Email or username:

Password:

Forgot your password?
All posts Electronic Frontier Foundation's posts Post Back to profile
Electronic Frontier Foundation

HTTPS encryption for EU residents is at risk, as the soon-to-be-passed Article 45 removes browsers’ control over security for their users.
eff.org/deeplinks/2023/11/arti

7 Nov 2023 at 18:29 | Open on mastodon.social
34 comments
levent sönmez

@eff for other countries, europian people easily told “why don’t you fight with dictatorship?”, now we’ll see them

7 Nov 2023 at 18:42 | Open on mastodon.social
levent sönmez

@eff and let’s see what browsers will do, for similar issue mozilla’s blog against kazakhstan government,

blog.mozilla.org/netpolicy/202

7 Nov 2023 at 18:48 | Open on mastodon.social
kurator88
Thomas Traynor

@eff Is it possible for us to go to settings and distrust certificates? Firefox and Chrome does have the ability for the user to edit.
7 Nov 2023 at 18:49 | Open on social.linux.pizza
James 🌈💜

@thomastraynor @eff
The law will probably mean the browser is required to ignore those settings, for the handful of government certs.

7 Nov 2023 at 22:51 | Open on mastodon.social
Mike Elston

@eff it’s amazing how the EU can get things so right, standardized charging cables, ad tracking prevention.
Then get this so sooo wrong at the same time.

7 Nov 2023 at 18:50 | Open on kzoo.to
SamuelJohnson

@notsle @eff Every democratic legislature and bureaucracy in existence is subjected to the attention of lobbyists and special interests and the EU is no exception. Every bit of draft legislation reflects some of the pressure. The EU isn't infallible and can and does revisit legislation if needed. Anyone would think it was a dictatorship not a voluntary association of democracies from some of the (largely American) pantswetting online.

8 Nov 2023 at 9:34 | Open on mstdn.social
Captain of the SS El Faro

@eff with some luck this will turn into the current copyright law which everyone, especially EU officialdom, is real busy pretending doesn't exist because it'd collapse the internet immediately if applied. Then again, this toot is literally being stored by my nations secret police forever so they can use it against me when they feel like it, real stand up peoples running my nation to the ground. That said, sending an angry letter now to my reps. No doubt to no avail since it doesn't include a bribe. Anybody wanna crowdsource bribes? No? Well then I'm all out of ideas.

@eff with some luck this will turn into the current copyright law which everyone, especially EU officialdom, is real busy pretending doesn't exist because it'd collapse the internet immediately if applied. Then again, this toot is literally being stored by my nations secret police forever so they can use it against me when they feel like it, real stand up peoples running my nation to the ground. That said, sending an angry letter now to my reps. No doubt to no avail since it doesn't include a bribe....

7 Nov 2023 at 19:49 | Open on climatejustice.social
Simon W 🙄 🆙 ⚛️ 🇬🇧 🇺🇸

@eff the EU does some good things but this does not sound like one of them.

I feel like these things always feel even worse to many Americans because we see how awful a government can get while still pretending to be the best in the world. So we fear that such schemes would be embraced by our own surveillance State and abused in ways that would give even Europeans nightmares.

7 Nov 2023 at 19:57 | Open on mastodon.social
pglpm

@eff

One more thing that the #EU #EuropeanUnion does WITHOUT DOING A REFERENDUM among its citizens first - like a true democracy should instead. Shame on you, #europeanparliament. EU in the end is just another masked oligarchy.

7 Nov 2023 at 20:12 | Open on emacs.ch
SamuelJohnson

@pglpm @eff Oh look, a Swiss person hasn't the first clue about EU law. 🙄

The EU has no legal right to convene referendums in member states and in some they are illegal and considered tools of demagogues. But do write to the Commission and fill them in. I'm sure they'll be very interested.

8 Nov 2023 at 9:38 | Open on mstdn.social
pglpm

@samueljohnson @eff EU has no legal right to convene referendums in member states, so I imagine no legal rights to enforce any regulations either? Otherwise we have a contradiction here.

Best to avoid demagogues and not ask about the citizens at all – oligarchies live!

8 Nov 2023 at 14:37 | Open on emacs.ch
SamuelJohnson

@pglpm @eff You think the EU has no legal right to enforce regulations? 🤣

You really have no clue at all.

Go and do some homework for heaven's sake. How is it possible that that EU completely surrounds Switzerland and you know so little?

Didn't you notice what happened when Switzerland voted to end freedom of movement.

Muted for Dunning-Kruger exhibitionism.

