Hacker News new | past | comments | ask | show | jobs | submit login

I’m not sure how exact to read this, but I’m curious how it differs from the Signal protocol.



Signal doesn’t really address group chat, or it does but in some very limited ways that won’t scale passed a lot of participants (depending which group chat protocol you use among the different ones that have been implemented with the Signal protocol). Now if you ask me why you would want end-to-end encryption in a group with hundreds, thousands, or more users I have no answer for you. IMO group chat passed 30 users should revert to public group chats instead of giving you a false sense of privacy.


> IMO group chat passed 30 users should revert to public group chats instead of giving you a false sense of privacy.

Whether or not that's a "false" sense of privacy depends on your threat model.

Is your primary threat "What if someone hacks the communication server and leaks our conversations?" (This is something I worry about a lot.)

Is your primary threat "What if someone in our chat is a spy and we're planning crimes?" (This is something I don't worry about, but others might.)

In the first case, E2EE for up to 1000 participants in a group still makes sense.

In the second case, every additional participant is additional liability of government subversion.




Join us for AI Startup School this June 16-17 in San Francisco!

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: