this post was submitted on 20 Oct 2025
288 points (97.4% liked)

Technology

76248 readers
2901 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
L4s@hackingne.ws
288
Why Signal’s post-quantum makeover is an amazing engineering achievement (arstechnica.com)
submitted 1 day ago by technocrit@lemmy.dbzer0.com to c/technology@lemmy.world
60 comments fedilink hide all child comments
 

New design sets a high standard for post-quantum readiness.

top 50 comments
sorted by: hot top controversial new old
[–] heysoundude@eviltoast.org 129 points 1 day ago (8 children)

Great. Now we just have to get Signal off AWS and we be good.

[–] lemmee_in@lemmy.world 99 points 1 day ago (3 children)

Signal puts a lot of effort into their threat model that assumes a hostile host (i.e. AWS). That's the whole point of end to end encryption, even if the host is compromised the attackers do not get any information. They even go as far as padding out the lengths of encrypted messages so everyone looks like they are sending identical blocks of data

[–] shortwavesurfer@lemmy.zip 42 points 1 day ago (2 children)

I'm assuming that they were more referring to the outage that occurred today that pulled a ton of the internet services, including signal offline temporarily.

You can have all the encryption in the world, but if the centralized data point that allows you to access the service is down, then you're fucked.

[–] pupbiru@aussie.zone 22 points 1 day ago (8 children)

no matter where you host, outages are going to happen… AWS really doesn’t have many… it’s just that it’s so big that everyone notices - it causes internet-wide issues

load more comments (8 replies)
load more comments (1 replies)
[–] frezik@lemmy.blahaj.zone 7 points 1 day ago

Padding isn't anything special. Most practical uses of block ciphers require it.

[–] victorz@lemmy.world 8 points 1 day ago

sending identical blocks of data

Nitpicking here but assuming from the previous words in your comment that you mean blocks of data of identical length.

Although it should be as if we are sending multiples of identical size, I suppose.

Anyway, sorry for nitpicking.

[–] alimanana@feddit.cl 21 points 1 day ago (1 children)

or federated server

[–] null@piefed.nullspace.lol 17 points 1 day ago (2 children)

Would be very cool to be able to host a Signal homeserver.

[–] nibbler@discuss.tchncs.de 8 points 1 day ago

https://signal.org/blog/the-ecosystem-is-moving/ here is Moxi's take on that (former Signal CEO).

So I don't think it's happening.

[–] SkaveRat@discuss.tchncs.de 6 points 1 day ago (1 children)

they won't do that.

Matrix tried for quite a while to get interoperability, but signal is just too paranoid about distributed hosting or interoperability of their software/protocol. it's quite annoying

[–] monogram@feddit.nl 7 points 1 day ago (2 children)

And yet simplex exists.

https://simplex.chat/

load more comments (2 replies)
[–] elvis_depresley@sh.itjust.works 11 points 1 day ago

I guess the research doesn't have to be limited to signal. If other apps can benefit from it the more resilient "private communications over the internet" get.

[–] victorz@lemmy.world 7 points 1 day ago (7 children)

So that's why Signal didn't send my messages very quickly today then, maybe.

load more comments (7 replies)
load more comments (4 replies)
load more comments
view more: next ›