With those apps, you throw away the crypto and just start trusting the server: (1) whenever you switch to a new phone; (2) whenever any partner switches to a new phone; (3) when you factory-reset a phone; (4) when any partner factory-resets a phone, (5) whenever you uninstall and reinstall the app, or (6) when any partner uninstalls and reinstalls. If you have just dozens of contacts, resets will affect you every few days."

I guess I don't have "dozens of contacts", but getting a new phone/resetting a phone isn't really that common of a thing in my circle. I feel like for the average user, they wouldn't do this with their phone more than like once every year or two. So I guess if you have like 600 people you talk to on these apps regularly then that works out to daily, but for me at least this isn't that big of a deal and was pretty much understood from the outset.

""" There's a very effective attack here. Let's say Eve wants to break into Alice and Bob's existing conversation, and can get in the middle between them. Alice and Bob have been in contact for years, having long ago TOFU'ed.

Eve simply makes it look to Alice that Bob bought a new phone:

Bob (Eve): Hey Hey

Alice: Yo Bob! Looks like you got new safety numbers.

Bob (Eve): Yeah, I got the iPhone XS, nice phone, I'm really happy with it. Let's exchange safety numbers at RWC 2020. Hey - do you have Caroline's current address? Gonna surprise her while I'm in SF.

Alice: Bad call, Android 4 life! Yeah 555 Cozy Street.

So to call most E2E chat systems TOFU is far too generous. It's more like TADA — Trust After Device Additions.1 This is a real, not articifical, problem, as it it creates an opportunity for malicious introductions into pre-existing conversation. Unlike real TOFU...by the time someone is interested in your TOFU conversation, they can't break in. With TADA, they can. """

The quote you linked is relevant because it means that you can't simply ignore this problem; resets are fairly common, common enough that you can't just delete the key-loser's account (for example). However it doesn't have anything to do with the actual security flaw (if we want to call it that, it's really more of a UX / messaging problem) being discussed.

Now this is an anonymous contact. There is no way that we will authenticate in meatspace. So I said "sorry", and pointed out that they should have shared a public GnuPG key with me before triggering a reset.

It's just the TFA example:

> Bob (Eve): Hey Hey

> Alice: Yo Bob! Looks like you got new safety numbers.

> Bob (Eve): Yeah, I got the iPhone XS, nice phone, I'm really happy with it. Let's exchange safety numbers at RWC 2020. Hey - do you have Caroline's current address? Gonna surprise her while I'm in SF.

> Alice: Bad call, Android 4 life! Yeah 555 Cozy Street.

Now, I and my iffy correspondent have never shared anything actionable about third parties. But I do know a little about what he's doing, and have offered advice. And it would be very hard to continue doing that, without the risk of revealing potentially damaging information.

But I have no clue who they are, and vice versa. Indeed, I emphasize that I don't want to know anything about what exactly they're up to. They could be hobbyists like me. Or criminals. Or cops. I mean, I have no way to know. So I don't worry about it.

Basically it's TOFU. Ideally, they contact me via GnuPG encrypted email. So who they are is their public key, and an email address. Sometimes, for convenience, we more to Keybase or some other secure channel. But whatever, their identity is their public GnuPG key.

So a few times, I've wondered whether I was actually having multiple parallel conversations with someone, using different personas. But one just doesn't ask about such things. And at times, my contacts and I do that intentionally, to confuse observers.

I just won't talk about anything that I talked about before.

It's exactly like someone asking questions about someone else. That all goes to /dev/null.

Indeed. Or, "TA-DAA"! (trust after device addition/alteration, again)

I'm not comfortable with this "secure" device held key.

Maybe a private key that's pass-phrase derived could anchor the trust? So that the device key just becomes a trusted sub key/cert? With maybe a 30 day validity before renewal. (renewal ux being: please enter your pass phrase to insure continued integrity...)?

Using a passphrase alongside some online verification mechanism by a semi-trusted third party (e.g., your initial Signal app generates a secret, encrypts it to your passphrase, and stores it on Signal's servers who only return the encrypted secret to "your" new phone if it has your phone number too) might be enough.

I suppose the pgp/ssh model of secure device holding the master key plus the ability to backup (eg qr code printout in a safe).

An approximation for phones would be a random key locked in the device with a pin, an the ability to transfer and backup keys as you mention.

Other than that - I've not really heard of gpg keys or ssh keys being brute forced - but that may be because by the point you gain access to the (encrypted) private key - you already have access to everything else?

[ed: for example there are 52 cards in a normal deck of cards, meaning each card encodes about 5.7 bits(2^5=32,2^6=64). You could represent a ~128 bit key as a sequence of ~23 random cards. Or add add a few checksum bits and use half a deck (26 cards).

Note, shuffling a deck isn't a great source of randomness, but you could use dice or a computer to generate the key - then map it to a sequence of cards.]

[ed: input is definitely a challenge. I've considered making various alternative input methods - but in the end 128 bits is a lot of data to input without error. Especially on a phone. Of course on a phone you might have a pin protected secure enclave for example, or use an external nfc key etc.

