In other words, don't ever use Telegram for secure messaging cos the minute a government agency comes knocking they'll immediately offer up some lube and bend over
Russia lifts restrictions on Telegram messenger app after it expresses ‘readiness’ to stop some nasties
Russia has lifted restrictions on secure messaging app Telegram after its developers agreed to block some content. Telegram proclaims that it has a “mission to provide the best security combined with ease of use. Everything on Telegram, including chats, groups, media, etc. is encrypted using a combination of 256-bit symmetric …
Monday 22nd June 2020 08:16 GMT Charlie Clark
Not necessarily, no, though if you want secure messaging I'm not sure if Telegram is the way to go anway because, in contrast to say Signal, it stores account data on its servers.
Telegram remains popular in Russia, even with Russian politicians, so this is probably some kind of compromise that allows both sides to get on. Spam, presumably including hate stuff, is not unknown in Telegram groups.
Monday 22nd June 2020 07:55 GMT Anonymous Coward
Monday 22nd June 2020 08:18 GMT Khaptain
Änd the legacy stuff ?
I wonder if he now has access to previous messages or is it just the upcoming ones....
Dear Telegram, I have the following proposition to offer you, a free vacation for you and your future generations to the Gulag of your choice or the encryption key ?
Vlad the decryptor ( President of the United States of Russia and the World)
Monday 22nd June 2020 09:13 GMT Anonymous Coward
Vlad the Decryptor.....
......Yeah!.....all that end-to-end encryption.....security......privacy......what could possibly go wrong?
Well....how about privately encrypted messages BEFORE the message enters the channel?
Monday 22nd June 2020 11:12 GMT poohbear
Sigh. There is more to this. As I understand it from other reports, Telegram is detecting bad stuff on their network and blocking it. They're not giving access to any governments (officially ... reality may be different). The Ruskies walked back because the could not stop all the workarounds that bypassed the ban.
Monday 22nd June 2020 12:44 GMT nagyeger
Monday 22nd June 2020 14:47 GMT Adam 1
Monday 22nd June 2020 15:19 GMT whitepines
Re: Two Questions
2. If telegram is truly a secure E2E platform, how can they possibly determine the content of a message in order to cooperate with authorities?
Because it isn't -- it's a proprietary, effectively closed source* app on a phone. That's about as far from secure as you can get. I am assuming that the open source desktop variants are not relevant here, for the sake of argument, since the vast majority of users are on some kind of cell phone and the open source version should be verifiable to actually do what it says on the tin regarding encryption.
If they're not bothering to MITM the traffic directly, it's probably some proprietary local filter in the app detecting keywords. Where it gets interesting is what happens when that filter detects unsanctioned content -- does it send out a trace to the authorities and pretend to send encrypted? What exactly happens in that case?
Other possibilities could be metadata checks -- better hope you're not within some degrees of a known bad apple, or you'll be tasting Putin's special polonium dessert...
* If you can't compile the app yourself, it could have any special modifications required for the app store / local authorities, and you can't check it or fix it.
Monday 22nd June 2020 15:33 GMT Charlie Clark
Re: Two Questions
If telegram is truly a secure E2E platform
It isn't and shouldn't be considered as such, unless you setup a "secret chat", though even then it's only published details of the cryptograpic protocols used but no code. Otherwise Telegram stores details on its servers, which is one of the reasons why it's so good for multiple devices.
Telegram has drawn Putin's ire because it has repeatedly refused to provide the details for specific users. And it has sucessfully found workarounds round most government attempts to block it, which is why it remains popular in Russia.
Monday 22nd June 2020 16:04 GMT JohnG