the Russians will take their millions and flee to Asia,” he said.
I don't think he controls them. What it reminds me of is how USSR supported pretty much any political movement anywhere in the world, so long as it was in opposition to the capitalist West. The important part was that last one, but most such movements were left-wing.
But that was there and then. We don't have any strong hard left movements of that kind in Western countries today. We do, however, have far right / "third position" movements of that kind. And ideologically, they align pretty well with Russia's own internal politics, so they're more reliable allies, as well. So, while there is some support for left-wing anti-establishment movements, most of it goes to the right. And hence we're mostly talking about that.
“Populists” lol. It’s not like anyone on the political spectrum has any shame. All political entities will abuse every mechanism that is at their disposal that won’t get them in trouble. Maybe the “populists” were the first to take advantage because they are smarter?
I doubt it solves any problems. The right wing parties just want to have more leverage for message control. A platform under the proposed law has to share the identity of an individual if another party wants to sue them for libel as an example. A think the FPOe does regularly.
The article states a number of laws this proposition is most likely to conflict with. I very much doubt it will hold in court, and certainly someone will sue. I guess it won't even land at the European Court of Justice (ECJ).
But even if I'm right, it still damages the public discussion on privacy and civil rights. It is one of many steps pulling public opinion in a frightening direction.
It's not the only attempt of the current government of Austria to do something against privacy on the internet.
- There is the idea of a tax called "Digitalsteuer": A tax for internet companies which didn't pay taxes for some reason. However, it is estimated this would make only some million dollars (~25 to 30/year). At the same time, it could lead to too much surveillance because somebody would have to save the address and location data of Austrian users somewhere. https://derstandard.at/2000100880156/Kritiker-befuerchten-du...
This legislation is not about "aggressive behaviour", it's about criminal conduct. While I can't comment professionally on the validity / reproducibility of this research (looks bogus to me, they only examined comments on an online petition platform, not FB and news sites where all the crazy people are[1]), anyone who'd claim that criminals don't prefer to be anonymous or that perceived anonymity has a negative effect on criminal behaviour, would surely be laughed out of academia.
Besides, the anonymity vs. other users will not be changed, we're not talking about a "visible real names" policy here. You can still use nicknames, just the forum operator has to store your real name.
[1] The final dataset includes 532,197 comments on 1,612 online petitions. There were a total of 3,858,131 signatures over the 1,612 petitions between 2010 and 2013, with detailed information about the wording of the comment, the commenters, the signers and the petition.
Putting 2 innocent people through systems designed to assume they are guilty is worse than 1 guilty person being able to be anonymous. Look at what the TSA has done. They’ve wasted so much time and created a massive invasion of physical privacy (i.e. someone touching your private parts in public) and not only did they never catch anything, they fail 90% of penetration tests. There is some positive intent here but in the real world this is obvious to cause more harm than good. I don’t know if it is hubris or ignorance to not see how easily this will be manipulated and have negative externalities. You don’t jail your whole population because of 1 bad apple.
- Filters, Article 13 style. Youtube, Facebook and Co have to ensure you can only post legal content
- Accountability. A justice system is able to drag you into a court when you've done something illegal.
We tried safe harbor and it was a nice compromise, but youtube added ContentId for a reason and it also certainly doesn't seem to help against hate speech. I prefer we keep judges assessing what is allowed and what isn't, instead of shifting this burden onto companies. If that requires Know Your Customer laws, then this seems like an acceptable trade off to me.
What about doing nothing? Is the status quo intolerable? Will it become intolerable if things continue on their current course? If you believe this, why do you believe it?
The problems of upload filters have been discussed here in depth and the consensus seems to be that they would have massive collateral damage. Removing anonymity creates severe problems for freedom of expression. Consider, for example the buffer anonymity provides from strategic lawsuits against public participation.
What current problem is so bad that solving it is worth the costs of either of those solutions?
I'd rather that we learn to acknowledge that laws and their enforcement isn't free, either economically, or in terms of its effect on personal freedoms, and that there is a line past which it's a net negative even if it targets some activity that is illegal for a good reason, and has some meaningful effect on that.
> Putting 2 innocent people through systems designed to assume they are guilty is worse...
This is not about being guilty, it's about being accountable for your actions, just like you are everywhere else.
