UK could force E2E encrypted platforms to do CSAM-scanning
The U.K. government has tabled an amendment to the Online Safety Bill that could put it on a collision course with end-to-end encryption.
It’s proposing to give the incoming internet regulator, Ofcom, new powers to force messaging platforms and other types of online services to implement content-scanning technologies, even if their platform is strongly encrypted — meaning the service/company itself does not hold keys to decrypt and access user-generated content in the clear.
The home secretary, Priti Patel, said today that the governments wants the bill to have greater powers to tackle child sexual abuse.
“Child sexual abuse is a sickening crime. We must all work to ensure criminals are not allowed to run rampant online and technology companies must play their part and take responsibility for keeping our children safe,” she said in a statement — which also offers the (unsubstantiated) claim that: “Privacy and security are not mutually exclusive — we need both, and we can have both and that is what this amendment delivers.”
The proposed amendment is also being targeted at terrorism content — with the tabled clause referring to: “Notices to deal with terrorism content or CSEA [child sexual exploitation & abuse] content (or both)”.
