Comment by patmcc

Comment by patmcc 15 hours ago

5 replies

View on Hacker News

>>>mainly that they are HQ'd in that government's jurisdiction

ByteDance is; TikTok is not. TikTok is headquartered in USA and Taiwan. Why is that not part of the analysis? The CCP can control/influence ByteDance, the US can't do anything about that. But it could do a number of things to prevent ByteDance control/influence on TikTok, and it jumped directly to "must divest".

Congress could have passed a law banning TikTok from transmitting any user data back to ByteDance/China, for example. Why not do that, if that was the actual concern?

glenstein 12 hours ago

Well, reporting as recent as April of 2024 suggested that Bytedance is able to access tiktok user data despite Operation Texas. And generally speaking, we have seen enough in the way of (1) security breaches and (2) leaky promises not to disclose data either to govts or 3rd party data brokers, only for those reassurances to fall flat. I would even go so far as to say that professions to uphold trade agreements or international agreements are uniquely "soft" in their seriousness from China in recent history.

Guarantees of insulation from bad actors from major tech companies unfortunately are not generally credible, and what is credible, at least relatively speaking, are guarantees imposed by technology itself such as E2E encryption and zero knowledge architecture, as well as contextual considerations like the long term track record of specific companies, details of their ownership and their physical locations.

Reply View 4 replies
  • patmcc 12 hours ago

    The reporting I found (from the Verge) was that an employee of TikTok (in America) would email spreadsheets to executives in China, and other similar cases of US employees having the actual access to data and passing it along to other folks in China.

    This all suggests to me that the 'Operation Texas' technical controls were actually in place and pretty good (or dude in China would have just run some SQL himself), and what isn't in place is hard process control to prevent US workers from emailing stuff to China. Which, you know, is exactly what Congress could pass a law to deal with.

    Reply View 3 replies
    • glenstein 10 hours ago

      I took the article to be absolutely damning in its reckoning on the utility of Operation Texas, precisely because it proved that no amount of technical control would be a match for the human infrastructure that tied Tiktok to China.

      Which I suppose is a different way of making the same point as you.

      Reply View 2 replies
      • patmcc 9 hours ago

        Haha, yah, I think we agree; Operation Texas does what it says on the tin (the data is stored in the USA! It can only be directly accessed from within the USA) but ultimately that doesn't matter at all, since Jim in Texas can just email it all to China.

        Reply View 1 reply
        • cma 3 hours ago

          That can still happen without Chinese ownership too.

          Reply View 0 replies