A group of civil society organisations and privacy campaigners have accused the government of using “scare tactics” to try to sway public opinion over the use of end-to-end encryption in messaging apps.
“Encryption is vital”
Writing an open letter to mark Safer Internet Day, the Open Rights Group and more than 40 other campaign groups criticised a recent Home Office advertising campaign which claimed that encryption puts children at risk from predators and can be used to hide online abuse.
The civil society groups said they are concerned that the government is seeking to influence public opinion prior to amending the draft Online Safety Bill so that tech firms would be forced to weaken or remove end-to-end encryption from their messaging systems, something the groups argue would in fact put more people at risk.
Jim Killock from the Open Rights Group said:
The way the Government has been using scare tactics damages trust with its citizens.
The Government exploiting emotive narratives for their campaign is manipulative and does not provide a balanced view. The truth is that encryption is vital for online safety.
The open letter has been signed by a number of experts as well as members of the Global Encryption Coalition including Index on Censorship, the Internet Society and human rights group Article 19. It said that damaging encryption would reduce privacy for the wider public, as well as vital protections for the most vulnerable.
The letter said:
Undermining encryption would make our private communications unsafe, allowing hostile strangers and governments to intercept conversations.
Undermining encryption would put at risk the safety of those who need it most.
Survivors of abuse or domestic violence, including children, need secure and confidential communications to speak to loved ones and access the information and support they need.
📢 Tomorrow will be #SaferInternetDay!🥳
🤔Curious about who'll be celebrating #SID2022 with us on Tuesday, 8 February and how?
👉 Discover industry partners, institutions and other organisations committed to creating a better internet for everyone at https://t.co/1x2CynXKbL pic.twitter.com/wkZ5U6KpLI
— Safer Internet Day (@safeinternetday) February 7, 2022
Privacy
Popular apps such as Facebook-owned WhatsApp and Signal use end-to-end encryption to offer secure, private messaging for users. Facebook has announced plans to introduce end-to-end encryption – so messages can only be accessed and read by the sender and recipient – across the rest of its app messaging platforms by 2023.
The tech giant has said it is taking the time until then to “get this right” and strike a balance between user privacy and keeping people safe online.
The Home Office and some law enforcement agencies have suggested that encryption can hamper efforts to stop criminals from organising and communicating. Home secretary Priti Patel has previously spoken out about her concerns around encryption, saying it could put progress in preventing child sexual abuse “at jeopardy”.
Last year, Metropolitan Police commissioner Cressida Dick called for greater international co-operation among law enforcement bodies and governments to engage tech companies on the issue. Dick has faced repeated allegations of corruption in her time at the Met.
In response to the open letter, security minister Damian Hinds said:
Privacy and children’s safety are not an either/or – we need both. End-to-end encryption can be an important and beneficial technology when used responsibly, and the Government supports this.
We believe it can be implemented in a way that is consistent with protecting children, and that’s what we want to see.
Hinds seems to be suggesting that encryption should have a ‘back door’ that allows those with access to view messages. As others have pointed out, this would make data vulnerable to malicious actors who seek to gain access to the back door. As Marc Laliberte wrote for Help Net Security in 2020:
There’s simply no such thing as a “good guys only” backdoor. Eventually, a cyber-criminal will get their hands on the “golden key” or exploit the intentional chink in the armor to break their way in. The NSA losing its stockpile of Windows zero-day vulnerabilities in 2016 should be clear proof that we shouldn’t be so quick to trust government agencies to act responsibly with security.
He added:
Even if most governments managed to pass anti-encryption laws, criminals would simply move to different apps instead of the ones that maintain compliance. Giving up the security and privacy of the masses is simply too big of a price to pay for something that is very unlikely prevent crime and incredibly likely to result in abuse.
