Moxie Marlinspike: There is no WhatsApp 'backdoor'

by Volker Weber

We believe that it is important to honestly and accurately evaluate the choices that organizations like WhatsApp or Facebook make. There are many things to criticize Facebook for; running a product that deployed end-to-end encryption by default for over a billion people is not one of them.

We believe that WhatsApp remains a great choice for users concerned with the privacy of their message content.

Moxie calls out The Guardian for their reporting. This developing story also demonstrates something that irritates me in the security scene. There are those like Moxie who create secure systems. And then there are those who create strange edge cases to demonstrate their prowess and make sweeping allegations from there.

The issue with Facebook/Whatsapp is not that they snoop in on your conversation. They can do that in your Facebook posts, likes, and such. The real issue is that they mine your social connections to deliver their advertisement product. But you cannot take offense here when you are using customer loyalty programs at the same time.

It is great that the Guardian thinks privacy is something their readers should be concerned about. However, running a story like this without taking the time to carefully evaluate claims of a "backdoor" will ultimately only hurt their readers. It has the potential to drive them away from a well engineered and carefully considered system to much more dangerous products that make truly false claims.

Signal is not one of those dangerous products. It's the original implementation of the secure protocol.

Comments

Sounds like WhatsApp and Signal are going to become more similar:

"In an interview, Marlinspike said Signal was in the process of moving away from strictly enforced blocking. He also said that WhatsApp takes strict precautions to prevent its servers from knowing which users have enabled security notifications, making it impossible for would-be attackers to target only those who have them turned off."

(http://arstechnica.co.uk/security/2017/01/whatsapp-and-friends-take-umbrage-at-report-its-crypto-is-backdoored/)

John Keys, 2017-01-14

Recent comments

Andreas Braukmann on Sonos Play:3 :: Nicht kaufen, nicht warten at 00:30
Volker Weber on Themenwechsel at 23:40
Volker Weber on Sonos Play:3 :: Nicht kaufen, nicht warten at 23:13
Karl Heindel on Themenwechsel at 23:12
Volker Weber on Apple Music :: Erfolgreicher Umstieg at 21:51
Marco Foellmer on Apple Music :: Erfolgreicher Umstieg at 21:42
Frank Heurich on Sonos Play:3 :: Nicht kaufen, nicht warten at 21:07
Volker Weber on Sonos Play:3 :: Nicht kaufen, nicht warten at 20:16
Volker Weber on Apple Music :: Erfolgreicher Umstieg at 20:14
Michael Jäckel on Apple Music :: Erfolgreicher Umstieg at 20:06
Felix Binsack on Sonos Play:3 :: Nicht kaufen, nicht warten at 18:46
Volker Weber on Apple Music :: Erfolgreicher Umstieg at 16:25
Volker Weber on Sonos Play:3 :: Nicht kaufen, nicht warten at 15:01
Dirk Steins on Sonos Play:3 :: Nicht kaufen, nicht warten at 14:19
Michael Jäckel on Apple Music :: Erfolgreicher Umstieg at 13:50
Axel Borschbach on Apple Music :: Erfolgreicher Umstieg at 11:29
Jens Nullmeyer on Apple Music :: Erfolgreicher Umstieg at 11:18
Volker Weber on Themenwechsel at 10:59
Timm Caspari on Themenwechsel at 10:54
Hanjo Iwanowitsch on Don't lie to me at 23:01
Volker Weber on Maybe phones have gone too far :: Genius review of the Google Pixel 3 at 19:45
Nick Daisley on Maybe phones have gone too far :: Genius review of the Google Pixel 3 at 19:29
Martin Kautz on Reverse engineering a Huawei phone at 19:11
Henning Heinz on Don't lie to me at 19:10
Volker Weber on Reverse engineering a Huawei phone at 18:18

Ceci n'est pas un blog

I explain difficult concepts in simple ways. For free, and for money. Clue procurement and bullshit detection.

vowe

Contact
Publications
Stuff that works
Amazon Wish List
Frequently Asked Questions

rss feed  twitter  amazon

Local time is 04:50

visitors.gif

buy me coffee