Question for @signalapp
Why can I accept a call when signal is locked? How can the other side authenticate me if my private key is locked? Or does this mean that the passphrase only protects received messages and not keys?
-
-
so the passphrase isn't a decryption phrase for the private key?
-
I was talking with someone at Signal, and the paraphrase is NOT a private key lock. So, even with a locked signal, incoming messages are able to be decrypted.
-
fucking christ. Really? Then where's the decryption key? Are the messages no longer encrypted at rest?IIRC they used 2
-
No the paraphrase protects the message database on the phone, not the keys for transmitting/receiving messages.
-
how, if it's "just a screen lock"?
-
Hmm, not sure. Maybe I misunderstood how protections are done. If it's just a screen lock, it's a joke and even unlocking your phone means your message database is compromised.
-
Hmm, code is public, so shouldn't be hard to take a look at.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.