The Biden administration is preparing to take the unusual step of issuing an order that would prevent US companies and citizens from using software made by a major Russian cybersecurity firm because of national security concerns, five US officials familiar with the matter told CNN.
An “if” that translates to you not actually having this freedom.
I’m not sure what your point is. Someone not having the freedom to associate with me doesn’t limit my freedom of association. Someone else being locked away in jail doesn’t mean I’m in jail just because I can’t freely associate with them.
We should be pushing to remove barriers to association, not responding in kind. And yes, that includes changing our foreign policy.
what do you suggest
As I mentioned, the government should raise awareness around the issues of proprietary software, especially software originating from adversarial countries. Don’t raise FUD, but instead fund research into these software products. Get researchers onto platforms where they can reach a wide audience, like late night talk shows, popular YouTube and similar channels, etc.
For individuals, promote and donate to organizations like Mozilla, the EFF, and Proton that push for open software and privacy. Use those services and recommend them to your friends and family.
If you ban something, you just get the Streisand effect and erode trust. If something is dangerous, the best strategy is to be completely transparent about why and provide information that can be independently verified.
Someone not having the freedom to associate with me doesn’t limit my freedom of association.
US visas & other things make it so that otherwise free people cannot do business in US or even enter the US. This means that, by definition, your state prevents you from associating with them.
the government should raise awareness around the issues of proprietary software
But this doesn’t remove the threat at all. Look at tiktok, governments have been raising awareness about it and flagging it as a national security concern and yet the user count is growing.
There are things where raising awareness makes sense, e.g. alcohol consumption, smoking, etc. There are other cases where state intervention is required, e.g. working with asbestos, led, mercury, etc. Software falls in the latter category, because, like I said, it’s not just a matter of personal choice. S
If you ban something, you just get the Streisand effect and erode trust.
I really doubt that banning Karspersky would have the effect of more people using Kaspersky. That’s silly.
I agree, and I’m absolutely in favor of dramatically relaxing our immigration policy. If I could snap my fingers, I’d double immigration quotas and guarantee visa renewal for anyone here legally who has not been convicted of a crime. I work with some wonderful immigrants, and I think we need more.
That said, my freedom of association isn’t being limited with poor immigration policy, I can still collaborate with them online, share software with them, etc. The only limitation is physical proximity. That’s an issue, but I don’t see it as an abridgement of my freedom of association in at all the same way as banning software.
yet the user count is growing
Then the people have spoken. They prefer whatever that app provides over national security.
The government should step up the awareness campaign and find legitimate issues to substantiate the guidance to avoid it.
But I do not consent to the government banning any form of media.
Software falls in the latter category, because, like I said, it’s not just a matter of personal choice
What’s special about software? The defense here is proper security practices at all levels. The main risks are:
botnets - ISPs should shut that down
worms - proper security
identity theft - insurance and criminal prosecution
Honestly, if governments pressured computer vendors to properly sandbox applications, we’d have far fewer problems. That’s where the awareness campaign would do wonders, naming and shaming when vendors cut corners on security.
I really doubt that banning Karspersky would have the effect of more people using Kaspersky.
Maybe not, I don’t think people have a real sense of loyalty to their antivirus.
But I think it could totally be a thing for TikTok.
But think of it this way. The majority is often poorly informed and will likely agree to some group making decisions on their behalf. That group is not necessarily subject to the will of the people and instead operates in its own bureaucracy where “security” is preferred over other priorities the people may have. Look at the TSA, they have been blinded by a pursuit of the appearance of security that they have gone well past the effective controls necessary to provide reasonable security to likely threats (e.g. bullet proof cockpit doors), and have failed to actually prevent things their tools are designed to detect.
The majority want safety, and a government agency wants to maintain relevance. Solving the problem by granting the government more power will devolve into the agency looking for more reasons to stay relevant and keep its funding. There’s plenty of examples of that, so it’s not an unfounded slippery slope argument.
So instead of the majority blindly handing over their responsibilities to a third party, we should instead teach the majority to avoid the worst of it. And then we can use the agencies we already have to gather information about potential threats and shut them down through other means (e.g. instead of banning potentially harmful apps, they could sue the app makers for actual damages).
through other means (e.g. instead of banning potentially harmful apps, they could sue the app makers for actual damages).
but that’s just the point, isn’t it? There are no means of obtaining compensation from an adversarial state or its companies and the damage caused might be irreparable. The discussion is not about countries that US has strong ties with. This is foreign policy. And just like your fundamental US granted rights are not guaranteed outside the US borders, nor should adversaries enjoy the same rights in the US. Since the country in question, Russia, makes no commitment to observing any US laws and since there is no way of coercing it or punishing it when it doesn’t, why should US citizens be exposed to this?
And by the way, I think there’s another piece of info that you’re missing. Software bans are not the same as other bans. Banning Kaspersky, for example, just means that the company cannot officially trade and advertise their products in the US. But there is no way of preventing users from using those products(unfortunately).
There are no means of obtaining compensation from an adversarial state or its companies
If they do business here, they are subject to our laws. TikTok, for example, does have an entity here, so they would be subject to our laws. I don’t know about Kaspersky though.
why should US citizens be exposed to this?
Because they choose to. Restricting that is a restriction on US citizens’ freedom of association.
Banning Kaspersky, for example, just means that the company cannot officially trade and advertise their products in the US
It goes further than that, it also restricts companies like Google and Apple from including them in their app stores. And for something like Apple, that effectively means users cannot install the app on their device because Apple does not allow other app stores.