In Austria and Germany, people riding bicycles are considered the rudest on the streets. Everybody is anonymous to other participants until an accident happens, but only bicycles have no number plates, so they usually run every red light because they won't be held accountable unless the police see it and give chase. I don't think it's fair, though some people clearly consider this an important part of their personal freedom, at the expense of everyone else.
It's a lot harder to kill a pedestrian with a bike than with a car, though. Cars are a lot more lethal than bikes, and most countries have road designs that are bike-hostile. You have to be a very assertive and alert cyclist there to not get hurt.
That is to say, consideration and respect goes both ways.
> It's a lot harder to kill a pedestrian with a bike than with a car, though.
That's completely irrelevant. It's about the "rules do not apply to me because you can't catch me" attitude, same as with people who harass others online without remorse by using various anonymity tools. Removing this possibility would fix it the accountability problems to a great extent and make them behave more responsibly, in line with others.
I ride a bicycle as my primary means of transport. I strictly obey traffic laws, and on almost every[0] journey I see motorists breaking traffic laws. Where I live, it's illegal to cross a solid white line that borders your lane to overtake somebody unless they are traveling at less than 10mph. I never travel that slowly, but motorists routinely cross solid white lines to overtake me. I estimate only about 1% of motorists obey the law.
To be fair, only a minority of those illegal overtakes are actually dangerous, but the same is true of most traffic law violations by cyclists.
[0] Extremely short journeys, or journeys very late at night, might encounter no motor traffic in a position to break the law.
Maybe I am wrong. I've observed usually the most aggressive to be kind of "knight of the status quo." They are opportunists seeking status and notoriety, whether consciously or not. They do this by being opportunists and attacking those who offered controversial opinions which garnered feelings of negativity. The knights latch onto that negativity as their opportunity for an assault. And you'll find they have put little genuine interest into the actual issue at hand, they're more interested in being a sort of "knight of the groupthink." So I think it is not really surprising to find users with their real names associated with conformity and status-seeking.
That behaviour is not desirable in any space online. That’s what makes it so good here the moderation is pretty good. But is this a problem to be solved at the state level?
It is not a problem. I do like moderation if I want to stay on topic. I also like the bad stuff. As long as there is room for both, I am happy. Enforcing identification isn't a realistic option.
Laws like this one and the recent anti-crypto law in Australia have me really worried for the future of small, privately owned sites. If laws like these continue to pass, it's going to become more and more difficult for small sites to navigate the legal regulations around running a web application. This, in turn, will discourage people from building their own web applications, which will lead to a decrease in overall innovation in the online space.
The conspiracy theorist in me is starting to see these laws as some sort of ploy by the big players(google, amazon, facebook, etc.) to create a sort of monopoly on the internet by making it so difficult to enter the web application space that only large companies with massive amounts of resources can even play the game.
As someone who is currently working on a new art sharing platform that will include discussion threads, I'm starting to get worried about needing to comply with these types of laws. Not that I would comply, as I believe one's internet experience should be as anonymous as one wants it to be.
It's a real shitty place to be. I hope this law gets shot down and all future laws in the same vein don't gain traction.
The funny thing is, they have a threshold of 100.000 users that must be registered at the site.
So a site like unzensuriert.at (like breitbart in the US) which is a right leaning / government favourable website will not fall under such a law and won't get penalties.
> The funny thing is, they have a threshold of 100.000 users that must be registered at the site.
It's 100.000 users OR revenue of €500.000 OR being media with press subsidies of €50.000+ OR being a service partner providing an online service for such companies.
That the law was made in such a way for "unzensuriert.at" ist just nonsense propaganda, there are plenty of left-leaning or straight opposition blogs and forums that are exempt as well (e.g. kontrast.at, run by the SPÖ). It's a law targeted at online forums by newspapers and FB/Google/Twitter. Also, unzensuriert.at is not "right leaning" it's pretty far right and not very friendly to the conservative ÖVP, i.e. the larger part of the government.
Exempt are also (apparently) forums on e-commerce websites and reviews/comments, support forums.
The fun part is that unzensuriert.at is notorious for the dehumanizing and racist comments posted under their articles but still won't be affected by this law. However, they have turned off their forums a few days ago.
If the government will decide whom to prosecute then of course, pro-government websites won't have any problems no matter how many users they have. Laws like this are usually made to be applied selectively.
I imagine sensible website operators would limit signups to below the threshold, so they don't run the risk of legislation unexpectedly applying. Otherwise it also becomes an avenue for malicious actors.
