boris, to opensource
@boris@toolsforthought.social avatar

Ente @ente just announced open sourcing their full backend.

It’s an end-to-end encrypted “alternative to Google or Apple photos”, licensed as AGPL.

Their client code had always been open source, this completes making the entire service available.
https://ente.io/blog/open-sourcing-our-server/

jonyoder, to Kotlin
@jonyoder@mstdn.social avatar

Having one of those "is this real?" moments. Why?

I just finished writing a code test which creates and queues for delivery an end-to-end encrypted email-like message in somewhere around 10-15 lines of code.

Think about it. It's starting getting real. SQUEEEE!!!

Nothing to show just yet, but I'm getting close.

ianonymous3000, to privacy
@ianonymous3000@mastodon.social avatar

🚨 Important update from @signalapp 🚨
The latest update (v7 on Desktop):
✅ Keep your phone number hidden
✅ Choose to share a username instead
✅ Take control with new privacy settings - You decide who finds you by phone number.

glynmoody, to Bulgaria
@glynmoody@mastodon.social avatar

New government attempt to bulk search private messages and destroy secure end-to-end encryption - https://netzpolitik.org/2024/chatkontrolle-der-rat-will-es-nochmal-versuchen/#2024-02-22_Presidency_LEWP_CSAR_New-approach_6850 they are determined to undermine

CenDemTech, to random
@CenDemTech@techpolicy.social avatar

Today, a district court in Nevada is hearing a case about whether Meta should have to comply with the state AG’s demand for a temporary restraining order to stop Meta from offering end-to-end () on Facebook’s Messenger for children in Nevada under the age of 18.

@CenDemTech opposes this unprecedented assault on children’s use of . https://cdt.org/wp-content/uploads/2024/02/2024-02-20-NV-State-Motion-for-TRO-and-Prelim-Injunction-on-OST.pdf

joeo10, to privacy
@joeo10@mastodon.sdf.org avatar

Meanwhile at the same time, Nevada is currently trying to grant a temporary restraining order to ban Meta/FB from rolling out end-to-end-encryption or , threating and in the process. https://www.techdirt.com/2024/02/26/nevada-is-in-court-this-morning-looking-to-get-a-temporary-restraining-order-blocking-meta-from-using-end-to-end-encryption/

Here's @mmasnick:

"This is a full-on attack on encryption. If Nevada succeeds here, then it’s opening up courts across the country to outlaw entirely. This is a massive, dangerous attack on security and deserves much more attention."

maxleibman, to privacy
@maxleibman@mastodon.social avatar

If you believe the good guys need to have a way to get around encryption, you either haven’t thought about it enough, or you’re not one of the good guys.

https://mastodon.lawprofs.org/@riana/111982802756354530

chris, to apple
@chris@mstdn.chrisalemany.ca avatar

Fascinating ... Apple joins Signal to provide the most secure end-to-end encrypted messaging protocols. Note: Apple engineers created their own “Levels” and magically theirs is the highest. ;) But regardless, this is obviously strong encryption.

"Support for PQ3 will start to roll out with the public releases of iOS 17.4, iPadOS 17.4, macOS 14.4, and watchOS 10.4, and is already in the corresponding developer preview and beta releases.”

https://security.apple.com/blog/imessage-pq3/

yawnbox, to apple
@yawnbox@disobey.net avatar

iMessage quantum security arrives with iOS 17.4 - @9to5Mac

This would have been the perfect article to remind people that all of this E2EE doesn’t matter if you backup your iMessages in iCloud, where they will be backed up clear-text to Apple/NSA, unless both parties turn on Advanced Data Protection

https://9to5mac.com/2024/02/21/imessage-quantum-security-ios-17-4/

ilyess, to apple
@ilyess@mastodon.online avatar

strengthens iMessage end-to-end encryption with post-quantum cryptography: PQ3.

"iMessage now meets this goal with a new cryptographic protocol that we call PQ3, offering the strongest protection against quantum attacks and becoming the only widely available messaging service to reach Level 3 security"

https://security.apple.com/blog/imessage-pq3/

thibaultamartin, to Signal
@thibaultamartin@mamot.fr avatar

Huge feature rolled out in beta by the @signalapp team: Signal now supports usernames so you don't have to share your phone number 👏

Massive props to them, this was a feature many people were waiting for, and it's a huge step forward in terms of privacy

https://signal.org/blog/phone-number-privacy-usernames/

sourcerer, to security
@sourcerer@bsd.cafe avatar

Backdoors that let cops decrypt messages violate human rights, EU court says

One of comments about the title:

"Contrary to what the headline says, the European Court of Human Rights in Strasbourg, France, is not an EU court. It is part of the Council of Europe, which is older than the EU and has more members, and is mainly concerned with human rights related issues.

