exceptionhandler

About

Username
exceptionhandler
Joined
Visits
967
Last Active
Roles
member
Points
344
Badges
0
Posts
381

Reactions

227Like0Dislike25Informative

  • Apple backs down on CSAM features, postpones launch

    exceptionhandlerexceptionhandler
    Illusive said:
    Illusive said:
    Illusive said:
    Does anyone here realize THIS means iCloud Photos stay virtually unencrypted, just as they have been since at least 2020? That CSAM thingy was supposed to scan the pics on-device so that they could be uploaded securely to iCloud if they don't violate the policy. 
    But this is the back door officials are looking for… what good is e2e encryption if there is any point in the process where data can be transmitted so that it notifies a 3rd party of what it may contain? If there’s any point where data can be transmitted, it renders the purpose of encryption useless.

    While apples solution won’t transmit anything until a certain threshold is met, the capability is there to transmit info about the data being encrypted, which necessarily circumvents the e2e process.  It becomes a “we promise and absolutely swear we won’t do anything else” which is as good as no e2e encryption.  This is a slippery slope, and new “features” could feasibly added touting the “success” of the on device scanning, and so it would begin…

    The data may technically be e2e encrypted, but the weak point becomes just outside the front door.  If something or someone is sitting there, watching what is going in or coming out, then what good is having opaque walls?  If I knew someone was watching my front door (which in this case we do), I’d just do my criminal stuff somewhere else.

    This also opens the door for bad actors to exploit this system… people have already started poking and prodding the disabled version of this in ios14.

    I personally consider iCloud photos to be public, and act accordingly, despite any “niceties” Apple may provide in terms of privacy of the service.  While I’d like to see icloud photos encrypted so that absolutely the only intended parties can see them (people I’ve shared with), I would not accept this on device scanning to achieve that.

    TL;DR. Stopped reading after 'slippery slope'. Sorry, dude :D You wanna sound serious, get technical first. My guess is you watch too much YouTube - and possibly read too much conspiracy fiction, too.

    Anyway, opt out of iCloud Photos if you're anxious about someone flipping through your cat pics. This generation is just beyond silly.
    First part, not helpful! ¯\_(ツ)_/¯ 

    Second part, somewhat helpful, but I’d add for those who don’t wish for the scanning on their device to stay on 14 or lower, and for those who absolutely want to be sure, stop using iCloud photos altogether (which the smart criminals will do anyways).

    “Those who would give up essential Liberty, to purchase a little temporary Safety, deserve neither Liberty nor Safety.” - Benjamin Franklin

    “There is no justification for taking away individuals' freedom in the guise of public safety.” - Thomas Jefferson

    “Trade liberty for safety or money and you'll end up with neither. Liberty, like a grain of salt, easily dissolves. The power of questioning - not simply believing - has no friends. Yet liberty depends on it.” - Thomas Jefferson

    Don’t give me that Uncle Sam stuff, man :D It ain’t technical, so I literally don’t care. As for the update holdouts, they will update sooner or later anyway. We’ve been there already. 

    This whole discussion is a waste of time. You want your liberties, go for them. Just make sure your actions don’t make things worse for those of us who aren’t paranoid. 
    Yet… here you are… ¯\_(ツ)_/¯

    due to the industry I am in, I have dealt with the technical side of this stuff, but I am not sure the  actual technical details are relevant… that is the how… Dont dev me wrong, their implementation is super cool, but…

    Another more recent quote I like to use, because I see bad tech designs/decisions all the time is:

    “Yeah, but your scientists were so preoccupied with whether or not they could, they didn't stop to think if they should.” - Dr. Ian Malcolm
    baconstanghenrybay

  • Apple backs down on CSAM features, postpones launch

    exceptionhandlerexceptionhandler
    Illusive said:
    Illusive said:
    Does anyone here realize THIS means iCloud Photos stay virtually unencrypted, just as they have been since at least 2020? That CSAM thingy was supposed to scan the pics on-device so that they could be uploaded securely to iCloud if they don't violate the policy. 
    But this is the back door officials are looking for… what good is e2e encryption if there is any point in the process where data can be transmitted so that it notifies a 3rd party of what it may contain? If there’s any point where data can be transmitted, it renders the purpose of encryption useless.

    While apples solution won’t transmit anything until a certain threshold is met, the capability is there to transmit info about the data being encrypted, which necessarily circumvents the e2e process.  It becomes a “we promise and absolutely swear we won’t do anything else” which is as good as no e2e encryption.  This is a slippery slope, and new “features” could feasibly added touting the “success” of the on device scanning, and so it would begin…

    The data may technically be e2e encrypted, but the weak point becomes just outside the front door.  If something or someone is sitting there, watching what is going in or coming out, then what good is having opaque walls?  If I knew someone was watching my front door (which in this case we do), I’d just do my criminal stuff somewhere else.

    This also opens the door for bad actors to exploit this system… people have already started poking and prodding the disabled version of this in ios14.

