As usual, it’s the same as email. There will need to be various sorts of spam filtering developed in order to keep the platform usable. In the meantime — if you see it, report it and delete it.

Suppose you open up your email and you see that you’ve received a piece of spam that contains CSAM (CP). You have not committed a crime — but you also mustn’t keep it. So you report the spam to your email provider, and you delete it from your mailbox. If you’re very diligent maybe you report it to NCMEC.

Suppose you run an email server. You’re aware of the existence of spam (alas!) and you do your best to block spam using various technologies ranging from DNSBLs to ML classifiers. If someone on the Internet sends spam containing CSAM to a user on your server, you didn’t send it; they did. The sender committed a crime. Your spam filters just didn’t catch that particular instance. So when your user reports it to you, you improve your spam filters. And you delete it.

Suppose you run an email server. Your spam filters might include a reputation score for other email servers. When your filters notice that a large fraction of the messages from a particular server are spam, they switch to automatically block all mail from that server. Then even if that server tries to send spam to your users, the offending messages never even hit your server’s disk.

Expect that as this platform matures, it will need many of the same sorts of spam-mitigation technology that email and other federated services have used.

I’m repeating “and you delete it” once again because that’s important. You mustn’t retain copies of illegal files even as training data for your spam classifiers. The big email providers & social media companies go to a bunch of effort to keep data about CSAM files, without having to keep the actual files.