https://signal.org

Privacy is Priceless, but Signal is Expensive
▻https://signal.org/blog/signal-is-expensive

Signal est un service centralisé et ne peut alors pas satisfaire toutes les exigences d’une communication parfaitement privée. Pourtant Signal permet une communication assez protégée sous condition d’utiliser un portable qui n’espionne pas ses utilisateurs. Malheureusement il n’ y a que peu de smartphones dans cette catégorie. GrapheneOS est une bonne solution - en connaissez vous d’autres ? Des systèmes Android sécurisés qui ne transmettent pas de données à Google et d’autres vampires de données ?

Meredith Whittaker and Joshua Lund on 16 Nov 2023

Signal is the world’s most widely used truly private messaging app, and our cryptographic technologies provide extra layers of privacy beyond the Signal app itself. Since launching in 2013, the Signal Protocol—our end-to-end encryption technology—has become the de facto standard for private communication, protecting the contents of billions of conversations in WhatsApp, Google Messages, and many others. Signal also continues to invest in research and development in the pursuit of extending communications privacy. This commitment underlies our recent work to add a layer of quantum resistance to the Signal Protocol, and our previous work on metadata protection technologies that help keep personal details like your contact list, group membership, profile name, and other intimate information secure. This singular focus on preserving the ability to communicate privately is one reason that we work in the open, documenting our thinking and making our code open source and open to scrutiny—so you don’t have to take our word for it.

Signal is also a nonprofit, unlike almost every other consumer tech company.

This provides an essential structural safeguard ensuring that we stay true to our privacy-focused mission. To put it bluntly, as a nonprofit we don’t have investors or profit-minded board members knocking during hard times, urging us to “sacrifice a little privacy” in the name of hitting growth and monetary targets. This is important in an industry where “free” consumer tech is almost always underwritten by monetizing surveillance and invading privacy. Such practices are often accompanied by “growth hacking” and engagement maximization techniques that leverage dark patterns to keep people glued to feeds and notifications. While Signal is also free to use, we reject this kind of manipulation, focusing instead on creating a straightforward interpersonal communications app. We also reject business models that incentivize such practices.

Instead of monetizing surveillance, we’re supported by donations, including a generous initial loan from Brian Acton. Our goal is to move as close as possible to becoming fully supported by small donors, relying on a large number of modest contributions from people who care about Signal. We believe this is the safest form of funding in terms of sustainability: ensuring that we remain accountable to the people who use Signal, avoiding any single point of funding failure, and rejecting the widespread practice of monetizing surveillance.

But our nonprofit structure doesn’t mean it costs less for Signal to produce a globally distributed communications app. Signal is a nonprofit, but we’re playing in a lane dominated by multi-billion-dollar corporations that have defined the norms and established the tech ecosystem, and whose business models directly contravene our privacy mission. So in order to provide a genuinely useful alternative, Signal spends tens of millions of dollars every year. We estimate that by 2025, Signal will require approximately $50 million dollars a year to operate—and this is very lean compared to other popular messaging apps that don’t respect your privacy.

Here we review some of these costs and where this money goes, in the name of providing more transparency into Signal. But we hope to do more than that. Where money goes and how it’s made is a bit of a taboo in tech, something that most tech companies avoid talking about. The actual costs of consumer tech are generally hidden behind stories of innovation and the word “free,” and the connection between the product marketing of a highly profitable tech industry and the ingress and egress of profit and revenue is usually unclear. We believe a material map of these dynamics can help clarify just what is required to fulfill the dream of privacy-preserving alternative technology, and contribute to establishing a solid foundation from which we can grow alternatives that contest tech surveillance and the incentives behind it.

This is not a comprehensive overview—this post isn’t meant to provide a full accounting or to review every line item in detail. Instead, we focus on illustrative examples, looking at infrastructure and labor in particular. We’ll also explore average costs that in practice vary dynamically in relation to factors that are often outside of our control.