But it then we're back to some way to remember 128 bits - and maybe even without the luxury of "practice" by way of typing it a few times a day...]

But even if you do that well, you still have a MITM attack at registration time. The surface area is very small here, but a state or even corporate backed individual could certainly afford to perform such an attack. If there is no specific target, hacking an Apple store or a Best Buy to spoof all registration traffic and substitute your own would probably catch a lot of fish in your net.

I think as long as the meta message about the change of key is prominent/scary enough, even non-HNers will be as on edge as necessary.

You can NOT verify anything by asking a challenge question. Man-in-the-middle attack means there's a "man in the middle". That is, the attacker can relay challenge question and answer between the contacts it attacks.

If Alice and Bob know a good secret (say a 128-bit AES key) then they can definitely just use that secret to protect their communications against the MITM. This only requires updating the protocol to allow such a secret to be introduced. Mallory can continue to relay messages, but they are now passive and don't learn anything beyond traffic analysis or have any ability to tamper with the messages.

But chances are Alice and Bob don't have such a secret (and of course they can't use the potentially MITM'd channel to agree one)

I _think_ if Alice and Bob know a weak human secret they can do something here with a Balanced PAKE. A PAKE lets two parties agree a key based on knowing some relatively weak secret, Mallory can try to guess but only gets one chance each time this is done and failure is detectable by Alice and/or Bob. Again this requires support in the chat protocol itself.

What income bracket is your circle? Just going to reminisce a bit here...

I come from a family business that used a lot of manual labor from the local neighborhood here in south Queens, NYC. I spent a lot of time with guys in late teens and 20's, mainly black and hispanic kids looking to make some decent side money. They came from low income backgrounds and were poorly educated. This leads to a very unstable life where money really is scarce.

They frequently changed phone numbers due to: "crazy" ex, owes money to scary people, owes child/alimony support, owes the government, commits crimes and uses frequent burners, did jail time, or the #1 reason; out of minutes and no money to put on the prepaid plan. They used prepaid plans as they could refill accounts using cash at physical phone stores or check cashing stores because they don't have a computer or bank account. No phone service means no internet. Most of those guys were good people who I got along with just fine. Ignorance really is a terrible thing.

High enough that they can afford an iPhone but low enough that they treat it like a treasure they don't want to have to replace unless they've had it at least five years.

I'm surprised at your suggestion that lower income people would be more likely to go through phones. I could definitely understand this for cheap flip phones on a pre-paid plan, but it was my understanding that Signal and WhatsApp are smartphone-only apps, so I figured lower income people especially wouldn't be flying through phones that cost hundreds of dollars.

For instance, you can get smartphones for well under $50 from Cricket, once every 90 days per account. They are locked to Cricket, but you don't actually have a contract, you can abandon them at any time with no penalty. Yes, the cheapest smartphones are gonna be _really bad_. But in the past year-ish, perfectly usable smartphones available around $100-$160 became a thing (carrier locked but no contract). (Flip phones have become _really bad_ too though. Flip phones available in 2019 have worse battery life and worse performance/UX than flip phones of 5 years ago. like press a button wait 1s+ for something to happen bad UX)

Flip phones are pretty much gone, I don't think they are a thing poor people use anymore. They might be a thing old people use, or that people attempting to have an anonymous disposable phone use. They don't generally make sense any more as a cost conscious thing, plus if you're poor you don't want to be reminded that you're different from "everyone else" everytime you look at your phone. Incredibly cheap (crappy) smart phones are available, and relatively affordable reasonable ones too.

(Plus, not just for poor people these days, but especially if you're poor, your phone is probably your only computer and only internet access).

It's not to common with me, and I just notify my contacts know I'm about to do it under my old key before I switch, so they know a warning is coming. Then I just reverify next time we meet.

I'd probably be more diligent if I actually had something to hide, but I don't, so I'm not.

I have about 15 people on signal an I've seen a reset once or twice maybe in total.

Speaking from my experience getting journalists and political campaigns set up with signal in 2017-2018, the early scary key change warnings were off-putting to people and made them reluctant to continue with the messenger. At the time, I was in contact with 100-150 people via signal and quickly ran out of patience with anyone who insisted on a safety number check. But the UI at the time encouraged that level of paranoia.

I continue to believe that making key changes as painless as possible for users is the correct approach as long as there are ways to harden this behavior in the settings, for the benefit of the far smaller set of people to whom MITM attacks are a credible threat.

I'm OK with the compromise that Signal has made with key management -- there are people that I really care to have private communication with, and people who I prefer to have private communication with. I verify the former, and don't bother with the latter unless we happen to be bored together in the same room.

On a side note, thanks for your efforts over the last two years!

Thanks very much for the kind words!

Who do you think constitutes these disparate user bases and how are their perceived expectations different?

But it's not all or nothing. Signal could do better at improving their UX to reduce the number of key changes people make in practice. If they did, they could probably make the prompt slightly more scary (but not Keybase-level scary) – but even if they didn't change the prompt, the mere fact that users wouldn't see it as frequently means they'd be more likely to pay attention when they did.

In particular, according on other posts in this thread, the backup/restore mechanism that allows transferring a key between devices currently has poor UX, only works on Android, is buggy. Obviously that should be fixed. Once that's done, they should make the app actively prompt you to transfer the key as part of the setup process, using a QR code scanned from either the previous phone or a linked computer. You would still have the option not to do so, and some users would inevitably choose that option (if only out of laziness), but if transferring the key is seamless enough, a decent fraction of users would do it.

But isn't Keybase's solution precisely about ensuring that this doesn't happen? If you change your phone's SIM card, the phone still remembers its secret key.

The same should be applicable to browsers, I think. When logged into your bank, you should be able to click a button that says "Make this website use paranoid security" or similar, which would apply very strict policies that prevent most HTTPS attacks, and maybe even enable protection against phishing and similar domains, or something.

I don't know why apps keep painting users into a corner with one generic option rather then giving them more choices.

edit: If I don't get an autofill option from LastPass, I'm incredibly skeptical if it is the right site.

Really I think we need something akin to app shortcuts. If you want to log in to your bank, you should be able to go to your browser's Home page and find some kind of signed login link that was created the first time you logged in. It's like a bookmark, but following a particular standard, and can be pushed by the site and accepted by the user one time, with warnings and instructions to keep users from accepting it from phishers. The intent would be to add a process that would be hard to dupe users into following by accident, and giving them easy access to sensitive sites. Then the site could tell users "never follow a link in an e-mail from us, always use your Home screen shortcut" or similar.

Browsers could even vet these via a kind of "app store for logins" to remove anything that looks like phishing. Maybe that's been explored before, though?

Widespread adoption of MitM-capable encrypted messaging active collection and targeted surveillance.

If a new device has shown up, your messages will be blocked from being sent until you verify the new device. To be fair, it is too easy to blaze past the warning -- and it can happen often in large rooms. As a result, it's a little bit cumbersome at the moment, but with device cross-signing coming down the pipe and the new verification system (which is much better than Signal's IMHO -- you just check both devices have the same string of 7 emoji on their screen) it's getting a lot better.

And the problem with SSH that was pointed out in the article is funny now because of cloud services where servers are constantly being destroyed, so keys are changing frequently, unless you save and persist that private key for the server in your configuration. Which I’ve realized a lot of companies are simply not doing, which leads to people straight up ignoring key verifications in their ssh config.

At AWS this meant we had to hop to a different gateway for each region, and then onto the (stateless) production host which was recreated from scratch on every deployment... There's no way a human was going to keep all those keys straight, and everyone just disabled SSH host verification.

Normally this is considered rather weak, because of the reliance on DNSSEC. However, in this case I think its a very easy to take step that'll be miles better than just trusting everything.

The stronger alternative is Certificate-based SSH, but that is a lot of hassle. As it requires setting up a CA, handling revocation, and actually distributing the certificates.

Isn't keybase just doing something similar to subkeys for devices?

Keep the master safe, if you need to revoke a subkey, no big deal.

In practice, though, as long as you protect the master key appropriately, the PGP model isn't that much worse (and possibly in some ways better — I'm not sure what happens in the keybase model when one of your devices is compromised, rather than just lost, and you don't notice for a while).

On the other hand, at the company I work for, internal machine certificates/keys are renewed without my involvement (I'm a so-called "IT-owner" of some apps and the infrastructure that the apps use), and therefore I get the warning when connecting to their Linux hosts but each time (few times every few years, but still...) I dismiss it hoping that it's because of the work of the admins renewing the certificates (clarifying who-did-what-when would be a potential major administrative undertaking) => this is absolutely a flaw of the internal processes.

Yes, it could be fixed by a more complex infrastructure, but again, if the internal processes are weak then even the more-complex-infrastructure could be compromised by side-attacks.

With cross-signing, this will get even easier because cross-signed devices will be automatically trusted.

I started testing "Matrix" using the "Riot" app on Android and the web-frontend ~4 weeks ago and so far things look good, which I think is fantastic!!!

I was especially happy to see that I could not read messages posted prior to me entering any encrypted chatrooms => gave me a real "good general feeling".

The "Riot"-app for Android (using it on SailfishOS) is so far quite intuitive and it did never crash so far. Battery consumption is relatively heavy (I used to charge my phone once per week, now it's once every ~3-4 days) but I guess that other users that have more frequently an active Internet connection (because of other apps) will be impacted less.

All in all I'm beginning to think to try to push it to my friends - I think that the first attempt might be to use an encrypted group chat for special themes (e.g. discussions about algorithms, stock market discussions, etc..., all what we do not dare to post in Whatsapp) to have a technical advantage vs. Whasapp & Co. .

It also solves a problem that Keybase has which is that all new devices are automatically trusted (so a compromised device can just register more devices to avoid being blocked). To be fair, this makes for a pretty bad UX -- and the Matrix folks are working on cross-signing to make this easier -- but it is very useful for a user to be able to detect new devices to be detected (especially their own).

because then you just end up with less people on the system, so you'll talk to them over unsafe channels.

keybase's opinion is definitely my opinion so im a little biased there, but so far i can't think of anything that's better than making the reset occurs as rarely as possible by using multiple devices for recovery.

