{"id":26206,"date":"2024-02-14T23:50:35","date_gmt":"2024-02-15T07:50:35","guid":{"rendered":"https:\/\/www.privateinternetaccess.com\/blog\/?p=26206"},"modified":"2024-02-14T23:50:37","modified_gmt":"2024-02-15T07:50:37","slug":"two-years-after-privacy-risks-paper-published","status":"publish","type":"post","link":"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/","title":{"rendered":"Two Years After Privacy Risks of Client-Side Scanning Paper Was Published, It\u2019s Time for Governments to Move On"},"content":{"rendered":"\n<p class=\"wp-block-paragraph\">Back in 2021, we wrote about <a href=\"https:\/\/www.privateinternetaccess.com\/blog\/top-security-experts-warn-client-side-scanning-tears-at-the-heart-of-privacy-of-individual-citizens\/\" rel=\"nofollow\">an important preprint<\/a> written by 13 of the world\u2019s top security gurus, including Ross Anderson, Whitfield Diffie, Ronald L. Rivest, and Bruce Schneier. It concerns the serious problem of Child Sexual Abuse Material (CSAM), and the idea of tackling it using client-side scanning (CSS) \u2013 that is, code on your smartphone that would constantly scan images for illegal material. The experts had no doubts about how harmful the approach would be to privacy. \u201cThe introduction of scanning on our personal devices\u2014devices that keep information from to-do notes to texts and photos from loved ones\u2014tears at the heart of privacy of individual citizens,\u201d they wrote.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The preprint has now been <a href=\"https:\/\/academic.oup.com\/cybersecurity\/article\/10\/1\/tyad020\/7590463\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">published<\/a> in the Journal of Cybersecurity. In the intervening two years, the debate over CSS has not diminished, and there has been one significant development which is reflected in a new section in the text. In May 2022, the European Commission released a proposal \u201claying down rules to prevent and combat child sexual abuse.\u201d\u00a0<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">As is typical of much contentious legislation, the proposal requires online companies to do something \u2013 in this case, to recognize CSAM in both known and \u201cpreviously unseen\u201d forms \u2013 but does not specify how this is to be done. Although this is dressed up as a \u201ctechnologically neutral approach,\u201d it is really about concealing the fact that nobody knows how to detect CSAM reliably without breaking encryption, which the EU professes to support. As the security experts note in their new section on the EU proposal:<\/p>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p class=\"wp-block-paragraph\"><em>\u201cSo while the proposed regulation specifically endorses end-to-encryption, noting that it is \u201can important tool to guarantee the security and confidentiality of the communications of users, including those of children,\u201d the reality is that there are no feasible solutions for on images that may or may not exist within an encrypted message. Thus, the technical capabilities within the proposal cannot be met without either CSS or abandoning end-to-end encryption. That leaves only client-side scanning, a subject on which the proposal is completely silent. But as we have observed here, such a \u201dsolution\u201d cannot be efficacious. Thus, even without considering encryption or CSS, the scheme cannot be implemented with current technology.\u201d<\/em><\/p>\n<\/blockquote>\n\n\n\n<p class=\"wp-block-paragraph\">The EU\u2019s vague plans effectively mandate CSS, which makes the newly published paper exploring its many problems even more relevant. The previous PIA blog post explained the two main technologies used for image scanning \u2013 perceptual hashing and machine learning \u2013 and went on to look at the particular security risks of using them to carry out surveillance on the client. Here, I\u2019d like to revisit this important work by focusing on the section devoted explicitly to privacy. Perhaps the most obvious threat that CSS represents to privacy is the following:<\/p>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p class=\"wp-block-paragraph\"><em>\u201cThe deployment of CSS changes the game completely by giving access to data stored on users\u2019 devices. First, it facilitates global surveillance by offering economies of scale. Second, while proposals are typically phrased as being targeted to specific content, such as CSAM, or content shared by users, such as text messages used for grooming or terrorist recruitment, it would be a minimal change to reconfigure the scanner on the device to report any targeted content, regardless of any intent to share it or even back it up to a cloud service. That would enable global searches of personal devices for arbitrary content in the absence of warrant or suspicion. Come the next terrorist scare, a little push will be all that is needed to curtail or remove the current protections. Automated reporting provides a means to scale up such attacks.