Infrastructurally Different

We’ll start with an overview of some of Signal’s biggest infrastructural costs—what we pay for the utilities and services that let Signal reach you. These include the temporary storage of end-to-end encrypted data for message delivery; the global server network that processes billions of requests every day; the registration fees that cover the delivery of verification codes during the sign-up process to help verify phone numbers and prevent spam accounts; the bandwidth that is required to efficiently route end-to-end encrypted messages and calls around the world; and some of the additional services that keep everything running smoothly. We’ll dive into each of these in more detail, but here’s a quick breakdown:

Storage: $1.3 million dollars per year.
Servers: $2.9 million dollars per year.
Registration Fees: $6 million dollars per year.
Total Bandwidth: $2.8 million dollars per year.
Additional Services:

$700,000 dollars per year.

Current Infrastructure Costs (as of November 2023): Approximately $14 million dollars per year.
The Cost of Storing Nothing and Serving Everyone

Data is profitable, and we’re a nonprofit focused on collecting as little data as possible.

Most tech companies collect and create as much data as they can. They build large data warehouses, and then later invent new terms like “data lake” when their unquenchable thirst for more of your private information can no longer fit within the confines of a single warehouse. Their default move is to store everything for as long as they can in an easily accessible and unencrypted format, suffering data breach, after data breach, after data breach, hoping to monetize this data by indirectly (or directly) selling it to advertisers or using it to train AI models. Again, data is profitable.

In contrast, Signal’s default move is to end-to-end encrypt everything that we possibly can and to store as little as possible—all while making sure your messages are delivered promptly and your calls are clear and free of delays. We do this by taking advantage of globally distributed hosting infrastructure and by paying for significant amounts of bandwidth from some of the top providers in the world.

Just like everything else in Signal, messages and files are always end-to-end encrypted. When you send a message, the Signal service temporarily queues that message for delivery. As soon as your message is delivered, that small bundle of encrypted data (i.e. your message) can be dropped from the queue. The storage of end-to-end encrypted files is temporary too, and any undelivered end-to-end encrypted data is automatically purged after a period of inactivity. Even though everything is only temporary, this storage still costs Signal around $1.3 million dollars per year.

This is a lot of money, although it’s less than it would cost if we stored everything forever. But unlike the tech companies that collect and store everything, we don’t have (and do not want to have) any surveillance data to sell or use to recoup these costs. We can’t read or access any end-to-end encrypted messages because the keys that are required to decrypt them are in your hands, not ours. And it’s not just about your messages. Signal also uses our metadata encryption technology to protect intimate information about who is communicating with whom—we don’t know who is sending you messages, and we don’t have access to your address book or profile information. We believe that the inability to monetize encrypted data is one of the reasons that strong end-to-end encryption technology has not been widely deployed across the commercial tech industry.

In order to provide a globally accessible, reliable, and high-performance communications service for the many millions of people around the world who depend on Signal, it’s necessary for Signal’s servers to be globally distributed. Having a geographically distributed network of servers is particularly important for end-to-end encrypted voice and video calls, because latency can result in audio delays or degraded video connections that quickly make the app unusable for real-time communication.

Because everything in Signal is end-to-end encrypted, we can rent server infrastructure from a variety of providers like Amazon AWS, Google Compute Engine, Microsoft Azure, and others while ensuring that your messages and calls remain private and secure. We can’t access them, and neither can the companies that provide any of the infrastructure we rent. As a small nonprofit organization, we cannot afford to purchase all of the physical computers that are necessary to support everyone who relies on Signal while also placing them in independent data centers around the world. Only a select few of the very largest companies globally are still capable of doing this, which is a hallmark of a troublingly concentrated industry.

Signal’s addition of novel privacy-preserving features also affects our server costs. To pick one example, we developed a new approach to private contact discovery in 2017 that uses a trusted execution environment. This made us the first large-scale messaging app to let people automatically find their friends and contacts without revealing their address book to us, keeping these connections private. Because other mainstream apps don’t have this layer of privacy protection in place, they can often access details about your network and relationships without restrictions, and many of them store this highly sensitive information for later use.

