[csmpltn]

> "So then you just sideload the messaging app instead of using the official build that complies with the legal system"

That's not how computers work.

The scanning would take place at the lowest possible layer (ie. keyboard input, or kernel-mode input driver, etc), such that the user-mode software itself wouldn't be able to bypass the scan. It could also happen at the hardware layer.

You'll need to bring your own hardware/software to ensure you're not being monitored.

[raspyberr]

Like I replied above. Having your own hardware is pointless if the people you're talking to are having their devices scanned.

[laurowyn]

But... That's exactly how computers work.

If you had a look at EncroChat at all, you'd see that they were running a custom Android OS with a bunch of their own apps on it.

Yes, we can take it to hardware level, however, that's not what was being discussed. The idea of mandating app developers to use the scanning tech can be trivially circumvented. i.e. Law makers not understanding the technology.

Mandating a hardware implant to achieve the same goals is a better understanding of the technology involved, but that ends badly for everyone. At least with software, a vulnerability can be fixed. In hardware, you're stuck with buying a new device or living with the vulnerability. Not to mention it's an open statement that the law makers want to spy on you.