Update 6/10: Based on a short conversation with an engineering lead at X, some of the devices used at X are claimed to be using HSMs. See more further below. Matthew Garrett has a nice post about T…
If a corporate entity made it and hosts it, and it isn’t foss, don’t chat on it.
There is another layer here. If you or the person you’re talking to are using an entirely unmodified android or apple phone, you don’t have any privacy even if you’re on TOR connected to an encrypted xmpp chat. Your entire existence is backdoored. The entire OS speaks back to its maker, especially that keyboard.
If a corporate entity made it and hosts it, and it isn’t foss, don’t chat on it.
There is another layer here. If you or the person you’re talking to are using an entirely unmodified android or apple phone, you don’t have any privacy even if you’re on TOR connected to an encrypted xmpp chat. Your entire existence is backdoored. The entire OS speaks back to its maker, especially that keyboard.