Apple, Google, Microsoft, WhatsApp sign open letter condemning GCHQ proposal to listen in on encrypted chats

An international coalition of civic society organizations, security and policy experts and tech companies — including Apple, Google, Microsoft and WhatsApp — has penned a critical slap-down to a surveillance proposal made last year by the UK’s intelligence agency, warning it would undermine trust and security and threaten fundamental rights.

“The GCHQ’s ghost protocol creates serious threats to digital security: if implemented, it will undermine the authentication process that enables users to verify that they are communicating with the right people, introduce potential unintentional vulnerabilities, and increase risks that communications systems could be abused or misused,” they wrire.

“These cybersecurity risks mean that users cannot trust that their communications are secure, as users would no longer be able to trust that they know who is on the other end of their communications, thereby posing threats to fundamental human rights, including privacy and free expression. Further, systems would be subject to new potential vulnerabilities and risks of abuse.”

GCHQ’s idea for a so-called ‘ghost protocol’ would be for state intelligence or law enforcement agencies to be invisibly CC’d by service providers into encrypted communications — on what’s billed as targeted, government authorized basis.

The agency set out the idea in an article published last fall on the Lawfare blog, written by the National Cyber Security Centre’s (NCSC) Ian Levy and GCHQ’s Crispin Robinson (NB: the NCSC is a public facing branch of GCHQ) — which they said was intended to open a discussion about the ‘going dark’ problem which robust encryption poses for security agencies.

The pair argued that such an “exceptional access mechanism” could be baked into encrypted platforms to enable end to end encryption to be bypassed by state agencies would could instruct the platform provider to add them as a silent listener to eavesdrop on a conversation — but without the encryption protocol itself being compromised.

“It’s relatively easy for a service provider to silently add a law enforcement participant to a group chat or call. The service provider usually controls the identity system and so really decides who’s who and which devices are involved — they’re usually involved in introducing the parties to a chat or call,” Levy and Robinson argued. “You end up with everything still being end-to-end encrypted, but there’s an extra ‘end’ on this particular communication. This sort of solution seems to be no more intrusive than the virtual crocodile clips that our democratically elected representatives and judiciary authorise today in traditional voice intercept solutions and certainly doesn’t give any government power they shouldn’t have.”

“We’re not talking about weakening encryption or defeating the end-to-end nature of the service. In a solution like this, we’re normally talking about suppressing a notification on a target’s device, and only on the device of the target and possibly those they communicate with. That’s a very different proposition to discuss and you don’t even have to touch the encryption.”

“[M]ass-scale, commodity, end-to-end encrypted services… today pose one of the toughest challenges for targeted lawful access to data and an apparent dichotomy around security,” they added.

However while encryption might technically remain intact in the scenario they sketch, their argument glosses over both the fact and risks of bypassing encryption via fiddling with authentication systems in order to enable deceptive third party snooping.

As the coalition’s letter points out, doing that would both undermine user trust and inject extra complexity — with the risk of fresh vulnerabilities that could be exploited by hackers.

Compromising authentication would also result in platforms themselves gaining a mechanism that they could use to snoop on users’ comms — thereby circumventing the wider privacy benefits provided by end to end encryption in the first place, perhaps especially when deployed on commercial messaging platforms.

So, in other words, just because what’s being asked for is not literally a backdoor in encryption that doesn’t mean it isn’t similarly risky for security and privacy and just as horrible for user trust and rights.

“Currently the overwhelming majority of users rely on their confidence in reputable providers to perform authentication functions and verify that the participants in a conversation are the people that they think they are, and only those people. The GCHQ’s ghost protocol completely undermines this trust relationship and the authentication process,” the coalition writes, also pointing out that authentication remains an active research area — and that work would likely dry up if the systems in question were suddenly made fundamentally untrustworthy on order of the state.

They further assert there’s no way for the security risk to be targeted to the individuals that state agencies want to specifically snoop on. Ergo, the added security risk is universal.

“The ghost protocol would introduce a security threat to all users of a targeted encrypted messaging application since the proposed changes could not be exposed only to a single target,” they warn. “In order for providers to be able to suppress notifications when a ghost user is added, messaging applications would need to rewrite the software that every user relies on. This means that any mistake made in the development of this new function could create an unintentional vulnerability that affects every single user of that application.”

