After the tragic attacks in Paris and San Bernardino, governments around the world are examining how to minimize the risk of similar tragedies. Political, intelligence and law enforcement leaders should be commended for their efforts to promote security. But it is imperative that these measures do not undermine our security and safety online and strip self-defense tools that are more needed than ever.
Lawmakers and presidential candidates, citing concerns about strong encryption, have called for expanded government access to devices and Internet services to prevent and investigate attacks. Some lawmakers want mandates requiring companies to take extraordinary steps to enable government access to secure digital systems and devices — rather than imposing a particular technical system on all providers.
While leaving the problem to Silicon Valley innovators seems like an agreeable compromise, in practice the difficult tradeoffs haven’t changed over the last twenty years. Companies would have to either use incomplete (flawed) encryption in their services at the provider end, or engineer digital encryption systems with a key shared in part with the government or held in escrow for its use. These approaches would create more problems than they would solve. For the full article click here
from critical infrastructure alliance http://ift.tt/1mtzgqX
via IFTTT
No comments:
Post a Comment