When we first deployed this system in 2017, only a few servers were necessary. But as the number of people using Signal increased, the number of servers required to support private contact discovery also rose. At its peak, nearly 600 servers were dedicated to private contact discovery alone, at a total cost of more than $2 million dollars per year.

This significant cost would have continued to rise. However, thanks to algorithmic research advances and hardware updates, we’ve been able to reduce the total number of private contact discovery servers to around 10 total—despite the fact that the service is handling more traffic than ever. A significant amount of money and engineering resources have been dedicated to ensuring that your address book remains completely inaccessible to us, and Signal will continue to push the envelope and introduce new techniques to enhance your privacy even when the initial costs are high.
Registration Fees

Signal incurs expenses when people download Signal and sign up for an account, or when they re-register on a new device. We use third-party services to send a registration code via SMS or voice call in order to verify that the person in possession of a given phone number actually intended to sign up for a Signal account. This is a critical step in helping to prevent spam accounts from signing up for the service and rendering it completely unusable—a non-trivial problem for any popular messaging app.

Signal’s registration service routes registration codes over multiple telephony providers to optimize delivery across the globe, and the fees we pay to third-party vendors for every verification code we send can be very high. This is in part, we believe, because legacy telecom operators have realized that SMS messages are now used primarily for app registration and two-factor authentication in many places, as people switch to calling and texting services that rely on network data. In response to increased verification traffic from apps like Signal, and decreased SMS revenue from their own customers, these service providers have significantly raised their SMS rates in many locations, assuming (correctly) that tech companies will have to pay anyway.

The cost of these registration services for verifying phone numbers when people first install Signal, or when they re-register on a new device, currently averages around $6 million dollars per year.

These costs vary dramatically from month to month, and the rates that we pay are sometimes inflated due to “toll fraud”—a practice where some network operators split revenue with fraudulent actors to drive increased volumes of SMS and calling traffic on their network. The telephony providers that apps like Signal rely on to send verification codes during the registration process still charge their own customers for this make-believe traffic, which can increase registration costs in ways that are often unpredictable. Of course, Signal does everything we can to reduce or eliminate the impact of toll fraud. We work closely with our voice and SMS verification providers to detect and shut down fraudulent registrations as quickly as possible. But it’s still a game of cat and mouse, with unavoidable expenses along the way.
The Going Rate for Transfer Rates

You are probably familiar with the concept of paying for bandwidth in the form of buying a data plan from your cellular provider or signing up with an Internet Service Provider (ISP) for your home. But it may surprise you to learn that every website, app, and service also pays for the bandwidth they use whenever you connect to them.

Some pay more than others. Most of the major tech companies (like Amazon, Google, and Microsoft) own and operate their own data centers. After spending billions of dollars to build massive hosting facilities, they install their own fiber optic cables and custom networking equipment. This also means they get to earn a lot of money by charging others for the privilege of using that equipment.

Smaller organizations like Signal can’t afford to build matching infrastructure from scratch, so we (along with almost every startup and tech company) pay rent to the big players in order to access the bandwidth we need.

Millions of people use Signal every day, and it takes a lot of bandwidth to provide a fast and reliable service. Signal spends around $2.8 million dollars per year on bandwidth to support sending messages and files (such as photos, videos, voice notes, documents, etc.) and to enable voice and video calls.

Voice and video calls require significantly more bandwidth than text messages, and Signal’s end-to-end encrypted calling functionality is one of the most expensive services that we provide. Signal also goes far beyond other messaging apps when it comes to protecting your privacy during voice and video calls, and we do this in ways that substantially increase how much bandwidth we use in order to provide a high-quality calling experience.

To take one example, Signal always routes end-to-end encrypted calls from people who aren’t in your contacts through a relay server that obscures IP address information.

Almost none of our competitors do this, and Signal’s default behavior is much more expensive than the alternative. Automatically relaying 1-on-1 voice and video calls from unknown contacts (instead of always using a peer-to-peer connection whenever possible) provides an extra layer of privacy, but results in considerably higher bandwidth costs for Signal’s calling-related relay servers. At current traffic levels, the amount of outbound bandwidth that is required to support Signal voice and video calls is around 20 petabytes per year (that’s 20 million gigabytes) which costs around $1.7 million dollars per year in bandwidth fees just for calling, and that figure doesn’t include the development costs associated with hiring experienced engineers to maintain our calling software, or the cost of the necessary server infrastructure to support those calls.
The Human Touch

Signal isn’t just a collection of privacy-preserving services that route end-to-end encrypted messages and calls around the world. It’s also a set of cross-platform apps and modular development components (commonly called libraries) that make this type of private communication possible in the first place. Because the norm is surveillance, we’re often required to create or modify our own libraries from scratch, swapping in privacy instead of using more common frameworks that assume surveillant defaults. Swimming against the tide of an ecosystem whose incentives and infrastructure promote surveillance and privacy invasions is, of course, more time-intensive and more expensive, and requires dedicated and experienced people.

First, we have three distinct client teams, one for each platform (Android, Desktop, and iOS). These teams are constantly working: adjusting to operating system updates, building new features, and making sure the app works on a wide variety of devices and hardware configurations. We also have dedicated engineering teams that handle the development and maintenance of the Signal Server and all of its infrastructure, our calling libraries like RingRTC, and core libraries like libsignal. These also need constant development and monitoring.

Product and design teams help shape the future of the app and determine how it will look and function, while our localization team coordinates translation efforts across more than sixty languages. We even have a full-time, in-house support group that interfaces with people who use Signal and provides detailed technical feedback and real-time troubleshooting information to every other team. This is an essential function, particularly at Signal, because we don’t collect analytics or telemetry data about how people are using Signal.

This is a lot of work, and we do it with a small and mighty team. In total, around 50 full-time employees currently work on Signal, a number that is shockingly small by industry standards. For example, LINE Corporation, the developers of the LINE messaging app popular in Japan, has around 3,100 employees,
while the division of Kakao Corp that develops KakaoTalk, a messaging app popular in Korea, has around 4,000 employees. Employee counts at bigger corporations like Apple, Meta, and Google’s parent company (Alphabet) are much, much higher.

To sustain our ongoing development efforts, about half of Signal’s overall operating budget goes towards recruiting, compensating, and retaining the people who build and care for Signal. When benefits, HR services, taxes, recruiting, and salaries are included, this translates to around $19 million dollars per year.

We are proud to pay people well. Our goal is to compensate our staff at as close to industry wages as possible within the boundaries of a nonprofit organization. We know that we can’t provide equity, expensive playpen offices, or other benefits common to large tech companies. We also know that we need to recruit and retain a highly experienced and specialized workforce in an extremely competitive industry if we’re going to offer a service that provides a meaningful alternative to apps with far more people and resources. And we don’t believe that precarity should be the cost of doing good. Compared to most tech companies, Signal’s numbers are a drop in the bucket.

Growth in Signal translates into increased infrastructure costs, and having more infrastructure requires more labor. As of November 2023, Signal’s server network is regularly responding to around 100,000 requests per second, and we routinely break our previous records. A funny thing happens when a globally accessible service starts handling billions of requests every day. Suddenly one-in-a-million possibilities are no longer unique or rare, and unlikely situations become more and more common as Signal grows. It’s not unusual for our engineers to do things like write custom code to reproduce an esoteric and complicated IPv6 connectivity issue that’s affecting people running an arcane operating system configuration in specific regions, but only when connected via a certain set of internet service providers.

Troubleshooting such infrastructure issues can be very expensive, because isolating a problem and developing a fix can take a lot of time and expertise.

