Cryptography @ Infosec.pub

614 readers

2 users here now

Questions, answers, discussions, and literature on the theory and practice of cryptography

Rules (longer version here)

Stick to cryptography / infosec
Be a good netizen - be kind, act in good faith, maintain high quality, don't mislead
Link directly to original sources
Don't use us to cheat on challenges or tests!
Crypto review requests must show the algorithm
CTF / challenges and puzzles must use modern crypto
Avoid making duplicate posts
All use of AI / LLM and their prompts MUST be disclosed in your submissions and comments

##Related resources;

Reddit cryptography forums 1 & 2; /r/crypto /r/cryptography
Cryptology ePrint archive
Discussion site for ePrint papers
Libera Chat's IRC:s #crypto - (IRC protocol URL)
Metzdowd cryptography mailing list
Randombit cryptography mailing list
StackExchange cryptography community

founded 2 years ago

MODERATORS

SqueamishOssifrage

TrustedThirdParty

A Secure Chat App’s Encryption Is So Bad It Is ‘Meaningless’ (www.404media.co)

submitted 2 weeks ago by Natanael@slrpnk.net to c/crypto

4 comments fedilink hide all child comments

all 5 comments

sorted by: hot top controversial new old

[–] litchralee@sh.itjust.works 5 points 2 weeks ago

Holy false security, that's wild

[–] massive_bereavement@fedia.io 5 points 2 weeks ago

This has to be on purpose.

[–] pedz@lemmy.ca 2 points 2 weeks ago (1 children)

I have no idea how good plain SSL is but I just use my own IRC server with SSL on top. At least I can control the whole thing.

[–] lemonskate@lemmy.world 6 points 2 weeks ago

As long as you're using up to date TLS protocols and algorithms, it's great for encryption in transit but isn't going to do anything (out of the box at least) for encryption of data at rest, but if you just disable chat logging on the server that's not really an issue. Clients can still store insecure copies of chats, but that's an issue with every secure messenger.