Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

This is addressed in https://signal.org/blog/private-contact-discovery/ – using Intel SGX, it's possible for the clients to verify that the server is running the code it should be running. I'm not sure whether this is already deployed, but it refutes any claim that Signal isn't serious about your concern.

I don't see how federation is related to this at all. We know you're bummed about it, you don't need to inject it into every subthread.



> This is addressed in https://signal.org/blog/private-contact-discovery/ – using Intel SGX, it's possible for the clients to verify that the server is running the code it should be running

Just the code inside the enclave and that's a very small amount of code, definitely not the entire server.


SGX is not a magic bullet, it's only part of a secure system. It's also come under some fire, check out this paper:

https://www.blackhat.com/docs/us-17/thursday/us-17-Swami-SGX...

SGX alone cannot solve this problem. Even in the idealized case, you can sniff traffic on the router to find out which user IPs are talking to each other and when.


Did you read that work? I did: I was on the review board that made the decision to accept it for Black Hat. Could you map Yogesh's research to something Signal is actually proposing to do and explain in any detail what the actual threat you're talking about is? Thanks.


I could, but I'm probably ill informed. I want to hear your specific rebuttal to this:

>Even in the idealized case, you can sniff traffic on the router to find out which user IPs are talking to each other and when.


That's a string that appears nowhere in Yogesh's research. Are you at this point conceding that the link you cited has nothing to do with this thread?


I concede that this:

>I did: I was on the review board that made the decision to accept it for Black Hat.

Probably makes you more qualified to talk about SGX than me, so yes, I concede that the paper may not be relevant because your understanding of it is probably better than mine.

With that, I asked you a more fundamental question, given that you are knowledgeable about this and may be able to provide an answer.


What I'm asking is whether you had a coherent argument about weaknesses in SGX based on Yogesh's research that would keep it from functioning in Signal's contact discovery scheme, or whether you saw the letters "SGX" in a thread and posted the first link you could find about issues with SGX. Maybe you should find a better link? They're out there.




Consider applying for YC's Fall 2026 batch! Applications are open till July 27.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: