Privacy vs Security
The Backdoor That Breaks the Lock for Everyone
Every time a government asks for a 'secure backdoor' into encrypted messages, it is asking for something that mathematically cannot exist.
The Idea
Encryption works because of a beautiful asymmetry: it is trivially easy to lock a message, and computationally catastrophic to unlock it without the right key. The security is not a policy — it is a mathematical fact baked into the structure of the system. When governments argue that tech companies should build in a backdoor for lawful access, they are not asking for a policy tweak. They are asking engineers to introduce a deliberate flaw into that mathematical structure. The problem is that a flaw introduced for one party cannot be restricted to that party. A backdoor is, by definition, a second key. And the entire history of information security tells us that any key that exists will eventually be found by someone you did not intend to have it. You cannot build a lock that only good people can pick. This is not a hypothetical. It is the central tension in what security researchers call the 'going dark' debate: the idea that strong encryption is causing intelligence agencies to 'go dark', losing access to communications they once could monitor. Law enforcement's concern is legitimate — encrypted platforms genuinely do shelter criminals. But the proposed remedy — weakened encryption — would expose every user of every system to any attacker sophisticated enough to find or steal the backdoor key. The choice is not between security and privacy. It is between security for everyone and security for no one.
In the World
In 2016, the FBI obtained a court order demanding Apple help unlock an iPhone belonging to one of the perpetrators of the San Bernardino attack. Apple refused. Tim Cook published an open letter explaining that what the FBI was requesting was not a one-time unlock — it was the creation of a software tool that, once it existed, could be used on any iPhone, by anyone who got hold of it. Apple called it 'the equivalent of a master key, capable of opening hundreds of millions of locks.' The FBI ultimately withdrew the court order after reportedly paying a private security firm to crack the phone through a different vulnerability — which itself illustrated the point Apple was making. The moment a weakness exists in a system, it becomes a commodity on the security market. Fast forward to 2024, and the Salt Typhoon hack revealed that Chinese state-sponsored attackers had penetrated the lawful intercept systems built into US telecommunications infrastructure — the very systems designed to give law enforcement access to calls and messages. In other words, the backdoors that existed for authorised surveillance became the entry points for a foreign intelligence operation. The infrastructure built to make Americans more secure from crime had made them less secure from espionage. It was the exact scenario cryptographers had been warning about for thirty years, playing out in real time.
Why It Matters
Most of us experience this debate as a distant argument between governments and tech companies. But it shapes something very concrete: whether your private messages, medical searches, financial details, and late-night anxieties are genuinely protected or merely feel that way. Understanding the mathematical reality of encryption changes how you read headlines about this debate. When a politician says they want access to encrypted messages 'only for serious crimes', you now know they are describing something that cannot be technically scoped that way. The backdoor either exists or it does not. The key either has one holder or it is, eventually, everyone's. This also reframes what privacy means. It is not secrecy for its own sake — it is the necessary precondition for security. A banking system, a hospital record, a journalist's source: all of them depend on the same underlying guarantee that encrypted communication provides. Eroding that guarantee in one place weakens it everywhere. Once you see that, the privacy-versus-security framing starts to look like a false choice deliberately constructed to make one side seem selfish.
A Question to Ponder
If the people designing a security system cannot guarantee who will eventually hold the key to its backdoor, should they build the backdoor at all?
Get a new one of these every morning.
Start learning with Thinkable