WhatsApp Will Not Comply With British Regulations

Britain’s proposed Online Safety Bill requires messaging companies to remove end-to-end encryption to scan messages for child sex abuse material and is reaching the final stages of the legislative process. Now, WhatsApp (owned by Meta) says that it would refuse to remove its end-to-end encryption if it’s ordered to comply with the new regulations. 

End-to-end encryption ensures that only the user and the person they are communicating with can read or listen to what is sent, and nobody in between, not even Meta's Facebook, can gain access to this content. However, the government, and some child-protection charities, argue that such encryption hinders efforts to combat the growing problem of online child abuse.

Both WhatsApp and Signal are taking a stand against the British government's attempts to weaken the encryption of services like theirs. It's said that the government's aim is to help weed out child abuse material that is sent via the services, but it would also make them less private for everyone else at the same time. 

The head of WhatsApp at Meta, Will Cathcart, has said the company would prefer leave the UK than to be blocked with the UK Online Safety Bill that would undermine its encrypted-messaging system.

WhatsApp is the most popular messaging platform in the UK, used by more than seven in 10 adults who are online, according to communication regulator, Ofcom. However, the UK government’s Online Safety Bill contains a clause that requires technology companies providing end-to-end encrypted messaging to scan for child sex abuse material, which would require them to use client-side scanning and check the contents of messages before they were encrypted. This would require WhatsApp to remove end-to-end encryption from its product. 

Signal has also  said it could stop providing services in the UK if the bill required it to scan messages and  its President, Meredith Whittaker, said that the company would be pushing back in an attempt to protect its own encryption from governmental meddling. 

If WhatsApp refused to comply, it would either have to pull out of the UK market or have its parent company Meta face fines of up to 4% of its annual turnover.

The National Society for the Prevention of Cruelty to Children (NSPCC) says research shows grooming and child-abuse-image crimes recorded in the UK have significantly increased.  The NSPCC believes that encryption doesn't necessarily mean getting in the way of privacy, however.

The charity's Richard Collard added that "experts have demonstrated that it's possible to tackle child-abuse material and grooming in end-to-end encrypted environments. "The government, for its part, says that its Online Safety Bill "does not represent a ban on end-to-end encryption." Others have argued that the bill could open the door to mass surveillance of UK citizens.

Parliament:     BBC:    Computer World:    WION:   Proactive Investors:    Macruomors:     Pocket-Lint:

You Might Also Read:

European Union Has Rules On Illegal Online Content:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible


 

« Turning The Tables On Tomorrow's Threat Agent 
Britain's New Security Agency To Counter Chinese Hacking  »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

Seagate Technology

Seagate Technology

Seagate data storage systems are purpose-built for enterprise and data centre performance, scalability, reliability and security.

CSIS Security Group

CSIS Security Group

CSIS provide actionable threat intelligence, prevention, incident response and 24/7 managed security services.

Nexus Group

Nexus Group

Nexus Group develops identity solutions for physical and digital access.

Romanian Association for Electronic Industry & Software (ARIES)

Romanian Association for Electronic Industry & Software (ARIES)

ARIES is the Romanian Association for Electronic Industry and Software, the biggest and most influental organization created for the IT&C industry in Romania.

Idaho National Laboratory (INL)

Idaho National Laboratory (INL)

INL is an applied engineering laboratory dedicated to supporting the US Dept of Energy's missions in energy research, nuclear science and national defense including critical infrastructure protection.

XLAB

XLAB

XLAB is an R&D company with a strong research background in the fields of distributed systems, cloud computing, security and dependability of systems.

CERT-PH

CERT-PH

CERT-PH is the National Computer Emergency Response Team and the highest body for cybersecurity related activities in the Philippines.

Expanse

Expanse

Expanse SaaS-delivered products plus service expertise reduce your internet edge risk to prevent breaches and successful attacks.

ioXt Alliance

ioXt Alliance

The ioXt Alliance is a group of manufacturers, industry alliances and government organizations dedicated to harmonizing best security practices in a highly connected world.

Digital Fingerprints

Digital Fingerprints

Digital Fingerprints provides continuous authentication with behavioural biometrics. Protection against account takeover and session takeover. Compliant with GDPR and PSD2.

StrikeReady

StrikeReady

StrikeReady have developed CARA, an advanced technology solution that offers personalized and proactive assessment and remediation of future and current risk in real-time.

CoreStack

CoreStack

CoreStack helps enterprises overcome cloud challenges such as ever growing security risks, stringent regulatory compliance needs and operational complexities.

Slamm Technologies

Slamm Technologies

Slamm Technologies is a trusted IT firm that offers Cyber Security Support, Corporate IT Solutions and Professional IT Training courses with international certification.

Schellman

Schellman

Schellman is a leading provider of attestation and compliance services.

Gogolook

Gogolook

Gogolook is a leading TrustTech company. With "Build for Trust" as its core value, it aims to create an AI- and data-driven global anti-fraud network as well as Risk Management as a Service.

NoviFlow

NoviFlow

NoviFlow is a leading provider of terabit networking software solutions for Communication Service Providers (CSPs).