undefined | Better HN

0 pointschimeracoder4y ago0 comments

> Signal is still a centralised data silo where by default you trust CA to verify your contacts identify.

You can verify the security number out-of-band, and the process is straightforward enough that even nontechnical users can do it.

That's as much as can possibly be done, short of an app that literally prevents you from communicating with anyone without manually providing their security number.

0 comments

6 comments · 2 top-level

Andrew_nenakhov4y ago· 4 in thread

I said, 'by default'. I know that it is possible to do a manual verification, but I am yet to have a chat with a person who would do that.

Also, the Signal does not give any warnings or indication that chat partner identify is manually verified. Users are supposed to trust Signal and not ask difficult questions

chimeracoderOP4y ago

> I said, 'by default'. I know that it is possible to do a manual verification, but I am yet to have a chat with a person who would do that.

I'm not sure what else you'd expect. The alternative would be for Signal not to handle key exchange at all, and only to permit communication after the user manually provides a security key that was obtained out-of-band. That would be an absolutely disastrous user experience.

> Also, the Signal does not give any warnings or indication that chat partner identify is manually verified

That's not true. When you verify a contact, it adds a checkmark next to their name with the word "verified" underneath it. If you use the QR code to verify, this happens automatically. Otherwise, if you've verified it manually (visual inspection) you can manually mark the contact as verified and it adds the checkmark.

Andrew_nenakhov4y ago

> I'm not sure what else you'd expect.

Ahem. I'd expect something that most xmpp clients could do 10+ years ago with OTR: after establishing an encrypted session the user is given a warning that chat identify of a partner is not verified, and is given options on how to perform this verification.

With CA you can make a mild warning that identity is verified by Signal, and give an options to dismiss warning or perform off-the-band verification.

Not too disastrous, no?

> That's not true. When you verify a contact, it adds a checkmark next to their name with the word "verified"

It has zero effect if the user is given no indication that there should be the word verified.

It is not true what you say. This [1] is what a new user sees in Signal - absolutely zero indication. To verify a contact user must go to "Conversation settings* and then "View safety number". I'm not surprised nobody ever established a verified session with me.

[1]: https://www.dropbox.com/s/ab1bvazg4y895f6/screenshot_2021080...

int_19h4y ago

I did this with all my friends who are on Signal, and explained the purpose.

And it does warn about the contact being unverified directly in the chat window, until you go and click "Verify". The problem is that people blindly do that without understanding what it's for.

Andrew_nenakhov4y ago

Please show me this warning in this [1] freshly taken screenshot from Signal.

[1]: https://www.dropbox.com/s/ab1bvazg4y895f6/screenshot_2021080...

2 more replies

dustyharddrive4y ago

I agree Signal’s default security is a whole lot better than iMessage, which trusts Apple for key exchange and makes it impossible to verify the parties or even the number of parties your messages are being signed for. Default security is super important for communication apps because peers are less likely to tweak settings and know about verification screens.

Aside: Signal data never touches iCloud Backup (https://support.signal.org/hc/en-us/articles/360007059752-Ba...). That’s an improvement over a lot of apps.

j / k navigate · click thread line to collapse

0 comments

6 comments · 2 top-level

Andrew_nenakhov4y ago· 4 in thread

I said, 'by default'. I know that it is possible to do a manual verification, but I am yet to have a chat with a person who would do that.

Also, the Signal does not give any warnings or indication that chat partner identify is manually verified. Users are supposed to trust Signal and not ask difficult questions

chimeracoderOP4y ago

> I said, 'by default'. I know that it is possible to do a manual verification, but I am yet to have a chat with a person who would do that.

> Also, the Signal does not give any warnings or indication that chat partner identify is manually verified

Andrew_nenakhov4y ago

> I'm not sure what else you'd expect.

With CA you can make a mild warning that identity is verified by Signal, and give an options to dismiss warning or perform off-the-band verification.

Not too disastrous, no?

> That's not true. When you verify a contact, it adds a checkmark next to their name with the word "verified"

It has zero effect if the user is given no indication that there should be the word verified.

[1]: https://www.dropbox.com/s/ab1bvazg4y895f6/screenshot_2021080...

int_19h4y ago

I did this with all my friends who are on Signal, and explained the purpose.

And it does warn about the contact being unverified directly in the chat window, until you go and click "Verify". The problem is that people blindly do that without understanding what it's for.

Andrew_nenakhov4y ago

Please show me this warning in this [1] freshly taken screenshot from Signal.

[1]: https://www.dropbox.com/s/ab1bvazg4y895f6/screenshot_2021080...

2 more replies

dustyharddrive4y ago

Aside: Signal data never touches iCloud Backup (https://support.signal.org/hc/en-us/articles/360007059752-Ba...). That’s an improvement over a lot of apps.

j / k navigate · click thread line to collapse