I just want to make this perfectly clear: I will never use (known to be) backdoored crypto. I will not purchase "compliant" devices. If it comes down to it, I will stockpile grandfathered legacy devices.
Don't let the coronavirus hype distract you. They're pushing this shit through **right now**.
If you don't yet know about the government's latest attempt to legislate encryption backdoors, look here https://www.eff.org/deeplinks/2020/03/earn-it-bill-governments-not-so-secret-plan-scan-every-message-online
Super long. Will make a real response later.
Not having legacy anything makes it 100% unenforceable, in practice. Just this week I've dealt with no fewer than two dozen unique systems used by "large ish" companies, that haven't seen a real update in at least 5 years.
I guess what I'm saying is, fuck, no legacy devices, how the fuck long of a cutover period will be used to allow for tortoises to come up to compliance.
A Mastodon instance for info/cyber security-minded people.