By John Gruber

• Archive
• The Talk Show
• Dithering
• Projects
• Contact
• Colophon
• Feeds / Social
• Sponsorship

Linked List: May 22, 2023

Monday, 22 May 2023

Save the Date: The Talk Show Live From WWDC 2023 ★

Location: The California Theatre, San Jose
Showtime: Wednesday, 7 June 2023, 5:00 pm PT
Tickets: First batch goes on sale Tuesday 23 May
Special Guest(s): For me to know and you to find out
Previous Shows: On YouTube

(Next batch will go on sale later in the week.)

Leaked EU Document Shows Spain Wants to Ban End-to-End Encryption; Other EU Countries Hanging Their Hopes on Impossible Solutions ★

Wired:

Spain has advocated banning encryption for hundreds of millions of people within the European Union, according to a leaked document obtained by Wired that reveals strong support among EU member states for proposals to scan private messages for illegal content.

The document, a European Council survey of member countries’ views on encryption regulation, offered officials’ behind-the-scenes opinions on how to craft a highly controversial law to stop the spread of child sexual abuse material (CSAM) in Europe. The proposed law would require tech companies to scan their platforms, including users’ private messages, to find illegal material. However, the proposal from Ylva Johansson, the EU commissioner in charge of home affairs, has drawn ire from cryptographers, technologists, and privacy advocates for its potential impact on end-to-end encryption. [...]

Of the 20 EU countries represented in the document leaked to WIRED, the majority said they are in favor of some form of scanning of encrypted messages, with Spain’s position emerging as the most extreme. “Ideally, in our view, it would be desirable to legislatively prevent EU-based service providers from implementing end-to-end encryption,” Spanish representatives said in the document.

If the EU goes ahead with this, I think it means the end of services like WhatsApp, Signal, and iMessage in the EU. There’s no way to architect a messaging system that uses E2EE in some regions and doesn’t in others. The only way to comply would be to rearchitect these systems to not use E2EE anywhere. Signal certainly wouldn’t do that. Apple wouldn’t either.

Denmark and Ireland expressed support for scanning encrypted messengers for child sexual abuse material while also endorsing the inclusion of wording in the law that protects end-to-end encryption from being weakened. The ability to do this would rely on the invention of technology that can scan encrypted messages for illegal content without altering or breaking the security features offered by encryption — a feat cryptographers and cybersecurity experts have said is technically impossible.

It is technically impossible. There is no he-said/she-said debate here. The cryptographers are correct and the lawmakers are so ignorant that they’re proposing a fantasy. It’s a downwind effect of Arthur C. Clarke’s famous maxim that sufficiently advanced technology is indistinguishable from magic: the technology of E2EE is so far above the heads of lawmakers and law enforcement officials that they feel free to demand magic solutions. “Just nerd harder.”

The Netherlands, however, stated that this would be possible through “on-device” scanning before the illegal material is encrypted and sent to its recipient. “There are … technologies which may allow for automatic detection of CSAM while at the same time leaving end-to-end encryption intact,” the country’s representatives stated in the document.

Somewhere in Cupertino, a head bangs against a desk.

Facebook Fined $1.3 Billion for Violating EU Data Privacy Rules ★

Adam Satariano, reporting for The New York Times:

Meta on Monday was fined a record 1.2 billion euros ($1.3 billion) and ordered to stop transferring data collected from Facebook users in Europe to the United States, in a major ruling against the social media company for violating European Union data protection rules.

The penalty, announced by Ireland’s Data Protection Commission, is potentially one of the most consequential in the five years since the European Union enacted the landmark data privacy law known as the General Data Protection Regulation. Regulators said the company failed to comply with a 2020 decision by the European Union’s highest court that Facebook data shipped across the Atlantic was not sufficiently protected from American spy agencies.

But it remains unclear if or when Meta will ever need to cordon off the data of Facebook users in Europe. Meta said it would appeal the decision, setting up a potentially lengthy legal process.

A billion here, a billion there, and soon enough you’re talking about real money.

Neeva, Upstart Search Engine, Shuts Down ★

Sridhar Ramaswamy and Vivek Raghunathan, writing on the Neeva blog:

In early 2022, the upcoming impact of generative AI and LLMs became clear to us. We embarked on an ambitious effort to seamlessly blend LLMs into our search stack. We rallied the Neeva team around the vision to create an answer engine. We are proud of being the first search engine to provide cited, real-time AI answers to a majority of queries early this year.

But throughout this journey, we’ve discovered that it is one thing to build a search engine, and an entirely different thing to convince regular users of the need to switch to a better choice. From the unnecessary friction required to change default search settings, to the challenges in helping people understand the difference between a search engine and a browser, acquiring users has been really hard. Contrary to popular belief, convincing users to pay for a better experience was actually a less difficult problem compared to getting them to try a new search engine in the first place.

I tried Neeva, briefly, but it never stuck for me. Part of the problem, even if you’re open to trying new search engines — clearly a big if — is that there’s a bit of a renaissance at the moment in new search engines. I’d been using DuckDuckGo as my default for years, but about six months ago I switched to Kagi, and so far I haven’t looked back. I pay $10/month for Kagi. A paid search engine! Good search results and absolutely zero clutter from ads or paid placement. They’ve also got a GPT-backed search that includes up-to-date results and works very fast.

