Yeah but it really shouldn’t be that way. Just add a pin or something, it’s way too easy for people to just grab devices or install malware to leak keys. The current standard for security is that everything is encrypted at rest regardless of whole disk encryption.
Signal is still better that most of the stuff out there but it’s not above well intentioned criticism
This same “discovery” gets reported on once or twice a year; it’s starting to feel like a FUD campaign rather than actual research
Yeah but it really shouldn’t be that way. Just add a pin or something, it’s way too easy for people to just grab devices or install malware to leak keys. The current standard for security is that everything is encrypted at rest regardless of whole disk encryption.
Signal is still better that most of the stuff out there but it’s not above well intentioned criticism