Open Menu
AllLocalCommunitiesAbout
lotide
AllLocalCommunitiesAbout
Login

[Facebook] Messenger is finally getting end-to-end encryption by default - The Verge

⁨138⁩ ⁨likes⁩

Submitted ⁨⁨11⁩ ⁨months⁩ ago⁩ by ⁨ElectroVagrant@lemmy.world⁩ to ⁨technology@lemmy.world⁩

https://www.theverge.com/2023/12/6/23991501/facebook-messenger-default-end-to-end-encryption-meta

source

Comments

Sort:hotnewtop
  • heygooberman@lemmy.today ⁨11⁩ ⁨months⁩ ago

    Great! But, let’s remember this is Facebook after all, so… 🤷‍♂️

    source
    • JeeBaiChow@lemmy.world ⁨11⁩ ⁨months⁩ ago

      …they’ll skim the metadata after client-side decryption while on its way to presentation?

      source
      • BearOfaTime@lemm.ee ⁨11⁩ ⁨months⁩ ago

        Hell, why stop at Metadata? The app can see all the data before encrypting and sending

        source
        • -> View More Comments
  • tsonfeir@lemm.ee ⁨11⁩ ⁨months⁩ ago

    Yeah right.

    source
    • iHUNTcriminals@lemm.ee ⁨11⁩ ⁨months⁩ ago

      It’s end-to-end-to-end encryption.

      source
    • Kusimulkku@lemm.ee ⁨11⁩ ⁨months⁩ ago

      Well WhatsApp already has it

      source
      • CaptainSpaceman@lemmy.world ⁨11⁩ ⁨months⁩ ago

        Moxie helped WhatsApp integrate the Signal protocol for e2ee, but I dont trust thatt they never implemented any backdoors in their protocol after Moxie was done helping them.

        IMO, just use Signal anyways. Fuck Meta

        source
      • tsonfeir@lemm.ee ⁨11⁩ ⁨months⁩ ago

        Sure, Jan.

        source
        • -> View More Comments
  • LEDZeppelin@lemmy.world ⁨11⁩ ⁨months⁩ ago

    Fuck facebook

    source
  • GaimDS@lemmy.world ⁨11⁩ ⁨months⁩ ago

    I don’t believe it for a second ngl 🫠

    source
    • surewhynotlem@lemmy.world ⁨11⁩ ⁨months⁩ ago

      I believe it, but only as a cost saving measure. By enabling e2ee they can wiggle out of having to deal with warrants and the government. It’s about reducing the burden on their data retention and reporting teams.

      source
    • BraveSirZaphod@kbin.social ⁨11⁩ ⁨months⁩ ago

      I don't believe there's ever been an instance of E2E Messenger texts being given to law enforcement, whereas there are plenty of instances where Facebook has provided law enforcement with non-encrypted messages after being served a warrant.

      Believe what you want, but ignoring the legal liability from blatantly lying like that, there's precisely zero evidence that Messenger's encryption is compromised.

      source
      • BearOfaTime@lemm.ee ⁨11⁩ ⁨months⁩ ago

        The encryption doesn’t have to be compromised when their app does the message scanning before encrypting.

        Technically it’s still E2EE

        source
        • -> View More Comments
  • yildo@kbin.social ⁨11⁩ ⁨months⁩ ago

    Is it going to be like Whatsapp end-to-end encryption where they just rolled out a 4-digit pincode for "backups" on their servers as the third end?

    source
    • ElectroVagrant@lemmy.world ⁨11⁩ ⁨months⁩ ago

      It sounds like it, although it looks like it’s a 6-digit pin instead from the image in the article.

