Slashdot Mirror
Battle of the Secure Messaging Apps: Signal Triumphs Over WhatsApp, Allo (theintercept.com)
There is no shortage of messaging apps out there, so which one should you be using? If you care about your privacy, you would want your messaging client to be end-to-end encrypted. This narrows down the list to WhatsApp, Signal, and Allo. The Intercept has evaluated the apps to find which among the three is the best from the privacy standpoint. The publication says that while all the three aforementioned apps use the same secure messaging protocol (Open Whisper System's), they differ on exactly what information is encrypted, what metadata is collected, and what, precisely, is stored in the cloud.
WhatsApp:It's important to keep in mind that, even with the Signal protocol in place, WhatsApp's servers can still see messages that users send through the service. They can't see what's inside the messages, but they can see who is sending a message to whom and when.In addition, WhatsApp also retains your contact list -- provided you have shared it with the service. If government requests access to this data, WhatsApp could hand it over.
Allo:The first thing to understand about Google's forthcoming Allo app is that, by default, Google will be able to read all of your Allo messages. If you want end-to-end encryption via the Signal protocol, you need to switch to an "incognito mode" within the app, which will be secure but include fewer features. [...] Allo's machine learning features prevent Google from turning on end-to-end encryption for all messages, since Google needs to be able to ingest the content of messages for the machine learning to work, a Google spokesperson confirmed. Signal:The first thing that sets Signal apart from WhatsApp and Allo is that it is open source. The app's code is freely available for experts to inspect for flaws or back doors in its security. Another thing that makes Signal unique is its business model: There is none. In stark contrast to Facebook and Google, which make their money selling ads, Open Whisper Systems is entirely supported by grants and donations. With no advertising to target, the company intentionally stores as little user data as possible. Signal's privacy policy is short and concise. Unlike WhatsApp, Signal doesn't store any message metadata. [...] If you back up your phone to your Google or iCloud account, Signal doesn't include any of your messages in this backup.But what about Telegram, you ask? A Gizmodo report, also published on Wednesday, says that Telegram's default settings store your message on its unencrypted servers. "This is pretty much one of the worst things you could imagine when trying to send secure messages."
WhatsApp:It's important to keep in mind that, even with the Signal protocol in place, WhatsApp's servers can still see messages that users send through the service. They can't see what's inside the messages, but they can see who is sending a message to whom and when.In addition, WhatsApp also retains your contact list -- provided you have shared it with the service. If government requests access to this data, WhatsApp could hand it over.
Allo:The first thing to understand about Google's forthcoming Allo app is that, by default, Google will be able to read all of your Allo messages. If you want end-to-end encryption via the Signal protocol, you need to switch to an "incognito mode" within the app, which will be secure but include fewer features. [...] Allo's machine learning features prevent Google from turning on end-to-end encryption for all messages, since Google needs to be able to ingest the content of messages for the machine learning to work, a Google spokesperson confirmed. Signal:The first thing that sets Signal apart from WhatsApp and Allo is that it is open source. The app's code is freely available for experts to inspect for flaws or back doors in its security. Another thing that makes Signal unique is its business model: There is none. In stark contrast to Facebook and Google, which make their money selling ads, Open Whisper Systems is entirely supported by grants and donations. With no advertising to target, the company intentionally stores as little user data as possible. Signal's privacy policy is short and concise. Unlike WhatsApp, Signal doesn't store any message metadata. [...] If you back up your phone to your Google or iCloud account, Signal doesn't include any of your messages in this backup.But what about Telegram, you ask? A Gizmodo report, also published on Wednesday, says that Telegram's default settings store your message on its unencrypted servers. "This is pretty much one of the worst things you could imagine when trying to send secure messages."
Want a messaging app that is secure, get a peer-to-peer messaging app that does not depend on servers.
SJW: a person who perceives an injustice, and while correcting it, commits a greater injustice.
Seems that the last few sentences address the Telegram service.
But what about Telegram, you ask? A Gizmodo report, also published on Wednesday, says that Telegram's default settings store your message on its unencrypted servers. "This is pretty much one of the worst things you could imagine when trying to send secure messages."
and it's need to have a machine-learning built into it. It's going to be like that stupid Inbox stuff Google tried pulling a few years back, isn't it? I don't need something to create rules and read my email for me to sort it out. I can do both of those tasks just fine. Doing that doesn't save me effort or mental expense; just the opposite. If I had it turned on, I'd be worried it was screwing something up.
