Rodrigo Panchiniak Fernandes
Software engineer and consultant with 10+ years of experience in the web development industry. Passionate about client side encryption and initial poster of OEIS sequence number A342754.
Session
For the last 6 years I've been advocating for the adoption of client side encryption, with a zero trust protocol, speaking about its technical nuances and software implementation in several IT conferences in Europe and America. This entered into my life as a broad but imperative business requirement: "avoid data leakage at any cost". I was very glad on having the opportunity to learn more deeply about cryptology and contribute some code for that purpose. However, today I would like to focus on what end-to-end encryption (E2EE) really means and how NIS2 regulation seems to be misinterpreting it. While a huge emphasis is given to E2EE, the same regulation also mentions the need of granting to the government the powers of content surveillance, and these two requirements are inescapably contradictory.