Sunday, 23 February 2020 18:25

Govt security watchdog seeks additional oversight of encryption bill powers Featured

Govt security watchdog seeks additional oversight of encryption bill powers Pixabay

The government's Independent National Security Legislation Monitor, Dr James Renwick, has indicated he would support the security appeals division of the Administrative Appeals Tribunal having oversight of technical capability notices issued under the encryption law passed in 2018, and resolving any issue that could arise.

Dr Renwick held two days of hearings in Canberra on Thursday and Friday last week, meeting representatives of both government and industry.

There are three ways listed in the legislation by which law enforcement can get industry to aid in breaking encryption.

A technical assistance request or TAR allows for voluntary help by a company; its staff will be given civil immunity from prosecution.

An interception agency can then issue a technical assistance notice or TAN to make a communications provider offer assistance based on existing functionality.

Finally, a technical capability notice or TCN can be issued by the Attorney-General at the request of an interception agency. This will have to be also approved by the Communications Minister and will force a company to help law enforcement, by building functionality.

However a TCN cannot demand the decryption of information or removal of electronic protection in any system.

Dr Renwick said that what he had heard from technology companies was that using the AAT would give them more confidence in the process. To this end, he backed the addition of some technically qualified people to the AAT as part-time members.

He also suggested that a better definition was needed for the term "systemic weakness", adding that this would sit better within the text of law itself.

The encryption law, known as the Telecommunications and Other Legislation Amendment (Assistance and Access) Bill 2018, was passed on 6 December 2018.

A review was instituted by the Parliamentary Joint Committee on Intelligence and Security as soon as the bill was passed, with a reporting date of 3 April 2019. It was expected to make changes that would provide some solace to the technology industry.

But the panel then put off taking any decision, instead asking Dr Renwick to review the law and report back by 1 March 2020.

In October 2019, Dr Renwick said he was extending the date for submissions to his review until 1 November. At the time he made this announcement, just 15 submissions had been received.

The date for his report to the PJCIS is now the end of June; the PJCIS will then issue its report by the end of September. Only after that will the government look at any changes to the law.

Among those who fronted the inquiry over the two days were the ASIO, the NSW Independent Commission Against Corruption, the Law Enforcement Conduct Commission of NSW, the Human Rights Commission, Internet Australia, Electronic Frontiers Australia, Atlassian, Access Now, Mozilla Corporation, the Communications Alliance, Ai Group, AIIA, AMTA, DIGI & ITPA, AustCyber, Law Council of Australia, The Allens Hub for Technology, Law & Innovation, the South Australian Independent Commissioner Against Corruption, BSA | The Software Alliance, the Australian Federal Police and the Department of Home Affairs.



Recently iTWire remodelled and relaunched how we approach "Sponsored Content" and this is now referred to as "Promotional News and Content”.

This repositioning of our promotional stories has come about due to customer focus groups and their feedback from PR firms, bloggers and advertising firms.

Your Promotional story will be prominently displayed on the Home Page.

We will also provide you with a second post that will be displayed on every page on the right hand side for at least 6 weeks and also it will appear for 4 weeks in the newsletter every day that goes to 75,000 readers twice daily.


talentCRU FREE WEBINAR INVITE - Cybersecurity in COVID-19 times and beyond

With the mass transition to remote working, our businesses are becoming highly dependent on the Internet.

So, it’s no surprise that we’ve seen an increase in cyberattacks.

However, what’s more concerning is that just 51% of technology professionals are highly confident that their cybersecurity teams are able to detect and respond to these threats.

Join us for this free online roundtable where our experts discuss key cybersecurity issues IT leaders are facing during the pandemic, and the challenges that will likely emerge in the coming years.


Sam Varghese

website statistics

Sam Varghese has been writing for iTWire since 2006, a year after the site came into existence. For nearly a decade thereafter, he wrote mostly about free and open source software, based on his own use of this genre of software. Since May 2016, he has been writing across many areas of technology. He has been a journalist for nearly 40 years in India (Indian Express and Deccan Herald), the UAE (Khaleej Times) and Australia (Daily Commercial News (now defunct) and The Age). His personal blog is titled Irregular Expression.




Recent Comments