Beeper reverse-engineered iMessage to bring blue bubble texts to Android users::The push to bring iMessage to Android users today adds a new contender. A startup called Beeper, which had been working on a multi-platform messaging

  • LWD@lemm.ee
    link
    fedilink
    English
    arrow-up
    3
    arrow-down
    1
    ·
    1 year ago

    I tend to trust actual open source projects over closed-source ones. Beeper Mini is closed source. And Beeper is a separate app not really relevant to this discussion.

    • BearOfaTime@lemm.ee
      link
      fedilink
      English
      arrow-up
      2
      arrow-down
      1
      ·
      1 year ago

      You should read the docs. It’s impressive.

      I get where you’re coming from, but after readinhow badly security is implemented in iMessage frankly I trust the Beeper devs more than Apple.

      Get this, iMessage delivers the AES encrypted message in a package with the AES key, that package is encrypted with your RSA key.

      iMessage lacks forward secrecy. So if anyone ever got your RSA key, they could read all your messages, including past messages, because your RSA key never changes!

    • pitninja@lemmy.pit.ninja
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 year ago

      I assume you’re not using iMessage anyway then because Apple’s Messages stack isn’t open source. If you’re not using iMessage anyway, it shouldn’t matter to you what Beeper Mini is doing. This app isn’t for the ultra paranoid. Neither is Google’s RCS in Google Messages. This is where Signal and Matrix would be better choices. If you are using iMessage on an Apple device, you’re choosing to trust Apple despite their app being closed source and you’re not choosing to trust Beeper, which is fine and I don’t judge you at all for that stance. But at that point, your qualms aren’t simply about Beeper Mini being closed source, the implication is that you don’t trust Beeper as a company and/or its developers which, again, is a valid stance even if it’s one I don’t share.

      But I am personally pretty sure I can trust Beeper and Apple enough with my relatively meaningless conversations.

      • LWD@lemm.ee
        link
        fedilink
        English
        arrow-up
        2
        ·
        1 year ago

        If you are using iMessage on an Apple device, you’re choosing to trust Apple despite their app being closed source and you’re not choosing to trust Beeper, which is fine and I don’t judge you at all for that stance.

        True.

        But at that point, your qualms aren’t simply about Beeper Mini being closed source, the implication is that you don’t trust Beeper as a company and/or its developers which, again, is a valid stance even if it’s one I don’t share.

        They are a second potential point of failure. Based on their actions, they seem to be pretty ethical, but even if I did fully trust them I would have to acknowledge the addition of a new point of failure. And, of course, people who trusted Apple but not Beeper might not be comfortable with their messages getting relayed through a new third party, etc.