Enforced end to end encryption is scary and too complicated for normal users #13537
Comments
mlaily
changed the title
|
I agree completely. E2E encryption is overly complex and is not needed for most situations. Having users permanently locked out of their data on my server is unacceptable. |
|
Exactly, although I think the issue is not to turn it back off, but to make it indistinguishable from non e2e, and that means getting rid of the SSSS password, because many users have trouble remembering one password, and 2 is just overkill. Honestly from an end users point of view messengers like whatsapp and telegram are more secure, because e2e makes Riot feel like the kind of thing used by drug-dealers over the dark web (which was an actual quote from one of my friends who I convinced to move to Riot.) |
|
Yesterday we also enabled Cross Signing on all our Team Accounts/Devices. E2EE is complex, why not invest time and money in a proper Migration/Setup Wizard? (Like Showing in which State you are (Wizard Steps), Description for non-tech People Or for "Verify this Login" Dialog - |
|
The UI experience has come a long way, but not far enough for E2EE to be enabled by default and requiring all users to hang on to two separate passwords. Non-savvy users will at some point need their password reset because they forgot it, and they're certainly not going to remember a second password that cannot be reset (or if they did save the recovery key, they lost it a long time ago). Yes, making things easier comes at the expense of security, but if the goal is mass adoption, it needs to be simpler. Matrix still requires the typical user to have a technical understanding beyond what a typical messaging app requires. Some suggestions;
|
|
e2ee can be disabled when creating a room, but not disabled after it has been enabled for a room |
In riot-web, yes, but in the phone app, no. The point though is that a user who does not understand the repercussions of having E2EE enabled, is somewhat likely to lose their message history if they do not set up key backup, or if they do set it up but then lose their key password. Those messages will be lost, and there is currently no option for server admin to help. |
|
In matrix-org/matrix-spec-proposals#2544 I describe the problem, that can leak SSS passwords on server side for most regular users on homeserver, that use same password for both places. So current implementation with two passwords is not good for users. We can enforce fill different passwords, but this will be even worse for UX :( |
|
How do apps such as Signal manage with a single password? Is it just that because their apps basically never log out except on device changes, they rely on side channel assisted key exchange (as Riot cross-signing??) when activating new devices? And otherwise, they use an autogenerated backup "passphrase" so there's no room for user mistake? |
|
@mlaily I'm absolutely with you about this. It's a shame to admit that for such a stupid "entry barrier" for newcomers, Matrix is losing a lot of potential users out there. |
element-hq/element-meta#1442 seems like it would alleviate these concerns, so I'm closing this in favour of that issue. Delayed SSSS setup should help too, removing the passphrase/key creation from the account setup flow. |
This is disappointing. element-hq/element-meta#1442 is about preventing users from opting into e2ee, which is way stricter than simply allowing server admins to disable enforced e2ee by default (including e2ee setup) on their instance, which is what my issue is about... I understand the eagerness to close issues about e2ee, but I feel like the root of the problem has still not been addressed yet. EDIT: I hope you are right about delayed SSSS, and #13895 will be sufficient. |
|
@tim-seoss In my opinion, the challenge is convincing people the trade offs of E2EE are actually worth it, when they don't think they need it, and they see simpler apps from the competition... |
|
I know this issue is closed, but as a quick follow-up:
I no longer get verification prompts during a session! yay! But I still get prompted to verify my session when signing in, though I have no use for this (maybe #15672): I still get prompted to backup keys when signing out, though I don't use E2EE anywhere (#11684): So it's better now, but unfortunately not sufficient, and I'm still stuck with Riot 1.5.15 for a little while longer... |
End to end encryption is hard to explain and justify to normal users.
It currently complicates things a lot, and adds the risk to lose data, which IMO is far more real and occurs far more often than the risk of the server spying on you...
Self-hosting Riot and Matrix already provides more security than other commercial chats.
If/Until end to end encryption can be more transparent to end users, home server admins and/or end users should have the ability to opt-out of it.
I think making this hassle mandatory is a sure way to slow down Matrix and Riot adoption for everybody, and I think it's a pity!
(I filed this under UX/UI bug because the problem is not e2ee, it's the way it currently impair usability)
(Since this issue impacts all the Riot applications, I'm only creating one for the web app, but I have the same concerns for the Android, iOS, and Desktop apps...)
Also see https://github.com/vector-im/riot-web/issues/8067, https://github.com/vector-im/riot-web/issues/9256, matrix-org/synapse#4401, matrix-org/synapse#4367, and others...
The text was updated successfully, but these errors were encountered: