Long title | An Act to make provision to facilitate the use of electronic communications and electronic data storage; to make provision about the modification of licences granted under section 7 of the Telecommunications Act 1984; and for connected purposes. |
---|---|
Citation | 2000 c.7 |
Dates | |
Royal assent | 25 May 2000 |
Status: Current legislation | |
Text of statute as originally enacted | |
Text of the Electronic Communications Act 2000 as in force today (including any amendments) within the United Kingdom, from legislation.gov.uk. |
The Electronic Communications Act 2000 (c.7) is an Act of the Parliament of the United Kingdom that:
The United Kingdom government had come to the conclusion that encryption, encryption services and electronic signatures would be important to e-commerce in the UK. [1]
By 1999, however, only the security services still hankered after key escrow.[ citation needed ] So a "sunset clause" was put in the bill. The Electronic Communications Act 2000 gave the Home Office the power to create a registration regime for encryption services. This was given a five-year period before it would automatically lapse, which eventually happened in May 2006.
In cryptography, encryption is the process of encoding information. This process converts the original representation of the information, known as plaintext, into an alternative form known as ciphertext. Ideally, only authorized parties can decipher a ciphertext back to plaintext and access the original information. Encryption does not itself prevent interference but denies the intelligible content to a would-be interceptor.
Government Communications Headquarters (GCHQ) is an intelligence and security organisation responsible for providing signals intelligence (SIGINT) and information assurance (IA) to the government and armed forces of the United Kingdom. Primarily based at "The Doughnut" in the suburbs of Cheltenham, GCHQ is the responsibility of the country's Secretary of State for Foreign and Commonwealth Affairs, but it is not a part of the Foreign Office and its Director ranks as a Permanent Secretary.
Pretty Good Privacy (PGP) is an encryption program that provides cryptographic privacy and authentication for data communication. PGP is used for signing, encrypting, and decrypting texts, e-mails, files, directories, and whole disk partitions and to increase the security of e-mail communications. Phil Zimmermann developed PGP in 1991.
Public-key cryptography, or asymmetric cryptography, is the field of cryptographic systems that use pairs of related keys. Each key pair consists of a public key and a corresponding private key. Key pairs are generated with cryptographic algorithms based on mathematical problems termed one-way functions. Security of public-key cryptography depends on keeping the private key secret; the public key can be openly distributed without compromising security.
The Regulation of Investigatory Powers Act 2000 is an Act of the Parliament of the United Kingdom, regulating the powers of public bodies to carry out surveillance and investigation, and covering the interception of communications. It was introduced by the Tony Blair Labour government ostensibly to take account of technological change such as the growth of the Internet and strong encryption.
A digital signature is a mathematical scheme for verifying the authenticity of digital messages or documents. A valid digital signature on a message gives a recipient confidence that the message came from a sender known to the recipient.
An electronic signature, or e-signature, is data that is logically associated with other data and which is used by the signatory to sign the associated data. This type of signature has the same legal standing as a handwritten signature as long as it adheres to the requirements of the specific regulation under which it was created.
The Information Commissioner's Office (ICO) is a non-departmental public body which reports directly to the Parliament of the United Kingdom and is sponsored by the Department for Science, Innovation and Technology. It is the independent regulatory office dealing with the Data Protection Act 2018 and the General Data Protection Regulation, the Privacy and Electronic Communications Regulations 2003 across the UK; and the Freedom of Information Act 2000 and the Environmental Information Regulations 2004 in England, Wales and Northern Ireland and, to a limited extent, in Scotland. When they audit an organisation they use Symbiant's audit software.
A Digital Postmark (DPM) is a technology that applies a trusted time stamp issued by a postal operator to an electronic document, validates electronic signatures, and stores and archives all non-repudiation data needed to support a potential court challenge. It guarantees the certainty of date and time of the postmarking. This global standard was renamed the Electronic Postal Certification Mark (EPCM) in 2007 shortly after a new iteration of the technology was developed by Microsoft and Poste Italiane. The key addition to the traditional postmarking technology was integrity of the electronically postmarked item, meaning any kind of falsification and tampering will be easily and definitely detected.
The Postal Services Act 2000 is an act of the Parliament of the United Kingdom, relating to the postal industry. It established an industry regulator, Postcomm (s.1), a consumer watchdog, Postwatch (s.2), required a "universal service" of post to be provided (ss.3-4) and set up rules for licensing postal services operators (ss.6-41). It also converted the public branch of the postal industry, the Post Office, from a statutory corporation to a public limited company, wholly owned by the government.
United Kingdom enterprise law concerns the ownership and regulation of organisations producing goods and services in the UK, European and international economy. Private enterprises are usually incorporated under the Companies Act 2006, regulated by company law, competition law, and insolvency law, while almost one third of the workforce and half of the UK economy is in enterprises subject to special regulation. Enterprise law mediates the rights and duties of investors, workers, consumers and the public to ensure efficient production, and deliver services that UK and international law sees as universal human rights. Labour, company, competition and insolvency law create general rights for stakeholders, and set a basic framework for enterprise governance, but rules of governance, competition and insolvency are altered in specific enterprises to uphold the public interest, as well as civil and social rights. Universities and schools have traditionally been publicly established, and socially regulated, to ensure universal education. The National Health Service was set up in 1946 to provide everyone with free health care, regardless of class or income, paid for by progressive taxation. The UK government controls monetary policy and regulates private banking through the publicly owned Bank of England, to complement its fiscal policy. Taxation and spending composes nearly half of total economic activity, but this has diminished since 1979.
Cryptography, or cryptology, is the practice and study of techniques for secure communication in the presence of adversarial behavior. More generally, cryptography is about constructing and analyzing protocols that prevent third parties or the public from reading private messages. Modern cryptography exists at the intersection of the disciplines of mathematics, computer science, information security, electrical engineering, digital signal processing, physics, and others. Core concepts related to information security are also central to cryptography. Practical applications of cryptography include electronic commerce, chip-based payment cards, digital currencies, computer passwords, and military communications.
Key disclosure laws, also known as mandatory key disclosure, is legislation that requires individuals to surrender cryptographic keys to law enforcement. The purpose is to allow access to material for confiscation or digital forensics purposes and use it either as evidence in a court of law or to enforce national security interests. Similarly, mandatory decryption laws force owners of encrypted data to supply decrypted data to law enforcement.
Electronic evidence consists of these two sub-forms:
SignNow is a cloud-based provider of electronic signature technology, developed in the United States. The company's software-as-a-service platform is intended for individuals and businesses to sign, and manage documents from any computer. The e-signature product is also available for free on iPhone, iPad, and Android devices, which lets users upload and sign documents from their smartphone's e-mail, camera, or Dropbox account.
The Draft Communications Data Bill was draft legislation proposed by then Home Secretary Theresa May in the United Kingdom which would require Internet service providers and mobile phone companies to maintain records of each user's internet browsing activity, email correspondence, voice calls, internet gaming, and mobile phone messaging services and store the records for 12 months. Retention of email and telephone contact data for this time is already required by the Data Retention Regulations 2014. The anticipated cost was £1.8 billion.
The use of electronic surveillance by the United Kingdom grew from the development of signal intelligence and pioneering code breaking during World War II. In the post-war period, the Government Communications Headquarters (GCHQ) was formed and participated in programmes such as the Five Eyes collaboration of English-speaking nations. This focused on intercepting electronic communications, with substantial increases in surveillance capabilities over time. A series of media reports in 2013 revealed bulk collection and surveillance capabilities, including collection and sharing collaborations between GCHQ and the United States' National Security Agency. These were commonly described by the media and civil liberties groups as mass surveillance. Similar capabilities exist in other countries, including western European countries.
Attempts, unofficially dubbed the "Crypto Wars", have been made by the United States (US) and allied governments to limit the public's and foreign nations' access to cryptography strong enough to thwart decryption by national intelligence agencies, especially the National Security Agency (NSA).
The UK encryption ban is a pledge by former British prime minister David Cameron to ban online messaging applications that offer end-to-end encryption, such as WhatsApp, iMessage, and Snapchat, under a nationwide surveillance plan. Cameron's proposal was in response to the services which allow users to communicate without providing the UK security services access to their messages, which in turn could allegedly allow suspected terrorists a safe means of communication.
The Online Safety Act 2023 is an act of the Parliament of the United Kingdom to regulate online speech and media. It passed on 26 October 2023 and gives the relevant Secretary of State the power, subject to parliamentary approval, to designate and suppress or record a wide range of speech and media deemed "harmful".