Many people who focus on information security, including myself, have
long considered
Telegram suspicious and untrustworthy.
Now, based on findings
published by the investigative journalism outlet ISt
States the information is in cleartext but then explains how everything is encrypted (in transit).
That’s not how I understood it. The message context is allways encrypted in transit (using a novel encryption scheme). The auth_key_id however is not encrypted. And that can be used to track users as it is s(semi-)static.
That’s not how I understood it. The message context is allways encrypted in transit (using a novel encryption scheme). The auth_key_id however is not encrypted. And that can be used to track users as it is s(semi-)static.