Actually I tried to install the app a couple of days ago.

But there is no version on F-Droid and the version on Play Store has Firebase Analytics baked in

Is there a plan for a clean F-Droid version?

Keybase uses root privileges only for making the magic /keybase directory available, where you can access your KBFS files (the redirector allows different users on the same system to see their own files). Keybase and KBFS run as unprivileged daemons (via the systemd user manager where available).

As giancarlostoro mentioned, you can unpack the .deb file and run the binaries out of there. If you put the binaries in your $PATH, you can even symlink the systemd unit files to your ~/.config/systemd/user and use the systemd user manager to manage your custom Keybase install. Note that the KBFS mount will not be accessible at /keybase, but instead at another location writable by your user (see https://keybase.io/docs/linux-user-guide#configuring-kbfs).

Finally, our build script at https://github.com/keybase/client/blob/master/packaging/linu... builds all components and assets without root and lets you handle the packaging and install after that.

If you have questions or more custom use cases, feel free to join the keybasefriends team to talk about it or make a GitHub issue!

https://signal.org/android/apk/

With Keybase we currently have to resort to shady APK sites.

Maybe the chat application should be extracted into a separate more native application maybe since another "problem" I see my friends talking about is that it is too slow.

https://gitlab.com/fdroid/rfp/issues/191

Let me know (I'm the Keybase user modalduality) if you have anything else to add or any questions. Cheers!

Packages don't run the software they install unless it installs a daemon or something.

I don't know enough about Linux to verify that the Keybase package does everything right; I delegate that to the Debian packagers and don't install anything as root unless it's from the Debian package repositories. Any software that I need that isn't in the distro is installed to a folder inside my home folder, where it might conflict with other custom installed software, but at least it won't break the entire system.

I've built my own Debian packages at work, but I'm not a total guru yet. I've never ran into issues with KeyBase yet on Linux, but honestly you could always open up a GitHub issue with your concerns to find out.

Edit:

Best I can tell from their github they install KeyBase to /opt/keybase specifically, or at least the main stuff, which is what third party packages usually do.

Unless your willing to open a bug and be a pest for 2 weeks (and still have access to your old phone/leave it registered) I wouldn't plan on retaining your messages or keys across phones. Its a huge weak point of Signal.

Last time my phone died, I lost all of my Signal group memberships, because the app is incapable of transfering those to a new phone without backup... and it's also incapable of doing the backup automatically. Those UX choices continiously baffle me - it's like authors didn't learn anything from the failure of PGP.

It'd still be nice if the UX and reliability of restoring from backups could be improved.

Even if the backup works, the process is rather tricky. You have to get the backup file into a specific directory on the new phone BEFORE you open signal. There's no "import from backup option". If you mess up, you have to uninstall, then do the file copy.

There are issues like this going back years.

But it is a bit silly that you need to manually move the file from the old phone/backup location to the new one without some in-app option to do so.

In the interest of transparency I also use Keybase for things as well. The problem I ran into with Keybase my first go-round was I lost any ability to restore my account after I hadn't used it for about 9 months. That is mostly my fault for not having more bases covered, but had I had anything notable I would have wanted access to I would have lost it at that point. As an end user I don't feel that Keybase competes in the same manner as Signal. Since I'm an Android user Signal is 100% transparent to my normal use handling both SMS/MMS and Signal messaging. Keybase isn't a drop in replacement with that in mind. I realize this isn't the norm for iPhone users. Regardless, my question is: are many people using Keybase for messaging? About half my contact list uses Signal, yet I only have ever communicated with two people via Keybase.

For transferring backups from one phone to the other, I used Xender. Probably best to just transfer with an sd card, though.

It would be nice if this could be done on smartphone clients, but that pretty much requires leveraging some sort of "trusted key store" external to the app. (Which I'll admit may exist on some platforms, to varying levels of trust. How feasible and acceptable it is for this use case, I honestly do not know.)

on Windows: File, Preferences, Contacts - Import all signal groups and contacts from your mobile device. ... ... It is unclear what else gets imported.

I love Keybase for this aspect, but something I don't like about it is its device name handling. They don't allow decommissioning old device names, so I end up having 'MyLaptop' 'MyLaptop 1' 'MyLaptop 2'...

The goal is a 1-1 mapping between devices (keys) and these names. So whenever we need our UX to talk about a key, it can talk, safely, about it in terms of device names. Once committed to your chain of signatures, "Laptop-Warhol" means a specific device key, and it can't be used again. So, for example, if one of your Keybase installs wants to tell you "oh, Laptop-Warhol just added a new device, iPhone-Vangogh" then it doesn't need to look like this: "Key 34858234589234895897234598734 added key 90123845890230948234234324."

If Laptop-Warhold could mean multiple devices (keys), well then we'd need to start talking about the keys. Which is a nightmare for usability.

