I do appreciate all the work the EU has done with regulatory work around data sovereignty and the DMA.
-
I do appreciate all the work the EU has done with regulatory work around data sovereignty and the DMA. But they would still be gigafucked if the US ordered Amazon, Google, and Microsoft to cut them off. They may not even have the encryption keys accessible entirely in the EU. The fact that their data physically resides in Europe don't mean shit if a US corp can kill their whole infrastructure with a single command to lock their accounts.
-
I do appreciate all the work the EU has done with regulatory work around data sovereignty and the DMA. But they would still be gigafucked if the US ordered Amazon, Google, and Microsoft to cut them off. They may not even have the encryption keys accessible entirely in the EU. The fact that their data physically resides in Europe don't mean shit if a US corp can kill their whole infrastructure with a single command to lock their accounts.
@JessTheUnstill Do companies like those not have domestic data centers and operations, with charters in those countries? I'd think they could segregate everything out.
It might be a pain in the ass and take a bit of a lift, but I'd still think there's something there...
-
I do appreciate all the work the EU has done with regulatory work around data sovereignty and the DMA. But they would still be gigafucked if the US ordered Amazon, Google, and Microsoft to cut them off. They may not even have the encryption keys accessible entirely in the EU. The fact that their data physically resides in Europe don't mean shit if a US corp can kill their whole infrastructure with a single command to lock their accounts.
And even if they are running EU clouds - if the US CDNs cut them off, or black hole their DNS, or ...
Basically, the US internet could recover from severing international connections. Every other country would just be fucked.
-
@JessTheUnstill Do companies like those not have domestic data centers and operations, with charters in those countries? I'd think they could segregate everything out.
It might be a pain in the ass and take a bit of a lift, but I'd still think there's something there...
-
@CordiallyChloe There are EU clouds. But I still don't have a ton of confidence they're ENSURING there's no US corp links. Be it GitHub or a CDN, or using 1.1.1.1 and 8.8.8.8, or relying on MS patch and update infrastructure, or ...
-
And even if they are running EU clouds - if the US CDNs cut them off, or black hole their DNS, or ...
Basically, the US internet could recover from severing international connections. Every other country would just be fucked.
@JessTheUnstill > Every other country would just be fucked.
For anything using Cloudflare, AWS, etc. I would agree... but not everyone does that, and it isn't really necessary to put everything behind a CDN. So it would cause an outage, but probably not an infinite one for most.
-
@JessTheUnstill > Every other country would just be fucked.
For anything using Cloudflare, AWS, etc. I would agree... but not everyone does that, and it isn't really necessary to put everything behind a CDN. So it would cause an outage, but probably not an infinite one for most.
@fogti There are far too many other SaaS tools that are load bearing infrastructure. Up to and including Windows (yes, Windows is a SaaS these days).
-
@fogti There are far too many other SaaS tools that are load bearing infrastructure. Up to and including Windows (yes, Windows is a SaaS these days).
@fogti I guess losing SAP would fuck the US
-
And even if they are running EU clouds - if the US CDNs cut them off, or black hole their DNS, or ...
Basically, the US internet could recover from severing international connections. Every other country would just be fucked.
https://infosec.exchange/@JessTheUnstill/115939298181381194
God, can you imagine the chaos if all the accounting departments lost everything?
-
@CordiallyChloe There are EU clouds. But I still don't have a ton of confidence they're ENSURING there's no US corp links. Be it GitHub or a CDN, or using 1.1.1.1 and 8.8.8.8, or relying on MS patch and update infrastructure, or ...
@JessTheUnstill Yeah, that's what I figured. So in theory, it could be stood up on its own, but in practice it might not be easy or cheap.
-
https://infosec.exchange/@JessTheUnstill/115939298181381194
God, can you imagine the chaos if all the accounting departments lost everything?
@JessTheUnstill we can but dream
-
@JessTheUnstill > Every other country would just be fucked.
For anything using Cloudflare, AWS, etc. I would agree... but not everyone does that, and it isn't really necessary to put everything behind a CDN. So it would cause an outage, but probably not an infinite one for most.
@fogti @JessTheUnstill gmail, office 365, whatsapp, and DNS are all that need to be interrupted to stop functionally all business in most of the world. add aws and we're done
edit: aws. damn autocorrect
-
@fogti @JessTheUnstill gmail, office 365, whatsapp, and DNS are all that need to be interrupted to stop functionally all business in most of the world. add aws and we're done
edit: aws. damn autocorrect
-
@fogti @JessTheUnstill gmail, office 365, whatsapp, and DNS are all that need to be interrupted to stop functionally all business in most of the world. add aws and we're done
edit: aws. damn autocorrect
@mensrea @JessTheUnstill okay, just kill off the TLD and root zone DNS servers and the Internet would be almost dead within a week (caches take a while to expire).
That's not even a fair competition, given that TLS usually relies on DNS names, too.
-
@JessTheUnstill @fogti now, DNS would be the most problematic. which is the next biggest impact
-
I do appreciate all the work the EU has done with regulatory work around data sovereignty and the DMA. But they would still be gigafucked if the US ordered Amazon, Google, and Microsoft to cut them off. They may not even have the encryption keys accessible entirely in the EU. The fact that their data physically resides in Europe don't mean shit if a US corp can kill their whole infrastructure with a single command to lock their accounts.
This has been a risk the whole time businesses have been flocking to depend on these services, but it seems like the influence AWS etc have had on 'tech fashion' has made a pretty rough time for anyone questioning received wisdom up until recently. Hopefully all this stress and madness at least finally starts to crack that wall before the apocalypse comes (and/or while normal people are still allowed to buy a functioning computer).
-
I do appreciate all the work the EU has done with regulatory work around data sovereignty and the DMA. But they would still be gigafucked if the US ordered Amazon, Google, and Microsoft to cut them off. They may not even have the encryption keys accessible entirely in the EU. The fact that their data physically resides in Europe don't mean shit if a US corp can kill their whole infrastructure with a single command to lock their accounts.
@JessTheUnstill We are very well aware, I just wish our governments acted like they were aware...
-
I do appreciate all the work the EU has done with regulatory work around data sovereignty and the DMA. But they would still be gigafucked if the US ordered Amazon, Google, and Microsoft to cut them off. They may not even have the encryption keys accessible entirely in the EU. The fact that their data physically resides in Europe don't mean shit if a US corp can kill their whole infrastructure with a single command to lock their accounts.
@JessTheUnstill +1000 for "gigafucked". Yes, we would be
-
@JessTheUnstill We are very well aware, I just wish our governments acted like they were aware...
@JessTheUnstill Like, many of us EU techs have been screaming at the ruling class that we need to decouple essential infra things from the US. And we've been doing that since before your first experimentation with fascism, and we've been screaming that much louder since.
I mean, even when it looked like the US was still an ally, it was just unwise to give any foreign power that much control over critical infrastructure. Also, even ignoring that, forcing us to handle that ourselves would not be a bad thing for our own economy and internal skills.
But the leadership and capital class have only cared about short term profits for them... and in many ways still do.
-
@JessTheUnstill @fogti now, DNS would be the most problematic. which is the next biggest impact
