Timing attacks on @signalapp have always been a possibility re: media attachments because of the use of a CDN. This does not mean #Signal E2EE is "broken" but is something users should be aware of. I'm glad we have a demo to point to. Super important for many apps, not just Signal. https://gist.github.com/hackermondev/45a3cdfa52246f1d1201c1e8cdef6117
=> More informations about this toot | More toots from profdiggity@privacysafe.social
text/geminiThis content has been proxied by September (ba2dc).