[corty]

Encrypted private key isn't the purpose of signal's PIN. Signal's private key is actually used, discarded and possibly recreated quite nonchalantly by the application on your phone. The only purpose of the PIN is securing data that is stored on Signal's servers.

[johnchristopher]

> The only purpose of the PIN is securing data that is stored on Signal's servers.

Which is at odds with "signal doesn't store anything server side".

Choice of words, but it matters when building a narrative.

[corty]

"signal doesn't store anything server side" is false, plain and simple. Signal stores certain kinds of data server side, just not everything. And they do some SGX voodoo dance to maybe protect it: https://signal.org/blog/secure-value-recovery/