Edge continues to be the only major browser with no end-to-end sync encryption

Kam 

---

Kam wrote:
ragingreiCan I add this as one of my SSs? HotCakeX You too.

---

SS doesn't mean suggestion, that's just a weird thing someone else said.

also using classification and personal priority and other things in the post is ridiculous.

Kam 

---

Kam wrote:
ragingreiGot it. Get ready for SS42! If you want, check the discussion space every 20 minutes until you see it.

---

It's better to send it using feedback button on Edge browser. there are a lot of unrelated topics in Edge discussion that these things get lost there.

Kam 

---

Kam wrote:
ragingreiJust wanted to inform you that SS42 is now live!

---

this topic is already suggesting it.

Kam Oh, yeah, sure, of course.

Kam SS?

ragingrei 

I think I also want the same thing now, for Microsoft to implement their version of end-to-end encryption using a pass phrase of our choosing on Edge sync data, albeit in a close source fashion. i prefer that to not having it.

Kam 

---

Kam wrote:
WittycatThen how do I get my other subscription updates?

---

click on profile icon at top right and go to subscriptions, unsubscribe from topics

go to "my settings" => subscriptions and notifications => notification settings and turn them off

in profile settings again go to preferences => preference option and turn this off

Kam 

if there is no unsubscribe button, click on subscribe then then when the page refreshes, click unsubscribe 

Kam Lower. They only guarantee in-flight and in-storage encryption. That's literally the whole point of this discussion.

Wittycat Look, I agree with you that Microsoft is far more trustworthy than Google.

Even then, Google makes different assurances about their privacy for different products. GMail was (and probably is still) indexed, while your credit card information isn't, for example.

But that's not the point. I never said it was, and I'm not cheerleading for anyone.

The point is that, by using E2E encryption, Brave, Firefox, Chrome all demonstrate a certain level of trust that you can place in them. That trust may or may not be absolute depending on your political bent and whether or not you trust governments.

But none of that excuses Microsoft from not having E2E in Edge, and the fact that they refuse to use it, at best, is simple negligence of an important feature, and at worst, is them acknowledging that they plan to use the data.

Raising the expectation of privacy deters abuse and raises accountability, both in terms of user acceptance/adoption as well as legally. Edge's expectation of privacy is far lower right now than any other browser, which, for any browser by any company, is completely unacceptable.

https://en.wikipedia.org/wiki/Expectation_of_privacy

just like me, when you and other discuss and i don't want to follow i go up and in the first post settings in clic on unsubscribe and poof no more spam from this post (and if you will have email only on @mention)

but i will follow the exemple of HotCakeX, and just stop trying it seems the owner of this post don't want to understand than closed source software can send data in you back without being caught

Wittycat Don't say "you don't even know how it works" because all this chatter (including mine, HotCakeX) is spamming everyone's inboxes even mine, I had 59 unread emails (all from the Tech Community and this conversation) when I came back from a coffee break and wow, may have to spend my time deleting my hundreds of emails. If I'm right this is spamming ragingrei, HotCakeX, Aelisya (you) and my inbox.

Wittycat 

I don't know how many times I have to explain that even the credible promise of E2E is adequate to deter Google from abusing any data that they glean off of you. The more convoluted the attack, the less likely they are to be able to abuse it, because it's more difficult for them to reveal their hand.

Quoting myself:

Again, the point isn't that it can't be done; it's that it's difficult to do in plain sight. The point isn't to limit what openly bad actors can't do; it's to limit what supposedly good actors can.

You're appealing to cryptographic nihilism in order to rationalize Edge's lack of E2E. Even if you were right that it's technically possible, it's completely absurd.

If Microsoft hands over their data to third parties (say, an advertising firm), anyone on the Edge team can do so, and they can cite a loophole in the user agreement to say they had the right to do that.

If someone at Google pulled the same trick, they would have to admit, both to the advertising firm and to other employees, to having transmitted a password. Jail time would be involved, entire nations would ban Chrome outright, and no one would ever, ever rely on them again.

Do you honestly think they have the financial incentive to risk that?