This is one of the reasons it's crucial that the next set of secure messaging systems does away...

heavyset_go • today at 2:08 AM • 6 replies • view on HN

This is one of the reasons it's crucial that the next set of secure messaging systems does away with tying real phone numbers to accounts.

One phone gets compromised and the whole network is identified with their phone numbers.

Replies

saguntum • today at 4:17 AM

I haven't tried it, but Signal supports not sharing your phone number/just communicating with usernames: https://signal.org/blog/phone-number-privacy-usernames/

You still need to use your phone number to sign up, though.

➕ show 1 reply

1vuio0pswjnm7 • today at 3:53 AM

If the Signal Messaging LLC is compromised, then "updates", e.g., spyware, can be remotely installed on every Signal user's computer, assuming every Signal user allows "automatic updates". I don't think Signal has a setting to turn off updates

Not only does one have to worry about other Signal users being compromised, one also has to worry about a third party being compromised: the Signal Messaaging LLC

➕ show 1 reply

longitudinal93 • today at 2:37 AM

Hiding your phone number is a setting now. Has been for well over a year.

➕ show 2 replies

MDWolinski • today at 3:28 AM

Zangi does this. No idea on their overall security posture compared to Signal, however.

trollbridge • today at 2:25 AM

Gee, like any of competing systems like Session.

➕ show 1 reply

inetknght • today at 2:20 AM

If only we knew this would happen when these products were launched...

Oh wait, we did.

alt Hacker News

Replies