Forgive me if this is an obvious stupid question, but with all this talk (again) about the EU trying to force chat platforms to check the content of its messages, I can help but think: how are they ever going to prevent me and my friend from sharing public keys and using them to encrypt our messages to each other? In other words: how are they ever going to be able to ban encryption?
That’s exactly what makes the proposed regulation so absurd. If you’re not completely tech illiterate, you’re gonna use whatever fork of your FOSS software of choice to keep communicating securely. This regulation is just a very obvious data grab for the whatsapp users that are too lazy to switch.
whatsapp is not meaningfully e2ee
please share
It’s closed source. So it’s impossible to verify Facebook doesn’t have you pkey and goes MitM.
They say they don’t, but you can only take their word for it.
i guess that fb does store keys after all; they do respond to police requests
i also found this: https://www.reddit.com/r/privacy/comments/v7tsou/is_whatsapp_lying_about_its_endtoend_encryption/
In what sense? It’s encryption is based on that of Signal. Are you referring to metadata? I also avoid whatsapp, but not because of the encryption.
Even if it’s based on Signal’s encryption, it doesn’t mean it’s implemented as it is in Signal.
Exactly.
They generate the keys, that’s all you need to know in order to know that it isn’t secure.