Five Eyes Communiqué Heralds Potential Reigniting of Crypto Wars

Some institutions in The Five Eyes countries have always wanted to weaken cryptography, but others have stood as a bulwark against them. As political pressure to undermine encryption grows, will they reignite the Crypto Wars?

The Five Eyes countries (Australia, Canada, New Zealand, the UK and the US) met in Canada in late June to discuss national security issues, particularly related to domestic terrorism. In light of the recent WannaCry ransomware attacks, encryption inevitably came up.

The Ministerial Communiqué contained language that could be troubling, and bears witness to an erosion of previous positions championed by the US Government. Previously, the NSA had affirmed that strong cryptography does more benefit to security than harm. This time, the communiqué noted that “that encryption can severely undermine public safety efforts.” While the commitment by the member states to cooperate with industry to find solutions, rather than driving top down regulations, is laudable, it represents a potentially damaging change.

Some Five Eyes law enforcement and national security organizations have always wanted to read their citizen’s mail, but the NSA has traditionally been a bulwark against this impulse. NSA’s rationale was that strong cryptography protected citizens better than the government can, and that the protections were better than offensive capabilities. Given former FBI Director James Comey’s assertion that 2017 could provide an opening for a renewal of the cryptography debate, this should have privacy aficionados and industry worried.

Academics and industry have consistently asserted that back doors, key escrow, or “golden keys” would erode privacy, reduce security, and hurt the ICT industry for limited gains by law enforcement. Recent leaks of sensitive CIA and NSA cyber tools reduce confidence that governments could be trusted to safeguard these cryptography-breaking tools as well.  Further, if mass market, US-based solutions like iMessage, WhatsApp, or Skype were to give law enforcement access to all data, foreign providers from privacy-friendly jurisdictions or home-brewed systems would fill the needs of criminals and terrorists.

This would have the same effect as taking the locks off normal citizens’ doors, while criminals would fashion their own or acquire them in other markets.

Related Articles

EURACTIV Virtual Conference: Humans and Machines Working Together

EURACTIV Virtual Conference: Humans and Machines Working Together

A period of rapid transformation is dawning, but what legal and ethical questions does this paradigm shift raise? On 25...

1 Mar 2021 Opinion
Access Alert: President Biden Signs Executive Order to Review Global Supply Chains in Key Industries

Access Alert: President Biden Signs Executive Order to Review Global Supply Chains in Key Industries

On 24 February 2021, U.S. President Joe Biden signed an executive order to review the global supply chains used by...

25 Feb 2021 Opinion
The European Commission Launches Process on Dataflows to the United Kingdom

The European Commission Launches Process on Dataflows to the United Kingdom

The European Commission has launched the process towards the adoption of two adequacy decisions for personal data transfers to the...

25 Feb 2021 Opinion
Sustainability Tracker

Sustainability Tracker

Welcome to the fourth issue of Sustainability Tracker – our monthly update on the most important policy developments tackling the...

18 Feb 2021 Opinion