Collaborate Disseminate
Remark: I am not a computer science person. I only read resources from the Internet and try to understand by myself (so they may be far from reality).
I knew a Taiwanese friend recently and I am deciding whether to use Whats… Continue reading Which is more secure? Whatsapp or Line?
Let’s assume that Alice and Bob have a conversation using Signal. They activated disappearing messages every 6 hours so all their messages disappear in both signal clients.
But are these messages stored in Signal’s servers? … Continue reading Signal Messenger: Do they keep a copy of disappearing messages? [on hold]
Facebook, Signal and Telegram are all planning cryptocurrencies. But why these companies, why now, and will they be successful? Continue reading Is a Facebookcoin in the works?
I have 2 servers that communicate each other in HTTP and they are both behind an API gateway.
Between the servers and their API gateways the communication is in HTTPS with mutual authentication using certificates, and the sam… Continue reading HTTP body E2E encryption protocol
WhatsApp is adding new privacy features for many of its users, as the security community keeps a close eye on how its parent company, Facebook, plans to merge the globally popular messaging app with other products. In a software update, WhatsApp allows iOS users to lock their messages with biometric authentication tools. The update, version 2.19.20, allows iPhone owners to unlock WhatsApp using Face ID or Touch ID. This layer of security applies to the entire app — rather than on a chat-by-chat basis — and can be enabled through iPhone’s settings page. An Android version of the update is in a testing phase, according to the Verge. By adding biometric authentication, WhatsApp is building on its already respected end-to-end encryption protocol. The methodology was developed by Open Whisper Systems, the software organization behind the widely-praised messaging app Signal. But even end-to-end encryption can’t protect users’ messages if someone has physical […]
The post WhatsApp adds biometric feature to help protect messages appeared first on CyberScoop.
Continue reading WhatsApp adds biometric feature to help protect messages
How Signal does remove messages? Does it perform secure wipe of data so we can be sure that there is no way to restore deleted messages?
The year is 1894. You are designing a train system for a large city. Your boss informs you that the mayor’s office wants assurances that trains can’t have wrecks. The system will start small, but it is going to get big and complex over time with tracks crossing and switching. Remember, it is 1894, so computing and wireless tech are barely science fiction at this point. The answer — at least for the New York City subway system — is a clever system of signals and interlocks that make great use of the technology of the day. Bernard S. Greenberg …read more
Continue reading Low Tech High Safety and the NYC Subway System
This is your Shared Security Weekly Blaze for December 24th 2018 with your host, Tom Eston. In this week’s episode: Healthcare databases exposed, Facebook’s Photo API bug, and Signal speaks out. Silent Pocket is a proud sponsor of the Share… Continue reading Healthcare Databases Exposed, Facebook’s Photo API Bug, Signal Speaks Out – WB48
Facebook bug exposed private photos of 6.8 million users, thousands of Jenkins servers will let anonymous users become admins, Signal app can’t include a backdoor for the Australian government, WordPress plugs bug that led to Google indexing some… Continue reading Signal App, Jenkins Servers, & WordPress – Application Security Weekly #44
The Signal app offers to seal the sender. The whole process can be summarized in the following steps:
The app encrypts the message using Signal Protocol, as usual.
Include the sender certificate and encrypted message in an … Continue reading Can a data requester get the sender when "Sealed sender" is enabled in Signal?