With Allo auto replying for me, I'd be very concerned it would be handing out information to people I didn't want to know certain things in my life. Even though Google is likely going to indemnify themselves in the click-thru, I can't wait for the first lawsuit from someone who was stalked and assaulted because Allo told said stalker where they were.
Now we know how team Omidyar can run a news outlet without explicit advertisements: the stories themselves are often great big product placements.
Encrypted end-to-end by default.
It's mentioned in this one - as the worst possible option. Notably it's not end-to-end by default.
http://gizmodo.com/the-best-and-worst-encrypted-messaging-apps-1782424449
Rather curious how the best app for end-to-end security is missing - namely Telegram.
Telegram has 2 modes. Secure ("secret conversations") and
Default (essentially insecure; because messages are stored on their server)
The default trades features for security, namely that of of synchronization between all client devices, without regard for whether they are on or off or anything else at the time the message sent. Its a feature i value, and its a reason i use telegram.
But it IS at odds with security; and its something I'd like to see addressed. Although it would be a substantial rework of the protocol, and it would take a lot more storage space on the store and forward server since each message would need to be stored separately for each receiving device I think.
There has been some other criticisms of how telegram handles secret conversations (which are properly end to end encrypted -- and lose out on the sync to all devices as a result) but I've never gotten specifics on what the criticism is exactly or whether or not it is valid.
Seeing their source does not assure you of anything. You'd have to decompile the app you download from the store to know if it was bugged.
The one your friends and family use. What's the point of a secure messaging network if nobody you know uses it?
Wire is a rather nice messaging App that has end to end encryption. They don't advertise, or hold encryption keys. See here: https://wire.com/privacy/
You keep using that term, "end-to-end". . . I do not think that it means what you think it means.
What about Chatsecure?
It raises the question why they bothered to mention Allo then though, as it also has no encryption on by default.
..then you have already stopped obsessing with "apps" and are primarily concerned with protocols. Once you have decided on, say, XMPP plus OpenPGP extensions, then you have plenty of competing apps to chose from.
And of course, it follows that whatever protocol you use, will be "service-agnostic." Since you're going to pick something which uses a secure protocol, you basically don't care about servers; they're all commodities. Install jabberd or whatever at your Linode. Seriously: whatever.
I don't know how WhatsApp or Allo are even seriously considered. What do they speak? When people talk about the app more than the protocol, that's a bad sign. (e.g. I use the web and it's irrelevant whether I use it with Chromium or Firefox. The more you care about my specific browser, the more I think you're trying to talk me into not-using-the-web.)
n/t
"When I first heard Daydream Nation it quite frankly scared the living shit out of me." -- Matthew Stearns
Whats the point of "secure" messaging in Whatsapp and Allo if the messages are not actually secure?
I'm a good cook. I'm a fantastic eater. - Steven Brust
Try reading that summary again. Short summary it is not the best. It's worse than all the others.
cows are for LUDDITES
My eyes reflect the stars and a smile lights up my face.
... and if you are concerned about the privacy of your contacts, don't install an app that uploads your address book to the company. That is all.
> Want a messaging app that is secure, get a peer-to-peer messaging app that does not depend on servers.
And:
(1) Was not compiled by anyone else
(2) Does not depend on libraries compiled by anyone else
(3) Does not run on an operating system compiled by anyone else
(4) Does not run on hardware built by anyone else
(5) Is completely bug-free all the way down to the hardware
(6) Does not depend on unique identifiers like telephone number
(7) Only uses onion routing to prevent 3rd parties from building a social-graph of your contacts
(8) Does not draw attention to itself by using onion routing
(9) Does not require so much network activity that it drains your battery prevents you from communicating
(A) Is easy enough to use that your non-technical contacts can actually use it
(B) etc
Every choice in life is a trade-off. There is no such thing as perfect. You must prioritize what matters most to you.
But more broadly, anything the increases the cost of non-targeted "drag-net" style surveillance benefits all of us, even those of us who don't actually use the app.
