EU Council approves Chat Control mandate for negotiation with Parliament

I assume this is a delay to get a foot in the door. After some time, the scanning will be made no longer voluntary.

One has to take rights away slowly, otherwise the frog jumps before you can boil it.

They have removed the backdoor paragraph, and inserted a new one that states that scanning is entirely voluntary and best effort, and also state that the EU cannot force them to scan.

As far as the mass surveillance scanning goes, it has completely been removed, and what remains is still the mandatory age checks, which might be problematic.

From reading the specification, it appears to be reasonably well designed, where identification is handled by authorities, and the requesting party cannot get your identification details, only send an "is the user of this session older than 18". The verifier cannot see which site the request comes from, and you identify yourself in the session, and a reply goes back to the requester with a "yes/no" answer.

So, it at least appears to be simply an age check, and not some sort of surveillance program to stalk your online browsing habits.

I feel like this will just incentivise the creation of privately run federated messaging systems. Powerful people will always be protected, any smart people will run fed messengers for their private stuff and normie tech for normie comms. This power will just turn into another form of control. As always, the only losers will be the average citizens.

you people need to disabuse yourselves of the idea that only a Trumpian type regime could possibly have any interest in finding and incapacitating “enemies of the state”.

Terrorists are winning. If husband wanted to control wife's phone, read all messages, that is jail time in many countries. But if bureaucrats in nice suits want to abuse Europeans all at once, then it is fine.

Germany get you s*t together and issue arrest warrants for this lot. They seem to be breaking German laws.

I think it's just the trialogue left, so still some distance but comfortably past halfway to becoming valid law.

There's been so much drama over the years about this proposal from the commission I doubt von der Leyen will want to fight to get the scanning back in.

Ok, we've put that in the title above. Thanks!

Democracy worked well here. The executive wanted more power (once again), the parliament refused, twice, despite _a lot_ of lobbying and pressure from the executive branch. Good job to the tech industry for counterlobbying (i'm not saying that often i swear), good job us for mobilizing, and also la quadrature and other NGO privacy watchdog for mobilization that allowed the EU parliement to resist somewhat, and forced a compromise that will any overreach tentative in the hand of judges.

What europe needs to be careful of is that the EUCJ keep its power. I _know_ people on both side of the political spectrum dislike judges (because they defend the status quo for the left, and the rule of law for the right) but multiple time this past 3 years i've seen mediatic assaults on EUCJ and ECHR that expend their political power again and again and again. We have to keep executive power from limiting judiciary power. Already executive branches are powering through legislative in a lot of country (France, UK, US, and EU which isn't a country but have similar institution), we absolutely have to keep the third branch as a check against government overreach.

Democracy is actually at work here: it's restraining somewhat the reptile-brained politicians behind chat control.

What about going out in front of your city hall with a poster saying no-chat-control?

You risk nothing, do you?

> - Making design choices such as ensuring that E2EE is opt-in by default, rather than opt-out would require people to choose E2EE should they wish to use it, therefore allowing certain detection technologies to work for communication between users that have not opted in to E2EE

So you make it so that when the user starts the application you ask them "Your current configuration allows government, and probably some hackers as well, to see your messages. Do you want to enable encryption? Your government's suggestion is that you should say 'No' here. That's also what the foreign intelligence agencies suggest" "Yes, enable encryption" "No". That's clearly opt-in, you even provide the government's recommendation. And of course you then ask that whenever they open the application if they selected "No", we have learned that it's completely fine to keep asking same question from the user.

Oh, and make sure that the other party is clearly aware that the other side has not enabled encryption.

You can read the proposal and found out, if you're interested.

> In the light of the more limited risk of their use for the purpose of child sexual abuse and the need to preserve confidential information, including classified information, information covered by professional secrecy and trade secrets, electronic communications services that are not publicly available, such as those used for national security purposes, should be excluded from the scope of this Regulation. Accordingly, this Regulation should not apply to interpersonal communications services that are not available to the general public and the use of which is instead restricted to persons involved in the activities of a particular company, organisation, body or authority.

Elected officials of if I recall correctly. Not just people belonging to a political party.

The answer is pretty simple. This decision isn't "the EU".

The European Commission has fewer employees than the Luxembourg government (and keep in mind, they're "running" a continent).

This decision was the Council, i.e. simply the national member governments. Don't let anyone blame "the EU" for this, the national governments are the ones that proposed this, pushed it through EU institutions, and might now try to override the EU parliament about it. Just because national (elected) governments are pushing it through EU institutions doesn't mean you should blame "the EU". It wasn't the "Eurocrats".

