I recently made a post talking about how im using briar but wanted ppl to recommend other apps but this article talks about some problems of those apps https://serpentsec.1337.cx/secure-messaging-choosing-a-chat-app
I recently made a post talking about how im using briar but wanted ppl to recommend other apps but this article talks about some problems of those apps https://serpentsec.1337.cx/secure-messaging-choosing-a-chat-app
Also: are XMPP’s voice calls (jingle) E2EE?
I’ve read a few months ago that voice calls via Conversations IM are E2EE. Alas forgot where I read that. Anyone ?
The new implementation standard (as used in Conversations) AFAIK uses p2p WebRTC, which is encrypted by default.
Yes, but back in June 2020 it sent the keys over transport encryption, not inside OMEMO, meaning it was effectively transport encrypted and not E2EE.
I’m asking whether that changed.
For reference: https://github.com/iNPUTmice/Conversations/issues/1234#issuecomment-644670884
Calls do not use OMEMO, but instead use DTLS-SRTP - which is still end-to-end encrypted as only both devices have the keys for the calls.
That said, as of a few weeks ago, Conversations does use verified OMEMO keys in the handshake to display a shield on the call: https://github.com/iNPUTmice/Conversations/releases/tag/2.9.8 (note that this requires that you have physically scanned the QR code of your contact’s OMEMO key).