#Telegram and #Durov are once again in the media, so I translated my May piece about the service to English:
Telegram is neither "secure" nor "encrypted"
https://rys.io/en/171.html
Calling Telegram "secure" or "encrypted" is misleading, and is journalistic malpractice.
Telegram itself seems to mislead about it on purpose.
Telegram's encryption protocol is suspicious and transmits cleartext device identifiers with every message.
They have been called out for it many times, and refuse to change.
@rysiek It is even worst than that, as you detail it in the article. By default, the messages are not sent E2EE at all. They are just encrypted by the TLS connection to the Telegram servers. That's all. And you can imagine that of course most of the surveillance agencies of the west, have the private keys of those TLS certificates. So the question remains about the true motives of the US+FR authorities in arresting him.