CFR China Expert: US Tech Firms Should Worry About Beijing's New Anti-Terror Law

← Back to Stories (view on slashdot.org)

CFR China Expert: US Tech Firms Should Worry About Beijing's New Anti-Terror Law

Posted by samzenpus on Tuesday December 29, 2015 @11:00AM from the read-between-the-lines dept.

blottsie writes: In an interview with the Daily Dot on Tuesday, Adam Segal, director of the Council on Foreign Relations' Digital and Cyberspace Policy Program explained what China's new anti-terrorism law contains, what aspects of it remain uncertain, and how China's interest in encrypted technology fits into its longtime strategy of regulating speech within its borders. On the subject of Apple and Chinese relations he says: "We seem to be on a road of eventual confrontation between the Chinese government and Apple. Apple may have to make a decision about what it’s going to do to remain in the China market like lots of other companies. So far, it hasn’t been explicitly laid out that way. The Chinese government hasn’t said, 'We’re not going to allow end-to-end [encryption],' but that clearly seems to be the trend. I’m sure that U.S. tech companies that are providing [end-to-end encryption] are beginning to think that they may be facing a 'high noon at the O.K. Corral' kind of moment."

28 of 50 comments (clear)

Min score:

Reason:

Sort:

You first by Tokolosh · 2015-12-29 11:03 · Score: 4, Interesting

The Chinese will wait until the US, UK and Australia implement this first, then will activate their own rules.

--
Prove anything by multiplying Huge Number times Tiny Number
1. Re:You first by Anonymous Coward · 2015-12-29 11:21 · Score: 1
  
  The Chinese will wait until the US, UK and Australia implement this first, then will activate their own rules.
  Yes, some presidential candidates have said this, but now it is "controversial" because China said it?
  Might actually be fun. "If I'm elected to be your president, I'll follow in the footsteps of China to limit your encryption. Don't ask what you can encrypt for your country but ask what you can send in plain text for country!"
2. Re:You first by Anonymous Coward · 2015-12-29 12:43 · Score: 1
  
  The US already implemented it. It is called CISA. Good luck.
3. Re:You first by davester666 · 2015-12-29 14:36 · Score: 2
  
  All those candidates want the decryption ONLY for the US gov't. It would be morally wrong for these tech companies to give in and do it for any other country.
  
  --
  Sleep your way to a whiter smile...date a dentist!
4. Re:You first by Jane+Q.+Public · 2015-12-29 21:16 · Score: 1
  
  Hrm. It would be morally wrong for these tech companies to give in and do it for any country, including their own.
  Exactly in the same way it was morally wrong for Google to support censorship in China, in order to "do business there".
  
  For me, the day I saw that in the news, as many years ago as it was, was the day I knew "Do No Evil" was a piece of trash slogan they never intended to follow.
  
  That was the day I stopped using any Google "social" services, and started using other search engines again. Even Bing.
5. Re:You first by Jane+Q.+Public · 2016-01-07 17:55 · Score: 1
  
  The general wish of the chinese citizens is that the censored stuff should remain censored.
  And how did they arrive at that "opinion", do you think? It's an opinion that is not shared by any Western nation.
You want to make keys, or handcuffs? by Crypto+Cavedweller · 2015-12-29 11:05 · Score: 2

If you're in I.T. and touch the China market, that's your question. If you make handcuffs, don't expect any business from me.
1. Re:You want to make keys, or handcuffs? by fnj · 2015-12-29 11:46 · Score: 1
  
  I'm sure tech companies are all shaking in their boots at the ones of dollars they will lose from you.
  He isn't the only one, you nameless tool.
2. Re:You want to make keys, or handcuffs? by Anonymous Coward · 2015-12-29 11:59 · Score: 1
  
  Not two Slashtards! That's the apocalypse for any company.
3. Re:You want to make keys, or handcuffs? by Lunix+Nutcase · 2015-12-29 12:22 · Score: 2
  
  Oh no! Don't post such scary things. CEOs of tech companies all over the world are practically peeing themselves with worry!
4. Re:You want to make keys, or handcuffs? by jandersen · 2015-12-29 20:31 · Score: 1
  
  If you make handcuffs, don't expect any business from me.
  Not even the pink ones that go so well with latex clothing?
Let them. by HornWumpus · 2015-12-29 11:17 · Score: 2

Let the Chinese make their people potential victims, they will pay the price, not us.
Of course our own government is trying the same thing. It that case I will simply be ignoring the law if it passes.

--
John McAfee 'It was like that time I hired that Bangkok prostitute; to do my taxes, while I fucked my accountant'
Simple solution by sunderland56 · 2015-12-29 11:33 · Score: 1, Interesting

- create a new encryption algorithm with a government backdoor
- ship it in builds destined for China, and make it the default
- don't ship it anywhere else
- now nobody outside of China is made insecure, *plus* savvy people in China can just disable it
- profit!
1. Re:Simple solution by Anonymous Coward · 2015-12-29 11:44 · Score: 1
  
  Why would they do that when it'd just be cheaper to use the weak one eveywhere?
Apple's implementation makes it difficult.. by Anonymous Coward · 2015-12-29 11:44 · Score: 4, Informative

Apple implementation of iMessage uses public key encryption; The device (iPhone) has a security chip that generates the keys and performs the encryption .... The public key is given out, while the private key is inaccessible to the CPU (even if it's rooted). This makes end-to-end encryption a de-facto part of the iMessage protocol-- but also makes it difficult to install an (undetectable) backdoor.
1. Re:Apple's implementation makes it difficult.. by 93+Escort+Wagon · 2015-12-29 12:46 · Score: 3, Insightful
  
  It seems to me that China doesn't need to confront Apple... or Google for that matter. They control the network. China can just continue to "encourage" their citizens to use state-friendly social media platforms, and continue to make it hard-to-impossible to use non-Chinese alternatives like Twitter, Whatsapp, or iMessage.
  
  --
  #DeleteChrome
2. Re:Apple's implementation makes it difficult.. by Anonymous Coward · 2015-12-29 14:15 · Score: 1
  
  According to one article I read, 85% all iPhone 5s(for example) are assembled in China. Why wouldn't they just "fix them up" themselves.
3. Re:Apple's implementation makes it difficult.. by mab · 2015-12-29 16:49 · Score: 1
  
  So if Apple never has your private key, how do messages arrive at all of your devices in a readable form? How do your private key(s) get from one device to the other?
  
  Simple answer: they don’t. You’ve actually got one set of keys for each device you add to iCloud, and each iMessage is encrypted independently for each device. So if you have two devices — say, an iPad and an iPhone — each message sent to you is actually encrypted (AES-128) and stored on Apple’s servers twice. Once for each device. When you pull down a message, it’s specifically encrypted for the device you’re on.
  
  http://techcrunch.com/2014/02/27/apple-explains-exactly-how-secure-imessage-really-is/
4. Re:Apple's implementation makes it difficult.. by dgatwood · 2015-12-30 03:56 · Score: 1
  
  Which, incidentally, means that it is likely possible for Apple to surreptitiously add a device to your account. So upon subpoena, it seems likely that Apple could grant access to all future messages, just not messages that have already been sent.
  
  --
  Check out my sci-fi/humor trilogy at PatriotsBooks.
The Council on Foreign Relations by hackus · 2015-12-29 11:45 · Score: 1

Gag me

--
Got Geometrodynamics? Awe, too hard to figure out? Too bad.
1. Re:The Council on Foreign Relations by gtall · 2015-12-30 00:39 · Score: 1
  
  A conspiracy theorist's work is never done.
Let 'em have both barrels by fnj · 2015-12-29 11:48 · Score: 1

Everybody flood the whole sewer of China with tools of freedom.
Treaty will have it by DigiShaman · 2015-12-29 11:59 · Score: 3, Informative

http://slashdot.org/comments.p...
Re-posting.

China, India, the EU, America, etc, will come together on a treaty binding agreement by which each nation has access to their own citizens data without compromising the sovereignty and rights of others. Born out of this unholy alliance will be a "Government API" baked into the next iOS, OSX, Android, Windows, and other commercially available OSs**, and possibly at the hardware level too. What this means is that when you activate your new devices, you choose where you live (as you abide by their laws). From there, your encryption will be chosen with the system that the respective nation has access to.
**I begin not to suspect what will happen to open source platforms other than deemed to be illegal (possibly).

--
Life is not for the lazy.
1. Re:Treaty will have it by mujadaddy · 2015-12-29 13:39 · Score: 1
  
  Seems unlikely in practice, until you remember how precisely how stupid & lazy people are, myself first & foremost. That kind of govAPI, though, would hopefully kick more than just me & the Estonians awake.
  
  --
  Populus vult decipi, ergo decipiatur...
  "Force shits upon Reason's back." - Poor Richard's Almanac
2. Re:Treaty will have it by DigiShaman · 2015-12-30 02:14 · Score: 1
  
  Remember the Clipper Chip? Yes, that could be brought back as an international standard of sorts. Imagine all PCs, Servers, Phones and consumer hardware having this per the law. Now, the only way to run an OS is for the kernel to be cryptographically signed. I'm sure there will be exceptions that allow for internal alpha and beta testing inside the buildings at Apple and Microsoft. But once the final release of Windows, OSX, or iOS goes public, the binaries must first be fingerprinted and the kernel signed (blessed) by some international consortium. Otherwise, the hardware wont be able to boot it up. This will be how Open Source OS's will be curtailed. That's not to say RedHat or CentOS won't be available, just be signed by the devil too. Don't play the game, don't boot. That simple.
  Think about it. Politicians LOVE - absolutely go orgasmic cream-in-their-pants bonkers at the idea of picking winners and loser in the market place. It's how they funnel lobbying money into their vile hands! All this will be pushed under the auspices of protecting against malware, protecting the homeland, and tracing hackers and pedophiles. Meanwhile, they will use this backdoor to blackmail political opposition and anyone else that seeks to dethrone or turn off the corrupt spigot of money and "contributions".
  Consider this a prophetic warning!
  
  --
  Life is not for the lazy.
What will this do it open source? by fustakrakich · 2015-12-29 12:05 · Score: 1

And when do we get our damn 3D printers to make our own hardware that can't be controlled by the authorities?

--
“He’s not deformed, he’s just drunk!”
1. Re:What will this do it open source? by Anonymous Coward · 2015-12-29 12:40 · Score: 1
  
  You can use the ones in prison, they are government sanctioned.
morons by Anonymous Coward · 2015-12-29 16:40 · Score: 1

Why an american company does business in a communist dictatorship is mind boggling. They sold their soul to the devil!