Privacy

A few days ago, Internet infrastructure company Cloudflare implemented widespread support for Encrypted Client Hello (ECH), a privacy technology that aims to render web traffic surveillance futile. This means that site blocking implemented by ISPs will be rendered useless in most, if not all cases.

ECH is a newly proposed privacy standard that's been in the making for a few years. The goal is to increase privacy for Internet users and it has already gained support from Chrome , Firefox , Edge , and other browsers. Users can enable it in the settings, which may still be experimental in some cases.just

The main barrier to widespread adoption is that this privacy technology is a two-way street. This means that websites have to support it as well. Cloudflare has made a huge leap forward on that front by enabling it by default on all free plans, which currently serve millions of sites. Other subscribers can apply to have it enabled. Cloudflare writes in an announcement:

Cloudflare is a big proponent of privacy for everyone and is excited about the prospects of bringing this technology to life. Encrypted Client Hello (ECH) is a successor to ESNI and masks the Server Name Indication (SNI) that is used to negotiate a TLS handshake. This means that whenever a user visits a website on Cloudflare that has ECH enabled, no one except for the user, Cloudflare, and the website owner will be able to determine which website was visited.

If you're a website, and you care about users visiting your website in a fashion that doesn't allow any intermediary to see what users are doing, enable ECH today on Cloudflare

Tests conducted by TorrentFreak show that ISP blocking measures in the UK, the Netherlands, and Spain were rendered ineffective.

Apple Inc. announced this week that it will offer full encryption for data in its cloud storage system worldwide, which not surprisingly has been met with consternation from hackers, thieves & snoopers but joy from customers.

The move means that all content, chats, photos and videos, will have end-to-end encryption under Apple's Advanced Data Protection feature. For the average consumer, this is a win, and for the average privacy advocate, it's a victory in an ongoing fight with the authorities.

We applaud Apple for listening to experts, child advocates, and users who want to protect their most sensitive data, the Electronic Frontier Foundation wrote today. Encryption is one of the most important tools we have for maintaining privacy and security online.

The foundation was equally pleased that Apple also stated that it had finally decided not to implement its CSAM photo-scanning child protection technology.

The authorities, on the other hand, have denounced the move, especially the FBI, which has a history of battling with Apple over trying to get its hands on user data.

Apple will also likely run into problems concerning the U.K. government and its online safety bill. The bill gives the U.K. government broad powers to force companies to ensure content on their platforms aligns with what it calls internet safety. Many privacy advocates have condemned the bill as a new kind of censorship.