this post was submitted on 11 Nov 2024
273 points (100.0% liked)
Privacy
14 readers
6 users here now
Icon base by Lorc under CC BY 3.0 with modifications to add a gradient
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
All US-based apps and all the apps that store their data in US-owned cloud providers at very least.
US based apps that’s are end-to-end encrypted where you control the private keys cannot physically share as they won’t have access. Even if it’s in their cloud.
If the nice people at the FBI show up to your door with a warrant from a secret court set up by Trump show up to your office telling you either implement a backdoor in your app or everyone goes to jail forever, what do you do?
the devs don't even need to know about it. google has the app signing keys, they can make a change anytime they want. read my reply to their comment
until they get forced to issue an update that steals your key.
assuming you installed the app from google play.
since for a few years now google holds the signing keys that are used for verifying that the app has not been tampered with, the app developer is not even needed for this. google can make the changes, sign the app with the key they already have, and push an update to your phone.