Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

> Yeah, there are threat models that won't be stopped here

Like running windows in a VM or using an HDMI capture card. And are they going to break running teams meetings when using moonlight etc. with this? If you are OBS capturing during the meeting does it get blacked out or just breaks your recording?



You don't need to elaborate on mechanisms for bypassing because you're already imagining a threat actor that is out of scope.

This is primarily about blocking accidental leaks by regular employees who were asked to not record but ignored it. This kind of reuse of content happens all the time in companies of any significant size and isn't entirely stopped by simple requests or watermarks. This tool gives companies one more option to protect against this very lame and boring but also very real threat.


> regular employees who were asked to not record

i think this should not be possible to be asked.

For example, an employee might want to record to cover their own ass (e.g., if being asked to do some morally questional things, which the employee could record then use as protection against the company going back on their word).

Having the ability to _control_ whether an employee can keep records independently of the company only serves to move more control away from the employee.


Trade secrets are a thing. Legal requirements are a thing as well. In some cases (think HIPAA) an employee recording something that they're shown can translate to significant legal liability for both themselves and the company.


> This is primarily about blocking accidental leaks by regular employees who were asked to not record but ignored it.

I think you're seriously overestimating regular employees. A significant number of people will send you smartphone pictures when you ask for a screenshot - why would they suddenly start looking into on-device screen capture when taking a picture or video of some random presentation?


  > A significant number of people will send you smartphone pictures when you ask for a screenshot
n=1 but this is also my experience at $JOB for a majority of times for me as well


I already addressed this possibility in my first comment. Points 1+2.


And also gives legal teams more foundation to stand on, bypassing this isn't trivial so it shows real intent


"isn't trivial"? When the sibling comment mentions how a lot of employees will by default use a camera when asked for a screenshot?


By "isn't trivial", I mean that takes real effort on the user end to bypass (as they can't simply take screenshots in traditional methods). Bad choice of word on my end


They have absolutely no way to enforce anything of sorts on linux, technically.


A typical corporate workspace won't have any employees running Linux on their work machines.


That is not my experience in the last 10 years.


The easiest one is already mentioned in the article: Someone pulling out their phone and snapping a photo.

People know it’s not perfect. However, raising the bar discourages the spontaneous captures that people might try out of habit.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: