[londons_explore]

I disagree.

As web apps and web services get more and more e2e encryption and strong privacy, the backends become dumber and dumber. If the backend can't see the data it's working with, it can't have much business logic in - instead the backend ends up looking much like a dumb storage service or message queue. Some companies will just make their app talk direct to S3/pubsub rather than run their own application servers.

At that point, some 'hacker' can download the APK or the javascript bundle of the frontend, and simply put up a replacement backend that does the same storage service.

Well done, you now have a 'pirate' web service.

[nmilo]

Let's be realistic, Quizlet is not e2e encrypting their protocol, and most web services are not getting strong privacy. Good old HTTPS is enough for most services.

[londons_explore]

But in the future, more and more things will be e2e. Some fields like messaging practically require it today. Any company that wants to use 'privacy' as a selling point pretty much has to do e2e encryption today.