Identifying and fixing arcane problems is not the only thing that takes time and skill. In the context of building for privacy, adding a common feature or service in a way that avoids surveillance frequently requires significant work and creativity. To take one example, profile pictures and profile names are always end-to-end encrypted in Signal. This means that Signal does not have access to your profile name or chosen profile photo. This approach is unique in the industry. In fact, it has been more than six years since we first announced this additional layer of protection, and as far as we know none of our competitors have yet adopted it. Other messengers can easily see your profile photo, profile name, and other sensitive information that Signal cannot access. Our choice here reflects our staunch commitment to privacy, but it also means that it took Signal more effort to implement support for profile photos. Instead of a weekend project for a single engineer, our teams were required to develop new approaches and concepts within the codebase (like profile keys), which they worked to roll out across multiple platforms after an extended testing period.

The same dynamic played out again when Signal introduced support for animated GIF searches on Android and iOS. Instead of quickly and easily integrating the standard GIF search SDK that most other apps were using, engineers spent considerable time and creativity developing another unique privacy-preserving technique that hides GIF search terms from Signal’s servers, while also hiding who is searching for those terms from the GIF search engine itself. We later expanded those techniques to further obfuscate GIF search information by obscuring the amount of traffic that passes through the proxied connection.

When Meta acquired GIPHY, and many other apps were scrambling to contend with the privacy implications of the deal, Signal employees slept soundly knowing that we had already built this feature correctly several years earlier.

Even more recently, Signal has started taking steps to protect today’s conversations from future threats by adding post-quantum resistance to the Signal Protocol. The financial costs associated with these research and development initiatives are substantial. They’re also essential for building privacy-preserving technology in a dynamic industry where surveillance is the norm.

By offering a competitive compensation package, Signal helps make it easy for people to choose to develop privacy-preserving technology that benefits the world instead of going to work for the surveillance-advertising-industrial complex. We’re proud of our healthcare plans, family-friendly policies like extended parental leave, flexible schedules, and the many other benefits that help make Signal a great place to work.

These things cost money, but a world where Signal can attract talented people to work on privacy-preserving technology is a world that looks a lot more attractive.
Future Tense

We hope that this cursory tour of some of Signal’s operations and costs helps provide a greater understanding of Signal’s unique place in the tech ecosystem, and of the tech ecosystem itself.

Our goal of developing an open source private messenger that is supported and sustained by small donations is both highly ambitious and, we believe, existentially important. The cost of most consumer technology is underwritten by surveillance, which has allowed people to assume that “free” is the default, and a handful of industry players have accrued eye-watering amounts of personal data and the unprecedented power to use that data in ways that are shaping our lives and institutions globally.

To put it another way, the social costs of normalized privacy invasion are staggeringly high, and maintaining and caring for alternative technology has never been more important.

Signal is working to show that a different approach is possible—an approach that puts privacy at the center, and where organizations are accountable to the people who use and rely on their services, not to investors, or to the endless pursuit of growth and profit.

Thank you for your support. It’s an honor and privilege to work on Signal every day, and we—very literally—couldn’t do it without you. Please consider donating to Signal via our website or learn how to give using the app.

#communication #sécurité #messenger #Android #vie_privée #internet

Messagerie « Signal » et confidentialité – quelques remarques. - Stuut
▻https://stuut.info/Messagerie-Signal-et-confidentialite-quelques-remarques-1697

Ceci est une très courte note concernant certains aspects de l’utilisation de la messagerie Signal.

Elle est écrite rapidement suite à des situations concrètes de perplexité rencontrées à Bruxelles et ailleurs ces derniers jours. Pour les détails, nous renvoyons vers le site officiel (►https://signal.org), les nombreux forums, et l’expertise de Technopolice (voir ▻https://technopolice.be et les permanences à l’Anarchive).

Elle est le fruit de connaissances partielles et peut contenir des erreurs et des imprécisions. Le cas échéant, merci de les signaler immédiatement à l’adresse ci-dessous.

Signal >> Blog >> Removing SMS support from Signal Android (soon)
▻https://signal.org/blog/sms-removal-android

Pourquoi Signal (l’App de #messagerie sécurisée) va retirer la prise en charge des SMS prochainement...

