• cowpattycrusader@thelemmy.club
    link
    fedilink
    English
    arrow-up
    6
    ·
    2 months ago

    This is really interesting. It brings two questions to mind.

    1. Don’t all messaging apps use phone number as a primary metadata value?

    2. Are you suggesting that Signal could either not use this metadata or not collect it and yet they choose to collect it and can therefore lose it to exfiltration or warrant?

    • ☆ Yσɠƚԋσʂ ☆@lemmy.ml
      link
      fedilink
      arrow-up
      8
      arrow-down
      3
      ·
      2 months ago
      1. Nope, for example Wire is based on Signal protocol and doesn’t harvest phone numbers https://wire.com/en
      2. I’m suggesting that if metadata is being leaked then it has to be assumed that it will be used nefariously at some point

      Exact same argument that applies for wanting e2e encrypted messages that aren’t seen by the server also applies to any metadata associated with these messages.