d@nny disc@ mc²Dec 14
@durian @delta @signalapp @thefinalstrawradio delta chat is deeply unserious regarding claims around censorship and network blocking, including this example where they appear to describe onboarding an "85 year old mother" to delta chat amidst chinese censorship, but upon follow-up clarify that they totally just made that shit up: https://chaos.social/@delta/114480085463777779
Delta Chat (39c3) (@[email protected])

@[email protected] no, we are not aware of specific Chinese blocking attempts currently. The blocking attempts we mentioned happen with a different country, and another one is currently gearing up (more about the latter probably next week).

chaos.social
Show threadd@nny disc@ mc²Dec 14
@durian @delta @signalapp @thefinalstrawradio (rest of thread is untagged, view on remote instance to see it)
Show threadd@nny disc@ mc²Dec 14

before i continue, i also want to note that the pdf doesn't have any text layer for some reason. this means it's invisible to blind people. i see https://signal-contingency-plan.info/, but that has different text than the pdf. i ran it through pdfsandwich and uploaded it to a third party hosting service: https://drive.proton.me/urls/CSE8QNNPS8#mG2gwPITVJ4S.

i don't see any reason why the pdf authoring tool wouldn't provide the text itself, but whatever.

Signal Contingency Plan

Show threadd@nny disc@ mc²Dec 14

the zine itself contains a variety of misleading technical jargon (who can i blame for this?), and finally makes some directly invalid claims:

The use of email protocols to send messages means that a government or ISP can't simply block the entire Delta Chat protocol on the network, without blocking all email on that network.

network censorship by nation-state actors is far deeper than blocking a single port. this argument is textbook security through obscurity and is demonstrably false. and in particular, it plays upon the fundamental con of delta chat: if it is "just email", then it has the flaws of email, including plaintext sender/recipient/subject line.

Show threadd@nny disc@ mc²Dec 14

but it's not: see https://delta.chat/en/2024-03-25-crypto-analysis-securejoin#hardening-e-mail-header-protections-and-encryption. i do not doubt its encryption works, but claiming that it is indistinguishable from email is inarguably false:

To protect Subject header Delta Chat and other email clients such as Thunderbird and K-9 Mail replace Subject with “…” or “Encrypted Message”

matching emails with the subject "Encrypted message" is very much within the ability of a nation-state network censor! this is deeply unserious! if people rely on delta chat in the ways described, the worst-case scenario isn't just getting their messages blocked, they can be silently tracked by a global passive adversary. signal is actually strictly better than this as a result of their sealed sender.

Delta Chat: Hardening Guaranteed End-to-End encryption based on a security analysis from ETH researchers

We released guaranteed end-to-end encryption in November 2023 and were in for a pleasant surprise three months later. The Applied Cryptography Group at ETH Zurich handed us a cryptographic security...

Show threadd@nny disc@ mc²Dec 14
i really don't care enough to elaborate here, but delta chat is also not email because its ability to get anywhere close to real-time delivery (which it doesn't actually achieve) relies upon their chatmail relays (https://chatmail.at/doc/relay/faq.html#what-is-the-difference-between-chatmail-relays-and-classic-email-servers), which are again completely different from normal email, and therefore can be blocked by a nation-state network censor.
Frequently asked questions - chatmail relay documentation

Show threadd@nny disc@ mc²Dec 14

delta chat is riding on security through obscurity in order to make false claims, and that's not remotely trustworthy. i cannot overstate how much these kinds of statements damage the credibility of the entire project.

but let's talk about signal now.

Show threadxyhhx 
@hipsterelectron i have had some folks try to sell me on delta chat but the arguments have always been extremely weak and usually tell me they have no idea how any of this works
Apr 2 at 10:30pmWeb