• incognito_tuna@lemmy.world
    link
    fedilink
    English
    arrow-up
    27
    ·
    1 year ago

    Came here to say this. Without e2e encryption there’s no way for them not to. And most big companies like this are in bed with the federal government and wouldn’t really entertain that seriously.

        • dev@vlemmy.net
          link
          fedilink
          English
          arrow-up
          7
          ·
          1 year ago

          It’s been a while since I looked it up, and I don’t use WhatsApp, but I believe it’s E2E encrypted but the mechanism they use allows their servers to also hold the keys to decrypt.

          Presumably they hold a master key that all other keys are derived from.

          • nomadjoanne@lemmy.world
            link
            fedilink
            English
            arrow-up
            5
            ·
            1 year ago

            Yes. This does make it very convenient to just hop on web.whatsapp.com without also having your phone online.

            WhatsApp’s fine for talking to normie friends who won’t ever switch to something else, for managing business clients, etc. But it’s something to be aware of.

            The world would be a better place if we all used Signal, XMPP, etc.

    • RickRussell_CA@lemmy.world
      link
      fedilink
      English
      arrow-up
      9
      arrow-down
      1
      ·
      1 year ago

      How can we monetize the contents of people’s direct messages to each other if we support encryption?

      <checks notes>

      Oh. We can’t. Decision made, then.

    • mycroft@lemmy.world
      link
      fedilink
      English
      arrow-up
      2
      ·
      edit-2
      1 year ago

      Signal protocol for all the things.

      Only, then you can’t get paid for snitching… (You get to charge the government for all those requests… and you basically get to set the price.)

    • dev@vlemmy.net
      link
      fedilink
      English
      arrow-up
      2
      ·
      1 year ago

      Right. They could implement E2E encryption, they just don’t want to - entirely plausible it’s because they don’t want to say no.

      More likely it’s because they want the data :)