this post was submitted on 30 Apr 2024
177 points (90.0% liked)

Technology

59429 readers
3058 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 6 points 6 months ago

Public-private key signing, using up to date cryptography. That's it. It's also "quantum safe", because all cryptography used by the public goes through peer review processes.

Microsoft as well as Meta have contracted Whisper Systems, but there's no way of guaranteeing that the signing process is functionally working or if it's been broken. If it's run server side, you have no clue. If it's run client side, there's still a question if the process hasn't been tampered with in some way.

Remember: there is no such thing as cryptography with a backdoor. At that point, it's just a secrets system.