\u201d<\/em><\/p>\n<\/blockquote>\n\n\n\n<p class=\"wp-block-paragraph\">This is the fundamental privacy problem with client-side scanning. Once there is code designed to scan material on a device, there is nothing to stop it being extended \u2013 perhaps incrementally or surreptitiously \u2013 to go further. That might include scanning every service and store on the device, without the need to go through the judicial system to obtain permission to do so. Because the scanning software would be running all the time, and inscrutably, people would not even know what had been scanned or what had been sent back to central servers.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The other obvious threat involves an expansion of target material. Politicians use the fight against CSAM because nobody could object to tackling the problem. But once CSAM scanners are in place, the technology can easily be repurposed to seek out other material. In fact, there are multiple ways to do this. An authorized party can extend the search by demanding that the service provider, or the targeted-material provider creating the list of targeted content, or the provider training the machine-learning model, add new material. Unauthorized parties could do the same using illicit methods such as bribing or coercing staff, or breaking into the computers they use.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">This threat is particularly troubling in countries that already use the internet to throttle political debate and to spy on opponents. Once CSS technology is built into operating systems and devices, it will be a simple task to modify the search list, which means repressive governments could quickly demand additional terms to be blocked or tracked. Software and hardware companies will have little option but to obey: if they don\u2019t, there are a range of punitive measures readily available, including fines, bans, and even imprisonment of local employees. The only thing stopping this now is the absence of CSS capabilities in current models. Once it exists, it will almost certainly be abused.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">It is rather depressing that the debate about CSS has not moved on in the two years since the original preprint appeared. The basic facts about the technology and its weaknesses have not changed, while the importance of protecting digital privacy has increased, for reasons the paper\u2019s authors explain:<\/p>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p class=\"wp-block-paragraph\"><em>\u201cIn a world where our personal information lies in bits carried on powerful communication and storage devices in our pockets, both technology and laws must be designed to protect our privacy and security, not intrude upon it. Robust protection requires technology and law to complement each other. CSS would gravely undermine this, making us all less safe and less secure.\u201d<\/em><\/p>\n<\/blockquote>\n\n\n\n<p class=\"wp-block-paragraph\">It is time for governments to understand this and move on to alternative approaches to tackling CSAM \u2013 ones that don\u2019t involve breaking encryption or putting spies in our pockets.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Back in 2021, we wrote about an important preprint written by 13 of the world\u2019s top security gurus, including Ross Anderson, Whitfield Diffie, Ronald L. Rivest, and Bruce Schneier. It concerns the serious problem of Child Sexual Abuse Material (CSAM), and the idea of tackling it using client-side scanning (CSS) \u2013 that is, code on &hellip; <a href=\"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/\" class=\"more-link\">Continue reading<span class=\"screen-reader-text\"> &#8220;Two Years After Privacy Risks of Client-Side Scanning Paper Was Published, It\u2019s Time for Governments to Move On&#8221;<\/span><\/a><\/p>\n","protected":false},"author":20,"featured_media":26207,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_stopmodifiedupdate":false,"_modified_date":"","footnotes":""},"categories":[1],"tags":[],"class_list":["post-26206","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news"],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v26.9 (Yoast SEO v26.9) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>Two Years After Privacy Risks of Client-Side Scanning Paper Was Published, It\u2019s Time for Governments to Move On<\/title>\n<meta name=\"description\" content=\"Back in 2021, we wrote about an important preprint written by 13 of the world\u2019s top security gurus, including Ross Anderson, Whitfield Diffie, Ronald L.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Two Years After Privacy Risks of Client-Side Scanning Paper Was Published, It\u2019s Time for Governments to Move On\" \/>\n<meta property=\"og:description\" content=\"Back in 2021, we wrote about an important preprint written by 13 of the world\u2019s top security gurus, including Ross Anderson, Whitfield Diffie, Ronald L.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/\" \/>\n<meta property=\"og:site_name\" content=\"PIA\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/privateinternetaccess\/\" \/>\n<meta property=\"article:published_time\" content=\"2024-02-15T07:50:35+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-02-15T07:50:37+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2024\/02\/Untitled.