We need to talk about #BillC22- the largest surveillance bill Canada has ever seen.
-
We need to talk about #BillC22- the largest surveillance bill Canada has ever seen.
It would force every messaging app, cloud service, internet provider and more that we use to build government backdoors into their infrastructure. Permanently.
Tell your MP to kill it now
https://www.openmedia.org/StopC22-mast -
We need to talk about #BillC22- the largest surveillance bill Canada has ever seen.
It would force every messaging app, cloud service, internet provider and more that we use to build government backdoors into their infrastructure. Permanently.
Tell your MP to kill it now
https://www.openmedia.org/StopC22-mastThat's not just more
state surveillance.In 2024, Chinese state hackers broke AT&T+Verizon through a similar backdoor. 1 mil+ people's data was compromised.
Coming soon to
through #BillC22.
Salt Typhoon Hack Shows There's No Security Backdoor That's Only For The "Good Guys"
At EFF weโve long noted that you cannot build a backdoor that only lets in good guys and not bad guys. Over the weekend, we saw another example of this.
Electronic Frontier Foundation (www.eff.org)
-
That's not just more
state surveillance.In 2024, Chinese state hackers broke AT&T+Verizon through a similar backdoor. 1 mil+ people's data was compromised.
Coming soon to
through #BillC22.
Salt Typhoon Hack Shows There's No Security Backdoor That's Only For The "Good Guys"
At EFF weโve long noted that you cannot build a backdoor that only lets in good guys and not bad guys. Over the weekend, we saw another example of this.
Electronic Frontier Foundation (www.eff.org)
goes further than US ever did. US law only covers telcos. #BillC22 covers messaging apps, cloud storage, online platforms. It may even cover phone and laptop hardware too.Ottawa Reboots Its Lawful Access Bill: What C-22 Fixes and What It Doesnโt
Some concerns have been addressed, but many remain โ along with some new ones.
(robertdiab.substack.com)
-
goes further than US ever did. US law only covers telcos. #BillC22 covers messaging apps, cloud storage, online platforms. It may even cover phone and laptop hardware too.
Ottawa Reboots Its Lawful Access Bill: What C-22 Fixes and What It Doesnโt
Some concerns have been addressed, but many remain โ along with some new ones.
(robertdiab.substack.com)
And here's the worst part: #BillC22 requires keeping 1 year of your metadata.
Who you called. Where you were. Which protest you attended. A comprehensive record of the life of every Canadian, ready for a warrant request from law enforcement, or a clever hacker.
The Lawful Access Privacy Risks: Unpacking Bill C-22's Expansive Metadata Retention Requirements - Michael Geist
Much of the discussion around the new lawful access bill (Bill C-22) has focused on provisions that improved upon Bill C-2, notably the decision to scrap the warrantless information demand power by requiring judicial oversight for access to subscriber information. Yet despite that improvement, there remain serious privacy concerns with the government's latest iteration of lawful access. Buried in the second half of Bill C-22 is a provision granting the government the power to require โcore providersโ to retain categories of metadata, including transmission data, for up to one year. This is mandatory metadata retention that would require telecom and electronic service providers to store information about the communications of all their users, regardless of whether those users are suspected of anything. It is one of the most privacy invasive tools a government can deploy and the international experience suggests that there are major privacy risks.
Michael Geist (www.michaelgeist.ca)
-
And here's the worst part: #BillC22 requires keeping 1 year of your metadata.
Who you called. Where you were. Which protest you attended. A comprehensive record of the life of every Canadian, ready for a warrant request from law enforcement, or a clever hacker.
The Lawful Access Privacy Risks: Unpacking Bill C-22's Expansive Metadata Retention Requirements - Michael Geist
Much of the discussion around the new lawful access bill (Bill C-22) has focused on provisions that improved upon Bill C-2, notably the decision to scrap the warrantless information demand power by requiring judicial oversight for access to subscriber information. Yet despite that improvement, there remain serious privacy concerns with the government's latest iteration of lawful access. Buried in the second half of Bill C-22 is a provision granting the government the power to require โcore providersโ to retain categories of metadata, including transmission data, for up to one year. This is mandatory metadata retention that would require telecom and electronic service providers to store information about the communications of all their users, regardless of whether those users are suspected of anything. It is one of the most privacy invasive tools a government can deploy and the international experience suggests that there are major privacy risks.
Michael Geist (www.michaelgeist.ca)
#BillC22 in theory does not force "systemic vulnerabilities"; but gov can explicitly reinterpret all terms at will by regulation.
-
#BillC22 in theory does not force "systemic vulnerabilities"; but gov can explicitly reinterpret all terms at will by regulation.
looked at 
's surveillance problems and said: hold our beer. #BillC22 is proposing far greater surveillance, and a permanent treasure of private Canadian data no other democracy demands.
It's wildly dangerous, and we need to shut it down, NOW!
https://www.openmedia.org/StopC22-bsky. -
E em0nm4stodon@infosec.exchange shared this topic
R relay@relay.an.exchange shared this topic
