After the Tchap project based on Matrix, the French Prime Minister asks anyone in the gouvernement to use Olvid, the only app validated by the ANSSI, with metadata encryption and no centralised architecture nor contacts discovery. But only the front-ends are open source, not the back-end.
I can understand the WhatsApp part, its a closed source app but it makes no sense to ban an open source app bc of security concerns, just order a study of the source code to validate it
France wants backdoors into these apps, it’s not a lack of trust thing.
If it’s trivial for a host nation to add backdoors to instant messaging services, you’d be agreeing with the government of France and you’d be pressing to migrate your communication out of the hand of third parties.
I’m not a proponent of any backdoors like this. I use Signal because it puts privacy first.
I’m not sure you got the gist of what I said. The point I made was that if being the host nation of an organization meant that their government can add backdoors at will, using any foreign service would automatically mean you’d be snooped by external actors.
Regardless of where you stand on whether you want to add your own backdoor or not, by your own logic using a foreign service means your services are already compromised.
If that’s the case, wouldn’t it make sense to simply run your own stuff?
Darmanin’s dream.
A far better reason not to use WhatsApp is that it is run by Facebook. It was also a primary vector for Pegasus.
Aren’t you doubling down on the government of France’s position?
I mean, the french minister did explicitly stated that “[you] cannot guarantee the security of conversations and information shared via them”.
For WhatsApp, sure. For Signal, no.
There is an argument to make about using custom versions of Signal that route their traffic through your own infrastructure.
This would count as France running their own service.
Given that Signal relies on centralized servers to route traffic, and if I’m not mistaken they use AWS in US instances, this means that your Signal traffic is being fed straight into the US security services’ infrastructure. France might be a staunch ally of the US, but they do go through great lengths to preserve their independence.
Sure, I’d be the last person to say that Signal is perfect and secure. But it’s a damn sight more secure than WhatsApp.
Indeed. However we can think the Olvid company, a private company, was very pushy to promote its product and made people think the other apps are worse. In fact it seems Olvid, compared to Signal, encrypt metadata and does not rely on contacts nor identity server. And because it’s a French app, “sovereignty matters” (even of ministers use Microsoft Office solutions 🤡)
Western countries got ‘lobbying’, Eastern countries got ‘corruption’ amirite? If they really cared, they would’ve certified Tox, that I2P IM or Simplex…
If your solution had been chosen, it’s lobbying. If not, call corruption 😂
The term “lobbying” doesn’t mean corruption. It means basically have meetings with stakeholders to discuss issues regarding policy and agenda.
If you hold a meeting with your local city council asking for a crosswalk, you’re engaged in lobbying. If you chat with the local police chief asking for more patrols in some part or another of town, you’re engaged in lobbying.
Now, lobbying might set the stage for corruption. If you’re talking to your city council about the need for a crosswalk and you show a video of cars speeding by an intersection, that’s ok. If instead you tell your city councilman that if he hires your construction company to build that crosswalk then you’ll pay him a wad of cash, that’s corruption.
Lobbying is not corruption. It’s weird how the basis of any democratic system is attacked for being “corruption” to try to justify corruption in corrupt hellholes.
That shouldn’t be a job for the French administration ? How can they give credit to a private company for such sensible informations ?