←back to thread

Signal Secure Backups

(signal.org)
988 points keyboardJones | 3 comments | 08 Sep 25 16:43 UTC | HN request time: 0.22s | source
Show context
codethief ◴[08 Sep 25 23:15 UTC] No.45175387[source]
Hi @greysonp

> Once you’ve enabled secure backups, your device will automatically create a fresh secure backup archive every day, replacing the previous day’s archive.

So IIUC backups will not be incremental and I will have to re-upload my 15 GB backup archive every day? Why is that? What's the security risk here? (Obviously I'm not suggesting encrypting & uploading each message & media file individually but splitting things up into same-sized chunks, like e.g. borgbackup does.)

> At the core of secure backups is a 64-character recovery key that is generated on your device. This key is yours and yours alone; it is never shared with Signal’s servers. This key is different from your Signal PIN, which serves different purposes.

Both recovery key and Signal PIN seem to serve the exact same purpose, though, namely restoring data (conversations, contacts, account, …)? Why not unify them?

replies(5): >>45175398 #>>45175402 #>>45175488 #>>45175493 #>>45176074 #
1. greysonp ◴[09 Sep 25 00:47 UTC] No.45176074[source]
Hi there!

> So IIUC backups will not be incremental

Nope! It's very much incremental :) At least the media is. There's one blob of containing all of your messages+metadata which does have to be re-uploaded every night, but for most people that's gonna be somewhere in the low-tens of MB. Your attachments are uploaded incrementally one at a time, typically as they're sent/received, so you usually don't even have to wait to upload them at backup-time.

> Both recovery key and Signal PIN seem to serve the exact same purpose, though, namely restoring data (conversations, contacts, account, …)? Why not unify them?

This was a hard decision and something we went back and forth on. But at the end of the day, we felt the safest thing we could do for now is to use a completely separate strong, random key. We're very aware of all the trade-offs involved, but this is where we landed.

replies(2): >>45176573 #>>45185809 #
2. codethief ◴[09 Sep 25 02:05 UTC] No.45176573[source]
> Nope! It's very much incremental :)

That's great to hear, thanks so much!

3. tgsovlerkhgsel ◴[09 Sep 25 18:01 UTC] No.45185809[source]
Thank you for choosing the "strong random key" rather than "sketchy PIN+SGX" option. This decision recovered my trust in Signal after the previous Signal PIN fiasco.