Signal stores encryption keys in plain text on Desktop

N1b

This is really disappointing, both the security flaw and the reaction from them: https://stackdiary.com/signal-under-fire-for-storing-encryption-keys-in-plaintext/

I'm a subscriber to The Hated One and get early podcast access. From him I heard first about it, he's furious to say the least.

thure

Imho: I think this is a bit of an overreaction. Firstly, the problem isn't new and has been discussed since 2015: https://github.com/signalapp/Signal-Desktop/issues/452

If someone can access the desktop, everything is lost and the desktop client can't be trusted. And if you are worried, you can always encrypt your hard drive with strong passwords.

Most Android apps aren't encrypted either, just the base system. And nobody really complains about this, so I don't really see it as a big problem.

de0u

thure Most Android apps aren't encrypted either, just the base system. And nobody really complains about this, so I don't really see it as a big problem.

On Android and iOS, the app sandbox protects app storage from inspection by random other apps, so installing a random game is genuinely unlikely to exfiltrate your Signal messages.

It is true that desktop Linux lacks these protections, but that doesn't mean there is no issue, or that nothing could be done, or that warnings couldn't be issued.

N1b

Especially since Signal positions themselves as a "privacy and security by default" messenger, one could expect this to not be an oversight.

iMessage does encrypt the keyfiles on MacOS. That's maybe comparing apples and oranges, but it shows that much more is possible and in my opinion expectable of the Signal foundation.

So basically you're safe on Android or iOS because of the much better security model, but on any desktop OS you'd have to make sure that there'll never be a malicious app or script running in the background. That's something probably 99% of Signal users are not capable of. They got (talked) into using Signal believing that it's not necessary.

I'm mostly disappointed by the smug answer, that they don't even recognize this being an issue. Yes WhatsApp is no safer, but security and privacy is why people switched to Signal, the bar is higher than that.

xxx

I have read it also. But this flaw is no big deal? Data must be unencrypted to use. Always use FullDiskEncryption on a PC.

Moisture

xxx Data must be unencrypted to use.

This is not about the data but the encryption keys. Imagine that you log into your e-mail and all other apps could read your e-mail password.

fid02

Could someone who has the technical knowledge explain to a layperson (👉fid02) if the commit mentioned by a Signal developer in this GitHub issue comment will actually fix the issue of storing encryption keys in plaintext?

other8026

fid02 looks like it to me. Though I wonder how they'll store keys on devices that aren't supported...

edit: looking quickly at the commit and another later one, it looks like nothing changes on devices that aren't supported. The old key is just moved to safeStorage, so I guess if people are nervous about the old key being used, maybe delete all the config files, remove the device from connected devices, then re-link Signal? With the old key deleted, the device would have to generate a new one.

xxx

Moisture This is not about the data but the encryption keys. Imagine that you log into your e-mail and all other apps could read your e-mail password.

This is not the Signal encryption key or am I mistaken? All other aplications can read gpg or email passwords [kind off] on a PC. I removed Signal-desktop anyway.

' highlighting that Signal’s desktop app stores local chat history encryption keys '
https://stackdiary.com/signal-under-fire-for-storing-encryption-keys-in-plaintext/

Everyone

They have known about this issue for years and never fixed it, it was brought to their attention numerous times and they just completely brushed it off. It was intentional and they had no desire to fix it because they wanted it like that for their sponsors to be happy it's easier for them to handle criminals and uncover delicate messages. It was always intentional and they knew what they were doing. It's been like this for their sponsors ever since they removed password protection. Keep your eyes open

other8026

Everyone It was intentional

Everyone it's easier for them to handle criminals and uncover delicate messages. It was always intentional and they knew what they were doing.

Is there any evidence to support these claims? While it is disappointing that they hadn't done anything about this in the past when it was brought up, that doesn't mean that they didn't make similar changes earlier for nefarious reasons.

xxx

Follow up:

https://github.com/signalapp/Signal-Desktop/pull/6849#issuecomment-2218865399