[stuzenz]

> Am I just wrong here, or understanding something wrong? I swear everyone I talk to on Signal has changed their safety numbers at least once in the last couple years. Should I not talk to them any more until I verify those in person?

I think keybase.io are on to the correct idea here. There was a good blog post about it somewhere in their blog.

It wasn't this one - but this one does talk specifically to the problem you describe.

https://keybase.io/blog/chat-apps-softer-than-tofu

[schoolornot]

Keybase also has the system where you can approve a new device from another. Why can't we have the same thing w/ Signal? Maybe tack on the PIN to make it a bit more secure.

[vifon]

If you backup the Signal data on the old device and restore it on the new one, your safety number won't change. This is the proper way to securely migrate to a new device.

[dingaling]

I think that's a serious backdoor for a coercive attacker. They only need access to the original device once and can then assume the identity of the contact on another device.

[oconnor663]

You might be thinking of this one? https://keybase.io/blog/keybase-new-key-model