Comment by pierat
2 years ago
Sounds like a great case to get the fuck away from SMS and phone numbers.
But hey, they still want your whole address book, and announce you're on signal to everyone else on signal.
The whole "secure" thing is a joke. Its all linked to your identity via your phone#.
Signal doesn't learn your contact list. See https://signal.org/blog/private-contact-discovery/ and https://signal.org/blog/building-faster-oram/
Signal actually jumps through quite a few hoops in order to let you and your contacts are on Signal without Signal actually having access to a copy of your whole address book. It's even mentioned in TFA.
I do agree about being linked to your phone number - doing it that way means not considering a lot of people's valid threat models. They are working on moving to usernames, though. It's in beta now.
> Signal actually jumps through quite a few hoops in order to let you and your contacts are on Signal without Signal actually having access to a copy of your whole address book. It's even mentioned in TFA.
It doesn't say how it works. If Alice's phone can tell whether her contact Bob uses Signal without Alice and Bob doing any sort of a priori cryptographic exchange, why couldn't Signal itself do whatever Alice's phone is doing?
They want the address book because if you don't have engagement promotion features like that, there is no way to ever become remotely popular in the chat app space.
Why is the security a joke? The data is e2e encrypted, and isn't related to a phone number in any way after registration. Do you know of a better way of combining privacy and anti-abuse measures? If you don't offload identity checks to telecom providers during registration some bad actor will immediately create a million accounts and send millions of spam messages and destroy the slim chance of this type of app to exist for free.
> They want the address book because if you don't have engagement promotion features like that, there is no way to ever become remotely popular in the chat app space.
Intentionally ignoring the fact that Signal splatters your phone number to everyone else is a humongous problem. And you can even put your phone number block in your address book, and it'll tell you everyone who has Signal. This happens all the time, with Signal servers leaking all of this metadata.
And doing "engagement promotion" is what companies do to sell more shit. So, exactly what are they "selling"?
>Why is the security a joke?
Metadata, pertaining to communication patters and to whom matters just as much as what's being said.
And that metadata, like "your phone number" and "contact's phone number", and "when data is being sent to/from" is that metadata.
> The data is e2e encrypted,
> and isn't related to a phone number in any way after registration.
Bullshit. I see new people hopping on signal fairly regularly. If that was true, it'd be a simple verify-once-and-delete. It aint.
> Do you know of a better way of combining privacy and anti-abuse measures?
I reject your claim of "privacy", with regards to metadata.
Secondly, Tox has an alternate way to handle this, by allowing any number of accounts not tied to anything. Sure, it's a SHA256 id, but who cares. There, its secure AND anonymous.
Basically, I look at Signal as "better than SMS, but not much". It's basically a way to keep the phone company from scanning messages.