There are more than 50 signatories to the letter in all, and others civic society and privacy rights groups Human Rights Watch, Reporters Without Borders, Liberty, Privacy International and the EFF, as well as veteran security professionals such as Bruce Schneier, Philip Zimmermann and Jon Callas, and policy experts such as former FTC CTO and Whitehouse security advisor, Ashkan Soltani.

While the letter welcomes other elements of the article penned by Levy and Robinson — which also set out a series of principles for defining a “minimum standard” governments should meet to have their requests accepted by companies in other countries (with the pair writing, for example, that “privacy and security protections are critical to public confidence” and “transparency is essential”) — it ends by urging GCHQ to abandon the ghost protocol idea altogether, and “avoid any alternative approaches that would similarly threaten digital security and human rights”.

Reached for a response to the coalition’s concerns, the NCSC sent us the following statement, attributed to Levy:

We welcome this response to our request for thoughts on exceptional access to data — for example to stop terrorists. The hypothetical proposal was always intended as a starting point for discussion.

It is pleasing to see support for the six principles and we welcome feedback on their practical application. We will continue to engage with interested parties and look forward to having an open discussion to reach the best solutions possible.

Back in 2016 the UK passed updated surveillance legislation that affords state agencies expansive powers to snoop on and hack into digital comms. And with such an intrusive regime in place it may seem odd that GCHQ is pushing for even greater powers to snoop on people’s digital chatter.

Even robust end-to-end encryption can include exploitable vulnerabilities. One bug was disclosed affecting WhatsApp just a couple of weeks ago, for example (since fixed via an update).

However in the Lawfare article the GCHQ staffers argue that “lawful hacking” of target devices is not a panacea to governments’ “lawful access requirements” because it would require governments have vulnerabilities on the shelf to use to hack devices — which “is completely at odds with the demands for governments to disclose all vulnerabilities they find to protect the population”.

“That seems daft,” they conclude.

Yet it also seems daft — and predictably so — to suggest a ‘sidedoor’ in authentication systems as an alternative to a backdoor in encrypted messaging apps.

from Apple – TechCrunch https://tcrn.ch/2Wx9cBd

Science publisher IEEE bans Huawei but says trade rules will have ‘minimal impact’ on members

The IEEE’s ban on Huawei following new trade restrictions in the United States has sent shock waves through the global academic circles. The organization responded saying the impact of the trade policy will have limited effects on its members, but it’s hard at this point to appease those who have long hailed it as an open platform for scientists and professors worldwide to collaborate.

Earlier this week, the New York-headquartered Institute of Electrical and Electronics Engineers blocked Huawei employees from being reviewers or editors for its peer-review process, according to screenshots of an email sent to its editors that first circulated in the Chinese media.

Unbelievable, IEEE is forced to ban Huawei employees from peer-reviewing papers or handling papers as editors. pic.twitter.com/pkvQeOUI07

— Junhui Qian (@qian_junhui) May 29, 2019

The IEEE later confirmed the ban in a statement issued on Wednesday, saying it “complies with U.S. government regulations which restrict the ability of the listed Huawei companies and their employees to participate in certain activities that are not generally open to the public. This includes certain aspects of the publication peer review and editorial process.”

In mid-May, the U.S. Department of Commerce’s Bureau of Industry and Security added Huawei and its affiliates to its “Entity List,” effectively barring U.S. firms from selling technology to Huawei without government approval.

It’s unclear what makes peer review at the IEEE a technology export, but the science association wrote in its email to editors that violation “may have severe legal implications.”

Whilst being physically based in the U.S., the IEEE bills itself as a “non-political” and “global” community aiming to “foster technological innovation and excellence for the benefit of humanity.”

Despite its removal of Huawei scientists from paper vetting, the IEEE assured that its compliance with U.S. trade restrictions should have “minimal impact” on its members around the world. It further added that Huawei and its employees can continue to participate in other activities as a member, including accessing the IEEE digital library; submitting technical papers for publication; presenting at IEEE-sponsored conferences; and accepting IEEE awards.

As members of its standard-setting body, Huawei employees can also continue to exercise their voting rights, attend standards development meetings, submit proposals and comment in public discussions on new standards.

