[aendruk]

Signal, WhatsApp, and iMessage frame privacy from the service operator as the norm, while the others relegate it to some “I’m being sneaky now” switch.

Framing fundamental privacy measures as sneaky mode is actively harmful to their broader adoption, paints a target on the few people who do have dire need for protection, and makes us all vulnerable to efforts to legislate against what progress we’ve made.

[vetinari]

> Signal, WhatsApp, and iMessage make E2EE the norm

E2E. yes; explicit key management, no.

So basically you are getting encryption on your device, but do not know, who can decrypt.

About the only messaging app that makes some effort on key verification and keys cannot be changed randomly is Threema.

[aendruk]

(?) You’re replying under a thread about the ranking of WhatsApp vs. Facebook Messenger in a list that doesn’t even include Threema.

[vetinari]

The thread developed into E2EE. Threema was an example how to do it more correctly, and to show what the others are doing wrong, giving an incorrect sense of security when there is none.