I wrote a lot about the UK Government’s Online Safety bill, especially the parts relating to encryption – basically I am against introducing any weakness into encryption. I know the argument for it states that the police will catch criminals easier – terrorists and offenders against children are always mentioned – and I am all for that. But it also means law abiding citizens – you and I – and the organisations we work for or interact with would no longer be able to depend on secret communications.
I am not assuming the authorities will be abusing their power – Stamer is not like some world leaders I could name – but what about a rogue element within Government or the social media and app companies that have to have this UK encryption compromise in their products? This is the inside threat risk that everyone has to face – a trusted individual abusing that trust – and it applies to you as well.
Threat actors would know this and it would take little effort, compared to the prize they want, for them to compromise any safe gaurds put in place.
Back to the headline
A discussion document about online safety has been published on behalf of the government and although it prioritises platform providers preventing online harm it is very light on the details on how this will be done.
Now Online Safety Act is law, UK outlines ‘priorities’ • The Register
Obviously it will be light on details. So many stakeholders in this do not want to play.
There is still a long way to go before all of this law is implemented.
Clive Catton MSc (Cyber Security) – by-line and other articles
Further Reading
Smart Thinking Solutions supports this UK Government initiative:
Let’s stop abuse together – Stop Abuse Together (campaign.gov.uk)
Draft Statement of Strategic Priorities for online safety – GOV.UK
Online Safety Act 2023 – Parliamentary Bills – UK Parliament