That reminds me of SWIM [0] from the drugs forums back in the day
[0] Someone Who Isn't Me. I believe it was an attempt to avoid admitting to illegal things. It was mandatory to use SWIM instead of the first-person on some forums.
Today I was driving around beautiful spring-time Vienna, and I happened to stop at a traffic light as Chancellor Kurz, sitting in the passenger seat of some 2019 rich-car convertible, also happened to stop in the lane next to me.
He gave me such an evil glare, it was astonishing. So I glared back at him.
In real life, I found him to be as loathsome a creature as in media. Perhaps, fatter than I thought he was.
I hope I can continue to report such things on the Internet in the future.
There is also an interview (unfortunately in German, but automatically translated subtitles are available) with the minister who is responsible for the bill: https://www.youtube.com/watch?v=8Sm7Q1bjW5o
Asked by the interviewer if this isn't the same as asking bar owners to check the ID of every visitor just in case a bar fight breaks out, the minister answered:
"Das ist ja ein Blödsinn, was sie da reden"
(This is total nonsense you are talking about)
More information asymmetry. The government can know about you but you can't know about the government. To ask this the government must be perfectly transparent and by that contradict the definition of government
There was a point made where an opposing lawmaker said that foreign companies like Facebook would not bother to comply. Ha! They will all love to have your real name and address confirmed, they will be more than happy to oblige. It would make many things easier, and allow them to monetize you much better.
So strange, this seems to be the exact opposite of the trend in the USA where the public desire is moving towards requesting these companies to allow us to be anonymous. Just like...Europe? What’s going on in Austria?
Europe is big on protecting your privacy against private entities. But the government is another matter - it's almost as if the presumption is that it's valid for it to hold such data on the flimsiest of reasons, and it only becomes abusive if used for some sinister purpose. The possibility of such abuse in the future is not considered a valid justification to prevent data collection.
Conversely, in US, we place a lot of emphasis on preventing the government from collecting data that it could abuse, but then largely ignore the same issue with private entities.
(Note, I'm not saying that it's universally true in either place, only that it seems to be the majority consensus. There's certainly plenty people vocally dissenting from it.)
> service providers on the web only have to obey the laws of the country in which they are situated ...
What does it mean for an internet site to be situated somewhere? What country is that?
For example, http://dreadditevelidot.onion. Where is it situated? It does have an interesting discussion forum. It certainly has rules. Is it now supposed to appoint a liaison officer in Austria (and 200+ other jurisdictions)?
The fact that they're calling it "digitales vermummungsverbot" already tells you everything you need to know: There is no real rationale here, besides a political stunt of the right-wing government to curry favour with the right-leaning parts of the populus.
The original "vermummungsverbot" is a law to prohibit people from wearing a veil in public. The pretense was that people hiding their identity were by definition a security threat to the law abiding general public. The political effect was that xenophobs liked the idea of a law that was opposed to certain aspects of islam. The reality is that the law has no effect, since there are almost no people in Austria would would want to wear a veil in public in the first place apart from maybe the odd female tourist visiting from Saudi Arabia.
The idea now is that the same should apply to the digital sphere.
My guess would be that they know full well that it's never going to pass into law and make it past Brussels. But to them it's a win-win. Either they get a law that appeases the right-wing populus. Or Brussels stops them, playing into their anti-European narrative, which would also gain them political capital.
The comparison to the real world is rather flawed, especially in countries like Austria. For instance your not required to show an ID when buying groceries, buying alcohol or entering a bar.
There's already the Handy Signatur (https://www.handy-signatur.at/hs2/) - a way to digitally sign official documents using your smartphone ('handy'). The only way to obtain this is to have your ID and phone number registered with the authorities. It's convenient, but it's also a system that removes any possibility of anonymity.
I imagine this kind of digital signature will be mandatory when signing up for the internet services described in the article...
On reading the headline my first thought was "That's fine just as long as it applies to everyone" and then I see that it's just a measure to control people.
Eliminating anonymity should be done through measures that amount to enforcing traceability at fundamental technical levels - that will affect everything from spam to fraud. But simplistic things like this just require people to identify themselves, which is just a form of social control.
If the majority has become tyrannical in their thinking toward the minority when it comes to human rights, then get the hell out of the country or jurisdiction in question if you can. Especially if it has moved beyond the initial typically mostly benign stages.
