Differences Between "Secure" Messengers?

OMEMO-encrypted XMPP messages still leak lots of metadata since only the content is encrypted.

Besides, XMPP relies on server-side contact management (unlike Signal or Briar, for instance), so a server-side party (like an admin, attacker or state) can conduct lots of nasty things (as mentioned in https://infosec-handbook.eu/blog/xmpp-aitm/).

1 Like

Dang. So XMPP is just insecure by design, it sounds like.

1 Like