undefined | Better HN

0 pointsdan-robertson5y ago0 comments

Note that gpg provides worse security from an encryption standpoint than signal/WhatsApp

0 comments

6 comments · 2 top-level

hkt5y ago· 4 in thread

Care to explain?

mnw21cam5y ago

No perfect forward security. It's a feature, not a bug.

dan-robertsonOP5y ago

It doesn’t feel like a feature to me. And neither does the lack of deniability. They both feel like things that leak information that doesn’t need to be leaked.

2 more replies

h_anna_h5y ago

whatsapp and signal have forward secrecy, so if your private key is leaked it means that past conversations can't be decrypted. In reality it does not offer a lot of protection if you don't disable keeping logs (because losing your phone and malware are the only realistic ways of your private key being leaked). In addition the way that they have forward secrecy implemented it means that you have to decrypt every message posted in groupchats while you were offline sequently until the last one, which can take hours in an active (even if small) group if you are gone for a week. The other thing is that both of these apps to my knowledge do not warn you if a new key is added (I might be wrong here) so an active attacker can pretty much nullify the encryption, this is not an issue with openpgp.

dan-robertsonOP5y ago

To add to this: the point of the disappearing messages in signal is to enhance the value of the forward secrecy by not having the record of the messages (so long as both devices are using correct clients and no one is screenshotting messages.

The other feature is deniability: having an encrypted message and it’s decryption doesn’t give you any more information than a screenshot of the message in signal. There isn’t a way for the encrypted message to prove that it was legitimate as the previous keys are revealed in a way that means anyone sniffing the traffic could make a message encrypted with that key.

1 more reply

lucb1e5y ago

Frankly, I don't even care if it uses end-to-end encryption at all if it's encrypted to my own server.

Of course, email goes between servers and then you definitely want to ensure the encryption is solid (it often isn't, so PGP is definitely good). I'm just saying that Wire/Signal/Threema/etc. having better encryption is in my opinion only important when you use Wire's/Signal's/Threema's servers. If you can and do host your own, especially if you host it at home, then in practice there is no difference.

Since most people don't do that, Signal/Wire/Threema/Matrix are of course the better options than PGP+email, but PGP+email is still an improvement over the status quo.

j / k navigate · click thread line to collapse

0 comments

6 comments · 2 top-level

hkt5y ago· 4 in thread

Care to explain?

mnw21cam5y ago

No perfect forward security. It's a feature, not a bug.

dan-robertsonOP5y ago

It doesn’t feel like a feature to me. And neither does the lack of deniability. They both feel like things that leak information that doesn’t need to be leaked.

2 more replies

h_anna_h5y ago

dan-robertsonOP5y ago

1 more reply

lucb1e5y ago

Frankly, I don't even care if it uses end-to-end encryption at all if it's encrypted to my own server.

Since most people don't do that, Signal/Wire/Threema/Matrix are of course the better options than PGP+email, but PGP+email is still an improvement over the status quo.

j / k navigate · click thread line to collapse