Australian Encryption Bill Promises No Backdoors, but Still Full of Loopholes
It was recently reported that Australia’s Telecommunications and Other Legislation Amendment (Assistance and Access) Bill 2018, which was released on Tuesday, promises not to weaken encryption and will not compel providers to implement vulnerabilities into forms of electronic protections.
However, it was pointed out that the Bill creates a framework for providing access to endpoint devices which means that messages can be intercepted before they are encrypted. It will also require providers to use software given by the government, which could include spyware.
It was also pointed out that there was a possibility that providers may substitute a service they provide which could redirect devices to update from a different server that may host a malware instead of a legitimate vendor update.