A lot of this decision was driven by something we've seen with apple devices. Every now and then I'd get a popup on my computer - say when updating iOS - that said something like "you just started using iMessage on a new device, 'chris's iphone'. if you don't know what this you should freak your shit out." well - it has basically said that so many times with the same names over again, that I can safely assume that it's a near-useless warning.

Note I mean unique to you; 2 different users on keybase can name their devices the same.

Generally speaking...it's been a goal from the beginning that names on keybase are meaningful. Similarly if you look up "chris" in in our merkle tree (which is pinned to bitcoin) that leads to a deterministic chain of signatures. inside that chain, where I mention "work-imac-warhol", you're guaranteed to see the same answer as I am. So "chris" is as good as a key fingerprint or safety number. And so is my device name.

Maybe some people are more irritated by that than others (I'm certainly former-type), perhaps consider "advanced" to remove existing names for those who knows what they are doing?

For the former, you can use Wire, which allows you to sign up using an email address (from the desktop). It also syncs conversations across devices and is end-to-end encrypted. You can just share your name or username with others for them to find you.

For the latter, Telegram uses a phone number for registration/activation, but you can set a username and send that to others (or better, share a https://t.me/<username> link). Anyone who's not in your contacts list would never be able to see your phone number, even if you're in the same group chat. They can use your username to tag you in chats or message you privately. (General commentary about Telegram's encryption is out of scope for the point)

I ended up landing on Wire and so far have found it to be really good. You can register with phone number but it is not required and you can register with an email instead.

"Good" is better than "best" if "best" is not available seems obvious, but it certainly isn't true in a lot of cases. If I tell you that X secure and you trust it to be secure, when it actually has problems -- that might be worse than me telling you that X is not secure.

People are bad at evaluating risk. If I want to pass notes in class and don't want my teacher to know what the note says if I get caught, then rot-13 is probably "good enough". But if I'm a whistle-blower for a government agency, my security needs are quite a bit higher. We can never make a perfect app, but I'm not sure I could define what "good enough" looks like for the general populous. It's completely reasonable to me that different groups have different opinions on the matter -- and I think that's a good thing.

Is Signal or WA in that regime? Literally the only reason I don't use WA is because it is owned by FB. But as far as I'm aware both are cryptographically secure. Yes, I'm aware WA has a metadata problem.

So what's good enough? I'd say that if you need a state actor to crack it, I'll call it good enough. At least for the general populous. Any more difficulty that can be made is a bonus imo.

Clearly we can't get a perfect e2e app. So at what point in time do we say "we also need other features that people want so that they'll use our app". That doesn't mean "stop working on encryption" (you can never stop that) but "we're at a good enough point to start targeting a larger market." I think something like Signal is there. Stop focusing on the security geeks and bring in the general public.

Sorry I never used Whatsapp, so it's really really hard to understand what are those features that people keep arguing about that are missing or so much easy of use on that application. I use Signal and Keybase regularly and I don't find them lacking.

So any write up anywhere talking about those misterious and amazing features and user friendly UI that only Whatsapp has?

> Group admins

> Group calling

I'm actually stopping there because Signal in the last year picked up a lot of other features that WA has and people want (like emojis).

What still could be useful

> Enabling md markup (I'd argue that this is more important to Signal because of the large amount of coders that use it). Note: this is in messenger.

> A better desktop app

> Way to add users without handing out phone numbers (low priority)

As just texting a single person it is just fine. But text is not alone. This needs to be a chat app, not a texting app. Because that's what people want.

> it's really really hard to understand what are those features that people keep arguing about that are missing

Ask them. Use WA. Figure it out. Figure out why non-techie people don't use Signal.

https://keybase.io/docs-assets/blog/NCC_Group_Keybase_KB2018...

For the rest of us, it seems that doing it on occasion is still worth it. As I understand, Signal is designed to never indicate over the wire who has checked safety numbers. Thus, a MITM anywhere on the network creates a risk of becoming discovered, which is a cost in itself.

I use signal to chat with my wife. I'm glad it offers good enough protection that my country's secret service is whining endlessly that it can't get in. I'm glad our inappropriate jokes don't easily become public.

At the same time, I'm sure that a determined and competent adversary could compromise my phone without needing to break signal's encryption or engineer fairly sophisticated mitm attacks.

I'm fine with that level of security, and don't want a more annoying UI when a device is reset. Because even with the current setup, the chat protocol isn't the weakest link anymore.

Somehow, nearly every article on the subject completely misses this, and instead keeps moving goalposts on reasonable endpoint security.

It also means that an adversary can't go in long after the fact and dig up a message history from a server god knows where.

A lot of the eavesdropping scenarios concocted around key change in particular are fanciful. Practically speaking, end-to-end encrypted chat is often replacing email, not trying to protect secret agents hiding from the Reptilian Council.

Mass surveillance no, but if everybody blindly trusts any key provided (which seems to be the default "setting" for Signal and WhatsApp) then it's easy to start MITM'ing any connection at any point. You'll just get an innocuous-looking "your safety number has changed" and nothing else.

