I don’t know about all of these things, but Signal’s source code is open source and freely available on GitHub. This includes its Android, iOS and desktop apps, as well as its server code and underlying encryption library:
https://github.com/signalapp
It also has regular security audits from third parties:
https://community.signalusers.org/t/overview-of-third-party-security-audits/13243
The last one was done on February 18 and found no vulnerabilities in Signal’s encryption:
https://soatok.blog/2025/02/18/reviewing-the-cryptography-used-by-signal/
I hope this information is useful!
Chris Wood
npub1m6…c5gu9
2025-03-19 21:17:05 UTC
in reply to nevent1q…3ayf
Author Public Key
npub1m68faapzxpq8t0kqkmjywr9jlumm7gw2t376xm9mustkkdqs5zrqlc5gu9Seen on
wss://relay.momostr.pinkPublished at
2025-03-19 21:17:05 UTCEvent JSON
{
"id": "e452e94695cee697c0420fe3a81370d554be2a07f1d72f2657e676befd9028fa",
"pubkey": "de8e9ef422304075bec0b6e4470cb2ff37bf21ca5c7da36cbbe4176b3410a086",
"created_at": 1742419025,
"kind": 1,
"tags": [
[
"e",
"12ad394c4c2897e70be65071e0661edd06d850242547a6829a4bfcbfc532dabe",
"",
"reply",
"debb7830d0ee141529b82424af0c86fa8395d4edee7652efe1aab9bba8c48502"
],
[
"proxy",
"https://mastodon.design/@chriswood/114191173224751163",
"web"
],
[
"p",
"62fde58e165c695686252e25dfc14fc650e4f9769224f3a02e35615d322e3420"
],
[
"p",
"debb7830d0ee141529b82424af0c86fa8395d4edee7652efe1aab9bba8c48502"
],
[
"e",
"52ccafd1f7641304d60341a6022fb739f74a754e70b44ee90a1e566eb13f1c03",
"",
"root",
"1d9daec418418c2da07b242753f373ea8e2ebe4ce89596794ed930866196d85f"
],
[
"p",
"1d9daec418418c2da07b242753f373ea8e2ebe4ce89596794ed930866196d85f"
],
[
"proxy",
"https://mastodon.design/users/chriswood/statuses/114191173224751163",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://mastodon.design/users/chriswood/statuses/114191173224751163",
"pink.momostr"
],
[
"-"
]
],
"content": "I don’t know about all of these things, but Signal’s source code is open source and freely available on GitHub. This includes its Android, iOS and desktop apps, as well as its server code and underlying encryption library:\nhttps://github.com/signalapp\n\nIt also has regular security audits from third parties:\nhttps://community.signalusers.org/t/overview-of-third-party-security-audits/13243\n\nThe last one was done on February 18 and found no vulnerabilities in Signal’s encryption:\nhttps://soatok.blog/2025/02/18/reviewing-the-cryptography-used-by-signal/\n\nI hope this information is useful!",
"sig": "bfa39613d3abafe7d363b992be86d183617ecbcfa6d8975b136f33eb5211f422943c0342e372cff5a018e9fee130af17c26334314671b62100d33e56364bf713"
}