summaryrefslogtreecommitdiff
path: root/content/entry/why-disappearing-messages-are-important-for-private-messaging.md
diff options
context:
space:
mode:
Diffstat (limited to 'content/entry/why-disappearing-messages-are-important-for-private-messaging.md')
-rw-r--r--content/entry/why-disappearing-messages-are-important-for-private-messaging.md2
1 files changed, 1 insertions, 1 deletions
diff --git a/content/entry/why-disappearing-messages-are-important-for-private-messaging.md b/content/entry/why-disappearing-messages-are-important-for-private-messaging.md
index 49b18b3..23adfbd 100644
--- a/content/entry/why-disappearing-messages-are-important-for-private-messaging.md
+++ b/content/entry/why-disappearing-messages-are-important-for-private-messaging.md
@@ -14,6 +14,6 @@ The benefit of the online implementation is that all parties can be confident th
Another way to mitigate private information disclosure is requiring the user to set a password for the messaging app. People will still choose weak passwords, but for most common threat models, attackers will simply give up after seeing a password prompt anyways.
-In general, password protected apps are not a bad idea. But the problem with password protecting *messaging* apps is they must stay logged in on the user's device after the password is entered. App developers could require entering the password every time the app is opened or after some set interval, but that's too much inconvenience for most people. Since most people message on smartphones which would have the app logged in 24/7, password protection offers no real additional security.
+In general, password protected apps are not a bad idea. But the problem with password protecting *messaging* apps is they must stay logged in on the user's device after the password is entered. App developers could require entering the password every time the app is opened or after some set interval, but that's too much inconvenience for most people. Since most people message on smartphones which would have the app logged in 24/7, password protection offers no real additional security.
In conclusion, online disappearing messages offer an important mitigation against common threat models, they reduce private information disclosure even when your contacts' are clueless about cybersecurity, and there doesn't seem to exist any convenient alternative. So it's my opinion that **all messaging apps which call themselves private should at least offer online disappearing messages**. Luckily almost all the ones I'm familiar with already do.