this post was submitted on 27 May 2022
30 points (100.0% liked)

Security

5278 readers
10 users here now

Confidentiality Integrity Availability

founded 5 years ago
MODERATORS
[email protected]
30
Belgium wants to ban Signal – a harbinger of European policy to come - European Digital Rights (EDRi) (edri.org)
submitted 2 years ago by [email protected] to c/[email protected]
5 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 9 points 2 years ago* (last edited 2 years ago) (1 children)

Signal's "sealed sender" feature is insufficient to actually protect metadata. Since that feature was implemented, the server ostensibly doesn't know which user a message is from, but it still knows the IP address that sent it and in most cases there is only one signal user (who must identify themselves to receive incoming messages) using a given IP at a given time. AWS is very cooperative with law enforcement (not to mention intelligence agencies) so it is unlikely that they are not correlating senders and receivers of Signal messages.

[–] [email protected] 5 points 2 years ago

I see, thanks.