zlacker

[parent] [thread] 8 comments
1. RL_Qui+(OP)[view] [source] 2020-06-05 03:01:16
iMessage is end to end encrypted by default. Perhaps not as strongly, but it's a good default to begin with.
replies(3): >>Nextgr+g >>sfifs+f5 >>driver+T21
2. Nextgr+g[view] [source] 2020-06-05 03:03:14
>>RL_Qui+(OP)
Key management is still centralized and controlled by Apple, so they can still MITM communications by messing with the key exchange.

iCloud backups (enabled by default) are not end-to-end encrypted.

So while it's technically E2E, in practice you get very little protection from it because it's broken by design.

I still use iMessage because of the user experience, but let's not be fooled by their misleading E2E claims; it's all just marketing BS.

replies(1): >>ciaran+D
◧◩
3. ciaran+D[view] [source] [discussion] 2020-06-05 03:06:04
>>Nextgr+g
If both parties disable iCloud on their phones, does Apple have any way to read messages sent via iMessage?
replies(3): >>frisco+T2 >>Nextgr+s6 >>sneak+in
◧◩◪
4. frisco+T2[view] [source] [discussion] 2020-06-05 03:27:17
>>ciaran+D
We have no idea and there’s no real way even in principle for us to know.
5. sfifs+f5[view] [source] 2020-06-05 03:56:42
>>RL_Qui+(OP)
Whenever key management is centralized, there is basically no security from the legal authority in the jurisdiction that the messaging vendor is located in. The vendor can always push you an MITM key. They can even show you the "correct" recipient key when you physically verify but use a different one for the actual message transfer and this would be a trivial easy to obfuscate switch in the program binary.

E2E with centralized key management is primarily to protect you from casual/private threats (vendor employees, snoopers in your or your recipients network) not from legal authority.

replies(1): >>TheSpi+ua
◧◩◪
6. Nextgr+s6[view] [source] [discussion] 2020-06-05 04:16:55
>>ciaran+D
They can still pull off an MITM attack by sending the MITM’s keys (pretending to be the other user’s keys) because they control they key exchange.

It’s an active attack and can’t apply retroactively but within these constraints they can still do it.

◧◩
7. TheSpi+ua[view] [source] [discussion] 2020-06-05 05:08:21
>>sfifs+f5
The Signal Foundation is based in Mountain View and both Moxie Marlinspike and Brian Acton are US nationals...

What’s stopping some US government agency from forcing them to insert code that causes the Signal app to a indicate it is behaving correctly but isn’t?

And don’t say “laws”.

If your threat model includes advanced persistent threats all bets are off.

◧◩◪
8. sneak+in[view] [source] [discussion] 2020-06-05 07:52:09
>>ciaran+D
Yes, if they add a wiretapping key to one or both of your key lists, which is silent/invisible to the sender.
9. driver+T21[view] [source] 2020-06-05 14:03:45
>>RL_Qui+(OP)
Regardless of its security features it's Apple device only which is a deal breaker.
[go to top]