They share it with you. Their public key is generated by them. You encrypt a message to them with their public key. They use their private key to decrypt it.
I want to add before I get completely roasted here, that this is intentionally reductive. Signal actually uses a much more interesting multikey sharing algorithm, double ratchet. This uses onetime keypairs, and really is worth reading about.
I’m not following. In the WhatsApp case, yes, because we can’t see how those keys are managed. In the Signal case, we can. So the centralized server has zero impact on the privacy of the message. If we trust the keys are possessed only by the generating device, then how does the encrypted message become compromised?
I’m not talking about anonymity, only message privacy. No different than any of the other proxies or routers along the way. If they don’t have the key, the message is not readable.
Sorry but you’ll need to hold the L on this one. If I encrypt a message with public key material for which the only private key material that can decrypt the message is in only my possession, it doesn’t matter if the message passes centralized servers.
I’m not trying to be rude, that’s just how it works.
It is, but it doesn’t seem nefarious. Just somebody trying to carve out a little corner to help individuals find some tools to get away from Google and such. Maybe they make money via some affiliate links, but is that a bad thing?
I’m an immigrant, living in Europe, taking care of a few people that need me. I’m also a veteran with prosthetic discs in my back. Be specific; what do you suggest?
I should also add, to answer your question. I would absolutely lay down my life for the cause, but unless I can see a direct line from that to success, there is still a big, complex risk benefit equation I’m working on.
I’m not “pretending to be smart”, at least not intending to do so. I’m just saying exactly what I said. The military branches all have some non-offensive parts of their mission. That’s just true. Airlift for aid delivery has traditionally been part of the mission, for example. I was also careful not to exonerate them for missions that cause harm or for violation of LOAC or UCMJ. They should know better.
I said the enlisted aren’t the primary problem. Maybe you think they pick and choose their missions, but they simply don’t. As far as voters… yeah many of us are pissed too. What do you want me to do? I vote, I try to persuade others to, try to do my part to keep the electorate informed, try to feed my family, etc. Are you asking us to build some fifth column or some such? That sounds great, but many have a lot of context that informs their decisions.
My point is that it isn’t enlisted people that decide on mission. And simply not enlisting doesn’t change that. If the numbers are needed, they will be achieved via volunteer or draft.
Enlisted may or may not attack citizens depending on their views on which orders are lawful. This is nothing like saying not to blame ICE. ICE are signing up to do exactly what they’re doing and should be responsible for it. But enlisted personnel don’t enlist to attack citizens, generally. I’m not saying they are not part of the problem, but they certainly aren’t the root of it.
Who is begging for a foreign savior? You’re arguing against a strawman caricature you made up in the shower.
Each of the branches have long had many global peacetime missions, including humanitarian. They don’t offset the offensive nature of a deployed force, but it can be a good thing to have for delivering defense and aid.
The problem isn’t the enlisted. It is also not limited to the officers. The problem, at present, is primarily the civilian leadership being absolutely unprofessional, unethical, and self-centered.
The amount of soft power cast aside for ignorant racists to clutch pearls is infuriating.
deleted by creator
Yeah, but marketed outside Chine and Hong Kong as TikTok. There it is Douyin.
Many of this administration’s actions affect people beyond the US.
How about you do experimentation, then share anything to support your claim.
Step 0. It just goes without saying.
Okay fair enough, but that is at least slightly different than saying Proton isn’t FOSS, but I understand.
They have a pretty good FOSS standing and audits for software they distribute. While that doesn’t make it easy to host privately, it does make it trivial to see how data is shipped to their servers.
In this case, yes. The fabs there are far too important to let them slip control. Now, if we could just build some fabs in Ukraine.
I pay for Proton and I’m very happy with it. I think they need Contact phone integration but otherwise rock solid products. I don’t like the CEO, but generally I hate them all, so I try not to think about that. Their full suite of products has treated me well for a few years now.
Not at all saying the alternatives aren’t better, just sharing my experience.
Actually great questions. Yes and no. There are vulnerabilities if the private key leaks, but public keys are just that; perfectly okay public in any hands. You only encrypt data with it.
What makes the Signal protocol so awesome, and other algorithms like it, is that it reduces the threat surface area further by using onetime keys. So even if your key is leaked, it cannot be used to decrypt old or forthcoming messages as the keys have already ratcheted to the next pair.