ForgottenFlux@lemmy.world to Privacy@lemmy.mlEnglish · 4 months agoSignal under fire for storing encryption keys in plaintext on desktop appstackdiary.comexternal-linkmessage-square124fedilinkarrow-up1424arrow-down126cross-posted to: technology@lemmy.world
arrow-up1398arrow-down1external-linkSignal under fire for storing encryption keys in plaintext on desktop appstackdiary.comForgottenFlux@lemmy.world to Privacy@lemmy.mlEnglish · 4 months agomessage-square124fedilinkcross-posted to: technology@lemmy.world
minus-squarerefalo@programming.devlinkfedilinkarrow-up15arrow-down8·edit-24 months ago How in the fuck are people actually defending signal for this Probably because Android (at least) already uses file-based encryption, and the files stored by apps are not readable by other apps anyways. And if people had to type in a password every time they started the app, they just wouldn’t use it.
minus-squareuis@lemm.eelinkfedilinkarrow-up2·4 months agoAFAIK Android encrypts entire fs with one key. And ACL is not encryption.
Probably because Android (at least) already uses file-based encryption, and the files stored by apps are not readable by other apps anyways.
And if people had to type in a password every time they started the app, they just wouldn’t use it.
AFAIK Android encrypts entire fs with one key. And ACL is not encryption.