WalterKühl :bagpiper: on Nostr: feld Nicholas Conrad npub1qvahg…qfuzz ...
feld (npub1yck…ujmw) Nicholas Conrad (npub1qtf…yq3j) npub1qvahgnmvkkyn2r052myflasegwk5mjc8wvms3pz7sp4f6thfw38qgqfuzz (npub1qva…fuzz)
https://theintercept.com/2024/03/04/signal-app-username-phone-number-privacy/
> If the subpoena demands that Signal turn over account information based on a phone number, rather than a username, Signal could be forced to hand over the cryptographic hash of the account’s username, if a username is set. It would be difficult, however, for law enforcement to learn the actual username itself based on its hash. If they already suspect a username, they could use the hash to confirm that it’s real. Otherwise, they would have to guess the username using password cracking techniques like dictionary attacks or rainbow tables.
https://theintercept.com/2024/03/04/signal-app-username-phone-number-privacy/
> If the subpoena demands that Signal turn over account information based on a phone number, rather than a username, Signal could be forced to hand over the cryptographic hash of the account’s username, if a username is set. It would be difficult, however, for law enforcement to learn the actual username itself based on its hash. If they already suspect a username, they could use the hash to confirm that it’s real. Otherwise, they would have to guess the username using password cracking techniques like dictionary attacks or rainbow tables.