The Nexus Of Privacy looks at the connections between technology, policy, strategy, and justice. We’re also on the fediverse at @thenexusofprivacy@infosec.pub
The law’s defintion of harm is extremely broad. Charlie Jane Anders has a good discussion of this in The Internet Is About to Get a Lot Worse:
“This clause is so vaguely defined that attorneys general can absolutely claim that queer content violates it — and they don’t even need to win these lawsuits in order to prevail. They might not even need to file a lawsuit, in fact. The mere threat of an expensive, grueling legal battle will be enough to make almost every Internet platform begin to scrub anything related to queer people.”
In practice, when the AG threatens to sue and the law makes it clear that they’ll win (which KOSA currently does), companies will typically stop what they’re doing (or settle if the AG actually launches a suit)
Yep. There’s money to be made here!
Great point. Mike Masnick has said that he wouldn’t be surprised if Meta also comes out in support, for similar reasons.
Totally agreed that it opens things up to censorship in general and doesn’t actually make kids safer. Charlie Jane Anders’ The Internet Is About to Get A Lot Worse sets it in the context of book banning. The LGBTQ part is in the headlines because one big focus of the advocacy against it is highlighting that Democrats who claim to be pro-LGBTQ should not be backing this bill. This has been effective enough that Senators Cantwell and Markey both mentioned it in the committee markup, although it’s certainly far from the only problem with the bill.
Sec. 11 (b): Enforcement By State Attorneys General covers this. It’s hard to find – the bill text starts out with all the text removed from the previous amendment, and if you click on the “enforcement” link in the new table of context it takes you to the old struck-out text. It’s almost like they want to make it as hard as possible for people to figure out what’s going on!
They get to position themselves as looking out for the children.
Yes, exactly. For Senators who support LGBTQ+ rights and reproductice rights (or at least say that they do), focusing on the threat anti-trans AGs can be very effective; In Washington state, we put enough pressure on Cantwell last fall about the LGBTQ+ issues that she mentioned it in the hearing (as did Markey). 5calls and EFF’s scripts and emails are written to appeal to legislators from both parties (so just talk about the harms to kids and threats from state AGs in general terms), which makes sense for a one-size-fits-all form, but customizing it to your Senators’ priorities can make a lot of sense.
Thanks, glad you liked it. Agreed that blocklists (while currently necessary) have big problems, it would really be great if we had other good tools and they were much more of a last resort … I’ll talk more about that in a later installment.
It’s tricky … many people do use “queer” as an umbrella term, but a lot of trans people don’t like being lumped under that, and some lesbian, gay, bi, and agender people don’t consider themselves queer. There aren’t great answers.
At some level you’re not missing anything: there are obvious solutions, and they’re largely ignored. Blocking is effective, and it’s a key part of why some instances actually do provide good experiences; and an allow-list approach works well. But, those aren’t the default; so new instances don’t start out blocking anybody. And, most instances only block the worst-of-the-worst; there’s a lot of stuff that comes from large open-registration instances like .social and .world that relatively few instances block or even limit.
If you’re looking for more of a technical deep dive, check out Threat modeling Meta, the fediverse, and privacy
If you read the article and follow the links you’ll find plenty of evidence. The Whiteness of Mastodon, A breaking point for the queer community, and Dogpiling, weaponized content warning discourse, and a fig leaf for mundane white supremacy are three places to start.
From the article:
I’m using LGBTQIA2S+ as a shorthand for lesbian, gay, gender non-conforming, genderqueer, bi, trans, queer, intersex, asexual, agender, two-sprit, and others (including non-binary people) who are not straight, cis, and heteronormative. Julia Serrano’s trans, gender, sexuality, and activism glossary has definitions for most of terms, and discusses the tensions between ever-growing and always incomplete acronyms and more abstract terms like “gender and sexual minorities”. OACAS Library Guides’ Two-spirit identities page goes into more detail on this often-overlooked intersectional aspect of non-cis identity.
This thread is talking about a US-based law, so I shared EFF’s perspectives on national IDs in the US. For a more international view, check out Why ID https://www.accessnow.org/campaign/whyid/ – which they’ve signed along with dozens of other civil society organizations.
It’s true that there are potential upsides of national ID systems as well as downsides. But as that Why ID letter says, “the scalability of digital identity programmes also makes their harms scalable. It is far from being proven that most digital identity programmes have brought additional benefits to users, without placing them at risk.” You’re right that private implementations have similar issues – data brokers and tech companies are as careless with data as government agencies are, and just as eager to abuse people’s privacy. But there are also some big differences: a national ID is mandatory, and the government has much more of an ability to put you in jail or deny you your rights.
Within the privacy community, EFF’s viewed as pragmatists – far from absolutists or extremists. So I agree with @chakan2@chakan2@lemmy.world, it only gets regarded as extreme because big tech and the surveillance-industrial complex have normalized not expecting privacy.
That’s one of the concerns. Here’s more, from https://www.eff.org/issues/national-ids
Mandatory national ID cards violate essential civil liberties. They increase the power of authorities to reduce your freedoms to those granted by the card. If a national ID is required for employment, you could be fired and your employer fined if you fail to present your papers. People without ID cards can be denied the right to purchase property, open a bank account or receive government benefits. National identity systems present difficult choices about who can request to see an ID card and for what purpose. Mandatory IDs significantly expand police powers. Police with the authority to demand ID is invariably granted the power to detain people who cannot produce one. Many countries lack legal safeguards to prevent abuse of this power.
Historically, national ID systems have been used to discriminate against people on the basis of race, ethnicity, religion and political views. The use of national IDs to enforce immigration laws invites discrimination that targets minorities. There is little evidence to support the argument that national IDs reduce crime. Instead, these systems create incentives for identity theft and widespread use of false identities by criminals. National ID cards allow different types of identifying information stored in different databases to be linked and analyzed, creating extreme risks to data security. Administration of ID programs are often outsourced to unaccountable companies. Private sector security threat models assume that at any one time, one per cent of company employees are willing to sell or trade confidential information for personal gain.
President Biden on KOSA: “Pass It, Pass It, Pass It”
Plenty of Democrats support this anti-LGBTQ+ bill – here’s the list of cosponsors. It really does have bipartisan support!
That’s true, and legislation that passes in the US also influences legislation elsewhere. However quite a few people from outside the US have repeatedly asked for discussions of this and other legislation to include something in the title that indicates that it relates to US legislation, so I went with US-specific on this post.
Technically yes but judges get annoyed if there’s absolutely no case, so they rarely do – and if they threaten when there’s no case, larger companies will look at it and say the threat’s not real.