129
EU Tries To Slip In New Powers To Intercept Encrypted Web Traffic Without Anyone Noticing
(www.techdirt.com)
A nice place to discuss rumors, happenings, innovations, and challenges in the technology sphere. We also welcome discussions on the intersections of technology and society. If it’s technological news or discussion of technology, it probably belongs here.
Remember the overriding ethos on Beehaw: Be(e) Nice. Each user you encounter here is a person, and should be treated with kindness (even if they’re wrong, or use a Linux distro you don’t like). Personal attacks will not be tolerated.
Subcommunities on Beehaw:
This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.
Jesus.
If you want to legally operate your browser in the EU, you have to blanket trust any certificate any member country wants you to with no security check of any sort that's not explicitly approved by the EU.
I wonder if this would end up creating a second parallel PKI. The existing one used for HTTPS security based on Browser's own trust decisions and CA-Browser forum guidelines. The EIDas one for a "government-approved" checkmark but that doesn't make the website HTTPS nor have a secure icon.
There are already multiple PKI stores on every system, managed by different entities. This is an attempt by demagogues to get around that problem using law to twist their arms.
He's implying presenting it differently to the user: "secure" and "EU approved".
I'm assuming the EU will fight hard to prevent that though.