8 Nov 2023 at 15:03 | Open on mstdn.social
pglpm

@samueljohnson @eff Do your homework first: I don't live in Switzerland. I'd say don't make hasty assumptions, but obviously you're a know-it-all so that's wasted advice.

8 Nov 2023 at 15:26 | Open on emacs.ch
Jordan Maris 🇪🇺 🇺🇦 #NAFO

@pglpm @eff almost all laws all around the world are passed by elected officials, not by referenda. Concerning article 45, MEPs have been working all day to solve the issue. As soon as I have an update I will share it.

The directly elected European parliament opposes the commission's draft of article 45.

8 Nov 2023 at 10:00 | Open on eupolicy.social
Carsten Schridde :verified:

@eff eIDAS 2.0 is needed for eWallet with eID, will say, the nightmare goes deeper

7 Nov 2023 at 20:24 | Open on norden.social
DELETED

@eff They can't do it. They have no right to.

7 Nov 2023 at 20:48 | Open on infosec.exchange
Nanook
@darkware @eff Nothing short of a WW has stopped Germany from doing what it wanted to in the past.
7 Nov 2023 at 20:50 | Open on friendica.eskimo.com
:mastodon: Ricardo Martín

The worst part of all is that you won't find any serious sources (at least in #Spain) talking about it and addressing the problem.
This self-damaging provincial attitude will cost us dearly.

@eff #eIDAS2 #Europe #Privacy

7 Nov 2023 at 21:05 | Open on mastodon.social
Orca🌻 | 🏴🏳️‍⚧️

@eff@mastodon.social Amazing, they just decided to follow the playbook of CNNIC.

7 Nov 2023 at 21:55 | Open on nya.one
Rob Chapman :ohai: ✍🏼🐧

@eff The EU is really walking a dark dystopian path at the moment

7 Nov 2023 at 22:22 | Open on ohai.social
Travis Newton :node:

@eff I keep asking, but I never get an answer. Why does the EU hate the Internet so much?

7 Nov 2023 at 22:47 | Open on nodespace.social
Nanook
@travis @eff Perhaps because people being able to communicate directly gets rid of the need for a good portion of goberment.
7 Nov 2023 at 22:50 | Open on friendica.eskimo.com
Neil Darlow :gotosocial: :silverblue: :xmpp:

@travis @eff It's their attempt to gain complete control of their member states. Seen also with the desire to remove veto from decision making and the proposed reduction of ambassadors.

8 Nov 2023 at 8:15 | Open on fedi.darlow.co.uk
DELETED

@travis @eff Because it’s the last place people can semi-anonymously take the piss out of their leaders.

9 Nov 2023 at 12:59 | Open on noagendasocial.com
SpaceLifeForm

@eff

It is damage, we will work around it.

7 Nov 2023 at 23:35 | Open on infosec.exchange
Samuel Breu

@eff time to invent a decentralized root CA?

8 Nov 2023 at 0:46 | Open on mastodon.world
clay shentrup 🌐🚲
Kjartan 🇮🇸 🇬🇧 🇭🇷🏴‍☠️

@eff imo security is broken every time the user has no control over which CA is trusted and which isn't. Which sadly is already normal on many systems. What the EU wants to do is horribly bad - but it isn't as much worse as it might sound/already is

8 Nov 2023 at 1:34 | Open on moth.social
Opiniated Charles

@eff @lolopb “you get ZScaler! you get Zscaler! every one gets Zsscaler!”

8 Nov 2023 at 6:26 | Open on mastodon.social
mc.fly

@eff so - how is that supposed to work with open source browsers?

I think that would be really hard to verify and users can easily be non-obedient.

Criminals will just use open source software repositories from outside of the EU.

8 Nov 2023 at 9:43 | Open on milliways.social
Nanook
@mcfly @eff The idea is if they make the keys available to goberment, then goberment can install man-in-the-middle attacks to see whatever they want.
8 Nov 2023 at 9:57 | Open on friendica.eskimo.com
DeFrEnT Christopher Köbel

@daniel_freund Dear Daniel, is there anything the EuroParl can do to stop the Art.45 attack on civil liberties in the #eidas2 regulation? With several far-right/autocrat-leaning countries in the EU, how is this not a huge risk to EU citizens? Are the Greens onto it?

8 Nov 2023 at 11:39 | Open on hessen.social
gvs
The take away is that when this passes, we should distrust all CA's and verify certificates on important servers another way.

BTW, this attack was already used against a Russian xmpp server at Hetzner. The trust model is fundamentally broken
9 Nov 2023 at 13:48 | Open on rebelbase.site
Go Up