"We commend Wickr for its strong stance regarding user rights, transparency, and privacy"
Wickr
I am not interested in articles about life extension advancements.
Use Wickr. It's very secure.
All messaging apps are replaced by open standards, and you have your choice of client.
Clearly the only "Safe" option is using telepathy.
-- Brought to you by Carl's JR
The Wickr instant messaging app allows users to exchange end-to-end encrypted and content-expiring messages, including photos, videos, and file attachments.The software is available for the iOS, Android, Mac, Windows, and Linux operating systems and is very secure.
Did they not forget about OTR?
Open source, been around for a very long time, available for most OSs (even via apt-get under debian based Linux), supports strong encryption, authentication, perfect forward secrecy, contains no advertisements and depends on no closed servers.
iMessage is also end-to-end encrypted... and already has a huge install base.
It varies by license, obviously, but if the binaries aren't distributed, nothing obligates them to share the live source code.
> telepathy
Cool! Now, is that in the app store?
How do I download it.
THX
C) Does not require you to remove your tinfoil hat to use it
manishs you write like a cunt - this isn't your blog and your style fucks up the point of summaries and articles. please do fuck off or get a clue. fuck you manishs.
I was all set to go whole-hog with the Signal Protocol, until I realized I could only use it on three of my devices. It's a hard-coded limit (cf. github) and there are no plans to change that, currently.
My God, it's Full of Source!
OUTSIDE_IP=$(dig +short my.ip @outsideip.net)
This narrows down the list to WhatsApp, Signal, and Allo.
This story is USA government sponsored. This is misinformation. Do those chats get passed through a server? So encrypting from person A to server (then data exists on server) then from server to person B (C,D,E,etc) leaves everything on server open to be read/saved/copied. More than your chat is of course sent to the server. If the network identifiers were encrypted and the server couldn't read it, the server wouldn't know what to do with it either. What am I talking about? Your IP address.
To wit: the server reads the network stuff and the chat stuff and THE CHAT is only encrypted from MITM. Man-in-the-middle.
Ed Snowden told you. Do not call any of those three apps secure and pump it on front page.
Nobody cares if your teen daughter gave a blowjob to her classmate in gym at the time it happens, but store it and later what?
Yep, it's all like that now. Even new versions of Tails.
https://hardware.slashdot.org/comments.pl?sid=9266977&cid=52359483
I am not sure if you are joking or not, but there really is a well-known IM library called like that: https://en.wikipedia.org/wiki/...
My first program:
Hell Segmentation fault
WhatsApp: You might have a chance of actually being able to communicate with someone you know - especially if you live in Brazil.
Allo: "The first thing to understand about Google's forthcoming Allo app..." - yeah, because Google Plus was such a hit.
Signal: The good news is, you can probably find all your Diaspora friends on this one.
Seriously... let's ignore all the ones that most people actually use, shall we?
#DeleteChrome
You clearly missunderstood your parent.
Want a messaging app that is secure, get a peer-to-peer messaging app that does not depend on servers.(7) Only uses onion routing to prevent 3rd parties from building a social-graph of your contacts
Onion routing requires nodes, aka servers.
As we are talking about phones which get basically dynamic IP adresses all the time, it is impossible to have such a service without a central server infrastructure that knows who is online and how he is reachable.
Of course such servers could be hosted by the crowd.
Cost free eBook I read (by iBook/Kobo/Amazon/ObookO/Gutenberg etc.): "The Green Odyssey" by Philip Jose Farmer.
None of the three are secure at all. The FBI/CIA use time logging as a default tracking failsafe mechanism.
To have private chat you will have to run a live cd of Tails on a cd or in a virtual machine from an .iso as a live cd.
The only good version is 1.4.1. It is what Ed Snowden used. Do not ask me how I know, especially on Slashdot.
I think it's stupid to talk about privacy and centralized services. Only federation can give use decent privacy level. Like XMPP. XMPP has e2e encryption (OMEMO, PGP, OTR). And serverless solutions like Tox. Although, it's still missing some important functionality. If you have a choice use decentralized services.
so which one should you be using?
The one that lets you contact people. So our choices are:
WhatsApp: Used my hundreds of millions of people around the world. A de facto standard in many countries ... what? Who are you people?