-- Permalien

Exploiting vulnerabilities in #Cellebrite UFED and Physical Analyzer from an app’s perspective
▻https://signal.org/blog/cellebrite-vulnerabilities

By a truly unbelievable coincidence, I was recently out for a walk when I saw a small package fall off a truck ahead of me. As I got closer, the dull enterprise typeface slowly came into focus: Cellebrite. Inside, we found the latest versions of the Cellebrite software, a hardware dongle designed to prevent piracy (tells you something about their customers I guess!), and a bizarrely large number of cable adapters.

#signal #arroseur_arrosé

How to install and use Signal messenger without a smartphone · ctrl.alt.coop
▻https://ctrl.alt.coop/en/post/signal-without-a-smartphone

https://nakedsecurity.sophos.com/wp-content/uploads/sites/2/2020/05/sig-1200.png?resize=780,408

Signal-cli + Signal-Desktop

Signal-cli is a command line interface for Signal. It’s used to register a new signal account and then link a Signal-Desktop app to this account. If you really use Signal without a smartphone, signal-cli functions as the single-point-of-truth.

Go to the following link and download the latest signal-cli release: ▻https://github.com/AsamK/signal-cli/releases/latest

In our case this is v0.6.2

$ wget ▻https://github.com/AsamK/signal-cli/releases/download/v0.6.2/signal-cli-0.6.2.tar.gz
$ tar xfv signal-cli-0.6.2.tar.gz
$ cd signal-cli-0.6.2

To be able to use Signal you have to register yourself with a phone number (doesn’t has to be a mobile number).

$ bin/signal-cli -u YOUR_NUMBER register

You will then get a SMS with a verfication number if it’s a mobile number or else a call. You use this number then to verify your account:

$ bin/signal-cli -u YOUR_NUMBER verify VERIFICATIONCODE

Install the latest version of Signal-Desktop from here: ▻https://signal.org/download

Now you have to start Signal-Desktop and extract the actual QR-Code. For this, start Signal-Desktop. It should display a barcode to link your Signal-Desktop app to a Signal device. You can either decode the barcode on your local machine or use a smartphone to scan the barcode.

Android:

Install Barcode Scanner on your device
Scan barcode and tsdevice-Link should appear

Linux:

Toggle Developer Tools, go to Network Tab
search for data:image/png entry, click on it and the actual barcode should be displayed
Right click on the bar code to save it for instance as /tmp/qr.png
use zbarimg (zbar-tools) to decode it: $ zbarimg /tmp/qr.png QR-Code:tsdevice:/?uuid...
Copy tsdevice-Link

Now you can link your Signal-Desktop to your Signal account through signal-cli:

$ bin/signal-cli -u YOUR_NUMBER addDevice —uri “tsdevice:/?uuid...”

Add contacts

We use signal-cli daemon to synchronise contacts (with names^^) with our Signal-Desktop instance.

On Ubuntu, you have to install libunixsocket-java package (otherwise the signal-cli daemon can’t start)

Fill in contacts in the signal-cli config: .local/share/signal-cli/data/YOUR_NUMBER in the dict

“contactStore” : {
“contacts” : [ {
“name” : “name”,
“number” : “+49xxxx”
}, {
“name” : “name2”,
“number” : “+49yyyyy”,
}]}

Start signal-cli daemon:

$ bin/signal-cli -u YOUR_NUMBER daemon

And then synchronise contacts in the Signal Desktop App (File->Preferences->Contacts->Import Now)
Troubleshooting

If signal-cli daemon reports following error Envelope from: <yournumer> (device: 2) Timestamp: xxxxx Exception: org.whispersystems.libsignal.InvalidMessageException: No valid sessions. (ProtocolInvalidMessageException) Failed to decrypt message.

then:

$ bin/signal-cli -u YOUR_NUMBER send -e -m “foo” YOUR_NUMBER

In the same config, set the Active parameter for all groups to true, in order to be able to send messages in groups.

Signal-cli as a daemon

You may want to run signal-cli as a user systemd service to prevent that the key material gets out of sync for signal-cli.

Symlink the signal-cli executable to ~/.bin/signal-cli:

$ ln -s <ABSOLUTE-PATH-TO>/signal-cli-0.X.X/bin ~/.bin/signal-cli

(This way you only have to update the symlink and not all the configs, if you get a newer signal-cli version.)

Add following line to your ~/.bashrc or ~/.bash_profile:

export PATH=$PATH:$HOME/.bin

And place following systemd service config in ~/.config/systemd/user/signal-cli@.service:

[Unit]
Description=Signal cli for %I
Requires=dbus.socket
After=dbus.socket
Wants=network-online.target
After=network-online.target

[Service]
Type=dbus
Environment="SIGNAL_CLI_OPTS=-Xms2m"
ExecStart=%h/.bin/signal-cli -u %I daemon —ignore-attachments
BusName=org.asamk.Signal

[Install]
WantedBy=multi-user.target

Start the service with:

$ systemctl —user start signal-cli@<YOUR NUMBER>

And verify it is running with:

$ systemctl —user status signal-cli@<YOUR NUMBER>

If you change something in the config, stop the service:

$ systemctl —user stop signal-cli@<YOUR NUMBER>

reload the daemon:

$ systemctl —user daemon-reload

And start it again.

That’s it! Happy messaging.

Welche Apps für Videokonferenzen? ­ BAG Netzpolitik
▻https://www.dielinke-netzpolitik.de/2020/03/videokonferenzen

18. März 2020 Uncategorized

Die „Corona-Krise“ verstärkt die Nachfrage nach Möglichkeiten digitaler Konferenzen und -Treffen. Als BAG Netzpolitik der LINKEN empfehlen wir dazu die Vewendung von Riot. Alternativ sind auch weitere Dienste bedingt empfehlenswert: Darunter Nextcloud Talk, Jitsi, Wire, Signal. Optimalerweise stellt ihr das Hosting selbst bereit. Wenn das zeitnah nicht umsetzbar sein sollte, können zur Not auch externe Hosts genutzt werden. Anbieter wie Skype oder Zoom bieten zwar gute Usability, sollten aufgrund von Datenschutz, Zentralserver, Geschäftsmodell und Eigentumsverhältnis jedoch möglichst nicht genutzt werden. Werden kostenpflichtige Anbieter genutzt, sollten diese wenigstens interoperabel sein, beispielsweise BlueJeans.

Links:

Riot: ▻https://riot.im
Jitsi:►https://jitsi.org
Nextcloud Talk: ►https://nextcloud.com/talk
Wire: ▻https://wire.com
Signal: ►https://signal.org

Grundsätzlich empfehlen wir für digitale Kommunikation die Verwendung offener Standards (Email, XMPP, Matrix), möglichst in Kombination mit Verschlüsselung und dezentraler Serverarchitektur. Empfehlungen sind verschlüsselte Emails über eigene Server oder vertrauenswürdige Anbieter wie posteo oder mailbox, sowie als Messenger Riot, Conversations, Dino, Gajim und andere. Diese sollten optimalerweise selbst gehostet werden, für den einfachen Einstieg stehen aber auch externe Hosts zur Verfügung. Google- und Facebook-Dienste (also auch WhatsApp, Youtube usw.) sollten lediglich für die ergänzende Außendarstellung genutzt werden, um öffentlichkeitswirksam zu sein. Interne Angelegenheiten haben ebenso wie primäre Veröffentlichungen wichtiger Informationen nichts auf derartigen Plattformen zu suchen, von denen die Gesellschaft aus Gründen des Dateschutzes aber auch der informationellen Selbstbestimmung unabhängiger werden sollte und deren Geschäfts- und Eigentumsmodell unvereinbar mit sozialistischen Grundsätzen ist.