I do agree that it's still much better than nothing but I also agree with TFA when they say that "Signal cut a big corner by not planning device management properly", there are many ways Signal could make it massively easier for users to transfer their keys from one device to an other (for instance by deriving the master key from a passphrase bitcoin-wallet-style, or simply by making it easier to transfer your keys and history from device to device).

Because they didn't do this they probably considered that having an SSH-style intrusive "SOMETHING IS GOING WRONG HERE" message was too annoying and got rid of it. But really, they're fixing the symptom, not the problem.

And I think it's not so binary as care/don't-care about being hacked. You might care a bit, but how much do you care? Just as important, what is your threat model?

Yesterday's hash attack that required $100m supercomputer will require a $10k GPU, which is 5 years will require a $100 GPU. (Not talking about the math changing, but it's been more about weaknesses in S-boxes and other parts of older hash functions that get slowly chipped away)

Similarly, yesterday's system that takes an attacker 3 days to MITM your machine, will take 3 hours, and then will be somebody's python script that installs and aggregates millions of exploits.

So in general, the cost and benefit variables are constantly changing under us.

For those cases where somebody needs more protection, there's a way to go through a little more trouble to use Signal more diligently (agree with important parties not to change keys for a period of time).

To your point though: the cost of executing MITM doesn't just include the equipment, it includes showing ones hand by being discovered.

The big cost of a MITM attack is getting in the middle. The cost of doing the actual attack is minimal.

This comment may be of interest (we could release server code at some point, and I will take this as a vote), but I hope people reading this aren't distracted by Signal's flaw here.

[edit: chilled a bit!]

I get why you showed up here, but you're really not addressing the point of the post at all, and in fact you're trying to distract with the suggestion that Signal's publication of that code protects people from this flaw. It doesn't. At all.

Wow, that's a pretty hostile (and accusatory) response to a fair ask. This is one (small) step removed from accusing someone of shilling/astroturfing.

Let your product stand on its own merits. If you have a good reason why you won't open source Keybase's server implementation, own it. Don't undermine requests to open source the code by publicly accusing people of supporting a competing product.

The person you're replying to didn't make an argument in favor of Signal - or any other competing product, for that matter. In my opinion, your response is actively distracting from their request.

In other words - you don't need to be affiliated with Signal to be in favor of open sourcing the server-side code. It's a fairly common complaint on HN, and I can see why it was the top comment for a while even if I don't ultimately agree with the need to open source the code. Likewise, if you look at the link to the GitHub issue you can see many other people likewise asking for - or reacting to responses to - open source the server code.

Do all those people have conflicts of interest? Is it possible that the affiliation with Signal doesn't matter here? Then be charitable, and let your actual reason for not fulfilling the request stand on its own.

It's tough to compete on security because users struggly to know what's actually better (on top of needing convincing security is a worthwhile differentiator in the first place). A client that doesn't trust a server is a great improvement and "show us the server" is a terrible response.

If you have a good reason not to fulfill the request, charitably responding to the request with that reasoning is an educational opportunity for the audience. There's just no need to bring identities into the mix like this, and I think a dispassionate response outlining why the server need not even be trusted would stand on its own.

I think it's worth meditating on the tradeoffs of your system design. Nothing is perfect.

Signal is trying to do the best that it can, and I really think that the starting line in writing secure software is open sourcing the whole thing from top to bottom. Anything less isn't auditable.

Note: I edited this post to make the language more addressable. I love the work Keybase is doing, but I want them to open source their server.

Given the choice between having the server code open sourced or not, the choice that is higher trust has to be open source.

edit: To be clear, even if they open sourced the server right now, I would not even look at the code to determine if running the client was safe. The only time I would care to look at the server code is if the client's correct operation depends on the server running specific code. If it doesn't do that, then the server code doesn't matter. And if it does do that, I wouldn't trust the system, anyway.

Regardless, until you have a way to ensure the server is running the code you expect it to be running (can this even exist? what about hardware level attacks on the servers keybase is running?) the server code is useless from a security perspective.

I still think it makes sense in terms of security. If I run a piece of client software X that connects to a server Y, it will always be better in terms of security if I'm in control of what runs on Y. This is independent on how X has been audited. So yeah I would argue that security is also a reason.

This is a subtle point, but that thinking is misguided. You, as a client, have no control over what server you’re actually talking to. The only way to be sure you are secure is to be secure independently of if the server has been hacked, or is malicious, or whatever. Thus, you design your system such that the client only discloses information that is allowed to be public to the server (public keys, encrypted messages where the server can’t decrypt it, etc). In that way, you don’t care what code the server is running, and auditing the server makes no difference to security.

The whole purpose of cryptography is to reduce the set of things you need to trust. Including the server in the trusted base is not only a worse design but a false sense of security if your trust ends up misplaced (hacked).

So, this is different than how a bank would work, for example. In the case of a bank, you have to trust that their servers are secure, and their software being open would help with auditing that. In this case, keybase is not the endpoint you’re talking to: another keybase client is. The keybase server is just an intermediary, just like any router on the internet.

The server is not outside of scope.

edit: Do you audit all of the software running on all of the routers between you and keybase's servers? Why or why not? If not, why does this reasoning not extend to the servers? Why would the routers not part of the whole system, top to bottom?

Let me phrase this another way: if there's nothing to hide on the server, why isn't it open source?

We can go back and forth on this forever. My position is simple: strictly speaking, it's more rational to trust open source software. Trusting closed source software ultimately boils down to "trust me". I would love to reduce the degrees to which we have to blindly trust the systems we use.

The answer is that they do have things to hide: anti-spam/anti-scam systems, for example. The question is if they are hiding something that matters for security. You can determine this by auditing only the client.

Sure, open source software is great, and has many uses. In this case, it has no use in ensuring that keybase is secure. Somehow, you don't have to trust a great many components in the secure software you use on a daily basis, and yet you have to trust keybase's servers because.. reasons? And somehow this trust is important even though you'd still be blindly trusting that they're running what you hope.

I won't argue that some people would benefit from the server being open source, but to argue that open sourcing it has anything to do with security is just inane and FUD.

You have to model the whole system to understand the threat model. Anything less is blind trust.

You prove that it doesn't matter by assuming that keybase is running the most malicious code possible, auditing your client, and deciding that the system is still secure. This is what auditing the client means.

Additionally, to bring up this fact again because it has only been hand-waved away: Even if the server was open source, there is no guarantee they are running that code. Thus, there is no benefit to security until systems exist (somehow?) to prove the server is running the code you expect.

Double additionally: even IF you can prove that the server is running what you expect, how do you know that some box, after https is peeled off, but before the request makes it to the server, is not sending the same request off to some other, malicious, server?

It's one thing to tell people that you aren't logging anything. It's another thing to show everyone you're not logging anything except the account creation date and last access date by open sourcing the software and then show exactly that in a response to a national security letter: https://www.aclu.org/open-whisper-systems-subpoena-documents.

If you didn't have the NSA letter, would you be able to verify the source code? If another project got an NSA letter and responded to it, would it tell you anything about the source code?

This is simple: Having the source code means you get to learn more from the other signals, no pun intended, of how that source code is used.

Again, as we move to a world where servers have more verifiable code running on them, the value of having open source code will increase.

I think you're trying to argue that open source is good, and I agree with you. Open sourcing the server has many benefits. The only point I have consistently been trying to make is that open sourcing it does not help with determining the security of the system, whatsoever.

edit:

> If you didn't have the NSA letter, would you be able to verify the source code?

No, but even if the code was open sourced, you would not be able to verify the code that is running.

> If another project got an NSA letter and responded to it, would it tell you anything about the source code?

It would tell you something about the code they are running, yes, but nothing about the code they open sourced.

> This is simple: Having the source code means you get to learn more from the other signals, no pun intended, of how that source code is used.

This is equally simple: the source code that is open may have nothing to do with the source code that is running, and you must assume that they are not equal when auditing the security of the system.

In contrast, if you received an NSA letter for keybase and they delivered similar information, you couldn't make any suppositions about the server's code.

To be extra, extra clear, to me, the future of the private internet is further verifiability of remote systems. That begins with Open Source. I concede that we aren't there for most parts of the systems we use today, but we are getting better (see attested contact discovery in Signal as one example).

The article on attested contact discovery states "Of course, what if that’s not the source code that’s actually running? After all, we could surreptitiously modify the service to log users’ contact discovery requests. Even if we have no motive to do that, someone who hacks the Signal service could potentially modify the code so that it logs user contact discovery requests, or (although unlikely given present law) some government agency could show up and require us to change the service so that it logs contact discovery requests.", which is exactly the point I'm making. They choose to solve it by signing code and ensuring that exactly that code is running (seems like they just move the trust to Intel. Hopefully SGX never has any bugs like https://github.com/lsds/spectre-attack-sgx or issues with the firmware, as noted by the Intel SGX security model document), which is fine, but an equally valid way to do this is to make it so that the secure operation of the system does not depend on what code the server is running.

Doing that has some tradeoffs: there's usually overhead with cryptography, or an algorithm you need may not even be possible (Signal disliked those tradeoffs for this specific algorithm), but for some algorithms, it's entirely possible to do. For example, one can audit OpenSSL's code base, and determine, regardless of what the middle boxes or routers do, that the entire system is secure. Just replace OpenSSL with keybase's client, and middle boxes with keybase's servers, and do the auditing. Hence, open sourcing the server is not necessary for security. Would it be great if more systems could be audited? Absolutely. Is it always necessary for security? Absolutely not.

edit: Another quote from the article: "Since the enclave attests to the software that’s running remotely, and since the remote server and OS have no visibility into the enclave, the service learns nothing about the contents of the client request. It’s almost as if the client is executing the query locally on the client device." Indeed, open sourcing the code running in the secure enclave is effectively open sourcing more code in the client.

I’m not yet prepared to publicly get into all of the nuances of SGX, but I think it’s worth noting that there’s something very interesting happening there. I look forward to being able to discuss my team’s technical findings on the subject in public.

To summarize why this is so interesting: the attack surface is the whole system. Enclaves let us extend parts of our trust model to systems we don’t own. That is a real change and, if it works, it’s going to change how systems are designed at a deep level. The problem is that there aren’t very many working implementations of sgx in the Wild (signal is the only one I know of).