Allo: Forthcoming? As in not here yet?
Signal:
... which is strictly distributed and available as open source, see Ring official site or Ring on F-Droid. Unlike Signal, you can compile your own working Ring App from the sources.
https://threema.ch/en
Servers in Switzerland, Company has "bank status", open API, everything encrypted, anonymous ID.
Cost free eBook I read (by iBook/Kobo/Amazon/ObookO/Gutenberg etc.): "The Green Odyssey" by Philip Jose Farmer.
only if they are sacred cows, otherwise steak is for dinner
The article has omitted to mention that the criteria used was to either have encryption by default or be google.
Walk into a McDonalds or a gas station or grocery store and say that to a customer and watch the blank look on their face.
Then realize those people and people like them decide what is popular.
You may be right on technical terms and maybe even philosophy.
Which will have to be your consolation prize for being wrong. Because human behavior is a social phenomenon most of the time, and a thinking behavior only at the brink of consequences.
Wire has complete e2e--encryption and a full set of features missing in the other apps. (As well as all encryption bits being open source).
Simple comparison chart is here: https://wire.com/privacy/
Signal is great! Easy to use, secure, open source. What's not to love? The iPhone version sucks more than the Android version and there really isn't a desktop version yet. I really want a way to read and respond to Signal messages on my big keyboard and monitor.
And yes I know about the Chrome extension, I don't use close-sourced browsers.
Onion routing requires nodes, aka servers.
As we are talking about phones which get basically dynamic IP adresses all the time, it is impossible to have such a service without a central server infrastructure that knows who is online and how he is reachable.
That isn't true. Anytime you write "impossible", it should make you think twice.
Here's an example (I haven't used this, but I know this sort of thing is very feasible via Tor): https://github.com/prof7bit/To...
Hey dummy!
Did you notice how some of those other points were also contradictory? No? Well read it again.
There is a larger point to that post which went completely over your head. Since reading it twice probably won't make you any smarter, I'll spell it out: The word "secure" means different things to different people and you can not have all of them simultaneously.
This story seems bias to only compare 3 Secure Messaging Apps when Wikipedia has 24 Secure Messaging applications: https://en.wikipedia.org/wiki/Comparison_of_instant_messaging_clients#Secure_messengers
My interpretation of privacy is privacy of your message and privacy of who you are talking to (i.e. The "messaging server" does not know every person you talk to and are connected to).
Hence it needs to be a decentralised messaging app.
That is why I use TOX which is available at: https://tox.chat/
For a start Matrix.org (Vector.im is a client), is decentralised, federated and backwards (bridged) to XMPP & IRC.
Matrix doesn't depend on phone numbers (however can use them as a 3rd party ID). So it's not vulnerable to SS7 attacks, phone number porting, the same social engineering, etc. by default.
It works on AOSP (Android Open Source) based ROMs! Matrix/Vector doesn't depend on Google Play Store and you can run it without Google Apps (which collect lots of data) installed. GApps are a huge problem, because you can't even INSTALL it on something like CyanogenMod or CopperheadOS without destroying the phone's security model (requires a very nasty kernel hack and means no secure, verified boot). Even the open source MicroG replacement option requires signature spoofing, which means it's a complete non-starter.
Signal, even if open source, won't talk to other Signal servers. It won't federate, so you're either locked into Signal, or in a network all by yourself (which isn't very useful if you need to communicate).
If you care about security, CopperheadOS is by far and away the most advanced Android distribution and if you can't run Signal on it, then better look for something else (for me, that's Vector or Conversations).
[WhatsApp] can see who is sending a message to whom and when
Of course they do. How could they manage replies otherwise?
Too lazy to even RTFS. You must be a lib.
What about LineApp with "letter sealing" enabled. Seeing as the majority of the Asian world uses it, it would be nice to know how it stacks up against the others.
XMPP is an open standard supported by dozens of messaging applications on every platform in existence. I use "Conversations" which supports end-to-end encryption.
Who posted this article? It is truly uninformed.
Every choice in life is a trade-off. There is no such thing as perfect. You must prioritize what matters most to you.
