For the record:
- The *cryptography* in Signal is probably fine; a practical attack would be a big surprise.
- Signal lacks specific features required for classified systems, such as security labels, certified identities, revocation, etc.
- Signal runs on uncontrolled, insecure platforms connected to the Internet, rendering it unsuitable for classified even if it had the above features.
- Adding classified features to Signal would make it unusable for most purposes for which it's intended.
Matt Blaze /
npub1d7…z6qzr
2025-04-09 18:11:25
in reply to nevent1q…sj9u
Author Public Key
npub1d7ggne0xsy8e2999q8cyh9zxda688axm07cwncufjeku0nahvfgsyz6qzrPublished at
2025-04-09 18:11:25Event JSON
{
"id": "3e828137d7049afdebc73addd4e7ca5448e70d8c793aa91fda6612c6a06b809e",
"pubkey": "6f9089e5e6810f9514a501f04b94466f7473f4db7fb0e9e389966dc7cfb76251",
"created_at": 1744222285,
"kind": 1,
"tags": [
[
"e",
"7ccffd9b62973cbb089a56e8db0e54306cb2385a3f19730a6f77c3b565213c03",
"wss://relay.mostr.pub",
"reply"
],
[
"proxy",
"https://federate.social/users/mattblaze/statuses/114309351726436778",
"activitypub"
],
[
"client",
"Mostr",
"31990:6be38f8c63df7dbf84db7ec4a6e6fbbd8d19dca3b980efad18585c46f04b26f9:mostr",
"wss://relay.mostr.pub"
]
],
"content": "For the record:\n\n- The *cryptography* in Signal is probably fine; a practical attack would be a big surprise.\n\n- Signal lacks specific features required for classified systems, such as security labels, certified identities, revocation, etc.\n\n- Signal runs on uncontrolled, insecure platforms connected to the Internet, rendering it unsuitable for classified even if it had the above features.\n\n- Adding classified features to Signal would make it unusable for most purposes for which it's intended.",
"sig": "114647f0478b204af60ff3fb8717516855d1daf973b63aaefdc959823f05b2b592d396066e04afe41da6c7f546ec0e24f6d02ff5e7c732c7f9d037342177d9d6"
}