Back

@rysiek Linkdevice workflow should need to be initiated from the device that already has access not the side that wants to get access.

This sounds like a variant on the long unfixed Discord "Scan QR Code" account takeover vector.

@dalias absolutely!

I can see how that's complicated here – Signal app is the one that has access, but is also on the device that is easier to scan QR codes on.

So it kinda makes sense, from usability perspective, to initiate it with a QR code displayed in Signal Desktop, and scanned on the mobile device.

Not sure what the solution here is, but I agree with you it should be the other way around.

@rysiek 1. Client generates cryptographic secret sent to cloud infrastructure when you go to "link device" on client.

2. Device you want to link pulls this secret associated with account id you want to link. Fails if client for account is not in linking process already. Displays QR code.

3. Existing client scans QR code, only links if secret matches.

Edit: To be clear, this isn't complete and doesn't authenticate the other direction, which you still need to do as well (new device also generates a secret).

@rysiek Please tell me that I've misunderstood what you're saying.

@pettter I double checked. They *were* already doing that. Now they make the person using Signal on mobile explicitly go into the link-new-device flow and re-scan the QR:
https://github.com/signalapp/Signal-Android/commit/112874c08019a40b6f8f1dbbf84eb0ab4d796582

@pettter @rysiek
There is another related commit that makes the user read instructions if they have not linked devices in the last 30 days or something like that:
https://github.com/signalapp/Signal-Android/commit/a934df5f9769fbc511477edac9421d1ba4b46895

@rysiek Well that's something at least, but holy shit we've really fucked up how people react to confirmation dialogues haven't we? ("We" being software developers as a collective)

@pettter

But also, as @dalias noted, this flow has no business being initiated from the device that wants to be linked:
https://hachyderm.io/@dalias/114030792304413072

@rysiek Yeah no shit. I'm not sure how I feel about Signal having this kind of honestly quite shoddy security engineering. The safest device is the one you don't use, and the most useful device is the one everyone can access to do everything, but to me this feels very much like another case of Signal wanting to have their cake (marketing themselves as critical security infra for dissidents) and eat it too (making usability tradeoffs that don't support that threat model).. @dalias

@pettter @rysiek This "wrong workflow direction" security design bug is just something nearly everyone gets wrong...

@dalias Sure, but this should make it a well-known security concern, which a company that explicitly markets themselves as The Safest Option For Whistleblowers should know about and know to avoid. @rysiek

@dalias I don't know, I'm not deep in the field, but Signal is just one of those companies which continually has made choices that baffle me. Tying user ID to phone numbers and leaking Signal usage through contact lists, refusing federation and secure distribution through f-droid, implementing Stories and fucking cryptocurrency integration instead of useful group chat features (moderation tools, subchannels).. @rysiek

@pettter @rysiek Half of those criticisms are poorly founded stuff spewed by anti-Signal circles with agendas. For example Stories was the key feature to displace very bad insecure shit in large parts of the world, and they did an actually secure/private version of it.

Signal is not the final place we need to be, but they're the only player who has a short term hope of replacing awful stuff by not having big feature regressions for normies who switch. Meanwhile we'll keep advancing better stuff (VeilidChat, Cwtch) for eventual mainstream audiences.

@dalias @pettter thoughts on Cwtch vs SimpleX?

@rysiek @pettter SimpleX is by rw coinbro asshats and is hypeware, Cwtch is by awesome folks and has real serious privacy properties.

@dalias @pettter oh interesting. Thanks!