The UK has announced plans to fast-track legislation requiring “age verification for VPN use”.
-
@mullvadnet "A law like this would require everyone to identify themselves in order to use a VPN" yeah… but no.
Please kindly stop spreading FUD. There are ways (ZKP) to do that...
@wojtek but literally nobody is going down that route? They're all paying KYC companies to harvest data. Hardly FUD is it?
-
This is exactly my point as well. The EU has done some great things in digital privacy laws and yet they still want to do dumb shit. I am appaled with the issues with CSAM and I agree something needs to be done. I also agree with the deplorable ways in which social media has infected society - howver, the answer is not to destroy privacy.
@greatlaketrout @nemo @mullvadnet I think a big issue here is, that politics are focusing far more on the M than on the CSA. However, the CSA does most of the harm, the M then adds insult to injury.
Problem is, actually fighting CSA takes time, requires a lot of effort, costs a lot of money and feels uncomfortable sometimes, as you sometimes need to intervene in family affairs.
-
I have already setup a Wireguard VPN on one over my VPS, no questions asked
@ggrey @mullvadnet And your ISP's DNS, Sir? I hope you have that covered. -
@ggrey @mullvadnet And your ISP's DNS, Sir? I hope you have that covered.
Indeed
-
@wojtek but literally nobody is going down that route? They're all paying KYC companies to harvest data. Hardly FUD is it?
@ret just because UK and usania is going that road doesn't mean "nobody"?
The EU first want to make correct technical spec and then later on implement that (https://ageverification.dev/Technical%20Specification/architecture-and-technical-specifications/)
Mullvad trew a blanket statement implaying that any age-verification is an assult on privacy, which is false.
-
@mullvadnet devil very much in the detail! Is ssh a VPN?
And https for that matter
-
And https for that matter
@Pionir @mullvadnet HTTPS doesn't have a built in way to hide your traffic origin, unlike SSH and its SOCKS support
-
@fluffykittycat @dotfox @mullvadnet do you even grasp what "Nazi" is and what it entails?
@wojtek yes, they've taken over my country and are censoring the internet
-
@mullvadnet curious timing. just about an hour ago I forged and verified my first zero knowledge proof that can tell the verifier that proof holder was born before a certain timestamp (aka. older than N years) at the same time reveling absolutely (!) nothing about proof holders, not even those who authorize it.
@dotfox @mullvadnet How would this even work? Never mind not revealing anything about the holder, how do you prove an arbitrary person's birthdate?
-
@mullvadnet "A law like this would require everyone to identify themselves in order to use a VPN" yeah… but no.
Please kindly stop spreading FUD. There are ways (ZKP) to do that...
@wojtek @mullvadnet No there are not. This is a common lie. ZPK's make it possible for the service provider not to know your identity. They do not make it possible for the identity verifier not to know your identity or not to be able to collude with the service provider to unmask you.
-
@wojtek @mullvadnet No there are not. This is a common lie. ZPK's make it possible for the service provider not to know your identity. They do not make it possible for the identity verifier not to know your identity or not to be able to collude with the service provider to unmask you.
-
-
The UK has announced plans to fast-track legislation requiring “age verification for VPN use”. The correct term, however, is not age verification but identity verification.
A law like this would require everyone to identify themselves in order to use a VPN. This would pose a risk to whistleblowers, violate human rights, and represent yet another step toward an authoritarian society.
@mullvadnet It's not like their key-disclosure laws don't already permit them to jail & prosecute literally anyone using it if they feel like it, since the law doesn't account for ephemeral keys or keys the user cannot provide. -
@wojtek @mullvadnet No there are not. This is a common lie. ZPK's make it possible for the service provider not to know your identity. They do not make it possible for the identity verifier not to know your identity or not to be able to collude with the service provider to unmask you.
@dalias@hachyderm.io @wojtek@social.vivaldi.net @mullvadnet@mastodon.online Collusion is the immediate dealbreaker. There is no technical way of preventing it with relation to information that cannot be created ex nihilo ad nauseam.
Or in other words, you cannot secure legal identities with ZKP.
You can secure (to some extent) arbitrary cryptographic identities that are not linked to legal identities.
-
@mullvadnet It's not like their key-disclosure laws don't already permit them to jail & prosecute literally anyone using it if they feel like it, since the law doesn't account for ephemeral keys or keys the user cannot provide.@lispi314 @mullvadnet UK security laws are a security issue. ill never forget the letter opener dude who got jail time for the Links sword (from zelda)
-
The UK has announced plans to fast-track legislation requiring “age verification for VPN use”. The correct term, however, is not age verification but identity verification.
A law like this would require everyone to identify themselves in order to use a VPN. This would pose a risk to whistleblowers, violate human rights, and represent yet another step toward an authoritarian society.
@mullvadnet They've lost their god damn minds.
-
@dalias@hachyderm.io @wojtek@social.vivaldi.net @mullvadnet@mastodon.online Collusion is the immediate dealbreaker. There is no technical way of preventing it with relation to information that cannot be created ex nihilo ad nauseam.
Or in other words, you cannot secure legal identities with ZKP.
You can secure (to some extent) arbitrary cryptographic identities that are not linked to legal identities.
@lispi314 @mullvadnet @wojtek The infuriating part is that *no one* without an extreme level of expertise in mathematical logic understands this, so the peddlers of ZKPs can just wave it around like magic fairy dust and bamboozle policy makers and privacy activists alike.
-
@alexanderdyas @djstreethawk @hypolite @mullvadnet
"... a non-partisan, expert organisation ...."
you mean... exactly what the civil service is supposed to be?I've seen some other problematic law recently, and it got me to wondering if the problem might be that the civil service has been hollowed out through years of excessive cuts, and has simply lost the people with experience and expertise to properly advise governments.
There may also be an issue of governments bringing their own people in, either because they don't trust the civil service, or more concerningly, because of outside influence.
I fear it may be a combination of all the above.
-
I have already setup a Wireguard VPN on one over my VPS, no questions asked
@ggrey As a Russian I should warn you that Wireguard wasn't designed to evade censorship — it could be easily detected and blocked by DPI as a whole protocol
@mullvadnet -
@mullvadnet Wait a sec, don’t online banks all use VPN’s? And most work from home setups?
@missnfranchised No problem, special whitelist for banks and organizations will solve this "problem". If some organization not in the whitelist — it is their problem, not the government one.
We, in Russia, already have this system and it works
️
