[Cryptography] Signal planning to support for plaintext SMS
John-Mark Gurney
jmg at funkthat.com
Mon Oct 31 15:12:26 EDT 2022
Ralf Senderek wrote this message on Sun, Oct 30, 2022 at 11:25 +0100:
> > By the same token, if I want to send a message, I have to
> > choose which app to use. If I choose the SMS app, I will
> > send an insecure message, even when it would have been
> > possible to send a secure message. So this is backwards in
> > terms of security as well as usability.
>
> I think this assessment isn't plausible, because using two different
> apps would certainly also split the set of users anyone communicates
> with into people like Alice, who uses the new Signal and blokes
> like Bob who never intends to send and receive a secure message.
> So you'd know where to look when you search for a person's
> message. And if you don't find Alice in the insecure app this is
> a good reminder not to send her insecure messages as she don't
> want that to happen. I don't see why this would be a step
> backwards in terms of security.
What happens when your friend Bob finally installs signal, but
doesn't tell you? Using a separate app means that you might
never know that Bob finally got w/ the times and installed
Signal, and you'll continue to chat w/ Bob insecurely.
That is more likely to happen then a downgrade IMO. Signal
currently does a good job of keeping a conversation secure.
--
John-Mark Gurney Voice: +1 415 225 5579
"All that I will do, has been done, All that I have, has not."
More information about the cryptography
mailing list