A confounding factor in my case is that every clique I communicate with seems to have their own pet IM app, to the extent that I've got an entire subfolder in my phone dedicated to all the IM apps I need to run to communicate with them all. All taking up memory and resources when they poke around for new messages. What I want most is some sort of Trillian Mobile that unifies everything into one single app, not one app per user or group.
Also, is it just me or is Wickr on Android the least reliable IM app ever written, and that's including using carrier mackerel across the sahara? It loses messages, decides after an hour of sitting on them that they're now unsent, notifies for message arrivals but doesn't display them, suddenly sends out queues of weeks-old messages, etc etc. How can anyone write an app that bad?
"If you care about your privacy, you would want your messaging client to be end-to-end encrypted. This narrows down the list to WhatsApp, Signal, and Allo."
Like the previous article on google, this is an extremely narrow vision. As if those 3 are the only answer to this.
I'll second that. Ring is based on DHT and its working nicely on Linux.
It is mentioned, and it is certainly not the best. But there are missing messengers: from the large messengers, Viber and Line recently switched to e2e encryption. How well it is implemented remains open for debate of course.
Clearly the only "Safe" option is using telepathy.
And talk to those fucking mind-readers?
As far as I can tell, these apps all require a user to have a telephone number (Subscriber Identity Module). This is then used to ensure a securely authenticated connection.
Good in theory.
However in practice, I get a new number every few years (by choice even if I could keep my old number when signing a new contract). After 5 years on my current number, I still get accounts, calls, and other material (via SMS or MMS) intended for the previous owner of the number.
Also, in my country, some banks use the same channel for online banking security, and as a consequence "SIM cloning" is a well-known scam employed to empty out accounts.
While it may be harder or less worthwhile to crack the SIM part of the authentication protocol, I am by no means convinced that it is foolproof.
(Conceding that YMMV, I have a fairly cheap (+-20 USD equivalent per month) cellphone contract that includes X minutes and Y SMSes a month, which carry over, and which I have never used up in a month. So I'm quite happy to SMS people or even call them back. Friends often complain that I'm not on $CHAT_APP, but I do have an e-mail address, and you can get a free e-mail clients for every conceivable platform without requiring your telephone number (or address book!) - which is better than these chat apps do. You also use the exact same data channel to send and receive. I don't always have my data connection activated, but when I do, I get your message the same, whether it is a chat or and e-mail. Plus, if you require encryption, that can also be added on to e-mail in various ways without the need for a central server to handle it, it could be done peer to peer.
So I really don't get this chat app craze. Is it because it gives the power to grab someone's attention regardless of what he was doing, to now first answer your inane chatter? That's exactly why I disable the data except for certain times. If you want to save money on calls and SMSes, use good old ubiquitous, standardized and familiar e-mail, if you want to get hold of me quickly, just call or SMS as you did 5 years ago - the slight charge should serve as a (low) threshold just to ensure this is really that urgent, and that's exactly the point for me).
Free, as in your money being freed from the confines of your account.
In this case we know something about how governments and other spies operate. I'm sure if the NSA or GCHQ really wants you data they will get it by some foul means, but for avoiding bulk surveillance and preventing your private communications entering the hands of law enforcement, local government, ISPs, consumer rights groups (see proposed UK Snoopers' Charter) etc. keeping your data off a third party server works really well.
In the UK the government is likely to require ISPs to log your traffic. It is therefore important to obfuscate it. Encryption, of course, but pipe it all down a VPN so that most metadata can't be observed either, and it is difficult to tell apart from other traffic. TOR goes even further with this obfuscation. Avoid having the data stored anywhere, even in encrypted form, because it will be vulnerable to demands by government agencies and you may be forced to decrypt it or go to jail.
const int one = 65536; (Silvermoon, Texture.cs)
SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
The worlds most used messaging apps are not in the comparison!
Skype.
Line.
Both of these are at least of the same magnitude as whatsapp in number of users, and 10x-1000x larger than the other two in the comparison. Line has end-to-end encryption too. Would have loved to learn more about its metadata storage / routing policies.
And then there is the ToR messenger for the really privacy concscious...
Of course it is true:
TorChat is a peer to peer instant messenger with a completely decentralized design, built on top of Tor's location hidden services,
You need a Tor Service to find your peer. How else would you find a peer?