I may reconsider if there were no practical limits on what users can do with their devices. Any restrictions should purely be on the companies offering the service, and it should never be illegal for me to use a given piece of software, even if it’s on the government’s “do not trade” list or whatever. What I do with that software may be illegal, but merely possessing and using it without violating other laws should never be illegal.
I also don’t think it should be illegal for any app store to distribute and process payment for a given piece of software, though perhaps it could be illegal to promote it. Otherwise, that’s a restriction on the freedom of the app store as well.
That’s a very very big “if” considering US’ foreign policy. An “if” that translates to you not actually having this freedom.
How noble of you, but what do you suggest we do about people who aren’t reached by your words of wisdom?
I’m not sure what your point is. Someone not having the freedom to associate with me doesn’t limit my freedom of association. Someone else being locked away in jail doesn’t mean I’m in jail just because I can’t freely associate with them.
We should be pushing to remove barriers to association, not responding in kind. And yes, that includes changing our foreign policy.
As I mentioned, the government should raise awareness around the issues of proprietary software, especially software originating from adversarial countries. Don’t raise FUD, but instead fund research into these software products. Get researchers onto platforms where they can reach a wide audience, like late night talk shows, popular YouTube and similar channels, etc.
For individuals, promote and donate to organizations like Mozilla, the EFF, and Proton that push for open software and privacy. Use those services and recommend them to your friends and family.
If you ban something, you just get the Streisand effect and erode trust. If something is dangerous, the best strategy is to be completely transparent about why and provide information that can be independently verified.
US visas & other things make it so that otherwise free people cannot do business in US or even enter the US. This means that, by definition, your state prevents you from associating with them.
But this doesn’t remove the threat at all. Look at tiktok, governments have been raising awareness about it and flagging it as a national security concern and yet the user count is growing.
There are things where raising awareness makes sense, e.g. alcohol consumption, smoking, etc. There are other cases where state intervention is required, e.g. working with asbestos, led, mercury, etc. Software falls in the latter category, because, like I said, it’s not just a matter of personal choice. S
I really doubt that banning Karspersky would have the effect of more people using Kaspersky. That’s silly.
I agree, and I’m absolutely in favor of dramatically relaxing our immigration policy. If I could snap my fingers, I’d double immigration quotas and guarantee visa renewal for anyone here legally who has not been convicted of a crime. I work with some wonderful immigrants, and I think we need more.
That said, my freedom of association isn’t being limited with poor immigration policy, I can still collaborate with them online, share software with them, etc. The only limitation is physical proximity. That’s an issue, but I don’t see it as an abridgement of my freedom of association in at all the same way as banning software.
Then the people have spoken. They prefer whatever that app provides over national security.
The government should step up the awareness campaign and find legitimate issues to substantiate the guidance to avoid it.
But I do not consent to the government banning any form of media.
What’s special about software? The defense here is proper security practices at all levels. The main risks are:
Honestly, if governments pressured computer vendors to properly sandbox applications, we’d have far fewer problems. That’s where the awareness campaign would do wonders, naming and shaming when vendors cut corners on security.
Maybe not, I don’t think people have a real sense of loyalty to their antivirus.
But I think it could totally be a thing for TikTok.
You should read about the tyranny of majority.
I’m quite familiar with it.
But think of it this way. The majority is often poorly informed and will likely agree to some group making decisions on their behalf. That group is not necessarily subject to the will of the people and instead operates in its own bureaucracy where “security” is preferred over other priorities the people may have. Look at the TSA, they have been blinded by a pursuit of the appearance of security that they have gone well past the effective controls necessary to provide reasonable security to likely threats (e.g. bullet proof cockpit doors), and have failed to actually prevent things their tools are designed to detect.
The majority want safety, and a government agency wants to maintain relevance. Solving the problem by granting the government more power will devolve into the agency looking for more reasons to stay relevant and keep its funding. There’s plenty of examples of that, so it’s not an unfounded slippery slope argument.
So instead of the majority blindly handing over their responsibilities to a third party, we should instead teach the majority to avoid the worst of it. And then we can use the agencies we already have to gather information about potential threats and shut them down through other means (e.g. instead of banning potentially harmful apps, they could sue the app makers for actual damages).
but that’s just the point, isn’t it? There are no means of obtaining compensation from an adversarial state or its companies and the damage caused might be irreparable. The discussion is not about countries that US has strong ties with. This is foreign policy. And just like your fundamental US granted rights are not guaranteed outside the US borders, nor should adversaries enjoy the same rights in the US. Since the country in question, Russia, makes no commitment to observing any US laws and since there is no way of coercing it or punishing it when it doesn’t, why should US citizens be exposed to this?
And by the way, I think there’s another piece of info that you’re missing. Software bans are not the same as other bans. Banning Kaspersky, for example, just means that the company cannot officially trade and advertise their products in the US. But there is no way of preventing users from using those products(unfortunately).
If they do business here, they are subject to our laws. TikTok, for example, does have an entity here, so they would be subject to our laws. I don’t know about Kaspersky though.
Because they choose to. Restricting that is a restriction on US citizens’ freedom of association.
It goes further than that, it also restricts companies like Google and Apple from including them in their app stores. And for something like Apple, that effectively means users cannot install the app on their device because Apple does not allow other app stores.
I may reconsider if there were no practical limits on what users can do with their devices. Any restrictions should purely be on the companies offering the service, and it should never be illegal for me to use a given piece of software, even if it’s on the government’s “do not trade” list or whatever. What I do with that software may be illegal, but merely possessing and using it without violating other laws should never be illegal.
I also don’t think it should be illegal for any app store to distribute and process payment for a given piece of software, though perhaps it could be illegal to promote it. Otherwise, that’s a restriction on the freedom of the app store as well.