[Feature Request] Password protection upon loading or after time-out

[Patrick010]

I would realy like to see the desktop app to be password or passphrase protected in a similar way as the mobile app is. Messages from a secured device are now effortlessly sinched and readable to an unsecured desktop app. Yes, there are aguments that access to the desktop should be limited, but we all know how easy it is to circumvent or reset a user password on a (stolen) windows system.
So, please secure the Desktop app as well ;)

Thanks!

[TimTheory]

Agreed; delete the local messages upon closing the app and resync after entering the password. Also (alternatively?), a way to de-authorize a desktop instance and remote wipe the local message cache would be great!

[scottnonnenberg]

First, there is no central server storing old messages. Once a client has downloaded and processed a message, it is gone. So @TimTheory's idea to re-sync later isn't possible.

Also, one thing to think about regarding a solution like this: password/key management. Where would/should passwords be stored by users, given that they should be strong enough that they aren't easy to remember? And then, what are the options for recovering your data if you forget that? Is it like some 2-factor solutions out there, where you have a collection of recovery keys? Where would/should those be stored?

[Patrick010]

I have no idea what the password/key management solution should look like, I am no expert on that topic. I merely ask myself why the mobile app is secured while the desktop app isnt.
If one spontaneously forgets his/her's password/phrase, then that person is out of luck. Those are the perks of using encryption.

[GuardianMajor]

@scottnonnenberg I have wanted to ask for this as well but had been dealing with more pressing issues that need fixing. But even if a simple hashed local store password protection to stop the interface from being access by someone passing by your desk is better than nothing. Right now you are just leaving this open and giving full access to anyone who passes by your desk. I have been securing it by just locking my machine when I walk away but that's not always feasible. A simple timeout to lock the interface and pass to unlock it.

Ideal solution, you would have a QR code, you scan it with your Signal on Android/iOS and then it would log you in and sync messages and you are off to the races. This can be easily implemented along with a timeout (lock up if inactive for x) and then same process would log you back in. Alternatively you can send a self message to the device and ask, are you trying to log into your desktop device xyz? You click yes, it logs in, you click no and it rejects it. Quasi how Google does the logins these days. I think you might be overthinking the solution and dismissing quite possible and readily implementable solutions. Every single other messaging software out there supports some flavor of this, Signal can't possibly be the only one who can't implement it.

[scottnonnenberg]

@GuardianMajor It's never about "can or can't" - it's about relative priority versus other features, as well as spending enough time to make the experience reliable and intuitive.

I don't think we need any more discussion on this one. I'm locking the conversation.