How Secure is Your Favorite Messaging App?


Messaging applications have been around for a long time but the proliferation of mobile devices has seen this area of communication expand rapidly with literally hundreds of various messaging apps now available to download.

The EFF (Electronic Frontier Foundation) has recently completed a series of tests to ascertain which messaging apps are secure and which are not.

eff - messaging banner

In the face of widespread Internet surveillance, we need a secure and practical means of talking to each other from our phones and computers. Many companies offer “secure messaging” products—but are these systems actually secure? We decided to find out, in the first phase of a new EFF Campaign for Secure & Usable Crypto.

The EFF’s testing set out to answer the following questions:

  1. Is your communication encrypted in transit?
  2. Is your communication encrypted with a key the provider doesn’t have access to?
  3. Can you independently verify your correspondent’s identity?
  4. Are past communications secure if your keys are stolen?
  5. Is the code open to independent review?
  6. Is the crypto design well-documented?
  7. Has there been an independent security audit?

EFF – The Majority of Messaging Apps are Insecure

eff - scorecard

The EFF tested 39 messaging apps in total and the majority failed miserably, with only 6 apps passing all 7 tests… they are:

Some of the more popular apps fared as follows: AIM, Blackberry Messenger and Yahoo Messenger all scored 1 out of a possible 7. Facebook Chat, Google Hangouts, Skype, SnapChat, and WhatsApp all scored 2 out of 7.

Not all 7 tests conducted by the EFF will be considered of equal importance, it’s somewhat subjective, so you really should check exactly which tests were passed or not by a particular app. You can check out the results in full, maybe see how your app fared, here: https://www.eff.org/secure-messaging-scorecard


 

 

About the Author

Jim Hillier

Jim is the resident freeware aficionado at DCT. A computer veteran with 30+ years experience who first started writing about computers and tech back in the days when freeware was actually free. His first computer was a TRS-80 in the 1980s, he progressed through the Commodore series of computers before moving to PCs in the 1990s. Now retired (aka an old geezer), Jim retains his passion for all things tech and still enjoys building and repairing computers for a select clientele... as well as writing for DCT, of course.

There are 2 comments

Comments are closed.