The EU has its own Court, the Court of Justice of the European Union (CJEU) in Luxembourg.

Edit: just to add, the article gets all the nuances right and refers to the Council of Europe and even to possible endorsement by the CJEU, so the problem is only with the headline."

https://arstechnica.com/tech-policy/2024/02/human-rights-court-takes-stand-against-weakening-of-end-to-end-encryption/

Another article + discussion https://news.ycombinator.com/item?id=39369653

@security

b9AcE, to random
@b9AcE@todon.eu avatar

It seems appropriate that the spark was stolen from humanity by corporations to give to their "AI" instead.

The worst thing about the current "AI" leap is probably not even that it will be, is already being used to build the near total coverage constant surveillance, a scaffolding ready for any totalitarian to construct their oppression system on, as well as disabling the mischievousness that is essential to healthy mental development by social exploration and cutting the bonds enabling adulthood independence from parents.

It is instead probably that with live "AI"-generated fake video indistinguishable from reality, we will not be able to trust any evidence of anything having happened, as the watermarks promised as solution can easily be removed or not applied.
No person will be able to trust anything they're told by any other person that it happened and no one person can personally witness every important event in the world.

This breaks humankind's ability to cooperate over long social distances and our networks of trust, the sparks that has been keeping our "survival of the fittest" of ability to wide ranging adaptation to habitats aflame.
Reassigning the sparks emoji to mean "AI" generated content was appropriate, probably more so than Samsung or whomever committed the theft realized.

video/mp4

tomstoneham,
@tomstoneham@dair-community.social avatar

@b9AcE
messages from verified contacts seem to replicate the process.

Apps like @briar and @simplex are good for this because they require you to use some form of handshake outside the app in order to set up a chat with a known person.

I also think we need an information version of banking's Know Your Customer protocols.

itnewsbot, to telegram
@itnewsbot@schleuss.online avatar

Backdoors that let cops decrypt messages violate human rights, EU court says - Enlarge / Building of the European Court of Human Rights in Strasbourg ... - https://arstechnica.com/?p=2003350 -to-end

yawnbox, to random
@yawnbox@disobey.net avatar

@cwtch is by far my most favorite . it's , and end to end encryption () is built in with onion services. no setting up any infrastructure required, it's built on the back of the distributed @torproject operator network. no phone number is necessary, and you can have isolated IDs (profiles) for everyone you talk to

tuxdevices, (edited ) to Europe
@tuxdevices@fosstodon.org avatar
nikita, to random German
@nikita@social.tchncs.de avatar

👉 verbietet Schwächung der Ende-zu-Ende-Verschlüsselung: Sieg für die digitale Privatsphäre

https://www.schmidtisblog.de/eugh-verbietet-schwaechung-der-ende-zu-ende-verschluesselung-sieg-fuer-die-digitale-privatsphaere-1736761/

HistoPol,
@HistoPol@mastodon.social avatar

@nikita

Was würden wir bloß machen, wenn es nicht Gerichte wie den und den geben würde?

Nochmal vorbeigeschrammt:

Freiheitsverluste:

In der Hand von Extremisten, bezahlt von : .

"...begründete seine Entscheidung damit, dass eine wichtige Rolle beim Schutz der Bürger und Unternehmen vor Cyberkriminalität und unbefugter Datenweitergabe spielt.

Das...

https://social.tchncs.de/@nikita/111931182101719123

kubikpixel, (edited ) to Bulgaria German
@kubikpixel@chaos.social avatar

«Ende-zu-Ende-Verschlüsselung (E2EE) durch Urteil EU-weit geschützt»
@tarnkappeinfo

Mal eine positive Nachricht was die und angeht. Die ist geschützt und eingesehen das wichtig ist. Jetzt müssen nur noch die Firmen und Behörden die ihrer , wie zB mit , noch konsequent umsetzen. Ich hoffe, die zieht dem nach.

