Security

5278 readers

9 users here now

Confidentiality Integrity Availability

founded 5 years ago

MODERATORS

[email protected]

Belgium wants to ban Signal – a harbinger of European policy to come - European Digital Rights (EDRi) (edri.org)

submitted 2 years ago by [email protected] to c/[email protected]

5 comments fedilink hide all child comments

top 5 comments

sorted by: hot top controversial new old

[–] [email protected] 10 points 2 years ago (1 children)

they could just ask AWS for the signal metadata, like the FBI presumably does 🤡

[–] [email protected] 1 points 2 years ago (1 children)

I don't think that's really possible since Signal is built specifically to not need to trust the server it runs on.

[–] [email protected] 9 points 2 years ago* (last edited 2 years ago) (1 children)

Signal's "sealed sender" feature is insufficient to actually protect metadata. Since that feature was implemented, the server ostensibly doesn't know which user a message is from, but it still knows the IP address that sent it and in most cases there is only one signal user (who must identify themselves to receive incoming messages) using a given IP at a given time. AWS is very cooperative with law enforcement (not to mention intelligence agencies) so it is unlikely that they are not correlating senders and receivers of Signal messages.

[–] [email protected] 5 points 2 years ago

I see, thanks.

[–] [email protected] 6 points 2 years ago

Oh no the EU is about to fuck itself up I was happy I didn't live in the USA because the GDPR law And now wtf The world is going insane or what