undefined | Better HN

0 pointscherryteastain1y ago0 comments

Safety wise, Signal (or PGP email) on GrapheneOS is probably as good as it gets since it's all audited free open source code.

0 comments

funny_falcon1y ago

AFAIK, Signal doesn’t provide any way to prove its application were built from non-modified audited free open source code. Indeed there are evidences it behaves “a bit” differently.

So unless you’ve built application by yourself, you have no guarantee of it’s sequrity.

t0bia_s1y ago

Signal is centralised protocol, which is main weakness. Instead, use decentralised, federated solution like matrix.org.

PGP is impractical for regular email communication unfortunately and pointless on platform like gmail.

anticensor1y ago

Signal is thin server ephemeral, matrix is thin client strongly persistent. They have securiry tradeoffs as different as they can be.

throwaway485401y ago

I didn't know Signal app had access to a secure enclave chip.

cherryteastainOP1y ago

Apple's marketing buzzword silicon did nothing to shield Apple users against highly motivated and capable adversaries [1]. When the underlying OS is compromised (and with closed source OSes there is no way to ascertain) there is nothing that will save you.

[1] https://en.m.wikipedia.org/wiki/Pegasus_(spyware)

Brian_K_White1y ago

That is not the definition of secure.

throwaway485401y ago

It's not, but it's a feature that makes it incomparable to iMessage.

1 more reply

j / k navigate · click thread line to collapse

0 comments

funny_falcon1y ago

AFAIK, Signal doesn’t provide any way to prove its application were built from non-modified audited free open source code. Indeed there are evidences it behaves “a bit” differently.

So unless you’ve built application by yourself, you have no guarantee of it’s sequrity.

t0bia_s1y ago

Signal is centralised protocol, which is main weakness. Instead, use decentralised, federated solution like matrix.org.

PGP is impractical for regular email communication unfortunately and pointless on platform like gmail.

anticensor1y ago

Signal is thin server ephemeral, matrix is thin client strongly persistent. They have securiry tradeoffs as different as they can be.

throwaway485401y ago

I didn't know Signal app had access to a secure enclave chip.

cherryteastainOP1y ago

[1] https://en.m.wikipedia.org/wiki/Pegasus_(spyware)

Brian_K_White1y ago

That is not the definition of secure.

throwaway485401y ago

It's not, but it's a feature that makes it incomparable to iMessage.

1 more reply

j / k navigate · click thread line to collapse