• Flax@feddit.uk
        link
        fedilink
        English
        arrow-up
        1
        ·
        edit-2
        3 days ago

        True, unless it’s open source and maybe self hosted.

        Edit: Nevermind, I’m right, I have no confidence in my own intelligence lol. If the key is on the phone and the phone stores the encrypted data to the server, that’ll be secure

      • bamboo@lemm.ee
        link
        fedilink
        arrow-up
        1
        ·
        3 days ago

        Not necessarily. If you trust the code running on your device then there is no backdoor they could install on a server that would break e2ee. They would have to backdoor the client where the keys are.