WhatsApp is razend populair. De app is wel van Facebook, niet iedereen vindt dat een prettig idee. Berichten-app Signal is een privacyvriendelijk alternatief. We helpen je de app te gebruiken.
WhatsApp is razend populair. De app is wel van Facebook, niet iedereen vindt dat een prettig idee. Berichten-app Signal is een privacyvriendelijk alternatief. We helpen je de app te gebruiken.
Without delving into too many details, those presumed benefits of Signal matter very little in practice:
Signal, just like WhatsApp, is centralized: as brokers of your messages, they do know your social graph. In the case of Signal, they “pinky swear” not to look at it, but that’s not a technically enforceable guarantee (impossible by design). The same applies to metadata: Signal can absolutely infer from your usage patterns (frequency, time, volume, …) the nature of your social graph, or if you are rather at work or at home, in a romance or not. Signal can absolutely tell where you are based on your IP, or the device you are using. Worse, while they swear not look, not to care and not to log any of that, just by relying on third-party services and running in the cloud, they expose all this metadata to less trustworthy parties who will do the caring and logging as they are mandated by law.
Nothing that can be said (or even proven) today about Signal is evidence that the same will remain true in the future. Signal can figure that it costs a lot to operate and might seek other financing schemes. Or its developers can be compelled by law enforcement to alter the service without public disclosure. It all boils down to “nothing is eternal” and while we can’t tell when the demise of Signal will occur, history proves it’s inevitable, and on this path it might turn as unlikeable as you find WhatsApp to be today.
The only way forward I see is to break away from the centralized model: by design, it can’t guarantee your privacy ; by operating principle, it can’t guarantee its sustainability.
Signal can update the client to reveal your social graph, sure, but right now, Signal technically cannot know your social graph. And there’s two additional layers that make that more likely, which is incentives: being a non-profit, they have no shareholders that would push them to try to look into them, and their primary selling point being privacy, they also have more to lose by doing so. Neither of those apply to WhatsApp. Oh, and a third one: they’d have been in contempt of court, which specifically requested access to such data, and Signal did not provide it because they were not able to.
(I will also say that, in a decentralised communication system, you are reliant on every party you communicate with, and the tools they use, to not expose such data about you either. It’s not a panacea.)
Again, it my not be as big a step forward as you’d like, but it’s utterly ridiculous to claim that this is not a way forward.
And given that it’s not unlikely that larger steps forward may not be possible at all, or would be reliant on us collectively taking smaller steps forward first, I would definitely reconsider putting active effort into discouraging Signal use. Especially if you’re not putting at least a multitude more effort into discouraging use of the incumbents.
Hey, at least thanks for having done your research on the topic :-)
Re: “Signal technically cannot know your social graph” is more of “we, Signal, have got the information in our hands but we swear not to look at it”. Essentially, your device is sending the data to Signal, and then the matching is done in a “secure enclave”. One problem is that this step could totally be bypassed without your knowledge or consent. A second is that the technological underpinning of it (Intel SGX) has known unpatchable flaws. A third is that even if the build-up of your social-graph isn’t stored initially, it can eventually be inferred from your usage patterns. A fourth is that even if you find good reasons to trust Signal today, they offer no definitive technological guarantee to enforce it in the future (the deal can change at any moment, being a non-profit isn’t a guarantee either).
No, in a decentralized system, you elevate your service provider to the same level of trust that you do today with Signal (with E2EE and maths taking care of the rest). The gotcha lies in the fact that you can be your own service provider in this case, or that you can establish other means to trust them (contractual, legal, moral, … obligations, that’s up to you). And in the fact that changing service provider doesn’t mean relinquishing all your contacts, histories, data, clients, etc…
I don’t disagree that Signal has some appeal over WhatsApp today. I only disagree that it represents a significant-enough step forward to justify having people massively migrate to it. From experience it is a doomed service that will deceive its users eventually (by design), and will cause more harm down the road (triggering another unorganized rush towards even worse services like Telegram) when it ultimately gets to this point. If you ask people old-enough to have known and used WhatsApp in its early days, they will depict a picture about as rosy as the one you paint today for Signal. All that to say, once again, that nothing is eternal. Especially in today’s extremely consolidated internet (like, who would get in the way of Meta, Alphabet or Microsoft buying off Signal if they ever want to?).