Reading the wiki helps: https://github.com/prof7bit/To...
On the other hand, we talked about Phones, where IP adresses change constantly (actually they use a different protocol for addressing), Tor is for "PCs" only.
Cost free eBook I read (by iBook/Kobo/Amazon/ObookO/Gutenberg etc.): "The Green Odyssey" by Philip Jose Farmer.
how can you use word secure to describe something, that runs on a cellphone?!!
repeat after me: a system, where there exists at least 1 component that you do not have control over, can never be secured. In this case, baseband processor, that is capable of DMA. Fuck cellphones.
Telegram is a good compromise for all my needs.
Not everything needs to be encrypted. If the gov't finds out that I told my friend that my kitty did the cutest thing with a tissue, who cares? If I need to give someone a password to an account I set up for them on a server, then I have the option to encrypt. It would be nice if Telegram switched to using Signal's protocol for encrypted communications, cause Signal appears to be the benchmark that all other protocols are compared to, and I know there have been issues expressed with Telegram's encryption protocol.
Other features that are important: Broad spectrum platform support. That means Windows, OSX, iOS, Android, Linux. That's ultimately what killed BBM. You *had* to have a Blackberry to use it. Once Blackberry started dying, everyone abandoned BBM as well. By the time Blackberry saw the light, it was too little, too late. IMO, Whats App went from being a childrens toy, to a seriously useful tool, the second they added desktop support.
Other critical feature: Sync history between clients. I have multiple desktops, a tablet, and a phone. The idea of not being able to switch from one to another and still continue my conversation is flat out idiotic in todays connected age. I prefer to type on an actual keyboard when I can, so if I'm in front of a desktop, I use the desktop to message with. But it's not unusual that I then have to go somewhere, but I don't want to abandon the conversation, so I switch to a mobile device. I *expect* my history to follow me so that I can continue where I left off.
Finally, it *has* to be easy. I would have loved to see XMPP become the defacto messaging protocol, cause it's just so powerful. But setting up an XMPP client is a PITA. Sure, *I* could set it up just fine, because I have the skill to do so. The average person doesn't, which guarantees that the overwhelming majority of people won't use it, which defeats the whole purpose of having a universal messaging protocol.
Privacy is overrated. Just be careful not to provide in any way your birthdate, address and phone number (and obviously the more private information like SSN, etc) and you are good.
Whatsapp and Signal can probably (whatsapp is no open source) see the same amount of data. Whatsapp is honest and tells the user, what they possibly can see, signal doesn't do this that upfront.
Nothing against some actually secure apps (and one point you should not neglect is a trustworthy vendor, which doesn't push malicious updates to an app, which is secure at the moment), but check your facts. I think there was one messanger (app, programs there are some), which wanted to get rid of the metadata by using tor. I guess this sucks quite a bit of battery, though.
At least the servers aren't in the USA. XD
Most the unapproved messages (pending) on TFA are about that. "According to https://telegram.org, all messages are stored encrypted on the servers. Where is the proof that the messages are stored unencrypted?" "Your slam on Telegram is pretty much just reposted FUD based on a personal beef between Tptacek, Moxie and the Telegram dude." "Avoid Telegram? Are you mad? Oh I see. The app wasn’t made in the US." "Gizmodo is just joining the ranks of other protectionist; bashing without the real arguments, just because it was not made and owned by somebody from the silicon valley."
Not true.... the servers are encrypted...
Would you please explain how to set this up?
I am one of those people who are swamped/flooded with stuff in my inbox. The 5 tabs was a good start, but it's hopelessly problematic for me -- not only does Google mis-catagorize stuff, but the classifications (social, mailing list+forums, promotions, personal notifications) doesn't match "important, scan, junk" for me.
And, something to let me categorize emails as a GTD-style sectioned to-do list? PLEASE, tell me how.
NO, it is not, because you cannot control message addressing. Ditto. - djb
The first and only time I tried WhatsApp (on iOS), it requested access to my Contacts, which I denied it. Investigation of the situation revealed that the app uploads the entire contacts list. Poor Android users can't even download the app without consenting to provide access. I refuse to use any app that needs access to my Contacts. (I operate my own email, caldav and carddav servers.)