A number of Chinese professors have reprimanded the IEEE’s decision, flagging the danger of letting politics meddle with academic collaboration. Zhang Haixia, a professor at the School of Electronic and Computer Engineering of China’s prestigious Peking University, said in a statement that she’s quitting the IEEE boards in protest.

This is Haixia Zhang from Peking University, as an old friend and senior IEEE member, I am really shocked to hear that IEEE is involved in “US-Huawei Ban” for replacing all reviewers from Huawei, which is far beyond the basic line of Science and Technology which I was trainedand am following in my professional career till now.

…today, this message from IEEE for “replacing all reviewers from Huawei in IEEE journals” is challenging my professional integrity. I have to say that, As a professor, I AM NOT accept this. Therefore, I decided to quit from IEEE NANO and IEEE JMEMS editorial board untill one day it come back to our common professional integrity.

The IEEE freeze on Huawei adds to a growing list of international companies and organizations that are severing ties or clashing with the Chinese smartphone and telecom giant in response to the trade blacklist. That includes Google, which has blocked select Android services from Huawei; FedEx, which allegedly “diverted” a number of Huawei packages; ARM, which reportedly told employees to suspend business with Huawei; as well as Intel and Qualcomm, which also reportedly cut ties with Huawei. 

from Android – TechCrunch https://tcrn.ch/2HJyuUq
via IFTTT

Apple’s new App Store website takes aim at antitrust, anti-competitive claims

Just ahead of WWDC, Apple has launched a new App Store website in the hopes of better defending itself against recent antitrust and anti-competitive accusations. The website details how Apple runs its App Store, including how apps are curated and reviewed, and what business models are available to developers. It also features a section entitled “A Store that welcomes competition” where Apple makes the case for a marketplace where its own apps live alongside those from third-party developers.

For example, it showcases how Apple’s own Messages app competes with Messenger, Slack, Snapchat, and Viber; Apple’s Mail competes with Gmail, Outlook, Spark and Yahoo Mail. Maps competes with Google Maps, Citymapper, MAPS.ME and Waze; and so on.

Spotify, naturally, is listed among the competitors for both Apple’s Music and Podcasts apps.

That’s not a surprise, given that Spotify has recently been making the case that Apple operates an anti-competitive environment. In a complaint filed with the EU in March, which is now reportedly under investigation, it claimed Apple tilted the playing field in its favor by operating iOS, the App Store, and its own rival applications. Anyone else wishing to distribute an app that competes with Apple’s version, then has to share a 30 percent cut of their app’s revenue with Apple.

Because of this so-called “Apple tax,” some developers chose to mark up the cost of their app or subscription for iOS users. For example, Spotify made its music app $9.99 per month if you subscribed via the web, but charged $12.99 per month if you subscribed via an iOS device — essentially passing along the “Apple tax” to consumers.

This is the basis for a new antitrust lawsuit that the U.S. Supreme Court just this month ruled could proceed to the courts.

At the time of the ruling, Apple commented that “developers set the price they want to charge for their app and Apple has no role in that,” as a way to distance itself from the developers’ decision to set prices for iOS users higher.

“The only instance where Apple shares in revenue is if the developer chooses to sell digital services through the App Store,” it also said — a reminder that developers don’t have to support payments and subscriptions through Apple’s platform.

Several major tech companies already avoid doing just that.

Amazon, for a long time, has only allowed users of its iOS shopping app to buy things like books, music, movies and TV shows via the web browser. Meanwhile, Netflix more recently dropped in-app subscriptions on both Google Play and the App Store.

Unfortunately, developers on iOS are limited in terms of informing their users how to make purchases outside the App Store, and are forbidden from offering a link to their website where consumers could proceed with the non-App Store purchase. But that would be a fairer system, as the “Apple tax” would instead be seen as a convenience fee for the ease of making an Apple Pay transaction on the consumer side, and Apple’s help with payment processing on the developer side.

Apple’s overall position on this matter is reiterated on the new App Store website, where it argues the value of its curated platform and its ability to reach 1 billion customers worldwide. It notes how it continues to invest in developer tools that aid in their financial successes. It references the job creation aspects of the App store — including 1.5 million U.S. jobs and over 1,57 million jobs across Europe.

Apple also reminds us that it has distributed over $120 billion to developers to date — oh, and how iOS customers spend more money than those who use other app stores. (So good luck out there, developers!)