      There’s also this additional info directly from Facebook’s blog post about all this:

      When your chats are upgraded, you will be prompted to set up a recovery method, such as a PIN, so you can restore your messages if you lose, change or add a device.

      source
    • Kusimulkku@lemm.ee ⁨11⁩ ⁨months⁩ ago

      WhatsApp is using the Signal protocol for E2EE chats

      source
    • NENathaniel@lemmy.ca ⁨11⁩ ⁨months⁩ ago

      Is your issue that it’s 4 digits, or something else?

      source
  • ElectroVagrant@lemmy.world ⁨11⁩ ⁨months⁩ ago

    Personally I’m about as willing to trust this as WhatsApp’s end-to-end encryption, given Meta/Facebook’s involvement, but thought it was worth keeping folks here apprised of the situation in the corporate space.

    source
    • BraveSirZaphod@kbin.social ⁨11⁩ ⁨months⁩ ago

      Has WhatsApp's encryption ever been shown to not be trustworthy?

      Facebook has had to provide law enforcement with FB Messenger texts before after being served a warrant. Are you saying this has also happened with WhatsApp, even though that should be impossible? That's a pretty big claim, so I'd love to see your evidence.

      source
      • ElectroVagrant@lemmy.world ⁨11⁩ ⁨months⁩ ago

        To my knowledge, it hasn’t, but that’s not the main point of my comment so much as expressing my distrust of the parent company. In that respect, no, I’m not aiming to make a claim that Meta/Facebook have had to disclose messages from WhatsApp to law enforcement and essentially undermine its end-to-end-encryption.

        Nevertheless, I think it’s reasonable and fair to be suspicious of Meta/Facebook given its history of questionable actions concerning people’s data. They’re in the business of using people’s data for marketing/advertising purposes, not safeguarding it, after all.

        source
      • Rai@lemmy.dbzer0.com ⁨11⁩ ⁨months⁩ ago

        1. It’s Facebook

        2. It’s closed source

        Zero trust from me, not touching any of that

        source
        • -> View More Comments
  • Rocketpoweredgorilla@lemmy.ca ⁨11⁩ ⁨months⁩ ago

    So Facebook, the company that reviews your private messages ( money.com/facebook-reviews-private-messages/ ) will let you encrypt your messages to other messenger users (That it also monitors) so that a third party can’t get that data without paying them first?

    source
    • cheese_greater@lemmy.world ⁨11⁩ ⁨months⁩ ago

      I mean if its not encrypted, that could only ever be double-speak. If they say its e2ee, I’m sure they’re still hoovering metadata but thats a strong claim that requires rigorous implementation thats going to be tested equally rigorously. Still think people should delete the app tho

      source
      • JeeBaiChow@lemmy.world ⁨11⁩ ⁨months⁩ ago

        Rigorous? Not really. The decryption takes place client side in-app, and they simply process it before it hits the display. Just because it’s encrypted in transit doesn’t mean fb doesn’t have ita greasy paws all over it.

        source
        • -> View More Comments
  • jacktherippah@lemmy.world ⁨11⁩ ⁨months⁩ ago

    Ah yes, we do end to end encryption bro! Trust me bro!

    source
  • autotldr@lemmings.world [bot] ⁨11⁩ ⁨months⁩ ago

    This is the best summary I could come up with:

    Meta is rolling out end-to-end encryption for one-on-one chats and calls on Messenger, finally fulfilling a promise that’s been in the works for quite awhile.

    “Our engineers, cryptographers, designers, policy experts and product managers have worked tirelessly to rebuild Messenger features from the ground up.”

    According to Crisan, you won’t sacrifice Messenger features when using encrypted chats, so you’ll still be able to use things like themes and custom reactions.

    “I believe the future of communication will increasingly shift to private, encrypted services where people can be confident what they say to each other stays secure and their messages and content won’t stick around forever,” he wrote in a Facebook post.

    Last year, the company drew headlines when a 17-year-old from Nebraska and her mother faced criminal charges for performing an illegal abortion after police obtained their Messenger chat history.

    Anti-encryption advocates say that the technology makes it harder to find bad actors on messaging apps like WhatsApp, which is already encrypted by default.

    The original article contains 378 words, the summary contains 164 words. Saved 57%. I’m a bot and I’m open source!

    source