[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
WhisperSystems + WhatsApp
Not if that E2E protocol is entirely undermined. Which is the case here: trust is security. If 600M people think they have privacy and don't, that's a problem.
On 19 November 2014 21:35:33 GMT+00:00, Andy Isaacson <[email protected]> wrote:
>On Wed, Nov 19, 2014 at 09:18:10AM +0000, Cathal (Phone) wrote:
>> Eh, easier than than. Keys generated end to end by the book, then
>code
>> in the closed source spyware app justs lifts them and posts to FB.
>>
>> Open protocols in closed apps are meaningless.
>
>Not meaningless, although of course open source would be preferable
>from
>a trustability standpoint. I've got the executable code for the
>proprietary WhatsApp apk installed on my phone, and can reverse
>engineer
>it if I so choose. (I'm running CM11 so extracting the APKs is fairly
>straightforward.) I also have automatic app updates turned off, so I
>know when the code is supposed to change.
>
>Of course it would be Best (TM) if everyone could use a completely
>free operating system and had complete freedom to inspect all the code
>we depend on. But given the world we live in, 600M users with access
>to
>E2E encrypted messaging is better than 600M users without such access.
>
>-andy
--
Sent from my Android device with K-9 Mail. Please excuse my brevity.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://cpunks.org/pipermail/cypherpunks/attachments/20141119/e2888d5b/attachment.html>