France, Germany Push For Encryption Backdoors In Apps - InformationWeek
IoT
IoT
Government
Commentary
8/24/2016
01:06 PM
Eric Zeman
Eric Zeman
Commentary
50%
50%

France, Germany Push For Encryption Backdoors In Apps

The controversial proposal would require app developers to provide access to encrypted messages at the request of law enforcement.

Encryption Debate: 8 Things CIOs Should Know
Encryption Debate: 8 Things CIOs Should Know
(Click image for larger view and slideshow.)

France and Germany are seeking to force mobile messaging providers to open up backdoors to encrypted messages. In light of recent terror attacks, the two countries' intelligence services say they believe the entire European Union should enact legislation making backdoors mandatory.

France says its intelligence service has been on high alert since the attacks in Paris in November, but it has been unable to crack messages sent between terrorists. France and Germany officials say they believe terrorists are using messaging apps such as Telegram and WhatsApp, rather than more traditional messaging services, specifically because they like these.

"Security and the fight against terrorism are now the first priority of the European Union," argued Bernard Cazeneuve, France's Minister of the Interior, and his German counterpart, Thomas de Maizière, at a press briefing held Tuesday. "Faced with this threat of terrorism, which remains extremely high following the attacks of Nice and Saint-Etienne-du-Rouvray in France, but also those of Wurzburg and Ansbach in Germany, it is essential to collectively raise the level of security."

Some say they believe the perpetrators of last month's attack in Normandy, which resulted in the death of a priest, was facilitated by the Telegram messaging app.

Cazeneuve and Maizière are asking the European Union to let law enforcement unlock messaging apps. "If such legislation was adopted, this would allow us to impose obligations at the European level on non-cooperative operators," said Cazeneuve.

(Image: nikauforest/iStockphoto)

(Image: nikauforest/iStockphoto)

Specifically, France and Germany want the European Commission to study the possibility of a directive governing the rights and obligations of all companies that provide telecommunications or internet services across the Union. The Union would then task the uncooperative operators to remove illegal content or decrypt messages as part of investigations.

Cazeneuve and his counterpart in Germany believe the law should apply to EU and non-EU companies. That means services such as Apple's iMessage, Google's GChat, Facebook's Messenger, and Microsoft's Skype could be impacted by the legislation.

Apple has already run afoul of law enforcement in the US. Earlier this year the FBI asked Apple to unlock the iPhone owned by the San Bernardino shooter. Apple refused the request, citing importance of protecting privacy. It's unclear what impact such a law in the European Union would have on American companies.

The European Commission is prepared to discuss Cazeneuve and Maizière's proposal at its September 16 meeting.

[See 8 Ways to Secure Data During US-EU Privacy Fight.]

"Security is a national competence, but creating the right framework at EU level will help member states carry out their duty to protect our citizens," said EU spokeswoman Natasha Bertaud to Reuters.

The proposal was quickly bashed by digital-rights groups.

"The proposal to undermine encryption at the EU level is rooted in the false belief that encrypted communications can somehow be made accessible to law enforcement without being made vulnerable to bad actors," said Access Now's Lucie Krahulcova in a statement provided to Politico.

Eric is a freelance writer for InformationWeek specializing in mobile technologies. View Full Bio
We welcome your comments on this topic on our social media channels, or [contact us directly] with questions about the site.
Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Michelle
50%
50%
Michelle,
User Rank: Ninja
8/26/2016 | 1:38:13 PM
Our shared insecurity
These are scary cases. Sums it perfectly "The proposal to undermine encryption at the EU level is rooted in the false belief that encrypted communications can somehow be made accessible to law enforcement without being made vulnerable to bad actors." Without understanding the connection between the two, the EU is pressing to open up everyone's devices to attack. 
jastroff
50%
50%
jastroff,
User Rank: Ninja
8/24/2016 | 3:27:10 PM
Access
Well, this will be an interesting battle - law versus technology capability -- nothing new, always new

>> France and Germany are seeking to force mobile messaging providers to open up backdoors to encrypted messages.
2018 State of the Cloud
2018 State of the Cloud
Cloud adoption is growing, but how are organizations taking advantage of it? Interop ITX and InformationWeek surveyed technology decision-makers to find out, read this report to discover what they had to say!
Register for InformationWeek Newsletters
Video
Current Issue
The Next Generation of IT Support
The workforce is changing as businesses become global and technology erodes geographical and physical barriers.IT organizations are critical to enabling this transition and can utilize next-generation tools and strategies to provide world-class support regardless of location, platform or device
White Papers
Slideshows
Twitter Feed
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.
Flash Poll