Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Not really. The same circumstances exist for almost all digital evidence. Of course, a lot of Cellebrite usage is extrajudicial already.


If you're failing some basic security it isn't going to give much confidence.

But also users don't know now if their systems will explode if they try to gather Signal (or other app) data.


The quality of forensics software is extremely low; a similar story was once written about EnCase, and had zero impact on any legal case anywhere.


https://insights.sei.cmu.edu/blog/forensics-software-and-ora... ?


As in https://www.securityweek.com/forensics-tool-flaw-allows-hack...., yet it is used in cases large and small, civil, criminal, federal state.


Matt Blaze did some research on this, and it seems to turn out that when you put an argument like this in front of a judge or jury, ultimately you have to back it up with evidence that it actually happened; it's not enough to say that the potential existed. Which makes sense, because the potential exists for a lot of stuff, including stuff we don't often talk about.


I think this post by signal is not much beyond exceedingly well-crafted nerd sniping [edited for claity]




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: