top | item 41600616

(no title)

pid-1 | 1 year ago

Why would any enterprise use e2e encryption?

In most juridictions and industries you must be able to audit internal and b2b communication.

discuss

so that when someone pwns your chat server, they don't walk off with all your communication history.

If you want audit, you then add it on separately, in a separate locked-down deployment, compartmentalised from the rest of your infra and the chat server, so that an attacker would need to pwn an audit client connected to that instead.

grahamj|1 year ago

Might want to let Google know this

qwery|1 year ago

... So that the content of the chats isn't trivially read by unauthorised third parties?