Conversation
Jarkko Sakkinen
jarkko
Edited 6 months ago
Let's put this into nutshell.
In Signal, SGX *does not* help the user to secure contact delivery. You have to *believe* that signal.org is trustworthy plain and simple.
In Signal, SGX does only help signal.org to secure contact delivery from 3rd party adversaries.
The marketing has been somewhat misleading with this for number of years although there has not been any actual lies. They are actually claiming only the 2nd clause but at the same time claiming that it would improve users privacy.
Users privacy can be objectively said to be improved only if one can test and measure that this is really the case. Otherwise it is up to you to believe that signal.org is doing the right thing, and not e.g. just emulate the associated opcodes.
I personally believe that they are doing the (morally) right thing, and using legit SGX, but I would feel more convinced if they would also provide hard evidence on the topic, i.e. certificate delivery and verification in the app using Intel's CA.
#signal #sgx #infosec @signalapp
In Signal, SGX *does not* help the user to secure contact delivery. You have to *believe* that signal.org is trustworthy plain and simple.
In Signal, SGX does only help signal.org to secure contact delivery from 3rd party adversaries.
The marketing has been somewhat misleading with this for number of years although there has not been any actual lies. They are actually claiming only the 2nd clause but at the same time claiming that it would improve users privacy.
Users privacy can be objectively said to be improved only if one can test and measure that this is really the case. Otherwise it is up to you to believe that signal.org is doing the right thing, and not e.g. just emulate the associated opcodes.
I personally believe that they are doing the (morally) right thing, and using legit SGX, but I would feel more convinced if they would also provide hard evidence on the topic, i.e. certificate delivery and verification in the app using Intel's CA.
#signal #sgx #infosec @signalapp
1
7
3
@signalapp Also we had this feature in https://www.enarx.dev/, i.e. it is possible to piggy pack CPU-attestation into x.509 :-) Both the issue and at least one way to fix it has been shown to exist.
1
0
0
@signalapp Also, e.g. in Finland Signal is the recommended app for journalists. Why leave known loopholes to the implementation? Does not reflect the company's brand at all.
1
0
1