Authoritarianism and aggressive statism broadly, generally prompt opportunistic brain drain for exactly that reason.
The US poached enormous amounts of talent from backwards, regressive European nations for more than a century previously.
Mail: PO Box 2804, Grand Cayman KY1-1112 , Cayman Island.
I don't think anybody involved with the site has ever been to Grand Cayman. Apparently, they process 10 BTC/USDT transactions per minute; and that is just one of the hundred trading pairs.
Who can claim jurisdiction over that site? Maybe Grand Cayman, but when push comes to shove, I suspect that they won't be interested either.
Cayman Islands is a British Overseas Territory. Technically, the installed Governor could shut anything down at his wish. In practice it’s unlikely to happen, because (like with many British constitutional matters...) both the locals and the UK have an interest into maintaining a degree of ambiguity in current arrangements.
This said, when the UK government is fully convinced that Caymans “should jump”, they eventually jump.
- provides plausible deniability for unpopular or suspicious measures at both ends
- keeps open the option of direct subsidies and favourable treatment for Cayman. I believe most BOTs are not financially self-sufficient, including Caymans.
- keeps open the option of UK re-taking direct control in some circumstances (military requirements, oil discoveries etc).
- maintains substantial independence in practice.
For small territories, BOT arrangements provide the best of both worlds, at the low low price of occasionally bowing to UK authorities.
The original German version has it somewhat right by just associating potential consequences after an indent. This is just a case of lost in translation.
In practice (particularly in europe and particularly the current regulatory MO) regulating the internet will often be deeply linked to de-anonymizing it. It isn't necessarily that way, but it is where the ball rolls by default, atm.
A lot of the financial regulations of the past decade have been heavily identity oriented. Companies/banks need to ID customersID the origin/destination of funds, etc.
Gambling has recently become more regulated in a lot of european countries. Similar story. ID customers (mostly for age, but also aml). ID where the money is coming from. Take all reasonable steps to find out if a customer is has more money than they should have, is a thief, gambling addict, etc.. In practice, this they request customers' passports, bank statements, payment slips... while at the same time pay for services that estimate customers income, review social media profiles, and such.
Even GDPR, which I think did some to improve data security and a lot to reduce data selling, requires (in practice) most websites to keep of track of users' consent, which means keeping track of user identity, to some extent.
I have a bad feeling about the current political drive to "regulate" more. There are certainly problems that need solutions, which are likely regulation. But, the details matter a lot. We don't want the default regulations.
In the US we have a little freak-out every time a private entity like the Blizzard gaming forums or Google+ does this. I cannot imagine the shitstorm if it was attempted on a national level.
We have to blame the clickbaity headline for this, but you too misunderstood that this isn't about de-anonymizing users' profiles for the general public. Nicknames are still allowed, but the forum operator has to verify your ID at registration. Just like Blizzard knows your real name from your subscription details.
Austria's politics is presently dominated by (far) right wing populism. This isn't really all that surprising in the context of a right wing authoritarian state.
I don't understand why there's so much racism in that tiny nation. Almost every time I cross the border into Austria, the police flags me down and asks for my passport. I'm Austrian citizen, born and raised but a person of colour. Even though I speak German fluently, authorities always speak in English to me. It gave me so much anxiety that I moved to the UK and noticed that I'm treated with much more respect and opportunities.
Austria is a beautiful country and most people are nice but man..some people can be very small-minded there. The news would make you believe that the UK is this backwards right-wing nation because of Brexit but you'll never see a muslim of Pakistani descent as mayor in Vienna or people of colour in the Austrian parliament and that's honestly very depressing.
Peer to peer connections are increasingly looking like a solution to me, google,apple all have research ongoing on how to have private intranets between mobiles in an area.ipfs could be extended for such usecases too.
couple that with self hosted(or maybe companies do it for you for a fee) mobile base stations to extend the range of that intranet for coverage that is actually free of government snooping/supervision while simulataneously being truly local and a signboard of things happening in your area.
of course they could try and ban that but unless you actually train cops to roam around with wifi packet sniffers i doubt it would be very enforceable.
>of course they could try and ban that but unless you actually train cops to roam around with wifi packet sniffers i doubt it would be very enforceable.
