• Sylocule@lemmy.one
      link
      fedilink
      English
      arrow-up
      7
      arrow-down
      2
      ·
      10 months ago

      But it’s not spyware. The eIDAS law proposes that governments can insert certificates that spoof the originator. A subtle difference.

      I really hope Mozilla don’t comply

      • NocturnalEngineer@lemmy.world
        link
        fedilink
        English
        arrow-up
        9
        ·
        10 months ago

        Still weakening encryption standards.

        It would force the inclusion of a “trusted root” into browsers & OSs with the purpose of allowing government entities to spoof certificates. As certificate pinning is becoming mainstream, I would assume it’ll require browser & app vendors to weaken those controls too.

        You’d hope ECHR’s prior ruling would block this too. For the exact same rationale.

        • aelwero@lemmy.world
          link
          fedilink
          English
          arrow-up
          6
          ·
          10 months ago

          No… That’s spyware with less steps… Theres no cracking, hacking, Trojans etc. involved at all, it’s a direct and straightforward addition of the spyware under color of the states authority.