spiral Oz guv is working hard to makes laws that force encryption backdoors. Stupid Idea. Session - and every other tech company will just leave Australia for a country that won't be doing this, and their tech industry will collapse, along with the ensuing taxes they collect. In the U.S., the guv just hacks into the internet backbone and violates your First and Fourth Amendment rights, but e2e works around that.

      MoonshineMidnight

      I know, that's why I was questioning why that person was saying no to signal but yes to session

        MoonshineMidnight Yes... when asked about this, Proton stated - as you indicated - that they will follow court orders and hand over information they had access to.
        IIRC, they also wrote that if users connect to them through the TOR network, they will have access to nothing.

          [deleted] . If I really want to hang out with someone, a true friend will reply to a text message. People who limit contact just because I don't have social media aren't worth having as friends in my view.

            • [deleted]

            • Post #155

            i use and like Molly (for signal) and Threema

            13 days later

            AlanZ Threema doesnt have PFS and the messages don't delete on a timer, not my app of choice.
            BTW I don't understand whats the whole problem with "Signal & phone number", if you are unable to obtain a nameless Sim card, install signal with it, put a PIN registration lock and dispose the sim that maybe you shouldn't use Signal at all.

                Dangor
                I am perfectly capable of doing this, I choose not to, because I resent it. Maybe the difference will dawn on you, give it time, seems like you need it.

                    AlanZ
                    Then just don't use signal.
                    I don't like pepsi so I drink cola, I don't tell pepsi to change its ingredients and make bad marketing about them. Its a free market.
                    P.s I don't drink either, keeping a healthy lifestyle :D

                    .

                        8 days later

                        MaxPower they claim PFS is achieved because they use TLS (which is kind of true but far from ideal). Their message cryptosystem itself does not achieve perfect forward secrecy.

                            a month later

                            GrapheneLover whoah, impressive. What else would you recommend in general for communication if there's any different usecases...

                              Javcek Late to the game -- sorry. I have been using the Signal fork Molly.im with success here. Yes, it requires a phone number, because it hooks up to your Signal account. It does, though, offer some features over Signal: it will encrypt your local message archives, for one, and crucially will allow Android-Android linking, which Signal won't -- say you have Signal on a Pixel phone and you want to add your Pixel tablet. Signal doesn't support that, but Molly.im does.

                              • N1b replied to this.

                                  depscribe thank you, somehow the Android-linking feature totally went over my head.

                                    zkz

                                    Correct me if I'm wrong, but if I understand correctly, the Ibex protocol implemented by Threema at the end of 2022 seems to have implemented PFS beyond TLS:

                                    "At the transport layer, Threema has always supported Perfect Forward Secrecy (PFS). And just like for group calls (see above), PFS has always been enforced at the end-to-end layer for individual calls. The new Ibex protocol now also supports the exchange of ephemeral keys for chat messages on the end-to-end layer (with ECDH). A new key is used for each message, from which it is not possible to derive previous keys (thanks to KDF ratcheting)."

                                    Here an external security analysis of the Ibex protocol.