Hacker News new | ask | show | jobs
by brobinson 2013 days ago
Threema is not open source yet so I wouldn't use it for that reason. I did like their security whitepaper, though, and they do have some impressive clients (Mercedes-Benz, etc.).
1 comments
soziawa 2013 days ago
Additionally they have regular audits [1]. Open source only without any actual thorough reviews doesn't cut it in my opinion.

[1]: https://threema.ch/en/blog/posts/audit-2020-en

link
viccuad 2013 days ago
Open source is a precondition. They can promise you the world, but if you can't build it yourself and get reproducible builds, who knows what's in there.
link
robert_foss 2013 days ago
Yeah, agree. We've had enough fun recently with the likes of the CIA backed Crypto-AG.
link
soziawa 2011 days ago
Sure, but a precondition itself doesn't guarantee anything. You still need to pony up the money for actual aufits.
link