But this may not be the best thing for the company to highlight, as it positions Apple’s App Store as the massive, unavoidable juggernaut it is in the industry. And it paints a picture where it’s easy to imagine how difficult it would be on developers who choose to go elsewhere.

 

from Apple – TechCrunch https://tcrn.ch/2Wf5Ao7

Following FTC complaint, Google rolls out new policies around kids’ apps on Google Play

Google announced this morning a new set of developer policies aimed at providing additional protections for children and families seeking out kid-friendly apps on Google Play. The new policies require that developers ensure their apps are meeting all the necessary policy and regulatory requirements for apps that target children in terms of their content, ads, and how they handle personally identifiable information.

For starters, developers are being asked to consider whether children are a part of their target audience — and, if they’re not, developers must ensure their app doesn’t unintentionally appeal to them. Google says it will now also double-check an app’s marketing to confirm this is the case and ask for changes, as needed.

Apps that do target children have to meet the policy requirements concerning content and handling of personally identifiable information. This shouldn’t be new to developers playing by the rules, as Google has had policies around “kid-safe” apps for years as part of its “Designed for Families” program, and countries have their own regulations to follow when it comes to collecting children’s data.

In addition, developers whose apps are targeting children must only serve ads from an ads network that has certified compliance with Google’s families policies.

 

To enforce these policies at scale, Google is now requiring all developers to complete the new target audience and content section of the Google Play Console. Here, they will have to specify more details about their app. If they say that children are targeted, they’ll be directed to the appropriate policies.

Google will use this information, alongside its review of the app’s marketing materials, in order to categorize apps and apply policies across three target groups: children, children and older users, and older users. (And because the definition of “children” may vary by country, developers will need to determine what age-based restrictions apply in the countries where their app is listed.)

Developers have to comply with the process of filling out the information on Google Play and come into compliance with the updated policies by September 1, 2019.

The company says it’s committed to providing “a safe, positive environment” for kids and families, which is why it’s announcing these changes.

However, the changes are more likely inspired by an FTC complaint filed in December, in which a coalition of 22 consumer and public health advocacy groups, led by Campaign for a Commercial-Free Childhood (CCFC) and Center for Digital Democracy (CDD), asked for an investigation of kids’ apps on Google Play.

The organizations claimed that Google was not verifying apps and games featured in the Family section of Google Play for compliance with U.S. children’s privacy law COPPA.

They also said many so-called “kids” apps exhibited bad behaviors — like showing ads that are difficult to exit or showing those that require viewing in order to continue the current game. Some apps pressured kids into making in-app purchases, and others were found serving ads for alcohol and gambling. And others, still, were found to model harmful behavior or contain graphic, sexualized images, the groups warned regulators.

The time when violations like these can slip through the cracks is long past, thanks to increased regulatory oversight across the online industry by way of laws like the EU’s GDPR, which focuses on data protection and privacy. The FTC is also more keen to act, as needed — it even recently doled out a record fine for TikTok for violating COPPA. 

The target audience and content section are live today in the Google Play Console, along with documentation on the new policies, a developer guide, and online training. In addition, Google says it has also increased its staffing and improved its communications for the Google Play app review and appeals processes in order to help developers get timely decisions and understand any changes they’re directed to make.

 

from Android – TechCrunch https://tcrn.ch/2ERZWhh
via IFTTT

NYC subway riders will be able to swipe in with Apple Pay starting Friday

If you frequent the New York City subway’s 4, 5, 6 line, you’ve probably seen the new terminals at a variety of stations like Union Square and Grand Central. Located between turnstiles, they’ve all been sporting a curious “Test Phase/Coming Soon” screen. That finally changes this week.

Google already announced its mobile pay solution would be arriving this week, and now its chief competitor is getting in on the action. Apple Pay is hitting select stations this Friday, May 31. When that kicks in, riders will be able to swipe their iPhone or Apple Watch to catch a ride.

The kiosks are actually active, at present, but using them requires a software update — iOS 12.3 and watchOS 5.2.1, respectively. Then a debit or credit card needs to be associated with Express Transit in Apple Wallet, using Face or Touch ID. Once installed, it should work on the iPhone 6s and SE or later, along with the Apple Watch Series 1, 2 and 3, using NFC to get you in.

