iMessage and FaceTime Ranked as Most Secure Mass-Market Messaging Options

The Electronic Frontier Foundation or EFF, a non-profit digital rights group, has investigated the security of various messaging apps and created a new Secure Messaging Scorecard, ranking messaging apps and tools like iMessage, FaceTime, BlackBerry Messenger, Skype, Snapchat, and more, based on seven different factors:

- Is a message encrypted in transit?
- Is it encrypted so the provider is unable to read it?
- Can you verify contacts' identities?
- Are past communications secure if keys are stolen?
- Is the code open to independent review?
- Is security design properly documented?
- Has the code been audited?

Unsurprisingly, the apps that score highest on the EFF's chart are those dedicated to secure messaging, such as iPhone apps ChatSecure, Signal, and CryptoCat, both of which scored checkmarks in all categories.

Apple's iMessage scored five out of seven checkmarks, earning points for encrypting messages in transit and encryption that's unreadable by Apple, but the messaging app was faulted for an inability to verify contact identities and the fact that Apple's code is not open to independent review.

effchart
FaceTime was scored in the same way as iMessage, also offering encryption but no contact verification/independent review capabilities. Outside of dedicated secure chat messaging apps, both FaceTime and iMessage scored higher than competing messaging platforms like Skype, WhatsApp, Viber, Snapchat, Kik, Google Hangouts, and BlackBerry Messenger.

Few of the competing messaging services offer encryption that prevents the companies offering the services from accessing messages, though all encrypted messages in transit. Most iMessage/FaceTime competitors also fail to secure past communications if keys are stolen, and few had properly documented security design. QQ, a highly popular Chinese messaging app, failed at providing any of the qualities the EFF was looking for in a secure messaging app, not even bothering to encrypt messages.

According to the EFF, Apple's iMessage and FaceTime products were the "best of the mass-market options," which is not much of a surprise given Apple's unparalleled focus on user privacy. Apple has a comprehensive privacy site that details all of its privacy policies and the security of various apps and services, including iMessage and FaceTime.

On the site, Apple specifically says iMessage and FaceTime calls "are your business, not ours." The company offers end-to-end encryption and Apple has no way to decrypt it. "Unlike other companies' messaging services, Apple doesn't scan your communications and we wouldn't be able to comply with a wiretap order even if we wanted to," reads the site.

Top Rated Comments

(View all)
Avatar
78 months ago
Whine Time

I want synced deleting!!! If I delete a message off my iPhone I want my iMac, iPad, and macbook to have deleted them as well.

:D


Edit: Or at least make it an option as others may like that it doesn't occur that way.
Score: 22 Votes (Like | Disagree)
Avatar
78 months ago
TouchID could be used to fill the holes suggested here.

Imagine this use case: Jane and John both have iPhones and are chatting using iMessage. Jane wants to send sensitive information (boob pics) to John, but wants to make sure that John hasn't handed his phone to his friend Bobby at the time she sends it. She could flag the message as 'secret', and John has to use TouchID or his AppleID password to verify his identity before seeing that message.

Offtopic: I'd also like a private browser that is 'locked' with TouchID. I could keep all my porn windows open in Private mode, and no one could see them without me unlocking that specifically.
Score: 13 Votes (Like | Disagree)
Avatar
78 months ago
can we go back to ICQ? good ol' days.
Score: 10 Votes (Like | Disagree)
Avatar
78 months ago
What an ugly charts table.
Score: 9 Votes (Like | Disagree)
Avatar
78 months ago

"Is security design properly documented?"

Huh? I don't understand how whether the security is documented or not actually improves the security.


Because if it is documented, independent parties can find flaws in the design. If it passes, the implementation can still be flawed however.
Score: 7 Votes (Like | Disagree)
Avatar
78 months ago
Lol, open source

The column "Is the code open to independent reviewers", how on earth can the open source community continue to claim that their code is safe and secure because of peer review when HeartBleed and a slew of other major security holes and exploits have been found in open source code and has been their for years or even decades?

Just because a million monkeys review your code doesn't make it secure.
Score: 6 Votes (Like | Disagree)

Top Stories

'A New iOS Update is Now Available' Popping Up Repeatedly in iOS 14 Beta [Fixed: New Beta Available]

Thursday October 29, 2020 6:11 pm PDT by
Many users running iOS 14 beta are reporting that they are seeing a dialog box pop up repeatedly asking them to update from the latest iOS 14 beta. Threads in our forums, Reddit, and Twitter are reporting the issue. The dialog has been appearing for a few days now, but as of tonight has started appearing more frequently, every time an iPhone is unlocked. There's been further discussion in...

