SUMMARY
- Meta and Tiktok have dropped support for end-to-end encryption, which provides for increased security and privacy, to automated content scanning, AI-powered moderation, and easier compliance with law enforcement
- TikTok believes that dropping end-to-end encryption makes it easier the spread of illegal material
- When Meta drops support for end-to-end encryption, it will be able to scan users’ direct messages
- Increased regulatory pressure in the United States and the European Union has pushed social media and other platforms from using encryption
- The European Union has long sought to push for “Chat Control” as part of its message to combat child sexual abuse material (CSAM); however, that mission seeks to also stop encrypted messaging.
On May 8, Instagram will be able to read users’ messages again. Meta is ending its support for end-to-end encryption. Now, it will be able to use automated content moderation, AI-powered scam detection, and have easier compliance with law enforcement requests.
“Very few people were opting in to end-to-end encrypted messaging in DMs, so we’re removing this option from Instagram in the coming months,” the spokesperson said. “Anyone who wants to keep messaging with end-to-end encryption can easily do that on WhatsApp,” a Meta spokesperson said in March.
Reports have not said how Meta plans to handle encryption on its Messenger app. The social media behemoth adopted end-to-end encryption in 2023 after years working on the issue.
Meta had worked to adopt encryption its apps for over a decade:
- In 2016, Meta started encrypted WhatsApp chats
- In 2019, Meta CEO Mark Zuckerberg outlined a “privacy-focused” revamp of the company’s products, with plans to adopt “end-to-end encryption for all private communications.” He said that this was the “right thing to do.”
- In 2021, Meta’s head of safety pivoted, saying it was delaying its rollout of encryption to create stronger safety features
TikTok, now, confirmed it never truly offered end-to-end encryption for its platform, and has no plans to.
A TikTok spokesperson said, Direct messages on TikTok are secured using industry-standard encryption in transit and at rest.” The spokesperson compared its security to what Gmail uses.
“People’s messages are private and protected. Access to message content is strictly limited, subject to internal authorization controls, and only available to trained personnel with a demonstrated need to review the information as part of safety investigations, legal compliance, or other limited circumstances.”
“Messaging on TikTok is not end-to-end encrypted,” the person said. “This helps make our platform undesirable for those who would attempt to share illegal material.”
Social media platforms now face renewed regulatory scrutiny to take down content that may violate the law or their content moderation policies.
“If it’s all encrypted and they can’t see the messages, it gets harder for them to actually police those actions. They’re going to be accountable under the law,” Brian Long, CEO and cofounder of Adaptive Security, a firm that trains organizations to defend against AI-powered attack, said.
“When everything is protected by encryption, the safety team really can’t do anything. A lot of this stuff should be handled by the company before it hits law enforcement. Otherwise, law enforcement would just be completely overwhelmed,” he added.
The Foundation for Freedom Online has noted how the European Union has long pushed to adopt a “chat control” proposal that would force tech companies to decrypt and scan private messages and data. Similar to the global push for Digital ID highlighted by FFO, lawmakers around the world are exploiting legitimate public concerns about child safety to push decryption-by-default measures.
University of Cambridge cryptographer Ross Anderson cautions that “the security and intelligence community have always used issues that scare lawmakers, like children and terrorism, to undermine online privacy.”
Michael Benz is the Executive Director of the Foundation for Freedom Online. Previously, Mr. Benz served as Deputy Assistant Secretary for International Communications and Information Technology at the U.S. Department of State. Follow him on Twitter @FFO_Freedom.