The system works as you’d expect. Hold the phone or watch up to the display and it beeps you in with a big “Go” on the screen, and a “Done” registering on the device. As long as your credit card is up to date, you should be good to go. How quickly this all works when thousands of New Yorkers are all using the system is another question entirely, of course — there tends to be a kind of learning curve with these sorts of things. And no doubt there will be a bit of a logjam at the turnstiles before the novelty of the system wears off.

Of course, that’s why this is still a kind of test period. At present, the system will be limited to the 4, 5, 6 line between Grand Central-42 Street in Manhattan and Atlantic Ave-Barclays Center in Brooklyn (16 stations in all), along with Staten Island buses. In the case of the 4, 5, 6, that’s almost certainly the most heavily trafficked stations on the most heavily trafficked subway line, so this will be an interesting sort of trial by fire.

It’s also worth noting that the system is currently limited to single-ride passes. That means those who buy daily, weekly or monthly passes (which applies to many New Yorkers, myself included) won’t be able to use the system in that capacity. More fare options are coming by late 2020, by which time the MTA expects to have rolled out Apple on all subway lines and buses, so riders will never have to worry about losing that Metro Card again.

from Apple – TechCrunch https://tcrn.ch/2IihuEb

Leaked screenshots confirm dark mode is coming to iOS 13

9to5mac’s Guilherme Rambo managed to obtain screenshots of iOS 13. While it still looks like iOS, there’s a twist — there will be a system-wide dark mode to make your apps look better at night. Apple is expected to announce the new version of iOS at its WWDC keynote on Monday.

With iOS 13, users can enable dark mode in the Settings app or with a toggle in Control Center — you may have to add the Control Center button in the Settings app first.

And here’s what it’ll look like according to 9to5mac’s screenshots:

As you can see, the home screen doesn’t change much except the dock at the bottom. But the Music app looks completely different with white text on top of a black background. The tab bar at the bottom also switches from transparent white to transparent black. Apple still uses red for buttons and links, which makes the app slightly less readable.

Enabling dark mode also affects user interface elements at the operating system level. When you take a screenshot and tap on the screenshot thumbnail, top and bottom menus are dark for instance. Developers should be able to support dark mode in third-party apps as well.

In other news, Rambo also shares a screenshot of the new version of the Reminders app. It now features four different menus — today, scheduled, all and flagged. The user interface has been refreshed as well.

Finally, 9to5mac also confirms a previous scoop with the icon of a new app called “Find My”. Apple plans to merge Find My Friends and Find My iPhone into a single app on both the iPhone and iPad.

Rumor has it that there will be more fundamental changes with iOS 13. Apple plans to let you open multiple windows of the same app. This way, users will be able to work on multiple documents or see multiple conversations at the same time. This will be a key new feature for iPad users in particular.

You can also expect smaller updates to Safari, Mail, font management, the volume indicator, the keyboard, etc.

from Apple – TechCrunch https://tcrn.ch/2JJvaed

Apple announces a new… iPod touch

Apple is updating the iPod touch with an A10 Fusion system-on-a-chip. Other than that, it looks pretty much like the old iPod touch with a 4-inch display, a classic home button and many different color options.

The A10 Fusion chip was first introduced with the iPhone 7. In other words, the new iPod touch performs more or less just like an iPhone 7. Just like the previous version of the iPod touch, it supports iOS 12. But you can now launch ARKit apps and start group FaceTime conversations — the A8 wasn’t powerful enough for those features.

This is a surprising move as the iPod touch hasn’t been updated since 2015. Many people believed that Apple would focus on the iPhone as there’s less demand for a smartphone without cellular capabilities. The device doesn’t support Touch ID or Face ID, so you’ll have to use a good old passcode. But it’s worth noting that there’s a headphone jack at the bottom of the device.

And yet, the iPod touch is cheap when you compare it to an iPhone. Apple is releasing three different models. For $199, you get 32GB of storage, for $299, you get 128GB of storage, and for $399, you get 256GB of storage — a 32GB iPhone 7 currently costs $449. It is available in six different colors and should be available today on Apple’s website and later this week in retail stores.

There are many potential use cases for such a device. It can be a great standalone music and video player for kids or people who don’t want to get a smartphone. You can also use it as a remote to control music on your Sonos speakers and other connected speakers.

from Apple – TechCrunch https://tcrn.ch/2JFAWxL