[vpEfljFL]

- end-to-end encryption

- able to see the conversation on other devices

You can choose only one. Otherwise I can't see how it would be end-to-end encrypted. Your devices should create some sort of a group chat to make this work.

Group chats have large enough attack surface and "end-to-end encryption" will create false sense of security.

[_odey]

Signal has end-to-end encryption and you are able to see the conversation on other devices from the point you link your devices.

What it does not have is the ability to send your conversation history to your linked devices (which I find a bit odd, if you can trust a device with your present/future conversations, you should be able to trust it with your past, or at least be able to opt in in trusting it with sending over your past conversations). I hope they will provide this in the future.

[kdtsh]

All you need is for the two instances of the app to use separate sets of key pairs, where the keys have been generated on the device itself and the private keys never leave the devices, to share the private key for the conversation between the two devices. I don't know if Signal or any other app does this, but it's 100% conceptually possible.

[vekker]

Huh, why? If you have the same private key on your devices, you can do E2E encryption on the same conversation on multiple devices, no?

[HelenePhisher]

I use Signal on multiple desktops. It's a good experience and really works well. I can choose both.

[vpEfljFL]

In general there is a simple rule: either usability or security.

All general consumer grade tools are fighting with this equation: How can we make an app which will appeal to the broad audience which will be easy to use.

I can't say anything about signal but in general if something is easy to use and you can chat super secure with your grandma then most likely it isn't secure how you might think it is and it's actually an issue because you may want to send data which otherwise you wouldn't if you know you're on compromised channel.

Sharing history between e2e encrypted devices is a tricky thing because you should have forward security with some ratchet keys.

[detaro]

Other products manage, so it's clearly not a case of "You can choose only one".