Encryption technologies: how to balance between privacy and security

This session will be live streamed via Webex. Please provide your contact information to receive the meeting link before the session.

Background

The wide application of encryption technologies creates immense challenges to law enforcements’ effort to fight crimes and protect national security. Terrorists and criminals are using end-to-end encrypted communication tools to avoid investigations and charges; the inaccessibility of evidence also ties the hands of law enforcement when it comes to taking action against serious crimes.

EncroChat, an encrypted communications system used by criminals to trade drugs and guns, was dismantled this July. The result was over 800 Europe-wide arrests and seizure of more than two tonnes of drugs, several dozen guns and £54m in suspect cash. French and Dutch police were the main force of this successful investigation, while UK’s National Crime Agency (NCA) and Europol, the EU agency for law enforcement cooperation, were also involved. The event inevitably reinforces the idea that the abuse of encryption technologies is one of the primary causes of criminal activities.

Governments want ‘reasonable and flexible’ technical solutions to assist law enforcement in accessing encrypted data timely to protect society from crimes, terror attacks, and other harms. The authorization of accessing data should comply with the principle of necessity and proportionality, and the whole process should be under strict supervision. Human rights advocates believe such ‘special keys’ to access private communications will compromise digital security and endanger citizens’ privacy. For technical companies, the government’s wish for special keys presents the biggest threat to encryption technologies. The end-to-end technology is only truly protecting user privacy when even technical companies themselves, who provide the communication systems, cannot access user’s private messages.

In this session, panelists from different stakeholder groups will discuss the balance between encryption, security, and privacy.

Information

  • October 27 (Wed.) 2021, 14:00-16:00(on live)
  • The speakers are being invited as of now and names will be listed in the alphabetical order, which is subject to change.
  • The Event may be cancelled without notice in the case of natural disaster or force majeure, based on the Government announcement.

加密技術的應用如何在隱私與安全間取得平衡?

本活動報名已截止,尚未報名而無法取得視訊連結者,歡迎至影音平臺觀看直播。

活動背景

加密技術的廣泛使用,其複雜性往往使得執法機構在打擊犯罪與維護國家安全面臨了極大挑戰,許多恐怖份子及犯罪集團皆利用端點對端點加密技術進行通訊,並藉此躲避司法調查與相關起訴,因此使得執法人員無法針對重犯罪內容與活動採取相對應之執法行動,進而影響個人及國家安全。

今年7月,歐洲刑警組織Europol、歐洲司法組織Eurojust、法國與荷蘭之警方及司法單位共同發表聯合聲明,宣布摧毀組織型犯罪經常使用EncroChat加密通訊網路,並藉由攔截與分析訊息內容,因而成功在各國逮捕了上百名涉嫌販毒、謀殺或暴力犯罪的嫌犯。在此事件後,多數執法單位更加相信,加密通信技術的濫用是其犯罪活動的主要推動者。

各國政府呼籲,建立「合理、彈性」的技術方案,協助執法機關在必要且合乎比例的授權下,以可讀、可用格式存取內容,且受到強大監督,並能提供政府或其相關單位協助,以加速合法存取內容,如此一來才能保護社會免受犯罪、恐怖主義和其他危害;人權觀察家則認為,一旦提供「解密金鑰」將弱化我們的數位安全,並危害民眾隱私;科技業者表示,這將對保護使用者隱私的加密技術帶來巨大危機,原本為使用者提供的端對端加密服務,理應連業者自身都無法破解,也唯有如此,使用者的私人對話才能受到真正的保護。

保護人民隱私與安全,是建立於法律基礎之上,本座談將邀請不同利害關係人,在合法授權、比例原則及監督機制前提之下,探討有關加密與隱私之間的關係,歡迎各界一起加入討論。

活動訊息

日期:2021年10月27日(三) 14:00-16:00

※本活動採線上視訊會議方式辦理

活動議程

14:00–14:05 開場:梁理旋 主持人(台灣網路講堂)
14:05–15:40 焦點座談
主持人:李榮耕教授(國立臺北大學 法律學系)
與談人:

  • 李相臣  處長(永豐金融控股股份有限公司 資訊安全處)
  • 林俊宏  常務董事(民間司法改革基金會)
  • 楊千旻  法務協理(台灣微軟股份有限公司 公共暨法律事務部)

15:40–16:00 線上Q&A

主辦單位保留議程更改權利,若有變動以網站公告為主。