Why do DC developers assume that everyone carries a phone all the time, for instance at a party?
Some of us don’t use phones at all.
Why is there no simple and obvious solution to confirm that there is no man-in-the-middle attack?
How can we confirm the identity of a contact?
Even in the ancient OTR (Off-the-Record) protocol, there was a simple authentication method (Socialist Millionaire’s Protocol).
Seriously, do we need to dig through settings to find the fingerprint (is it hidden on purpose?), and then must we install Signal or WhatsApp just to confirm the fingerprint?
Is this just a security/privacy cabaret for me?