[HelenePhisher]

No end-to-end encryption per default, and if I activate it I’m not able to see the conversation on other devices. Signal does that better.

[vpEfljFL]

- end-to-end encryption

- able to see the conversation on other devices

You can choose only one. Otherwise I can't see how it would be end-to-end encrypted. Your devices should create some sort of a group chat to make this work.

Group chats have large enough attack surface and "end-to-end encryption" will create false sense of security.

[_odey]

Signal has end-to-end encryption and you are able to see the conversation on other devices from the point you link your devices.

What it does not have is the ability to send your conversation history to your linked devices (which I find a bit odd, if you can trust a device with your present/future conversations, you should be able to trust it with your past, or at least be able to opt in in trusting it with sending over your past conversations). I hope they will provide this in the future.

[kdtsh]

All you need is for the two instances of the app to use separate sets of key pairs, where the keys have been generated on the device itself and the private keys never leave the devices, to share the private key for the conversation between the two devices. I don't know if Signal or any other app does this, but it's 100% conceptually possible.

[vekker]

Huh, why? If you have the same private key on your devices, you can do E2E encryption on the same conversation on multiple devices, no?

[HelenePhisher]

I use Signal on multiple desktops. It's a good experience and really works well. I can choose both.

[vpEfljFL]

In general there is a simple rule: either usability or security.

All general consumer grade tools are fighting with this equation: How can we make an app which will appeal to the broad audience which will be easy to use.

I can't say anything about signal but in general if something is easy to use and you can chat super secure with your grandma then most likely it isn't secure how you might think it is and it's actually an issue because you may want to send data which otherwise you wouldn't if you know you're on compromised channel.

Sharing history between e2e encrypted devices is a tricky thing because you should have forward security with some ratchet keys.

[detaro]

Other products manage, so it's clearly not a case of "You can choose only one".

[stereotactic]

How does end to end encryption make that better?

I am genuinely curious. Is your threat model too severe that you really need to hide your conversations?

[HelenePhisher]

I don’t want to discuss the reasons for encrypted communication, sorry. Citizenfour was a good movie though.

[hncensorsnonpc]

Why is this utterly stupid question coming up again and again? Go ask your peers/yourself why feel the need to share all of your conversations with the government and other 3rd parties who in the best case just want to sell you shit.

[vpEfljFL]

Could you please "open source" all your conversations to provide ground for reasoning "I have nothing to hide".

So, and we can discuss threat models.

Thank you.

[stereotactic]

I don't mind; in public groups its for everyone to see.

Snooping by the government or by the corporations? Which one is more insidious?

[fsflover]

I would prefer to have none, hence e2e encryption.

[m-p-3]

High expectations of privacy. I prefer to hide everything, even mundane stuff, than wished I had and I didn't.