The author discusses the proposal for a regulation on preventing the sexual abuse and exploitation of children in the European Commission, particularly focusing on concerns and risks related to client-side scanning. The author points out the vulnerability of the database of child sexual abuse material (CSAM), which could be tainted with non-CSAM material, leading to undetectable function creep. They further highlight the potential for malicious entities to manipulate the database and submit offensive content. The author expresses concern about the impact of this manipulation, including chilling effects and potential limitations on free expression. They also note the importance of considering other avenues of attack and the overall design of the scanning system. Controversially, the author suggests that certain member states may not be reliable in handling this detection capability.
https://blog.xot.nl/2023/10/11/tainting-the-csam-client-side-scanning-database/index.html