That's exactly what Soviet police would do 50 years ago to catch "illegal" radio stations, to the point that the rebels eventually put it into a balloon, so there is precedence
peer to peer connections flow over infrastructure provided by companies who provide you, the internet. good luck to have that up and running as 'next internet'. ... it's something you do on the current internet :S
Laws like this are long past due. This particular law may not be the best implementation but governments do need to take action to provide their citizens with a real public square online.
Excluding fake and paid users (without a declaration of who is paying them) from that space and protecting free speech in that space is essential to having a public policy discussion.
Private corporations have not done this, and probably never will, so government is the only option left.
The government may and should provide their citizens with a public square online, but neither do they need to take away anonymity on existing squares, nor does the public square need to be non-anonymous. The concept of being able to go out on the streets, make mistakes, and have them be forgotten is old and integral to public spaces IMO.
I think that governments should provide a verifiable digital ID the same way they provide physical IDs and that they should provide communications platforms that allow people to communicate with these digital IDs in a way that protects their rights the same way that they provide mail service.
I do not think that governments should be regulating/banning activity on private platforms but should be offering an alternative where private platforms fall short. This is really nothing more than bringing existing government services (ID, mail, voting, parliaments) fully up to date with digital technology.
There is a big gap right now where governments don't understand what they should be doing or are incapable of doing it. They recognize the need for action because they see that things are going wrong but are not proposing or implementing the correct solutions yet.
WTH has this to do with mail service - which inherently allows anonymity for the sender?
If anything, analogous to this law, no one would be allowed to send a letter without ID (which also means goodbye post boxes, I guess).
Oh, and if we want to extend the analogy - with current and pending legislation, the mail service would be liable if anyone breaks the law via mail...
This law is like having to provide and record ID when entering a concert, restaurant or other public places. It's an authoritarian dream, but will be shot down by courts, that's for sure.
I disagree. Laws like this are outwardly hostile to the culture of innovation that the internet enables.
> This particular law may not be the best implementation but governments do need to take action to provide their citizens with a real public square online.
I disagree. Governments do not need to provide a public online discussion forum. Plenty of forums already exist. Reddit, Facebook, Hacker News, various phpBBs, deviant art, the chans, tumblr, mastodon, etc. The beauty of the internet as it stands is that if you feel like you don't have a place to speak your mind online, it's extremely easy, and in many cases, completely free to create your own blog or forum. Government should not be involved in public discourse in any role besides that of an observer. It is important for a government to hear the words of it's people, but it is ridiculous to suggest that a government should hold control of where people can have discussions or who can have discussions. This law is authoritarian at best, dystopian at worst.
> Excluding fake and paid users (without a declaration of who is paying them) from that space and protecting free speech in that space is essential to having a public policy discussion.
Protecting free speech is very important. However, this law does no such thing. In fact, it makes it easier to persecute people whose opinions you don't like. Requiring identification for the exercising of free speech is not free speech at all.
> Private corporations have not done this, and probably never will, so government is the only option left.
Regulation on how private companies handle their users is not inherently a bad thing. This law, however, is not only stifeling to free speech, it prevents smaller players from entering the game. It makes it hard for individuals to create their own small online communities by forcing them to navigate murky legal waters.
This law is bad. Everything about this law is bad. There is no single part of this law that is good for the internet.
It's only a good thing if you're not going to say or be anything which would get you beaten up if everyone were to know about it. It's easy for people who are, in the example of Austria, White, straight, cis, and either Christian or, at the very least, not Muslim, to decry anonymity, but if you're a member of a disfavored minority group, all de-anonymization does is does is open you up to abuse, discrimination, and, perhaps, violence.
You can take as an example the problems Facebook's "Real Names" policy caused for sexual minorities:
... except multiply it by a thousandfold when the government is in the pocket of a political party which is... disinclined... to acknowledge the existence or legitimacy of such people.
While de-anonymising users may or may not work to stop individual trolling and other abuse (the jury is still out); it most definitely enables organized troll groups. Therefore it's actually not a good idea at all.
The government isn't providing a public square. Internet is already that and more. The government is enforcing everyone to wear visible name tags by threatening violence on those who disobey.
What about Twitter? Reddit?
> In addition, web platforms would be required to appoint a liaison in Austria who would be responsible for making information about platform users available if it becomes necessary. If this person does not ensure that the regulation is followed, he or she could be punished with a fine of up to 100,000 euros.
This will just put foreign platforms, who will ignore the law, into an advantageous position compared to local platforms. Users might switch to foreign platforms that don't require identification.