|
· Föderation EN Sa 01.03.2025 18:30:31 @scy @dequbed @joinjabber @sten @mxey - a 2024 deep analysis of #deltachat 's guaranteed end-to-end encryption mode from Applied Crypto Group at ETH Zuerich https://eprint.iacr.org/2024/918 - a 2024 security audit of @rpgp , the Rust-implemented #OpenPGP engine https://github.com/rpgp/docs/blob/main/audits/NGI%20Core%20rPGP%20penetration%20test%20report%202024%201.0.pdf - FAQ entry on PFS https://delta.chat/en/help#pfs - Six security audits overall https://chaos.social/@delta/113963707915543266 |
|
Föderation EN Sa 01.03.2025 20:40:07 @delta “six security audits overall” but the one you link to says “Yet, the security of its protocols has not been studied to date.”. Claiming you had 6 security audits in total, when 5 of them apparently didn’t look at your protocol, in a conversation about the security of the protocol, is misleading at best. |
|
Föderation EN Sa 01.03.2025 20:43:16 @mxey good question. Research studies are actually a different thing than security audits. So more precisely we would need to say "five security audits and one research study" and the research study is referring to the relative lack of research studies, not security audits (we don't know of any messenger that has more published security audits than ours btw). |
|
Föderation EN So 02.03.2025 00:48:07 @delta WhatsApp might actually have a lot of published audits, e.g. https://www.nccgroup.com/us/research-blog/public-report-whatsapp-end-to-end-encrypted-backups-security-assessment/, but you need to search for them. |
