[skripp]

> The government said its proposal was not "a ban on end-to-end encryption".

> Critics say companies could be required by Ofcom to scan messages on encrypted apps for child sexual abuse material or terrorism content under the new law.

So, what's going on here? Is it going to be E2EE between user and user and then also a copy E2EE between user and the government? What a time to be alive.

Or is the law going to require them to scan encrypted messages for child abuse and terrorism content? Unless they are required to hand over the keys then... how is that going to work?

[spzb]

Government policy on encryption (along with many other things including Brexit) relies on "magical thinking". They don't understand the problem so they assume there's an easy solution that's just being withheld from them by nefarious third parties.

[agd]

It's a classic misleading but true statement from the government. They can mandate apps scan messages client side before sending E2E.

[hellojesus]

What stops a company from making a PWA that ignores the UK rule? UK can't block it, especially if they host on aws or gcp servers. So long as the company isn't headquartered in the UK, nothing can be done.

[polski-g]

Just scan the encrypted data stream and call it a day. "Well, we tried and did not find anything"