That's not the point! Signal is tying phone number to an IM identity. There is no need for that other then offering non-federated trackinghttps://twitter.com/whispersystems/status/807646087452364802 …
It's because the former employ user-owned identifiers that are part of a social network owned by you - your address book.
-
-
I trust the protocol, not the handling of meta data. If the signal app could use my own xmpp account(s) then I get privacy
-
now I just get encryption
End of conversation
New conversation -
-
-
I also never heard good explanation how I could see a whatsapp conversation where both ends disagreed on encryption status
-
although I assume that was just a bug since fixed, it did make me nervous
End of conversation
New conversation -
-
-
So do you admit or deny that Signal is storing the graph of address-book equivalents on its back-end systems?
-
We don't store any social graph info:https://whispersystems.org/bigbrother/eastern-virginia-grand-jury/ …
-
I see. So what is the app doing exactly with the address book permissions it demands? Sending nothing to a server?
-
We don't store any info server-side like a full name or avatar icon, so app needs access to resolve those from addr book
-
It's a simple Q: Do you or do you not send or store any information derived from the address book to a server?
-
Yes, truncated hash lookups are transmitted. Never stored.
-
OK! Now can these truncated hashes be inverted back into telephone numbers?
-
@thorsheim@whispersystems@letoams Of course they can. - 10 more replies
New conversation -
-
-
However, we'd love it if you proved us wrong and deployed a federated version w/ different identifiers, let us know if we can help.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.