I though it would be cool to chat in real time so here it is

  • Possibly linuxOP
    link
    fedilink
    English
    arrow-up
    1
    ·
    5 days ago

    Well there are worse things I would still like to point out that Session has had quite a lot of controversy. Also Simplex Chat is simpler from a architecture perspective which makes it easier to verify.

    • Mr. Zeus@feddit.org
      link
      fedilink
      English
      arrow-up
      1
      ·
      4 days ago

      Session has had quite a lot of controversy.

      Like what? You mean the pedos that also use it? There’s pedos that do all kinds of illegal shit here on a few different instances of lemmy too…at least that’s what I heard from the owner of a mastodon instance that didn’t want to federate with one particular instance that kept happening on.

      • Possibly linuxOP
        link
        fedilink
        English
        arrow-up
        1
        ·
        edit-2
        4 days ago

        No it is not great for privacy or reliability. Lokinet is a joke and the crypto behind it basically a pyramid scheme. They screwed over the people who initially invested and now they want people to reinvest.

        Also the security of the app is weaker than signal. They removed forward secrecy which means that if someone gets your private key they can decrypt any of your messages. This is made worse by your messages being stored in Loki net since anyone with your key can become you and see your entire history. Even if you delete a message it likely can still be recovered.

        Compare this to messagers like Signal and Simplex Chat. These messagers use forward secrecy via a cryptographic system called double ratchet encryption. What this means is that the key that encrypts the messages is rotated and after it does the old key can not be recovered. By this mechanism messages are stored to your device and then the original key is discarded. This means that this message is not recoverable from the encrypted state even if your private key is stolen. Even if your device is totally pwned a deleted message can not be recovered.

        • Mr. Zeus@feddit.org
          link
          fedilink
          English
          arrow-up
          1
          ·
          edit-2
          1 day ago

          Also the security of the app is weaker than signal. They removed forward secrecy which means that if someone gets your private key they can decrypt any of your messages. This is made worse by your messages being stored in Loki net since anyone with your key can become you and see your entire history. Even if you delete a message it likely can still be recovered.

          that’s one of the problems with everything that’s anonymous with no way to verify or track who’s who.

          Okay I looked into it…Session uses its own encryption method that involves anonymity, signal and simpleX don’t have any particular focus on keeping their users anonymous.

          You can’t have perfect forward secrecy if your users are also anonymous, at least not over a messaging app…this is the first time I’ve looked into this issue.

          • Possibly linuxOP
            link
            fedilink
            English
            arrow-up
            2
            ·
            edit-2
            3 days ago

            It isn’t an issue with Simplex Chat or Signal. Forward secrecy means that the decryption key is not stored but instead computed and used once before it is discarded.

        • Mr. Zeus@feddit.org
          link
          fedilink
          English
          arrow-up
          1
          ·
          3 days ago

          crypto behind it basically a pyramid scheme.

          Any crypto currency that isn’t Bitcoin, Monero or DodgeCoin is that.