663
submitted 2 years ago* (last edited 2 years ago) by bbbhltz@beehaw.org to c/technology@beehaw.org

An official FBI document dated January 2021, obtained by the American association "Property of People" through the Freedom of Information Act.

This document summarizes the possibilities for legal access to data from nine instant messaging services: iMessage, Line, Signal, Telegram, Threema, Viber, WeChat, WhatsApp and Wickr. For each software, different judicial methods are explored, such as subpoena, search warrant, active collection of communications metadata ("Pen Register") or connection data retention law ("18 USC§2703"). Here, in essence, is the information the FBI says it can retrieve:

  • Apple iMessage: basic subscriber data; in the case of an iPhone user, investigators may be able to get their hands on message content if the user uses iCloud to synchronize iMessage messages or to back up data on their phone.

  • Line: account data (image, username, e-mail address, phone number, Line ID, creation date, usage data, etc.); if the user has not activated end-to-end encryption, investigators can retrieve the texts of exchanges over a seven-day period, but not other data (audio, video, images, location).

  • Signal: date and time of account creation and date of last connection.

  • Telegram: IP address and phone number for investigations into confirmed terrorists, otherwise nothing.

  • Threema: cryptographic fingerprint of phone number and e-mail address, push service tokens if used, public key, account creation date, last connection date.

  • Viber: account data and IP address used to create the account; investigators can also access message history (date, time, source, destination).

  • WeChat: basic data such as name, phone number, e-mail and IP address, but only for non-Chinese users.

  • WhatsApp: the targeted person's basic data, address book and contacts who have the targeted person in their address book; it is possible to collect message metadata in real time ("Pen Register"); message content can be retrieved via iCloud backups.

  • Wickr: Date and time of account creation, types of terminal on which the application is installed, date of last connection, number of messages exchanged, external identifiers associated with the account (e-mail addresses, telephone numbers), avatar image, data linked to adding or deleting.

TL;DR Signal is the messaging system that provides the least information to investigators.

(page 3) 50 comments
sorted by: hot top controversial new old
[-] Borgzilla@lemmy.ca 3 points 2 years ago

Anyone use Session messenger? It doesn't need a phone number unlike Signal.

[-] emzaid@infosec.pub 3 points 2 years ago

I've been using session as my family chat. The only thing I dislike is its connection to Oxen. But it makes an interesting case for resistance to Sybil attacks. But that's not really in my threat model for family messages lol. I'm mostly happy we moved the fuck away from messenger. I'll probably move them to matrix, but I gotta wait a bit before switching them again lol

In terms of usability, it's not hard to set up and has been very stable for the 1.5 years we've been using it. Even getting my less tech savvy family on it was pretty easy.

[-] Gert_vK@lemmy.nz 1 points 2 years ago* (last edited 2 years ago)

Good on you

Yes love Session !

[-] ThiccBathtub@reddthat.com 1 points 2 years ago

What about if Apples **‘Advanced Data Protection’ ** which I’m not sure if it is only enabled with iCloud+ subscriptions. Where Apple claims that ‘Advanced Data Protection uses end to end encryption to ensure that data types listed here can only be decrypted on your trusted devices, protecting your information even in the case of a data breach in the cloud’ this list includes VERY sensitive things such as FULL device backups, FULL Message Backups (iMessage & SMS etc), iCloud Drive and a whole lot more. Mainly because Apple literally says on their settings page to turn this on ‘Because Apple will NOT have the keys required to recover your data, you will be guided through verification of your recovery methods in case you ever lose access to your account.’

Can someone verify whether using this would mitigate attempts at retrieval of the data and would require a very lengthy brute-force instead of just HANDING OVER the decryption keys.

Thank you OP for continuing bringing this to people’s attention.

load more comments
view more: ‹ prev next ›
this post was submitted on 26 Jun 2023
663 points (100.0% liked)

Technology

37804 readers
406 users here now

A nice place to discuss rumors, happenings, innovations, and challenges in the technology sphere. We also welcome discussions on the intersections of technology and society. If it’s technological news or discussion of technology, it probably belongs here.

Remember the overriding ethos on Beehaw: Be(e) Nice. Each user you encounter here is a person, and should be treated with kindness (even if they’re wrong, or use a Linux distro you don’t like). Personal attacks will not be tolerated.

Subcommunities on Beehaw:


This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

founded 2 years ago
MODERATORS