You are correct in that the Bloomberg article was very misleading.
“End-to-end encryption” sounds nice — but if anyone can get into your phone’s operating system, they will be able to read your messages…
You are correct in that the Bloomberg article was very misleading.
“End-to-end encryption” sounds nice — but if anyone can get into your phone’s operating system, they will be able to read your messages without having to decrypt them.”
thats a BIG if.. the Pegasus and Trident and similar spyware are pernicious threats — at least on iphone they require a certain amount of jailbreak and Apple fixed the bug quite a while back. Sure there are always going to be attacks and sure there are always going to be fixes.
And yes if someone can get access to your phone then all the perfect forward security isn’t going to help you if you keep the message log around.
“Truly secure communication is really only possible in the analog world — and then all the old-school spycraft applies.”
well yes, but what is the reality that someone is going to do this, and the truth is you will stick out among the background noise.
The real question to ask is:
what is practical for most people? and Apps like Signal , WhatsApp, moreover Wickr and formally Silent Text are just fine. You dont break the crypto, you get hold of the phone. If you do good security practice on your phone then these apps put you in pretty safe places.
2. Will Facebook weaken WhatsApp? That’s more of a concern to me. It’s just my opinion, but how does a company who’s model is to monetize your information make any money on it.. What happens when FB decides that they can use gather all the advertising tags from your pre encryption cleartext and send them along.. yup your conversation is still private but FB know what you are talking about.. I have no knowledge that this is in the works, but it concerns me.
So yeah his article was misleading, had lots of truths in it, but like most journalism these days unfortunately was more hype than reality.