this post was submitted on 28 Aug 2024
601 points (97.9% liked)

Technology

58117 readers
4353 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago
MODERATORS
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
601
Under Meredith Whittaker, Signal Is Out to Prove Surveillance Capitalism Wrong (www.wired.com)
submitted 3 weeks ago by [email protected] to c/[email protected]
175 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 8 points 3 weeks ago (1 children)

Yeah. And I don't fault them for this route. I just with I could sign up without a phone number. Maybe the username thing is a predecessor to allowing usernam-only registration in the future.

[–] [email protected] 4 points 3 weeks ago (2 children)

Yeah, hopefully. It would also be awesome to have a web login so I could access messages and whatnot when using someone else's computer w/o having to install something.

I don't know what direction they're going, but I'm honestly okay with the caveats that currently exist.

[–] [email protected] 5 points 3 weeks ago (1 children)

Having web logon would mean they would need to hold the decryption key in some form (or have a weak decryption key, your credentials), so, while convenient, I think it would degrade security and possibly privacy. Unless you mean to receive new messages, the way the desktop app works?

[–] [email protected] 1 points 3 weeks ago (1 children)

Not if they used WebAssembly to do all the decryption locally.

[–] [email protected] 1 points 3 weeks ago (2 children)

I can't tell if you're joking haha

[–] [email protected] 2 points 3 weeks ago

Why would they be joking? There's really not a big difference between how their mobile and desktop apps work and what's possible in the web. It can fetch the keys from my computer or my phone just like their other apps work, and store the keys and whatnot encrypted in temporary local storage, just like on the phone. WebAssembly could allow them to share the code and retain similar performance.

I honestly don't see an issue here. If they need help, I'd be happy to lend a hand.

[–] [email protected] 1 points 2 weeks ago

Why? C++ does wasm and I'm pretty sure the signal client is already written in C++. It definitely wouldn't be something that could be pulled off quickly, but the ability to securely run code like this is kind of the whole point of wasm as I understand it, no?

[–] [email protected] 2 points 3 weeks ago

I'd be more interested in allowing more than one Android device at a time like MySudo. They let you link Windows with a phone so I wouldn't think it would be too hard to implement.