P.S. den Empfehlungen von Systemli.org können wir uns weitgehend anschließen, dort finden sich auch einige empfohlene Hosts: systemli.org

Schlagwörter: corona, freie software, online-meeting, video conferencing, videokonferenz, webkonferenz

Brian Acton, co-fondateur de WhatsApp, vous incite une fois encore à supprimer votre compte Facebook
▻https://www.rtbf.be/tendance/techno/detail_brian-acton-co-fondateur-de-whatsapp-vous-incite-une-fois-encore-a-suppr

Depuis son départ, Brian Acton a rejoint la Signal Fondation, une fondation visant à soutenir la messagerie Signal, dont sa particularité est d’être totalement chiffrée de bout en bout et donc, en principe, plus sûre que WhatsApp ou Messenger. Il y aurait d’ailleurs investi pas moins de 50 millions de dollars (une goutte d’eau sur les 6,5 milliards de dollars que lui a rapportés la vente de WhatsApp).

Le monsieur, il va revendre Signal après ? ;-)

Signal >> Blog >> A letter from Amazon
▻https://signal.org/blog/looking-back-on-the-front
Comment créer des services internet sécurisés ? L’exemple de Signal en montre quelques limites.

L’histore de Signal est connue et ne fait plus partie de l’acualité. Pourtant la question reste à l’ordre du jour : Comment contourner les tentatives d’espionner nos conversations et protéger la communication avec nos amis.

With Google no longer an option, we decided to look for popular domains in censored regions that were on CloudFront instead. Nothing is anywhere near as popular as Google, but there were a few sites that used CloudFront in the Alexa top 50 or 100. We’re an open source project, so the commit switching from GAE to CloudFront was public. Someone saw the commit and submitted it to HN. That post became popular, and apparently people inside Amazon saw it too.

That’s how we got to the above email. Although our interpretation is ultimately not the one that matters, we don’t believe that we are violating the terms they describe:

Our CloudFront distribution isn’t using the SSL certificate of any domain but our own.
We aren’t falsifying the origin of traffic when our clients connect to CloudFront.

However, in the time-honored tradition of sharing unpopular news late on a Friday afternoon, a few days ago Amazon also announced what they are calling Enhanced Domain Protections for Amazon CloudFront Requests. It is a set of changes designed to prevent domain fronting from working entirely, across all of CloudFront.
Future

With Google Cloud and AWS out of the picture, it seems that domain fronting as a censorship circumvention technique is now largely non-viable in the countries where Signal had enabled this feature. The idea behind domain fronting was that to block a single site, you’d have to block the rest of the internet as well. In the end, the rest of the internet didn’t like that plan.

We are considering ideas for a more robust system, but these ecosystem changes have happened very suddenly. Our team is only a few people, and developing new techniques will take time. Moreover, if recent changes by large cloud providers indicate a commitment to providing network-level visibility into the final destination of encrypted traffic flows, then the range of potential solutions becomes severely limited. If you’d like to help, we’re hiring.

In the meantime, the censors in these countries will have (at least temporarily) achieved their goals. Sadly, they didn’t have to do anything but wait.

#sécurité #communication

Telegram updates desktop app with chat export, night theme
▻https://www.omgubuntu.co.uk/2018/08/telegram-updates-desktop-app-with-chat-export-night-theme

https://www.omgubuntu.co.uk/wp-content/uploads/2017/05/telegram-desktop-calls-1-350x200.jpg

Telegram has updated its mobile and desktop apps with a number of small improvements. Telegram 1.3.13 on desktop gains a new night time theme, options to set notification exceptions, and the long-sought ability to export chat history. The Telegram Passport feature, an identity broker service, is made more secure in this release thanks to “improved password hashing […] This post, Telegram updates desktop app with chat export, night theme, was written by Joey Sneddon and first appeared on OMG! Ubuntu!.

Signal
►https://signal.org

Utilisez Signal sur votre smartphone à la place de votre application #sms et à la place des messageries commerciales (Messenger, WhatsApp, Viber,...). Facile, pratique, respectueux de la vie privée. — Permalink

#messagerie #opensource #vieprivée