Two questions.

My family insist on using Whatsapp for the family chats. I have to keep a copy on a device just so I can communicate with them. I do so under protest, as I was always told it isn’t secure. My brother has just said

“oh Whatsapp is encrypted, it’s perfectly secure”.

First, is it actually as encrypted and safe as my brother claims? That would solve everything.

Second, if it isn’t, where can I get some proof that we should switch to Telegram or whatever? Proof which doesn’t make me look like a raving loony?

  • @ddnomad@infosec.pub
    link
    fedilink
    11 year ago

    Telegram’s servers are located in US, Singapore, Netherlands (and maybe some other countries) from what I’ve gathered. And all chats that are not E2EE’ed are stored there, encrypted at rest at best with keys in the same database, or somewhere else that can still be accessed in automated way. Maybe it is not even encrypted at rest.

    The point is, all those countries are either in 5 eyes or have information sharing agreements with 5 eyes countries. So as far as I’m concerned, TLAs can still have their fingers in those pies, in addition to Telegram’s overall shadiness and Russian ties. So maybe you get KGB strongman keeping a watch over your chats too.

    This is not something I’d have much confidence in to be honest.

    • @JubilantJaguar@lemmy.world
      link
      fedilink
      11 year ago

      For the average Westerner, the threat from shady Russian agents seems orders of magnitude less serious than that from their own governments and police forces.

      For EE2E, the corporate spyware messengers are asking us to take their word for it. Hard.

      About the server locations, that’s interesting and does indeed undermine my argument a bit.