In response to people questioning Cellebrite's claims, the creator of Signal - Moxie Marlinspike - dismissed the idea that the app had been compromised.
"This was an article about 'advanced techniques' Cellebrite used to decode a Signal message on an unlocked Android device," he tweeted.
"They could have also just opened the app to look at the messages.
"The whole article read like amateur hour, which is I assume why they removed it."
My read of Moxie is that he is prone to bluster and bravado but I am not an android appsec expert; can anyone comment on Moxie's assessment of this hack/"hack"?
edit: or you could just downvote a guy asking for info with no explanation?
"Signal keeps its database encrypted using SqlScipher, so reading it requires a key. We found that acquiring the key requires reading a value from the shared preferences file and decrypting it using a key called “AndroidSecretKey”, which is saved by an android feature called “Keystore”.
Once the decrypted key is obtained, we needed to know how to decrypt the database. "
TLDR: which is saved by an android feature called “Keystore”, Android Keystore compromised ?
6 comments
[ 2.6 ms ] story [ 15.6 ms ] threadedit: or you could just downvote a guy asking for info with no explanation?
https://news.ycombinator.com/newsguidelines.html
Once the decrypted key is obtained, we needed to know how to decrypt the database. "
TLDR: which is saved by an android feature called “Keystore”, Android Keystore compromised ?
Original post: https://web.archive.org/web/20201210150311/https://www.celle...