Molly.im

argante

gta3 This is a question for the GOS and Molly developers. Accrescent has been added to the GOS App Store. Of course, I'm basing my opinion on what @Nuttso wrote earlier about the chain of trust for boot process and apps.

schklom

Nuttso

along with data that lets Molly “pin” the device’s boot key and a fingerprint of the OS image

it supports GrapheneOS by allowing us to pin its official boot keys

Just to be clear: does it mean it will support all 3rd-party OSes with bootloader locked, not just official GrapheneOS?
What happens with e.g. LineageOS with (very likely) bootloader unlocked?

Nuttso

schklom The feature will be optional. You can either restrict communicating to a device that is considered insecure or allow it and just stay informed. Both chat participants would need to enable it either way. Like read status. If only one enables it, it will not work.

schklom

Nuttso What I meant was: what will be considered secure and insecure?
I imagine all OSes with bootloader unlocked would be insecure, right?
But assuming the bootloader is locked and the OS is properly signed:

would custom GOS builds show as insecure?
what about other custom Android builds, e.g. e/OS or a non-public build?

I'm just a bit confused since you mentioned pinning GOS keys, which could mean that GOS keys and custom OS keys are treated differently.

Also, will builds based on public test-keys (like what Fairphones did for a while IIRC) be shown as secure?

In any case, this sounds like a great feature, thanks for all the work you put in, I love Molly and its devs :)

gta3

Nuttso

Has there been interest in having both sender and reciever message previews set to off?

I have mine off, therefore my screen shows "message received"

However i can't guarentee recievers device doesn't show any phone holder the message contents...

If not, is this possible to implement

Nuttso

schklom

Roughly speaking, a device will be considered secure if:

The bootloader is locked and Verified Boot reports a good (green) state.
The OS is signed with trusted production keys (for example: stock Pixel images signed by Google, or official GrapheneOS builds signed by the GrapheneOS keys).
The system is on a recent security patch level and not obviously abandoned.
There is no root, no test-keys, no engineering build, and no obvious tampering like userdebug builds or public signing keys.
We can verify all of this via hardware-backed key attestation and pin the corresponding OS/boot keys.

In practice that means:

Official stock Pixel and official GrapheneOS builds that meet the above will be shown as secure.

Custom GrapheneOS builds, other custom ROMs (e.g. e/OS), non-public/private builds, or anything signed with public test-keys will not be treated as “secure” in the UI. That doesn’t mean they’re automatically bad, it just means we can’t reliably verify their security properties or update policy, so they won’t get the same high-assurance rating.

The exact list of trusted keys / configurations will be documented, but the core idea is: locked bootloader, verified boot, current security patches, and OS images signed by keys we explicitly trust, without root or dev/test builds.

Joe-FastFeet

Nuttso

But I want to wish you every success, and I will definitely become a supporter of Molly as soon as the project passes an independent audit by reputable experts. And I'll probably even become one of the regular donators, although I'd prefer a paid subscription with additional features.

gta3

What i mean to say : is it possible to ENFORCE both sender + reciever have message notifications set to off?

Otherwise a bad actor holding the phone can see message previews that the sender was not aware of

Joe-FastFeet

argante @Joe-FastFeet as the first donor

I will definitely not be the first donor of funds for the audit, since I am not a Molly user, as I said earlier, but I use and will use only Signal. I'm sorry. And even more so, I will not donate $100. I apologize again. But in terms of how to raise the right amount, I think it would be wise to put a special notice on the GOS page, where you could inform Molly users who want to join the audit funding event, and give everyone the opportunity to put their name on the general list of donors, and once there are 2000 people on the list, they could support the idea of the audit with their $10. I think it is quite possible to collect the required number of donators within 3-5 months.

mod note: edited to fix formatting so the quote and new content are separate.

23Sha-ger

other8026
Actually, to keep this topic clean, the only "actual" advantage
of Molly against Signal, in terms of forensics only, is the DB
encryption and alternative package name.

I will not be talking about UnifiedPush and other enhancements.
See, the way it works now, Cellebrite has an automated script
for messengers, Signal included. Obviously Molly is making the
extra effort to also counter measure AFU, so even if you provide
the passphrase to the adversary, and your Molly icon looks like a Music app, it can fly. Things can change. I talk about present.
Unless your examiner knows about Molly, there doesn't appear
to be any presense of Signal app installed. That's an advantage.

Joe-FastFeet

23Sha-ger Obviously Molly is making the
extra effort to also counter measure AFU

Yes, it's very interesting! But where can you learn about the results of these efforts to date? I have been looking for material on this topic for a long time, but, unfortunately, I could not find it.

23Sha-ger

Joe-FastFeet
You should get the latest Cellebrite Premium and run it
against AFU device, both with Signal and Molly. Simple.
Since I know how extraction works, Molly is not even on
the roadmap. Because most users of Molly will use GOS.
And that's a minority of a minority. You can fork Molly and
call it Smally. Change icon and package name. No automated
tool will ever correlate that this app DB is your Signal app.

Joe-FastFeet

23Sha-ger You should get the latest Cellebrite Premium

Alas, I don't have Cellebrite Premium. Can you tell me where I can read about how this comparison between Signal and Molly was made, using the Cellebrite Premium software you mentioned?

other8026

I deleted a lot of posts here. Please keep discussion on topic (I know I caused it to go off topic myself). If people have moderation issues, contact one of us privately.

Otherwise, please use the flag feature to bring our attention to any posts that may be problematic for some reason. I know people may think that flagging posts might be awkward, but they can be very helpful since this forum can be pretty active sometimes.

Nuttso

gta3 This is possible, but not planned for now. Stuff like this makes only sense after implementing remote attestation. Because if the receiver uses a fork or signal instead of molly we can't enforce that.

Ilgar

I've found that Signal has reproducible builds issue, which imo is extremely important. What's situation with reproducible builds of Molly?

Also regarding websocket efficiency issue of Signal, they did resolve it, though they choose other implementation. Did Molly follow Signals implementation of fine–tuned websocket notifications or kept own?

Nuttso

Ilgar reproducible builds work. We followed signals implemantation

Watermelon

I'd like to see Molly becoming an official variant of the Signal app.

simplenot

Watermelon Yes, please. I'm still hesitant to use it.

« Previous Page Next Page »