On its 10th anniversary, Signal’s president wants to remind you that the world’s most secure communications platform is a nonprofit. It’s free. It doesn’t track you or serve you ads. It pays its engineers very well. And it’s a go-to app for hundreds of millions of people.
They did a blog post about how the feds had made a second attempt to get metadata from them and they could only provide two fields of information: the date the account was created and the last time it connected to the service.
It’s in the public record as well if I’m not mistaken.
The issue that if they were under FISA order or some other such shit, legally they would have to say what feds tell them, ie they would not be able to say and we give feds your logs.
Question is whether they can technically collect the logs which is tinfoil i am following up on.
Basic opsec thinking, if it is technically feasible, you must assume it is happening. This is game 101.
So here we are trying to prove a negative but nobody also is able to provide anything beyond, trust signal bro.
They probably have turned over logs because legal persuasion, and it sounds like they anticipated that. Moxie has been around the cypherpunk scene for a while, so they knew what they’re doing.
Plus the paper on the double ratchet algorithm is out there. https://en.m.wikipedia.org/wiki/Double_Ratchet_Algorithm