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1200\" \/>\n\t<meta property=\"og:image:height\" content=\"800\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Glyn Moody\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@http:\/\/twitter.com\/glynmoody\" \/>\n<meta name=\"twitter:site\" content=\"@buyvpnservice\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Glyn Moody\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/\"},\"author\":{\"name\":\"Glyn Moody\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/99ba810662cdf92245f61106c0c29775\"},\"headline\":\"Two Years After Privacy Risks of Client-Side Scanning Paper Was Published, It\u2019s Time for Governments to Move On\",\"datePublished\":\"2024-02-15T07:50:35+00:00\",\"dateModified\":\"2024-02-15T07:50:37+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/\"},\"wordCount\":1063,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2024\/02\/Untitled.png\",\"articleSection\":[\"General Privacy News\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/\",\"name\":\"Two Years After Privacy Risks of Client-Side Scanning Paper Was Published, It\u2019s Time for Governments to Move On\",\"isPartOf\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2024\/02\/Untitled.png\",\"datePublished\":\"2024-02-15T07:50:35+00:00\",\"dateModified\":\"2024-02-15T07:50:37+00:00\",\"description\":\"Back in 2021, we wrote about an important preprint written by 13 of the world\u2019s top security gurus, including Ross Anderson, Whitfield Diffie, Ronald L.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/#primaryimage\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2024\/02\/Untitled.png\",\"contentUrl\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2024\/02\/Untitled.png\",\"width\":1200,\"height\":800},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.privateinternetaccess.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Two Years After Privacy Risks of Client-Side Scanning Paper Was Published, It\u2019s Time for Governments to Move On\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#website\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/\",\"name\":\"PIA\",\"description\":\"Online privacy news from around the world.\",\"publisher\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.privateinternetaccess.com\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#organization\",\"name\":\"Private Internet Access\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/pialogowhitekglogo.png\",\"contentUrl\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/pialogowhitekglogo.png\",\"width\":1200,\"height\":1200,\"caption\":\"Private Internet Access\"},\"image\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/privateinternetaccess\/\",\"https:\/\/x.com\/buyvpnservice\",\"https:\/\/www.instagram.com\/piavpn\/\",\"https:\/\/www.youtube.com\/channel\/UClyJZ47Rizb1xnwuKXDI0_w\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/99ba810662cdf92245f61106c0c29775\",\"name\":\"Glyn Moody\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/220b7317aa40ea679b23b79c368761eb6fd45039d978354b06dc7683a812d2fc?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/220b7317aa40ea679b23b79c368761eb6fd45039d978354b06dc7683a812d2fc?s=96&d=mm&r=g\",\"caption\":\"Glyn Moody\"},\"description\":\"Glyn Moody is a freelance journalist who writes and speaks about privacy, surveillance, digital rights, open source, copyright, patents and general policy issues involving digital technology. He started covering the business use of the Internet in 1994, and wrote the first mainstream feature about Linux, which appeared in Wired in August 1997. His book, \\\"Rebel Code,\\\" is the first and only detailed history of the rise of open source, while his subsequent work, \\\"The Digital Code of Life,\\\" explores bioinformatics - the intersection of computing with genomics.\",\"sameAs\":[\"http:\/\/opendotdotdot.blogspot.com\/\",\"https:\/\/www.linkedin.com\/in\/glynmoody\/\",\"https:\/\/x.com\/http:\/\/twitter.com\/glynmoody\"],\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/author\/glynmoody\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Two Years After Privacy Risks of Client-Side Scanning Paper Was Published, It\u2019s Time for Governments to Move On","description":"Back in 2021, we wrote about an important preprint written by 13 of the world\u2019s top security gurus, including Ross Anderson, Whitfield Diffie, Ronald L.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/","og_locale":"en_US","og_type":"article","og_title":"Two Years After Privacy Risks of Client-Side Scanning Paper Was Published, It\u2019s Time for Governments to Move On","og_description":"Back in 2021, we wrote about an important preprint written by 13 of the world\u2019s top security gurus, including Ross Anderson, Whitfield Diffie, Ronald L.","og_url":"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/","og_site_name":"PIA","article_publisher":"https:\/\/www.facebook.com\/privateinternetaccess\/","article_published_time":"2024-02-15T07:50:35+00:00","article_modified_time":"2024-02-15T07:50:37+00:00","og_image":[{"width":1200,"height":800,"url":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2024\/02\/Untitled.png","type":"image\/png"}],"author":"Glyn Moody","twitter_card":"summary_large_image","twitter_creator":"@http:\/\/twitter.com\/glynmoody","twitter_site":"@buyvpnservice","twitter_misc":{"Written