We’ll see where the wind blows.

Why do you presume that? I certainly don't believe in the security of many applications that I use. I generally try to avoid putting any damaging information into them though.

Your comment would be much better without any allusions to this person's affiliation. Just answer the question directly without casting aspersions. You seem confident in your answer, so that shouldn't be hard.

I mean other than coquettishly dropping a tantalizing hint by saying 'yet?'. That's nice, but insufficient.

I literally do not work for Signal.

We know you don't work for Signal. We also know that you very obviously have a close professional relationship (at the very least) with its founder.

Moxie and I have a close professional relationship but I'm not sure what bearing that has on asking for the code of Keybase's server to be open-sourced. That's not a biased statement, and I would say the same thing in any thread about Telegram, WhatsApp, or FB Messenger's privacy. It's all the same.

If you want trust, you have to be open source. That statement has absolutely nothing to do with Signal.

Yes I use Signal. Yes I'm a fan of the Signal team's work. No, I don't think Signal would be better off with a closed source server. Yes, I do think Keybase should open source their server.

I honestly have no idea why this is even controversial :/.

I've been a fan of Signal since it was RedPhone and TextSecure and my professional relationship with Moxie is quite recent in the scheme of watching the rise of his projects. I apologize if my lack of awareness was offensive, it was unintended.

Edit: Just to be clear, I don't think you need to have the server open-sourced to trust the end to end encryption of the messages, but that's just one part of the overall trust model.

Surely you’d have a direct line to the Vatican if you had the pope as an advisor, no?

That's a very useful property, because even if the server is open source, that doesn't guarantee that what the Keybase team is actually running in production matches the source they've released.

So I would say a system where the clients don't (and don't need to) trust the server, even if no server source is publicly available, is still strictly better from a security standpoint than a system where the clients do need to trust the server, and source is available. (Assuming, of course, that the design of the system as a whole is sound, and that clients have been audited to ensure that they follow the design of the system correctly.)

It is better to not even have to think about looking at the server-side code.

The best case would be there is no “server” at all, but that’s the Internet we have to work with today to enable the usability and user experience they are going for.

Keybase looks really really cool, and I would love to use it, but I can't in good conscience recommend something that is cagey about the half-open nature of their product, especially when the server. It is by definition "man-in-the-middle"-ing all your data, and if you can't inspect it you can't reasonably trust it.

That is the point the article is making, and that's what it sounds like the Keybase client is doing--not trusting the server by relying on client-side encryption rather than storing keys on the server.

The fact that you can change keys and see old messages without the other party sending them to you using your new key points to serious problems with these other apps. It seems the Keybase client rightly considers the channel insecure.

https://www.cryptophone.de/en/background/source-code/

This will fail when AI software gets really good at imitating voice in real-time during casual talk, but we're not there yet (or - if that is my threat model, I'll find an out of band way to verify)

It’s a very worthy goal to make these events rare and scary so that users might actually bother reading those numbers out loud to each other.

If they forget their password, they can re-upload it from a validated device with a new master password.

Requiring existing devices to be actively involved in provisioning a new device prevents all of this.

So in Keybase, what does device to device provisioning look like? "Hey, you've just set up this device - a message has been sent to all your other devices, OK the message and come back here and you'll be good to go"

And if it's not a 2FA device, the victim can use 2FA to push a disavowal of the old keys and set up new keys. That's an ugly and server-centric solution, but "halp I got hacked" is going to be an ugly case no matter what.

All security is compromise though. And I think Apple has done something amazing with what is provided given their install base.

Would be cool to see what the numbers are for reverifications.

One time i got a postcard from a friend with their safety number on it and nothing else. I recognized their handwriting to complete the loop.

What you described sounded interesting

The following questions are not intended as attempts to poke a hole on the requirement for out of band verification. Do you meet in person and speak in whispers or show some code that's hidden from the view of others (and cameras)? Or do you use a voice call or SMS (both expressly designed to support surveillance)? Or do you use another end to end encrypted app or email (if yes, how do you verify the keys for that)?

Ultimately, while people may have very little trust for the government in general, the one thing that people do trust the government for is establishing identity. We use government ID papers to establish our right to work, to open bank accounts, to enter legal agreements, and to cross borders. Why should communications be any different? We don't need to trust the government with the content of the communications (and we shouldn't), by not providing the government with the private keys. But why can't I get the government to sign a public key for me?

The issue it raises is whether people will eventually get locked out of society if the government decides to get antagonistic with somebody by revoking their public key and refusing to issue a new one, given a society where such a scheme is popular. But we don't have any sort of such protection today - the government can seize your passport, seize your driving license, freeze your bank accounts. A society in which the government solves identity issues for the digital age is only a net improvement over the status quo.

[1] https://www.gemalto.com/govt/identity

Funny enough, I have ranted to friends/coworkers about sysadmins completely replacing machines and not telling anyone. How do I know it happens? BECAUSE OF THIS EXACT WARNING.