A Twitter Bug Is Restoring ‘Deleted’ Tweets and Retweets ★

James Vincent, writing at The Verge:

Earlier this year on the 8th of May I deleted all my tweets, just under 5,000 of them. I know the exact day because I tweeted about it.

This morning, though, I discovered that Twitter has restored a handful of my old re-tweets; interactions I know I scrubbed from my profile. Those re-tweets were gone. I remember surveying my bare timeline with satisfaction before thinking, “great, time to draw attention to myself.” But now they’re back. You can see them by scrolling down my timeline past May 8th, with even more appearing if you select “tweets with replies.”

Twitter is far from alone being a service where “deletion” needs dick quotes around it. This bug is bad and likely will soon be fixed, but the persistence of ostensibly deleted tweets is a profound design flaw.

(The nightmare scenario: a bug that exposes DMs — which infamously are not encrypted — publicly.)

Leaks Regarding Instagram’s Purportedly Imminent Twitter-Like App ★

Lia Haberman, writing at ICYMI:

Codename: P92, Project 92 or Barcelona, as it’s been alternately called.

Tagline: “Instagram for your thoughts.”

All new details have surfaced based on secret calls Meta has been having with select creators, hinting at a potential release in late June. Here’s what I’ve been told by a creator who met with Meta.

The decentralized app is built on the back of Instagram but will be compatible with some other apps like Mastodon:

• There’s a single sign-on with your IG username and password
• You can sync up with your existing followers
• Your handle, bio and even verification will carry over from IG
• Users on other apps will be able search for, follow and interact with your profile and content

Sounds like it’s ActivityPub-compatible, which is how it will be possible to federate with Mastodon instances.

Recommended: ‘Chimp Empire’ ★

Chimp Empire is a four-part (an hour-ish each) documentary about two rival chimpanzee groups in Uganda. It’s one of the best, most enjoyable, most engaging, and most informative cinematic experiences I’ve ever had. My wife and I devoured it. It’s extraordinarily beautiful and compelling. It’s a story about two warring groups, replete with interesting characters and compelling drama. Scheming, backstabbing, loyalty, social climbing, bravery, cowardice. It’s all there.

The question my wife and I kept asking ourselves was, How the hell did they capture this remarkable footage? It couldn’t be fake, but it seemed utterly impossible how close the camera crews got to the chimps — including while the two tribes fight. Netflix has a behind-the-scenes video and story that explains how this was even possible:

While it would normally be impossible to capture the intimacy of warring chimps in the wild, the filmmakers benefited from an environment long marked by human activity — thanks to a constant swarm of researchers. “It took 25 years to reach the point where we can walk out and be near the chimps. We’re humans, so the chimps just see us as an extension of the presence that’s been in the forest for years,” Reed told Netflix.

This familiarity allowed the camera crew to capture Chimp Empire’s most stunning scenes. But up-close encounters were still just as bizarre as you might expect.

“I remember suddenly being aware that the Ngogo chimps were all around. It’s like being on The Truman Show or something — you feel like you’re on a set, because you can’t quite believe they’re real,” Reed said. “They’re so human, you know that they’re assessing you in the same way that you’re assessing them. You can’t quite believe that they accept you into their world. You go where they go, but they make all the decisions. The only thing you can control is where you turn your cameras, or whether you keep up with the action. It’s quite humbling, and I quite like it. The only thing you can do is put yourself in the best position possible to record what they’re doing.”

If you’ve got Netflix, start watching Chimp Empire tonight. If you don’t have Netflix, sign up for a month just to get Chimp Empire. Just watch it first, then read the behind-the-scenes stuff.

In Transition to Micro-LED, Apple Is Attempting to Reduce Its Reliance on Samsung for Displays ★

Lauly Li, reporting for Nikkei Asia:

Apple is getting involved in the mass production of next-generation displays to lessen its reliance on rival Samsung and increase its own control over the supply of a key component, Nikkei Asia has learned. Taking a hands-on approach to production is a stark contrast to the iPhone maker’s usual approach of providing display makers with screen specifications and leaving the actual production to them. [...]

Displays are one of the most expensive components in all of Apple’s devices. Since the American company first introduced OLED displays on its iPhone in 2017, its reliance on Samsung Display for the screens has only grown. To reduce that dependence and gain price-bargaining power, Apple tried to bring in other suppliers, namely LG Display and China’s display champion BOE Technology, but they lag the South Korean leader in terms of technology and quality stability, according to multiple sources familiar with the situation.

“Apple has spent at least $1 billion on the R&D and samples for micro-LED technologies in the past nearly 10 years,” said one of the people who has been directly involved in the project for years. “It wants to secure more control over the next-gen display technologies for its future products.”

Apple’s relationship with Samsung is one of the most interesting in all of tech. On the consumer side, Samsung has been Apple’s only serious rival for high-end phones for almost the entirety of the smartphone era. But for certain chips and especially displays, Samsung has been one of Apple’s most essential suppliers. So I think it’s quite obvious why Apple would try to take display development into its own hands. Imagine if Apple had a display technology lead analogous to its performance-per-watt chip technology lead.

From the Cook Doctrine: “We believe that we need to own and control the primary technologies behind the products we make, and participate only in markets where we can make a significant contribution.”

(I’ve also long wondered how much effort Apple is putting into developing its own camera sensors.)