by":"Glyn Moody","Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/#article","isPartOf":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/"},"author":{"name":"Glyn Moody","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/99ba810662cdf92245f61106c0c29775"},"headline":"Two Years After Privacy Risks of Client-Side Scanning Paper Was Published, It\u2019s Time for Governments to Move On","datePublished":"2024-02-15T07:50:35+00:00","dateModified":"2024-02-15T07:50:37+00:00","mainEntityOfPage":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/"},"wordCount":1063,"commentCount":0,"publisher":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/#organization"},"image":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/#primaryimage"},"thumbnailUrl":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2024\/02\/Untitled.png","articleSection":["General Privacy News"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/","url":"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/","name":"Two Years After Privacy Risks of Client-Side Scanning Paper Was Published, It\u2019s Time for Governments to Move On","isPartOf":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/#primaryimage"},"image":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/#primaryimage"},"thumbnailUrl":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2024\/02\/Untitled.png","datePublished":"2024-02-15T07:50:35+00:00","dateModified":"2024-02-15T07:50:37+00:00","description":"Back in 2021, we wrote about an important preprint written by 13 of the world\u2019s top security gurus, including Ross Anderson, Whitfield Diffie, Ronald L.","breadcrumb":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/#primaryimage","url":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2024\/02\/Untitled.png","contentUrl":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2024\/02\/Untitled.png","width":1200,"height":800},{"@type":"BreadcrumbList","@id":"https:\/\/www.privateinternetaccess.com\/blog\/two-years-after-privacy-risks-paper-published\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.privateinternetaccess.com\/blog\/"},{"@type":"ListItem","position":2,"name":"Two Years After Privacy Risks of Client-Side Scanning Paper Was Published, It\u2019s Time for Governments to Move On"}]},{"@type":"WebSite","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#website","url":"https:\/\/www.privateinternetaccess.com\/blog\/","name":"PIA","description":"Online privacy news from around the world.","publisher":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.privateinternetaccess.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#organization","name":"Private Internet Access","url":"https:\/\/www.privateinternetaccess.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/pialogowhitekglogo.png","contentUrl":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/pialogowhitekglogo.png","width":1200,"height":1200,"caption":"Private Internet Access"},"image":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/privateinternetaccess\/","https:\/\/x.com\/buyvpnservice","https:\/\/www.instagram.com\/piavpn\/","https:\/\/www.youtube.com\/channel\/UClyJZ47Rizb1xnwuKXDI0_w"]},{"@type":"Person","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/99ba810662cdf92245f61106c0c29775","name":"Glyn Moody","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/220b7317aa40ea679b23b79c368761eb6fd45039d978354b06dc7683a812d2fc?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/220b7317aa40ea679b23b79c368761eb6fd45039d978354b06dc7683a812d2fc?s=96&d=mm&r=g","caption":"Glyn Moody"},"description":"Glyn Moody is a freelance journalist who writes and speaks about privacy, surveillance, digital rights, open source, copyright, patents and general policy issues involving digital technology. He started covering the business use of the Internet in 1994, and wrote the first mainstream feature about Linux, which appeared in Wired in August 1997. His book, \"Rebel Code,\" is the first and only detailed history of the rise of open source, while his subsequent work, \"The Digital Code of Life,\" explores bioinformatics - the intersection of computing with genomics.","sameAs":["http:\/\/opendotdotdot.blogspot.com\/","https:\/\/www.linkedin.com\/in\/glynmoody\/","https:\/\/x.com\/http:\/\/twitter.com\/glynmoody"],"url":"https:\/\/www.privateinternetaccess.com\/blog\/author\/glynmoody\/"}]}},"_links":{"self":[{"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/posts\/26206","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/users\/20"}],"replies":[{"embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/comments?post=26206"}],"version-history":[{"count":3,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/posts\/26206\/revisions"}],"predecessor-version":[{"id":26232,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/posts\/26206\/revisions\/26232"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/media\/26207"}],"wp:attachment":[{"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/media?parent=26206"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/categories?post=26206"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/tags?post=26206"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}