This is the talk page for discussing improvements to the Signal (software) article. This is not a forum for general discussion of the article's subject.
This article is within the scope of WikiProject Apps, a collaborative effort to improve the coverage of apps on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.AppsWikipedia:WikiProject AppsTemplate:WikiProject Appsapps articles
This article is within the scope of WikiProject Cryptography, a collaborative effort to improve the coverage of Cryptography on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.CryptographyWikipedia:WikiProject CryptographyTemplate:WikiProject CryptographyCryptography articles
This article is within the scope of WikiProject Telecommunications, a collaborative effort to improve the coverage of Telecommunications on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.TelecommunicationsWikipedia:WikiProject TelecommunicationsTemplate:WikiProject TelecommunicationsTelecommunications articles
This article is within the scope of WikiProject Computing, a collaborative effort to improve the coverage of computers, computing, and information technology on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.ComputingWikipedia:WikiProject ComputingTemplate:WikiProject ComputingComputing articles
Signal (software) is within the scope of WikiProject Mass surveillance, which aims to improve Wikipedia's coverage of mass surveillance and mass surveillance-related topics. If you would like to participate, visit the project page, or contribute to the discussion.Mass surveillanceWikipedia:WikiProject Mass surveillanceTemplate:WikiProject Mass surveillanceMass surveillance articles
This article is within the scope of WikiProject Freedom of speech, a collaborative effort to improve the coverage of Freedom of speech on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.Freedom of speechWikipedia:WikiProject Freedom of speechTemplate:WikiProject Freedom of speechFreedom of speech articles
This article is within the scope of WikiProject Internet, a collaborative effort to improve the coverage of the Internet on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.InternetWikipedia:WikiProject InternetTemplate:WikiProject InternetInternet articles
This article is within the scope of WikiProject Internet culture, a collaborative effort to improve the coverage of internet culture on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.Internet cultureWikipedia:WikiProject Internet cultureTemplate:WikiProject Internet cultureInternet culture articles
This article is within the scope of WikiProject Human rights, a collaborative effort to improve the coverage of Human rights on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.Human rightsWikipedia:WikiProject Human rightsTemplate:WikiProject Human rightsHuman rights articles
This article is within the scope of WikiProject Law, an attempt at providing a comprehensive, standardised, pan-jurisdictional and up-to-date resource for the legal field and the subjects encompassed by it.LawWikipedia:WikiProject LawTemplate:WikiProject Lawlaw articles
This article is within the scope of WikiProject Business, a collaborative effort to improve the coverage of business articles on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.BusinessWikipedia:WikiProject BusinessTemplate:WikiProject BusinessWikiProject Business articles
Contact discovery says (emphasis mine) «Signal's developers announced that they were working on a way for the Signal client applications to "efficiently and scalably determine whether the contacts in their address book are Signal users without revealing the contacts in their address book to the Signal service."» but this support page says "The Signal service does not have any knowledge of your contacts. Data is all owned by your phone." Meonkeys (talk) 18:08, 1 October 2024 (UTC)[reply]
The technique described there was deployed, so the page should be updated, but it's not quite as straight forward as the protections around message content. The fundamental principle of Signal's private contact discovery is "do it in SGX", and while strictly better than what they were doing before, it's only as secure as the SGX hardware and libraries, which in practice has been "not very." It does mean that an attacker would have to have the skills and resources to not only break into Signal's servers, but also deploy an attack on SGX, which is non-negligible, but it's not even remotely close to the security of the cryptography protecting message contents. The hard part is now finding a reputable source describing this reality, without under- or over-selling it. Tga (talk) 17:31, 7 October 2024 (UTC)[reply]
.svg){kind=logo}
