Why is XMPP More Secure than Signal?
Trump's Signal leak is a great time to educate you on XMPP. Why is it better?
a) Server Control
Signal is hosted on an external power (Amazon) that you have no control over. And the metadata protection, (for who is talking to who), has been proven to be vulnerable to attackers. [1] This alone could be how the CIA knows if Tucker Carlson is talking to Putin, without reading the message contents.
b) Server-side Identity
Any end-to-end encrypted messenger has two "identities". The first is the account that the server has the password and access to. And second identity is the encryption keys on your device.
Signal uses phone numbers for server-side accounts, which is an external source of identity and truth. This is outside the control of even Amazon (the server). Even if you don't have the pin passcode, the phone number can still be re-assigned. And although this would close current conversations, a hacker can then use the same identity for phising attacks.
On the other hand, XMPP server-side identities are on a server you control and pick. And if done on a Tor Onion, then even a poor civilian with low resources can self-host it on a Rasberry Pi in their home.
c) Client-side Encryption
When Signal users change devices or encryption keys, it only gives a warning that's easily ignored. While as with XMPP, it can't function without drawing attention. Further, XMPP gives much more fine-grained control over which OMEMO encryption keys the users will trust or not (seeing all of the different choices). This is unlike Signal, which forces a binary decision.
d) Group Entry
XMPP allows the server operator to configure groups to only allow entry from users ON THE SAME SERVER. It is possible to "de-federate". This provides massive security benefits, to properly administer who has authorized accounts to even be using the server-side identity to begin with.
In sharp contrast, Signal accounts have no distinction between members of your organization and foreign phising attackers. And SimpleX would be horrible for figuring out who is part of your group.
e) Stronger than Matrix
Matrix is far weaker than XMPP for metadata protection, because Matrix chats go to each of the member's homeservers. This leaks to Matrix-org, (which is on Cloudflare), all metadata if even 1 person from that server is in your group.
In sharp contrast, XMPP has group chats stay on your server itself. And members have to connect directly to your server to get precious metadata.
Conclusion
Given XMPP's powerful security, metadata protection, low cost, and decentralized nature,
You can see why we include XMPP with Email (and potentially your own website), in our Cloud Combo package...
Under this plan, you get a year of friendly support from our dedicated team. But zero external rules (or control over you), because of our decentralized server administration. Because it’s fully decentralized, it avoids us being on the legal hook for dispersed servers around the world, that you alone control. In fact, it’s unclear who is even our customer.
You can get started for just $100 for a complete setup and a full year of support,
https://simplifiedprivacy.com/email-cloud-combo/index.html
Sources on Signal’s metadata vulnerabilities:
[1] https://simplifiedprivacy.com/signal/index.html
And if you like my articles, consider reposting. As we don't use Twitter or Youtube.
SimplifiedPrivacy.com Podcast / SimplifiedPrivacy.com
npub14s…jt5d6
2025-03-27 14:03:06
Author Public Key
npub14slk4lshtylkrqg9z0dvng09gn58h88frvnax7uga3v0h25szj4qzjt5d6Published at
2025-03-27 14:03:06Event JSON
{
"id": "5fdf227ecfe53d0d1da44e7608192d25f6495a819c958f52be09a988c97272e3",
"pubkey": "ac3f6afe17593f61810513dac9a1e544e87b9ce91b27d37b88ec58fbaa9014aa",
"created_at": 1743084186,
"kind": 1,
"tags": [],
"content": "Why is XMPP More Secure than Signal?\n\nTrump's Signal leak is a great time to educate you on XMPP. Why is it better?\n\na) Server Control\n\nSignal is hosted on an external power (Amazon) that you have no control over. And the metadata protection, (for who is talking to who), has been proven to be vulnerable to attackers. [1] This alone could be how the CIA knows if Tucker Carlson is talking to Putin, without reading the message contents.\n\nb) Server-side Identity\n\nAny end-to-end encrypted messenger has two \"identities\". The first is the account that the server has the password and access to. And second identity is the encryption keys on your device.\n\nSignal uses phone numbers for server-side accounts, which is an external source of identity and truth. This is outside the control of even Amazon (the server). Even if you don't have the pin passcode, the phone number can still be re-assigned. And although this would close current conversations, a hacker can then use the same identity for phising attacks.\n\nOn the other hand, XMPP server-side identities are on a server you control and pick. And if done on a Tor Onion, then even a poor civilian with low resources can self-host it on a Rasberry Pi in their home.\n\nc) Client-side Encryption\n\nWhen Signal users change devices or encryption keys, it only gives a warning that's easily ignored. While as with XMPP, it can't function without drawing attention. Further, XMPP gives much more fine-grained control over which OMEMO encryption keys the users will trust or not (seeing all of the different choices). This is unlike Signal, which forces a binary decision.\n\nd) Group Entry\n\nXMPP allows the server operator to configure groups to only allow entry from users ON THE SAME SERVER. It is possible to \"de-federate\". This provides massive security benefits, to properly administer who has authorized accounts to even be using the server-side identity to begin with.\n\nIn sharp contrast, Signal accounts have no distinction between members of your organization and foreign phising attackers. And SimpleX would be horrible for figuring out who is part of your group.\n\ne) Stronger than Matrix\n\nMatrix is far weaker than XMPP for metadata protection, because Matrix chats go to each of the member's homeservers. This leaks to Matrix-org, (which is on Cloudflare), all metadata if even 1 person from that server is in your group.\n\nIn sharp contrast, XMPP has group chats stay on your server itself. And members have to connect directly to your server to get precious metadata.\n\nConclusion\n\nGiven XMPP's powerful security, metadata protection, low cost, and decentralized nature,\n\nYou can see why we include XMPP with Email (and potentially your own website), in our Cloud Combo package...\n\nUnder this plan, you get a year of friendly support from our dedicated team. But zero external rules (or control over you), because of our decentralized server administration. Because it’s fully decentralized, it avoids us being on the legal hook for dispersed servers around the world, that you alone control. In fact, it’s unclear who is even our customer.\n\nYou can get started for just $100 for a complete setup and a full year of support,\nhttps://simplifiedprivacy.com/email-cloud-combo/index.html\n\nSources on Signal’s metadata vulnerabilities:\n[1] https://simplifiedprivacy.com/signal/index.html\n\nAnd if you like my articles, consider reposting. As we don't use Twitter or Youtube.",
"sig": "c833347e857b8a11216dcbbd1fd84a6b6a174f4597381cbbab8cbe7b9264ae22c79f106f1a9f41ede0f673ab5b3449d7f26ea64f9a86acb765c6c598cf68e306"
}