EU (and preceding organisations since European Coal and Steel Community) were created so that there will be no war in Europe. How exactly this objective is achieved is of secondary importance. It is economic institution, because someone calculated that this will be best shot, but if (or when) calculation credibly shifts (for example, that it would be better for them to be a religion, a feudal system, or a federation -- whatever), it will morph into something else.

I'd say that it has 100% fulfilled its primary goal that there is no military conflict between major European states for like 80 years and counting, which is longest period ever recorded and a historical anomaly. The means of how it was executed is obviously a matter of debate, mistakes were made etc., but we over here generally make love, not war.

The EU almost certainly has protected privacy for most European nations than it has hurt it.

You simply need to look at the precipitous decline in privacy in the UK after it left the EU to see some of the most stark examples of this.

You speak as if the EU is somehow divorced from the national governments, and is imposing its will to the helpless states that compose it.

The commissioners that propose laws are appointed by each national government. The national governments of each member state is all in on this.

NATO is not a political institution. It is a defense treaty (this one completely outside the realm of democracy).

ever closer union in the Treaty of Rome

the entire point is to build a country called Europe

and the EU is built on the "Monnet method", where it slowly ratchets forward taking more power from national parliaments and giving it to the EU council/commission

(with a useless parliament there to make it appear democratic)

the UK leaving is the only example of the ratchet being reversed

> The EU was created as an economic and trade institution. How has it morphed into a wierd political institution, which NATO was already supposed to be?

That is not the case.

The 1957 Treaty Establishing the European Community contained the objective of “ever closer union” in the following words in the Preamble. In English this is: “Determined to lay the foundations of an ever closer union among the peoples of Europe …..”.

> The root question: how did an organization that ushered in things like the Euro become a body that decides whether Europeans are allowed to have personal privacy?

Sensationalist framing aside, how does any government become a body that decides anything?

> a weird political institution, which NATO was already supposed to be?

NATO is a military alliance, not a government.

>How has it morphed into a wierd political institution

Von der Leyen, an autocratic fascist that is ruining this continent. She failed to push her agenda in Germany so she "failed upwards". Even how she got this position was highly controversial and went against the top candidate principle. The EU commission is exceeding their competencies. The EU is not democratic, there is no parliamentary oversight, the parliament can't even introduce legislative proposals. No one can vote for the EU commission, only the parliament can vote for or against all the proposed candidates (not one by one). Parliament is essentially a rubber stamp for the commission.

I could be jailed for this comment btw.

Legal competence is like a legal person — it's a subset of what we normally associate with the term.

Just read it as ”we have the competence to make decisions with authority on this issue”, though we all wish it always meant ”we have authority to make competent decisions on this issue” xD

Laymen actually do care. But mass media does the sanewashing, and you can’t blame the average Joe of not having a deep understanding of what this entails and that it is not to protect the children.

Governmental interests benefit if we blame ourselves and other citizens for this shit passing. It is clear that modern democracies are people in power (which includes the media) vs the masses.

IIUC no, this is Council position before trilogue.

Because the EU citizens keep voting for those politicians. It’s as simple as that. There are dozens of different parties in each EU country, but people keep voting for parties that push chat control.

The EU parliament and the head of states that comprise the EU council are elected by the EU citizens. Why is there such discordance between the two? Isn’t it mostly the same people from the same parties?

This is completely incorrect, the Parliament, the Council, and the Commission always come up with their own version of a proposed regulation (the Commission because they get to create new proposals, the other two because they have to react to comission proposal). Then all three parties sit down and negotiate a final text that becomes law.

No, you're not wrong. But this framing allows them to paint the parties opposing these measures as being 'pro CP'.

Even the Maastricht Treaty went beyond trade, though that does seem to have been the origin of the EU. https://en.wikipedia.org/wiki/Maastricht_Treaty

Argentinian politicians are definitely worse

Oh but those people would be exempt from scanning anyways.

Thanks for the link. I had missed the other two submissions.

If any admin is around, they should probably be merged. This is the other one: https://news.ycombinator.com/item?id=46055863

And companies considered high-risk will have to "contribute to the development of technologies to mitigate the risks relating to their services." Which sooner or later will involve another attempt at client-side scanning.

“We won’t intrude in your home any more, but you are forbidden to put a lock on your front door.”

"High risk" providers will be obligated to "contribute" technologies "to mitigate." Seems like a doublespeak way of saying enforced decryption or enforced backdoors.