Signal is the world’s most widely used truly private messaging app, and our cryptographic technologies provide extra layers of privacy beyond the Signal app itself. Since launching in 2013, the Signal Protocol—our end-to-end encryption technology—has become the de facto standard for private commu...
Perhaps if they didnt require phone numbers and reenabled federarion then they could offload some of that cost.
The longer they go without doing this the more i suspect they are a cia metadata/social graph honeypot. Didnt they also get money from In-Q-Tel or one of the other ones?
This is consipiracism-adjacent.
It’s E2E encryption and the source code is public. Uniquely, the E2EE includes the social graph.
They’ve got money from a bunch of people and organizations, That’s also all public. As for any organization, to have a wide variety of stakeholders with different interests is the best possible guarantee of independent.
But I agree that the ideal destination is to fully federate the protocol.
The client source code is public the messages are fine but the metadata is whats just as valuable. They do have an implementation of sealed sender but ive heard people say its not perfect against if the signal servers where malicious (btw said servers are not open source).
$1 from the cia funding it is $1 too much.
They could kill all the conspiracy theories instantly by federating and said theories will kill people adopting it. The longer they take the more sus it gets.
So, literal hearsay.
The server is centralized so it’s irrelevant whether it’s open source or not, we have no means of checking.
Seems you’re referring to initial funding from the Open Technology Fund. That’s a US government body that promotes technologies that undermine authoritarian regimes. Signal fits the bill perfectly. In any case that was a decade ago. Since then there has been far more money from various do-gooding individuals and foundations. In particular the Freedom of the Press Foundation, which (I just checked) is vouched for by various whistleblowers including Edward Snowden. So, hardly a stooge of US imperialism.
Or you could dev up your own perfect solution and show them how easy it is to get funding to do it, show us all
The point was not in the e2e aspect though, but rather in the metadata since everything goes through the same place.
Yes but the difference with every other messenger is that they can’t even see who your message is going to. Due to E2E encryption of contact data.
What remains is the phone number issue. Verifying a phone number is by far the simplest and most effective way to prevent abuse, which is obviously a major issue with any messenger. There’s no reason to disbelieve them when they this is the reason for it.
So: yes, they know who their users are individually. But they cannot know who is talking to who, let alone what is being said.
Add on to that, their bullshit excuse for dropping SMS support.