Comment on Signal messenger blocked in Russia, says Roskomnadzor
brrt@sh.itjust.works 5 weeks agoI could put on my tinfoil hat and say if signal is blocked but telegram isn’t, maybe that means that telegram isn’t as secret as they make it out to be.
woelkchen@lemmy.world 5 weeks ago
It’s open source. Look can up the encryption yourself.
Varcour@lemm.ee 5 weeks ago
No need, all you have to do is read the whitepaper. they home brewed the encryption algorithm and nobody actually knows if it’s worth a damn. That’s not exactly a secret.
woelkchen@lemmy.world 5 weeks ago
After all these years, security researchers still don’t know if the encryption is any good?
HarriPotero@lemmy.world 5 weeks ago
On that level it usually falls on computer scientists. Formal methods can prove that any implementation is correct, but proving the absence of unintended attacks is a lot harder.
Needham-Schroeder comes to mind as an example from back when I was studying the things.
Andromxda@lemmy.dbzer0.com 5 weeks ago
And it isn’t even encrypted by default, you manually have to enable that. By default, all your plain text messages are stored on their servers.
doodledup@lemmy.world 5 weeks ago
They don’t have reproducible builds afaik (unlike Signal). You can have a completely different code running on your phone than on GitHub.
Besides, who is using Secret Chat anyways? All default chats and group chats are unencrypted.
woelkchen@lemmy.world 5 weeks ago
Just use the F-Droid version if there is any doubt.
Probably Russians who used Signal before.
doodledup@lemmy.world 5 weeks ago
The F-droid version is also not reproducible. The binary you install has a different hash than the one you build from the GitHub.
catloaf@lemm.ee 5 weeks ago
Can it be proven that that encryption is what’s used in practice?
woelkchen@lemmy.world 5 weeks ago
Just use the F-Droid version if there is any doubt.
Andromxda@lemmy.dbzer0.com 5 weeks ago
What about iOS users?