ADVERTISEMENT

Here’s why you should leave WhatsApp for Signal, not Telegram

Here’s why you should leave WhatsApp for Signal, not Telegram
Bernard Meyer
Bernard Meyer Senior Researcher
Jan 13, 2021 Updated: 18 December 2023 4 min read

Signal vs. Telegram

SignalTelegram
PlatformsWindows, Android, iOS, macOS, LinuxWindows, Android, iOS, macOS, Linux
Default security?Secure by defaultNot secure by default
Transfer protocolsHttps/SIP over WebSocketsHttps/SIP over WebSockets
Encryption usedSignal protocol (X3DH + Double ratchet + AES-256)MTProto 2.0 (AES-256, AES IGE IV 256)
Keys-Exchange & Cryptographic primitivesPre-keys + Curve25519, HMAC-SHA256Persistent shared key generated via DH, KDF, Double SHA-256
To be fair: this is not to say that Telegram as a product lacks security in any major way, but rather that Telegram doesn’t provide its important features out of the box.
ADVERTISEMENT

Signal and Telegram’s history of vulnerabilities

But let’s be level-headed here: every single app or program or website you’re using will have its vulnerabilities or bugs, and that’s an inescapable fact.
  1. Signal and Telegram, as alternatives to WhatsApp, will both have various vulnerabilities
  2. If you have end-to-end encryption, those vulnerabilities can be mitigated
  3. All else being equal, because most people are likely to keep the default settings, most people will be better off with Signal
  4. Signal has secure (end-to-end encrypted) group chats, and Telegram doesn't
ADVERTISEMENT