    I personally consider iCloud photos to be public, and act accordingly, despite any “niceties” Apple may provide in terms of privacy of the service.  While I’d like to see icloud photos encrypted so that absolutely the only intended parties can see them (people I’ve shared with), I would not accept this on device scanning to achieve that.

    TL;DR. Stopped reading after 'slippery slope'. Sorry, dude :D You wanna sound serious, get technical first. My guess is you watch too much YouTube - and possibly read too much conspiracy fiction, too.

    Anyway, opt out of iCloud Photos if you're anxious about someone flipping through your cat pics. This generation is just beyond silly.
    First part, not helpful! ¯\_(ツ)_/¯ 

    Second part, somewhat helpful, but I’d add for those who don’t wish for the scanning on their device to stay on 14 or lower, and for those who absolutely want to be sure, stop using iCloud photos altogether (which the smart criminals will do anyways).

    Those who would give up essential Liberty, to purchase a little temporary Safety, deserve neither Liberty nor Safety.” - Benjamin Franklin

    There is no justification for taking away individuals' freedom in the guise of public safety.” - Thomas Jefferson

    Trade liberty for safety or money and you'll end up with neither. Liberty, like a grain of salt, easily dissolves. The power of questioning - not simply believing - has no friends. Yet liberty depends on it.” - Thomas Jefferson
    mobirdbaconstangmuthuk_vanalingamdarkvader

  • Apple backs down on CSAM features, postpones launch

    exceptionhandlerexceptionhandler
    Illusive said:
    Does anyone here realize THIS means iCloud Photos stay virtually unencrypted, just as they have been since at least 2020? That CSAM thingy was supposed to scan the pics on-device so that they could be uploaded securely to iCloud if they don't violate the policy. 
    But this is the back door officials are looking for… what good is e2e encryption if there is any point in the process where data can be transmitted so that it notifies a 3rd party of what it may contain? If there’s any point where data can be transmitted, it renders the purpose of encryption useless.

    While apples solution won’t transmit anything until a certain threshold is met, the capability is there to transmit info about the data being encrypted, which necessarily circumvents the e2e process.  It becomes a “we promise and absolutely swear we won’t do anything else” which is as good as no e2e encryption.  This is a slippery slope, and new “features” could feasibly added touting the “success” of the on device scanning, and so it would begin…

    The data may technically be e2e encrypted, but the weak point becomes just outside the front door.  If something or someone is sitting there, watching what is going in or coming out, then what good is having opaque walls?  If I knew someone was watching my front door (which in this case we do), I’d just do my criminal stuff somewhere else.

    This also opens the door for bad actors to exploit this system… people have already started poking and prodding the disabled version of this in ios14.

    I personally consider iCloud photos to be public, and act accordingly, despite any “niceties” Apple may provide in terms of privacy of the service.  While I’d like to see icloud photos encrypted so that absolutely the only intended parties can see them (people I’ve shared with), I would not accept this on device scanning to achieve that.
    elijahgbaconstangmuthuk_vanalingamdarkvader

  • Apple backs down on CSAM features, postpones launch

    exceptionhandlerexceptionhandler
    MplsP said:
    How many of the people screaming about CSAM have Facebook, WhatsApp, Instagram, and google apps on their devices and an Amazon or google smart speaker in their home?
    I do not have any of those things… I obviously can’t speak for everyone though…
    baconstangdarkvader

  • Instagram demanding users' birthdays to enforce child safety measures

    exceptionhandlerexceptionhandler
    fastasleep said:
    DAalseth said:
    lkrupp said:
    Oh really? Okay, I’m 13 but I’ll enter my birth date so I’m 18 on your site. How to you plan to authenticate my age? Or is this simply CYA on your part? “She lied about her age so we are not responsible."
    Pure CYA. I plan to enter a fake date. My BD? April 15, 1905. That sound good FB?
    Reminds me of when I had a FB account with all fake data, name, BD, address, etc. One day they made a big deal of how they would start requiring real names for safety and security, and would notify anyone using a fake name. But they never called me for using Imma Actor as my name. 
    It’s all show.
    They wouldn't care if you made yourself 120 years old, because this is purely to identify minors on the system for the purposes stated. They don't give a fuck if adults change their age to another adult age.

    Also, you guys are ignoring this aspect:

    "In case an incorrect birthday is given, Instagram is also working on AI to estimate the age of users, based on post content like "Happy Birthday" posts. In theory, the in-development system will identify if a user has added an older age than they really are, which could trigger verification systems to correct the age. "
    So, based on the Happy Birthday post metric, if I created an account today with a birthday that places me at 20 years old, how would they accurately identify that date is not my birthday?  I would have no history of birthdays.  Now if all the people I may have “friended” or converse with on the platform don’t know who I am in real life?  If all the details are fake, and no one calls it out in messages because they don’t know the real me, I see know way for them to know based on that metric because any future posts will be incorrect too.
    watto_cobra