Nowadays, a majority of apps require you to sign up with your email or even worse your phone number. If you have a phone number attached to your name, meaning you went to a cell service/phone provider, and you gave them your ID, then no matter what app you use, no matter how private it says it is, it is not private. There is NO exception to this. Your identity is instantly tied to that account.
Signal is not private. I recommend Simplex or another peer to peer onion messaging app. They don’t require email or phone number. So as long as you protect your IP you are anonymous
Be specific: what does Signal divilge about me to outsiders besides “I have used Signal”?
Who you are specifically (name etc) and the same amount of information on everyone you have talked to on signal and when you talked. Basically everything except for the actual content of the messages.
This is vastly different from every other piece of information I’ve read about Signal. Please link me to a source for your claims.
If it is tied to a phone number then any information connected to the phone account will be connected to the signal account identity. And any identifying information attached to the method used to pay for the phone account will be attached to the phone account and consequently the signal account.
Typically people pay using credit or debit cards, so the identifying information of those bank accounts become attached to your signal account.
So Signal doesn’t provide anonymity. Is that all you’re saying?
Yes… and if it needs to be said, I am also directly implying that anonymity is a large and crucial part of privacy.
It needs to be said. Because anonymity is only one part of privacy.
Security is another part - in messaging, this means that the message cannot be spied on in transit, and cannot be altered in transit.
Authenticity is another part - you need to know that the message came from who it claims to have come from, and not elsewhere.
Signal does not provide anonymity, basically. But it guarantees security and authenticity beyond doubt. And this is useful - you can exchange secure information with people using Signal, knowing that it’s not being spied on or altered, knowing that only the person you intend to see the data can see it, and knowing that they know that you sent it.
But yeah, if you want to send messages anonymously, other services are necessary.
Everyone you talk to and when you talked to them, with their real identities via phone numbers. Because signal is hosted in the US and subject to national security letters, you should assume the worst.
Are you talking about the client app, or about the service?
Much of what you said doesn’t apply to the service, which stores hashed phone numbers and first access / last access times and nothing else.
And the client does store these things, but also lets users delete messages and contacts. Your message deletions can propagate as well.
Even if this weren’t false (otherwise they wouldn’t be able to connect to your existing contacts), that’s a “just trust us” claim. You give them your phone number, you should assume they have it and not “trust them” to hash it like its a password.
Not that its that important, but its yet another just trust us claim.
You literally don’t understand how hashing works, got it. Please educate yourself on this topic. In short, “connecting your existing contacts” is ENTIRELY possible with hashed phone numbers; it’s not even complicated or tricky. To claim otherwise, as you just did, is nothing but trumpeting your own ignorance.
As for deleting (and propagating deletion of) messages, this is most definitely NOT a matter of “just trust us”. The client is open-source! We KNOW how it works. We KNOW that deletion propagates across devices when you tell it to. We KNOW that the service cannot see your unencrypted messages, and that the encrypted messages are made with AES so even quantum computers in the future can’t decrypt them. This is incredibly far from “just trust us”.
Signal over the past few years has been exposed for having flaws in its security integrity. Even the president’s current administration has had a leak issue by using the platform, Signal.
Once again, they ask for your phone number. Anything they ask for your phone number, if your phone number is tied to your identity, can easily be revealed to reveal who you are.
The leak from the administration was because Pete Hegseth included a journalist in a discussion about sensitive war plans. Trying to blame that on Signal is deceptive on your part.
If you are saying that Signal does not offer anonymity then you are right. Anyone I message on there knows it’s me. But Signal is still keeping my messages safe from monitoring and third-party surveillance, to the best of my knowledge.