First iPhone 12 Mini Hands-On Video Surfaces [Update: Video Pulled]

Wednesday October 28, 2020 1:21 pm PDT by
Apple's iPhone 12 mini and the iPhone 12 Pro Max aren't set to be available until November 13, but a Romanian YouTuber got his hands on the iPhone 12 mini and showed it off today, offering a size comparison between the iPhone 12 and the 12 mini along with going over some of the device's features. The iPhone 12 mini is identical to the iPhone 12 in design and functionality, but it has a...

Apple One is Now Available: Save Money by Bundling Apple Music, iCloud Storage, Apple TV+, Apple Arcade, and More

Friday October 30, 2020 7:47 am PDT by
Apple One bundles are now available in the United States and over 100 other countries, allowing customers to subscribe to multiple Apple services through a single plan, including Apple Music, Apple TV+, Apple Arcade, iCloud, and more. To sign up for Apple One on an iPhone: Open Settings App Tap on Your Name at the top Tap on Subscriptions Tap on Apple One The prompt for Apple One...

iPhone 12 Ceramic Shield Still 'Scratches at Level 6 With Deeper Grooves at Level 7' in Mohs Hardness Test

Wednesday October 28, 2020 7:10 am PDT by
iPhone 12 and iPhone 12 Pro models feature a new Ceramic Shield front cover that is "tougher than any smartphone glass," according to Apple, but the displays on the devices still have similar scratch resistance as previous iPhones based on a new test. Zack Nelson today shared his much-anticipated iPhone 12 Pro durability test on his YouTube channel JerryRigEverything, and based on the Mohs...

Apple CEO Tim Cook: 'More Exciting Things' in Store For This Year

Thursday October 29, 2020 2:20 pm PDT by
During today's earnings call for the fourth fiscal quarter of 2020 (third calendar quarter), Cook said that while he doesn't want to give too much away, "this year has a few more exciting things in store." Cook is likely speaking about the Apple Silicon Macs, as Apple has previously said the first Apple Silicon Mac will be coming before the end of 2020. There are rumors of a third fall event ...

2020 iPad Air vs. iPad Pro: Hands-On Comparison

Tuesday October 27, 2020 3:03 pm PDT by
Apple announced the new 2020 fourth-generation iPad Air in September, but the new tablets just started shipping out to customers last Friday. We picked one up and thought we'd do a hands-on comparison with the iPad Pro, which was last updated in March, because both tablets are about as powerful and share many similarities. Subscribe to the MacRumors YouTube channel for more videos. Design and ...

After Mocking Apple, Samsung May Remove Power Adapter From Galaxy S21 Box

Tuesday October 27, 2020 4:29 pm PDT by
Samsung's Galaxy S21, coming in 2021, may not include a power adapter or headphones in the box, according to reports from Korean media sites highlighted by SamMobile. Rumors earlier this year also said that Samsung was considering removing these accessories from future smartphone models, but that didn't stop Samsung from mocking Apple for selling the iPhone 12 models without a power adapter...

Apple Releases First macOS Big Sur 11.0.1 Beta to Developers [Update: Public Beta Available]

Wednesday October 28, 2020 10:15 am PDT by
Apple today seeded a new macOS Big Sur 11.0.1 beta to developers for testing purposes, with the new beta replacing the existing macOS Big Sur 11 beta 10 update that was released two weeks ago. The macOS Big Sur beta can be downloaded through the Apple Developer Center and once the appropriate profile is installed, subsequent betas will be available through the Software Update mechanism in...

Apple One Service Bundles Set to Launch Tomorrow, Fitness+ Coming This Quarter

Thursday October 29, 2020 1:39 pm PDT by
Apple in September announced Apple One, a new series of services bundles that will let Apple device customers purchase several services together in one package instead of separately, saving money for those who use multiple Apple service products. Ahead of Apple's earnings call, Apple CFO Luca Maestri told Bloomberg that Apple One is set to launch on Friday, October 30. Apple One Bundle...

PSA: Apple One Premier Bundle Only Available in US, UK, Canada, and Australia

Friday October 30, 2020 2:39 am PDT by
Apple's new Apple One series of services bundles launches on Friday in over 100 countries and regions, but the top Premier tier will be limited to the United States, the United Kingdom, Australia, and Canada. The limited rollout of the $29.95 Premier tier is down to the fact that Apple News+ is currently only available in the above countries. Apple News+ is exclusive to the Premier tier,...