this post was submitted on 04 Dec 2024
558 points (99.5% liked)

Technology

59772 readers
3115 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
L3s@fry.gs
L4s@fry.gs
L4s@lemmy.world
enu@lemmy.world
558
U.S. officials urge Americans to use encrypted apps amid unprecedented cyberattack (www.nbcnews.com)
submitted 1 day ago by WhatsHerBucket@lemmy.world to c/technology@lemmy.world
175 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] circuitfarmer@lemmy.sdf.org 8 points 21 hours ago (1 children)

You are missing my point.

I don't deny the definition of E2EE. What I question is whether or not RCS does in fact meet the standard.

You provided a link from Google itself as verification. That is... not useful.

Has there been an independent audit on RCS? Why or why not?

[–] mosiacmango@lemm.ee 0 points 20 hours ago* (last edited 20 hours ago) (2 children)

Not that I can find. Can you post Signals most recent independent audit?

Many of these orgs don't post public audits like this. Its not common, even for the open source players like Signal.

What we do have is a megacorp stating its technical implementation extremely explicitly for a well defined security protocol, for a service meant to directly compete with iMessage. If they are violating that, it opens them up to huge legal liability and reputational harm. Neither of these is worth data mining this specific service.

[–] circuitfarmer@lemmy.sdf.org 6 points 20 hours ago

I'm not suggesting that Signal is any better. I'm supporting absolute distrust until such information is available.

[–] deranger@sh.itjust.works 3 points 20 hours ago* (last edited 20 hours ago) (1 children)
[–] mosiacmango@lemm.ee 7 points 20 hours ago* (last edited 20 hours ago)

Thank you. I had trouble running down a list.

I do consider Signal to be a more trustworthy org than Google clearly, but find this quibbling about them "maybe putting a super secret backdoor in the e2ee they use to compete with iMessage" to be pretty clear FUD.