[guardian-dev] Silent Text for Android - interesting feature
Jon Camfield
jon at openinternetproject.org
Fri Jul 26 14:29:15 EDT 2013
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Friday, July 26, 2013 02:02 PM, Daniel McCarney wrote:
> I'd advocate being very careful in how the functionality is
> described. I'm always nervous when talk of burner messages comes
> up. It's sufficiently simple that average users think they
> understand the security properties, but impossible to guarantee
> much from an implementation perspective. The devil is in the
> details :-)
>
> Even on an entirely trusted platform with no security flaws (I
> wish!) you could always take a picture of the screen before the
> message destructs (the "analog hole").
>
> - Dan
I think one more sane remote-burner-message setup is a request model
(not unlike the always-amusing Outlook message-recall system), where
you can set an expiration date or do-not-log request on the message.
Perhaps clients are default-configured to respect that request, but
are not required to. It helps the user understand that this is not a
guarantee without going deep into the why-DRM-doesn't-work weeds, but
fills the basic need.
SilentText also uses this burn feature to manage local/outbox
archiving, which is an interesting add-on concept.
Jon
>
> On 26/07, Hans-Christoph Steiner wrote:
>>
>>
>> On 07/26/2013 11:46 AM, Nathan of Guardian wrote:
>>> On 07/26/2013 11:38 AM, Matej Kovacic wrote:
>>>> this is proprietary software (I think it is not opensourced
>>>> yet), but has one interesting feature - burning notices
>>>> (deleting messages after the other party received it).
>>>
>>> I do understand why a "this message will self destruct" feature
>>> is desirable, but I just can't bring myself to try and
>>> implement one.
>>>
>>> In short, do you want a remote mobile phone to be able to send
>>> a message to your mobile phone that it should delete an entry
>>> in your secure and encrypted local database?
>>>
>>> I suppose if you have a verified OTR connection, it does mean
>>> you trust the person you are communicating with, but otherwise,
>>> this sounds like DRM and/or a backdoor to me.
>>
>> It as long as the delete function its strictly limited to the
>> single message, I think that the functionality could outweigh the
>> little bit of loss of control.
>>
>> .hc
>>
>>
>> _______________________________________________ Guardian-dev
>> mailing list
>>
>> Post: Guardian-dev at lists.mayfirst.org List info:
>> https://lists.mayfirst.org/mailman/listinfo/guardian-dev
>>
>> To Unsubscribe Send email to:
>> Guardian-dev-unsubscribe at lists.mayfirst.org Or visit:
>> https://lists.mayfirst.org/mailman/options/guardian-dev/jon%40openinternetproject.org
>>
>>
>>
You are subscribed as: jon at openinternetproject.org
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/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=EWYa
-----END PGP SIGNATURE-----
More information about the Guardian-dev
mailing list