this post was submitted on 05 Mar 2024
98 points (95.4% liked)

The Signal messenger and protocol.

1639 readers
1 users here now

https://signal.org/

founded 4 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] tcely@fosstodon.org 5 points 8 months ago (5 children)

This is a fairly easy answer. Signal refuses to take shortcuts that others are happy to use.

You may find this virtuous, but I'll argue that it isn't.

It's much better to start by having windows that don't lock than to keep holes in your walls all year while waiting for windows that are insulated, lockable and can be cleaned from the inside.

Signal leaves the holes until they finish the insulated window that also creates electricity.

@turkishdelight
@celmit

[–] breden@reddthat.com 1 points 8 months ago (3 children)

Can you name some shortcuts that Telegram uses, but Signal doesn't?

[–] tcely@fosstodon.org 1 points 8 months ago* (last edited 8 months ago) (2 children)

Sure.

Telegram uses encryption that allows themselves to read your messages. This shortcut allows them to restore messages, outside of secret chats, when you install the app on a new device. It also makes distribution of your messages to large groups much easier for themselves.

Another shortcut Telegram took was to hide your phone number only when it wasn't in the contacts already. There are a limited number of possible phone numbers, so discovering a "hidden" one is possible.

@breden

[–] tcely@fosstodon.org 1 points 8 months ago (1 children)

Another shortcut Telegram took has to do with the default settings they chose.

Rather than defaulting to using secret chats, they chose to default to not secret chats for every new discussion and group. This isn't in the users' best interests, so Signal encrypted everything and doesn't offer non-secret chatting.

Regarding SMS, Signal had made this mistake for a while too, because they chose to drop encrypted SMS, then dropped SMS entirely later. Signal let perfect be the enemy of good.

[–] breden@reddthat.com 1 points 8 months ago

Thanks. I knew they had some questionable default settings, but haven't heard (or read in, really) their encryption being entirely backdoored when needed, rather than the usual "well, better KGB than FBI can read it" conspiracy talk.

load more comments (1 replies)