Wire, the new communications app backed by Skype co-founder Janus Friis, debuted to much fanfare this week. But mere days later, the app is already embroiled in controversy after an answer in its user FAQ oversold the company's security chops. <\/p>\n
Wire uses end-to-end encryption for its voice calls, which should make it nearly impossible for anyone to eavesdrop depending on how the encryption was implemented. Hurrah! <\/p>\n
But Wire can also be used for sharing photos, links, and textall of which does not use end-to-end encryption. Instead, text and media are encrypted between a device and Wires servers, meaning the company could theoretically decrypt any message passing through its data center. <\/p>\n
That deficit prompted noted security researcher known online as The Grugq to warn people against using Wire. New messenger @wire DOES NOT encrypt messages or media end to end. It is not safe, do not use, he wrote on Twitter. <\/p>\n
The story behind the story: In this post-Snowden age where privacy is top of mind, encryption is a big feature that many tech companies are trying to build into their products. Even Google and Yahoo are working on end-to-end encryption for their email products. <\/p>\n
The failure to use end-to-end encryption for text and media is not unusual. Ars Technica reported in May 2013 that Microsoft was doing something similar with Skype. <\/p>\n
But Wire may also have been misleading its users. The new services FAQ section used to feature an explanation about who can see the messages you send using Wire, according to a report by Motherboard. The now-pulled FAQ reportedly stated that your messages and conversation history can only been seen by you and the people in those conversations. <\/p>\n
If Wire has the ability to decrypt and read your messages (regardless of whether it actually uses that power) then clearly more people than just you and your pals can read your conversation. <\/p>\n
Shortly after Motherboard contacted Wire that FAQ question was pulled. The site now has a similar question that asks, who can see my messages on Wire? The response: Your messages and conversation history are not public. They are only displayed in the conversations in which you posted them. <\/p>\n
Its not clear why Wire isnt encrypting messages and media. Perhaps its a cost issue for a new, free service. Theres also a chance Wire has Facebook-like dreams to make money off of advertising that caters to a users interests. The latter may not be the case, as the company says it does not use personal data or the content from your conversations for advertising or marketing purposes. <\/p>\n
<\/p>\n