Faced with growing criticism of Bill C-22, the government this week mounted a coordinated defence, with senior officials from CSIS, the RCMP, and Public Safety Canada sitting for on-the-record briefings with the Globe and Mail, the CBC, and others. While officials tried to make the case for lawful access, they failed to make the case for Bill C-22, as their use cases reveal a consistent pattern of overreach. Indeed, whether the issue is metadata retention or the technical capabilities the bill would mandate, the powers it would grant extend well beyond the targeted needs the officials describe, resulting in a disproportionate bill in need of significant amendment.
Post Tagged with: "encryption"
Bill C-22’s Groundhog Day: Why the Government’s Dismissal of Signal, Apple and the U.S. Congress Concerns Runs Back the Disastrous Online News Act Playbook
Secure messaging service Signal yesterday became the latest company to warn that Bill C-22, the lawful access bill, could force it to leave the Canadian market rather than comply with provisions it says would compromise its end-to-end encryption and create new cybersecurity risks. Signal vice-president Udbhav Tiwari told the Globe and Mail that the company “would rather pull out of the country than be compelled to compromise on the privacy promises we have made to our users.” The comments are part of a steady stream of similar warnings from Apple, Meta, the Canadian Chamber of Commerce, the Cybersecurity Advisors Network, and the chairs of the U.S. House Judiciary and Foreign Affairs Committees. Despite growing concern, the government’s response has been to launch a misleading social media campaign and repeatedly insist that the experts and companies are mistaken.
The Trouble With the TPP, Day 32: Illusory Safeguards Against Encryption Backdoors
The news that the U.S. government has obtained a court order requiring Apple to assist law enforcement to break the encryption on an iPhone owned by one of the San Bernadino terrorists has sparked widespread concern. There is some debate over the scope of the judicial order – Techdirt points out that the order does not require Apple to break its encryption but rather allow the government to “brute force” the password without deleting the data – but it is clear that the goal is to limit the effectiveness of the encryption protections found on the popular device. Apple has issued a public letter stating its view that this is a dangerous precedent that could be repeated over and over again. Indeed, if a U.S. court can issue such an order, there is seemingly nothing to stop other governments from doing the same.
What does this have to do with the TPP?
The U.S. has suggested that the TPP would address these issues, claiming that the agreement:
You’re on Your Own: How the Government Wants Canadians To Sacrifice Their Personal Security
Another week, another revelation originating from the seemingly unlimited trove of Edward Snowden documents. Last week, the CBC reported that Canada was among several countries whose surveillance agencies actively exploited security vulnerabilities in a popular mobile web browser used by hundreds of millions of people. Rather than alerting the company and the public that the software was leaking personal information, they viewed the security gaps as a surveillance opportunity.
My weekly technology law column (Toronto Star version, homepage version) notes that in the days before Snowden, these reports would have sparked a huge uproar. More than half a billion people around the world use UC Browser, the mobile browser in question, suggesting that this represents a massive security leak. At stake was information related to users’ identity, communication activities, and location data – all accessible to telecom companies, network providers, and surveillance agencies.
The Issue with CSEC Handing over encryption codes to the NSA
I talked to Global News about the Communications Security Establishment Canada (CSEC) handing over encryption codes to the NSA. Canada appears to have opened a backdoor for surveillance by the USA.
Recent Posts
The Law Bytes Podcast, Episode 269: Inside the Bill C-22 Committee Hearing for the Case Against Government’s Lawful Access Plans 
The Online Streaming Act Bill Comes Due: Why the CRTC’s Latest Ruling Guarantees Years of Trade and Legal Battles 
The Government Tries to Make the Case for Bill C-22: Why Its Own Use Cases Reveal Disproportionate Overreach 
Tech Exodus: Why Bill C-22’s Privacy and Security Risks Will Drive Digital Services Out of the Country 
The Lawful Access Two-Headed Surveillance Monster: How Bill C-22 Went Off the Rails