🔐 https://tarnkappe.info/artikel/netzpolitik/ende-zu-ende-verschluesselung-durch-urteil-eu-weit-geschuetzt-289301.html
🔐 https://gnupg.org

echo_pbreyer, to random German
@echo_pbreyer@digitalcourage.social avatar

🇬🇧 The judgement of the European Court of Human Rights on the right to is a victory for civil liberties! EU governments must finally remove the proposed destruction of secure encryption from the 2.0 bill!

https://www.patrick-breyer.de/en/european-court-of-human-rights-bans-weakening-of-secure-end-to-end-encryption-the-end-of-eus-chat-control-csar-mass-surveillance-plans/

thatprivacyguy, to privacy
@thatprivacyguy@eupolicy.social avatar

European Court of Human Rights bans weakening of - a death knell for

https://hudoc.echr.coe.int/eng/?i=001-230854 (para 76 onwards)

ajkelkar, to privacy
@ajkelkar@mastodon.social avatar

What a joke. I don’t know how people didn’t see this coming. The red flags were all over the place.

https://www.notion.so/blog/meet-skiff-the-newest-member-of-the-notion-family

matrix, to Matrix
@matrix@mastodon.matrix.org avatar

Blazing fast Matrix, Native E2EE Group Calls, state of the art auth and potential WhatsApp interop.

Matthew covers the last year in Matrix and how it can be used to speed up the opening of communications silo required by the EU Digital Markets Act

https://youtu.be/s5BrVVf0B1I

jele, to random German
@jele@norden.social avatar

@digitalcourage
Sagt mal, liest die des Clientrechners aus und setzt die Zeiten in der Kalenderumfrage in die jeweilige Zeitzone um?

christian,
@christian@suma-ev.social avatar

@jele kann das. Außerdem ist es : https://www.systemli.org/poll/

Inzwischen bereue ich, mit aufgesetzt zu haben, obwohl es damals Croodle schon gab. Ich hatte einfach nicht gründlich genug recherchiert.

ilumium, to random
@ilumium@eupolicy.social avatar

Listening to @matthew at talking about messaging following the and it's mindboggling to see how tiny corps like @element, and invest in building the next generation protocol.

unruhe, (edited ) to protonprivacy Italian
@unruhe@mastodon.social avatar

deleted_by_author

  • Loading...
  • dazo,

    @unruhe @Tutanota @protonprivacy

    Give both a shot. Both are the only ones (I know of) having zero storage access as the only option; meaning is enforced. You may have mailbox.org as a third one (E2EE must be enabled manually there).

    I ended up with Proton as I experienced it far more feature rich, flexible and mature. And the Bridge is a must for my use case. In addition, it builds on PGP which can be used to have E2EE communication with people outside of Proton. (yes, I've tried Mailvelope with Tuta; that does not work at all. And doing it manually with copy/paste and PGP in an ordinary text esitor is a waste of time and also turned out error prone one the receiving end; Tuta mails gets mangled on the way).

    But if you're a very lightweight mail user, Tuta might fit your need. I generally think of Tuta more like a messenger service with SMTP transport support.

    Also beware, importing mails to Tuta is still not possible (unless that has changed the last months). And exporting mails are also a mess. I have migrated one user from Tuta to Proton, and I had to manually fix mail headers to get them imported. The mail export was quite poor, tbh. It took me longer than importing a handful of users from a Zimbra server to Proton - using the same Proton Mail Import/Export tool.

    Finally, I just want to mention that Tuta is a company with less than 20-30 employees, serving something like 10 million users. Proton is probably closer to 500 employees these days, serving more than 100 million users. So these organisations are quite different. Which also means they have quite different approaches for developing services further and capabilities to handle sudden challenges.

  • All
  • Subscribed
  • Moderated
  • Favorites
  • JUstTest
  • kavyap
  • InstantRegret
  • GTA5RPClips
  • magazineikmin
  • mdbf
  • rosin
  • Youngstown
  • khanakhh
  • everett
  • slotface
  • thenastyranch
  • osvaldo12
  • DreamBathrooms
  • anitta
  • ngwrru68w68
  • ethstaker
  • modclub
  • cubers
  • cisconetworking
  • Durango
  • tacticalgear
  • tester
  • normalnudes
  • Leos
  • megavids
  • provamag3
  • lostlight
  • All magazines