this post was submitted on 04 May 2026
371 points (99.7% liked)

Privacy

4467 readers
57 users here now

Icon base by Lorc under CC BY 3.0 with modifications to add a gradient

founded 2 years ago
MODERATORS
Ategon@programming.dev
danielintempesta@programming.dev
371
Signal Desktop without a smartphone, standalone version in development (aboutsignal.com)
submitted 3 days ago by unglueclass23@programming.dev to c/privacy@programming.dev
58 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] boonhet@sopuli.xyz 5 points 2 days ago (3 children)

You know, I've been thinking...

Signal's end to end encrypted, yes... But we do the key exchange process through Signal's servers, don't we? How do we know they don't store copies of the keys? Does the client have a mechanism in place to make sure the man in the middle doesn't do anything funny? I haven't actually delved very deep into the code, but it sounds like I should.

And... Sure, their server code may be open source too, but nobody guarantees that that's the code actually running on their servers.

[–] dreamy@quokk.au 7 points 2 days ago

Here is an overview of all audits done on Signal:
https://community.signalusers.org/t/overview-of-third-party-security-audits/13243
No recent server audits really. They are pretty public about information requests made by the government and their responses though, and from what I can see the only pieces of information they have shared with the government to this point are the time of account creation and the date of the last connection to Signal servers:
vnBe1hD30fOJL5L.png
You can check more of their responses from here:
https://signal.org/bigbrother/

[–] kuberoot@discuss.tchncs.de 3 points 2 days ago

How do we know they don't store copies of the keys?

I don't know how Signal is built, but you can establish a secure communication channel through a channel that's being listened in on, meaning the server doesn't need to ever see the keys. Look up Diffie-Hellman for an example, an algorithm that lets two actors establish a shared secret without communicating enough information to reconstruct the secret.

So if the client uses a secure key exchange algorithm (or straight up asymmetrical encryption) the server can't just grab your keys - you just need a secure way to verify that your keys actually match, because what they could do is a man in the middle attack where they establish a secure channel with you and the person you're messaging, and decrypt and reencrypt messages going both ways, being able to listen in and modify messages.

[–] quick_snail@feddit.nl 1 points 2 days ago* (last edited 2 days ago)

They ship their app with blobs, so we cannot verify what their app is doing.