Review: Signal by Open Whisper Systems

i like security, and one of the biggest security holes in my technology concerns text messaging and phone calls. while i can secure my data (for the most part), it is hard to secure traffic over the telephone network, especially with the proliferation of devices like the stingray .

awhile ago my friend jeff introduced me to red phone by open whisper systems , which was an app that would encrypt your phone calls. i could never get it to work very well, so i didn’t use it, plus jeff was the only person i talked with who used it.

flash forward more than a year, and i’m finding that i quite often don’t get texts from jeff, while he gets mine just fine. he did some investigation and traced the issue to textsecure, which was an encrypted text app also from open whisper systems. apparently i was registered on his phone as a textsecure user, so it was trying to send text to me by that method. since i no longer had red phone on my device (i play a lot with the software on my mobile devices and had not restored it after a clean install) i wasn’t getting the messages.

i went to install textsecure and found that it has been replaced by signal . my, what a difference a year makes. not only was it easy to use, the app itself is pretty nice. it combines both textsecure and red phone features, and is now the default sms application on my handy.

signal is 100% open source. the only way for true security is if everyone has the opportunity to examine the code and look for vulnerabilities. plus, think about it, if you care about security chances are you want to send sensitive information using the service. without open source you can’t be sure that information isn’t being intercepted by third parties.

this has resulted in some pretty high endorsements:

signal is available for both android and ios, note that is uses a data connection to send encrypted sms messages, so it will count against your data cap. i haven’t had the chance to try out the phone functionality as of yet, but it works fine as a normal sms client as well.

it is nice to come across such a useful piece of software that is 100% open source, and if i happen to send you sms messages, be on notice that i will be sending you an invite to signal (grin).

update: this is so cool. since the app uses data instead of the sms protocol for encrypted texts, it works as long as the mobile device has data. which means that i can get texts no matter what sim card is currently in my handy. cool! so i’m in germany using my ortel sim and i’m able to get sms messages from friends in the us who have no idea where i am or what network i’m using. killer feature.