Open jerdog opened 6 years ago
n8fr8
commented
6 years ago We already support integration with the Signal service for that (See the Settings to set that up). SMS is just a fallback for less severe use cases, and also for places where there is no internet or mobile data.
That said, we'll keep this ticket open, since we need to do more in the onboarding user interface to make sure people now how to set up encrypted notifications.
jerdog
commented
6 years ago Fantastic news. Thanks for the information.
gripedthumbtacks
commented
6 years ago Instead of SMS or Signal, both which leak metadata in some ways or may require identity registration for a phone, consider leveraging Tox protocol. Antox for Android is a project the FPF may consider investing heavily in to avoid metadata leaks. Recall that the NSA issued warrants for the Signal metadata in the last couple years and used that to identify at least one whistleblower.
jerdog
commented
6 years ago You could also look into OwnPush which is an open source push system end-to-end encrypted. Either way, having other alternatives which are solid aren't a bad thing
On Dec 22, 2017 14:43, "DtpEJsaYXDU4GDH8dE4MyI9VrieF0UZpPZ0K76K" < notifications@github.com> wrote:
Instead of SMS or Signal, both which leak metadata in some ways or may require identity registration for a phone, consider leveraging Tox protocol. Antox for Android is a project the FPF may consider investing heavily in to avoid metadata leaks. Recall that the NSA issued warrants for the Signal metadata in the last couple years and used that to identify at least one whistleblower.
— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/guardianproject/haven/issues/55#issuecomment-353671669, or mute the thread https://github.com/notifications/unsubscribe-auth/AASHoIg-dbUdenAYW2BBAUduOxJFC8rlks5tDBRxgaJpZM4RLHYz .
gripedthumbtacks
commented
6 years ago gripedthumbtacks
commented
6 years ago @jerdog I don't see any source code released for ownpush. The single fact that it was not easily located is troubling, unless you have a link?
jerdog
commented
6 years ago Apologies... https://github.com/ownpush
It has been fully released to open source.
On Dec 22, 2017 15:08, "DtpEJsaYXDU4GDH8dE4MyI9VrieF0UZpPZ0K76K" < notifications@github.com> wrote:
@jerdog https://github.com/jerdog I don't see any source code released for ownpush. The single fact that it was not easily located is troubling, unless you have a link?
— You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub https://github.com/guardianproject/haven/issues/55#issuecomment-353674820, or mute the thread https://github.com/notifications/unsubscribe-auth/AASHoOJ8lIYWsULBTV5kLCQrcvlFLHfnks5tDBpBgaJpZM4RLHYz .
BuzzBumbleBee
commented
6 years ago Hi, I was pointed here by @jerdog, I am the developer who worked on "OwnPush" it's mainly been developed for some internal tools we make use of, but we have open sourced enough to get a simple server / client setup going.
It makes use of a simple long lived websocket connection with server to client keep alive. Security wise it makes use of public / private key encryption. Server only ever knows the public key of the client (no other information is needed).
When a push message is sent it's simply routed via the websocket that's registered with the public key in question. (There is also some app signature checking as it was ment to be scalable for multiple apps on one server)
We where looking at also making this P2P without the need for a server to handle any data at all (even encrypted). However there wasn't much need at the time so didn't get very far with that :/
licaon-kter
commented
6 years ago @jerdog You can use https://github.com/SilenceIM/Silence for encrypted SMS, using the same encryption as Signal
n8fr8
commented
6 years ago The direction we are going in is to support synchronization over Tor. The Haven device is available as a .Onion and then the device you have with you can also run Haven, which can connect over Tor, via a websocket or simple polling RSS/JSON feed.
Antox, Silence, and Ownpush are all interesting possibilities, but for now, the use of Signal is meant both for security and to make adoption easier for the broad community of journalists, activists, etc already using it.
jerdog
commented
6 years ago Yes, makes sense.
gripedthumbtacks
commented
6 years ago Thanks for the commentary on the technical decisions. Yo be clear though, using the same Signal phone number is NOT recommended, right? So in order to use this configuration properly and securely, the users needs TWO phone numbers? I am worried that most people will bypass that warning and use Signal integration in a vulnerable / security deficient manner. Thoughts? Is everyone on this thread actually using two different phone numbers with the Signal integration?
SMS systems can be hacked/monitored. Suggest instead of using SMS that an encrypted push notification be utilized between devices for notification.