That's rubbish. Threema is not ideal but definitely e2e. Like all other IMs media is handled less securely and stored on server.https://twitter.com/dragosr/status/814767215027232768 …
@dragosr code is not published, not sure what else is to discuss in terms of trust, it's really hard to without code...
-
-
well, if you perform black-box testing quite a bit transpires… did it for a client.
-
shouting "no e2e" when basic analysis shows it to be a false statement is not conductive to anything.
-
I agree and I am not addressing that at all, it was a side comment
-
I am /very/ interested in blind verification but not in b-s FUD…
-
assured verification and/or blind verification is essential for 3rd party trust in closed systems but also $$ as…
-
code review is too expensive for many customers even of high-end system and nobody cares about proper reliability…
-
in the acceptation of "software reliability" avionics-style.
End of conversation
New conversation -
-
-
having said that I am becoming really interested in assured verification (vendor driven) without code as a topic
- 1 more reply
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.