Increasingly, @signalapp is being criticized by governments and users alike though the only successful compromises have been through bad actors being added to group chats accidentally.

Do NOT follow the narrative that you should move to another chat app if having life-or-death chats. Signal is the ONLY chat app with proper #security for those conversations: #PostQuantumEncryption, #PerfectForwardSecrecy, and a proven track record of privacy in court.

#activism #cybersecurity #InfoSec

@delta : With #ChatControl as a very possible future here in the #EU, do you have any updates on implementation of:

- on-device #encryption against #ClientSideScanning
- #PerfectForwardSecrecy
- #PostQuantumEncryption

If not, what can the community do to help you with these three points?

Each of these are so critically important for secure messaging apps.

Thank you for all your work!

#privacy #security #InfoSec #cybersecurity #EuropeanUnion

days since #PerfectForwardSecrecy and #PostquantumEncryption were but marketing buzzwords and didn't save anyone: ZERO

https://articles.59.ca/doku.php?id=pgpfan:forward_secrecy

https://xkcd.com/538/

#changemymind

Looking at encrypted messengers and the recent failure of the AWS, using @delta is better than nothing. Remember, though, that they support neither #PerfectForwardSecrecy nor quantum-safe or even -resistant #Encryption. High-risk targets should still use only @signalapp, because #DeltaChat and even @threemaapp, @matrix, and #XMPP do not have #PostQuantumEncryption (or proper implementations of it).

#security #CyberSecurity #InfoSec #privacy #Signal #Threema #PFC #PQE

I am confused about the "perfect" of #PerfectForwardSecrecy. To compute the session key for a session, the attacker needs one of the long term secrets and one of the ephemeral secrets. So intuitively it seems like having one of the long term secrets is an advance in the attacker's information state about the session key.

Am I misunderstanding "perfect" or how it is used in PFS? Or am I misunderstanding something else? (A question of #cryptography)

Schweizer Forscher: Threema hatte mehrere Schwachstellen

Der Messenger Threema habe jahrelang eine veraltete Verschlüsselungstechnologie verwendet, sagen Forscher in der Schweiz.

https://www.heise.de/news/Schweizer-Forscher-Threema-hatte-mehrere-Schwachstellen-7455113.html?wt_mc=sm.red.ho.mastodon.mastodon.-.-

#OlafScholz #Schweiz #Security #Sicherheitslücken #Threema #Verschlüsselung #perfectforwardsecrecy #News

Threema 5.0 bringt Gruppenanrufe, mehr Perfect Forward Secrecy

Bis zu 16 Teilnehmer können mit Threema 5 für Android in einer Konferenz telefonieren, wenn gewünscht mit Video. PFS ist optional für Chats.​

https://www.heise.de/news/Threema-5-0-bringt-Gruppenanrufe-mehr-Perfect-Forward-Secrecy-7361077.html?wt_mc=sm.red.ho.mastodon.mastodon.-.-

#Android #Datenschutz #Datensicherheit #InstantMessaging #Kommunikation #Messaging #Sicherheit # #Signal #Threema #Verschlüsselung #iOS #perfectforwardsecrecy #News