[ytdht]

even if an Android application would communicate with others 100% securely, Google has wireless administrator privileges and can be served secret letters that can order Google to do anything, so technically they could log the data before it's encrypted.

[jMyles]

Will an I/O audit of the network interface will detect this?

[drcross]

No. How do you propose that it would?

[jMyles]

I don't really know much about what kind of network chatter Android generates generally, but I imagine that, even if its encrypted, you can detect that there's suddenly network traffic to Google?

And then, depending on how silly the eavesdropping is, repeating the same message might cause the same encrypted payload to be transmitted?

[ytdht]

traffic to Google is probably very common... and to be sure that you get the whole picture, you would probably need to intercept wireless signals going to the cellphone company which are also encrypted

[venomsnake]

Only if you have google services installed.

[aw3c2]

Without which TextSecure does not work.

[em3rgent0rdr]

But what about the fork https://github.com/SMSSecure/SMSSecure which can be installed on via f-droid google-less phone?

[aw3c2]

It has no push messages which means bad experience for non-SMS messages.

[psykovsky]

The fork only handles SMS/MMS. There are no IM features in it.