• 7 Posts
  • 69 Comments
Joined 2 years ago
cake
Cake day: July 1st, 2023

help-circle
  • This reminds me of the quote:

    “If I have one message to give to the secular American people, it’s that the world is not divided into countries. The world is not divided between East and West. You are American, I am Iranian, we don’t know each other, but we talk together and we understand each other perfectly. The difference between you and your government is much bigger than the difference between you and me. And the difference between me and my government is much bigger than the difference between me and you. And our governments are very much the same.”

    • Marjane Satrapi




















  • I think the issue that they are trying to make is that there are modern ways of protecting the keys with hardware level security, that aren’t being used. As someone who works in AppSec this is all too common. All it takes is one library in an application to be popped (doesn’t have to be signal), and security keys end up leaked. If it isn’t already, I’m sure that signals keys will be included in exfil scripts.

    Tools like TPM and SecureEnclaves (TrustZone,etc) mean that malware, and other nasties have a higher bar that they need to meet.