Latest in Culture

Image credit: Frederic J. Brown/AFP/Getty Images

Anti-encryption bill changes would limit some effects on security

The proposed alterations would limit the legislation's reach, but wouldn't eliminate its core flaws.
814 Shares
Share
Tweet
Share
Save

Sponsored Links

Frederic J. Brown/AFP/Getty Images

A Senate bill that would demand encryption backdoors may be on ice for now, but it's now poised to come back -- with a few limitations. Just Security claims to have obtained proposed changes to the bill that would scale back its requirements to placate critics of its effect on privacy and security. Some of them could make a meaningful difference, but there's a concern that this wouldn't change the underlying problems with the legislation.

Most notably, it would only ask that companies and individuals make "reasonable efforts" to offer technical help when law enforcement wants access to encrypted data. That could be an out for companies designing encryption that they can't break themselves. The proposals would also limit the scope of demands to whoever is responsible for controlling the encryption process (providers would be off the hook), and would no longer require access in cases of spying, terrorism, or critical infrastructure like electrical grids.

This still leaves significant problems, though. As Just Security asks, how do you define who controls the encryption process? Does this exempt certain companies, or put them on the hook the moment law enforcement thrusts a device into their hands? The limitations on surveillance and terrorism may also be more a matter of ceding jurisdiction to other Congressional committees than a privacy-minded gesture.

Moreover, the infrastructure limitations may only serve to highlight the problems with mandating backdoors and other guarantees of access to encrypted systems. If you're worried that weakening encryption would put power plants at risk, why is it okay to put the broader public at risk? And wouldn't weakening security for one hurt the other? There's no known timetable for when a revised bill would show up (after the election seems more likely), and there's no guarantee that it'll keep these exact changes. However, it's clear that Senators Dianne Feinstein and Richard Burr still don't have a firm grasp on how encryption works. It's virtually impossible to create security holes that only law enforcement can climb through, and a toned-down proposal won't change that.

All products recommended by Engadget are selected by our editorial team, independent of our parent company. Some of our stories include affiliate links. If you buy something through one of these links, we may earn an affiliate commission.
Comment
Comments
Share
814 Shares
Share
Tweet
Share
Save

Popular on Engadget

Engadget's 2019 Back-to-School Guide

Engadget's 2019 Back-to-School Guide

View
Bloomberg: Apple plans to launch TV+ in November for $10 a month

Bloomberg: Apple plans to launch TV+ in November for $10 a month

View
Amazon unveils trailer for third season of ‘The Marvelous Mrs. Maisel’

Amazon unveils trailer for third season of ‘The Marvelous Mrs. Maisel’

View
San Francisco’s 25-year-old FogCam shuts down this month

San Francisco’s 25-year-old FogCam shuts down this month

View
You can finally get PowerBeats Pro in colors other than black

You can finally get PowerBeats Pro in colors other than black

View

From around the web

Page 1Page 1ear iconeye iconFill 23text filevr