One of the recent topics in Messaging App Discourse is whether it makes sense to prioritize End-to-End Encryption when searching for an alternative to Discord.

Who’s Saying “No”?

I’m going to quote 0xabad1dea here, because she is awesome and explains my “opposition” position better than anyone else:

So You Want To Write An Open Source Discord Replacement

Things you don’t need:
– federation/distributed systems
– multiparty end-to-end encryption
(…)

0xabad1dea (link to the full post)

She then followed this up with a second post, pointing to this news story, highlighting the dangers of overconfidence in your encrypted messaging software with large numbers of hard-to-vet participants.

Her overall argument is a simple one to understand, and is congruent to the one I made in my previous post: You cannot hope to replace Discord for the overwhelming majority of its users if you don’t even know what Discord is for them. The user experience is more important to adoption than federation or even encryption. You don’t need to build infrastructure for “planning the revolution” to replace Discord.

While everything 0xabad1dea said is true, we need to stop and ask, “Why is Discord even pushing for age verification to begin with?”

Why E2EE Still Matters

You could point to the anti-porn lobby’s strategies that have been at play for years, to start with: Target infrastructure to repress everyone.

Discord isn’t pushing for this because they want to, they’re pushing for this because they’re a centralized platform used by millions of people. Not only do Christian extremist groups look for these single points of failure in their lobbying efforts, many countries and states have pushed for laws requiring platforms verify the age of the users.

Cryptographers know how to satisfy these requirements without sacrificing user privacy, but, often, these laws do not allow such measures.

Age verification requirements and centralization go hand-in-hand.

Federated platforms have two advantages, and one massive crippling disadvantage.

Federated systems do not create a giant central hub that lobbyists and right-wing politicians can target. Additionally, users can choose instances that do not exist under the jurisdiction of oppressive laws.

However, if a viable federated alternative springs up, the Christofascists will simply change their tactics: Have law enforcement investigate large instances and harass the people that operate them.

The downside of federation is that most instance operators do not have the war chest or legal resources to fight overreaching government demands (nor extralegal measures taken against payment processors). They’re lucky if their operational budget is solvent to begin with.

And that is the reason end-to-end encryption matters for federated systems: If law enforcement shows up demanding all of your user data, if it’s all encrypted so even you can’t decrypt it, you can only surrender ciphertext to the authorities.

In short, the reason multiparty end-to-end encryption is still important for any Discord alternative is as follows:

1. Any centralized system will inevitably need to comply with stupid age verification laws. Without federation, your alternative will follow suit.
2. Any federated system that has access to user messages will be a juicy target. Without E2EE, your instance operators are at high risk.

End-to-end encryption doesn’t just protect the users, it protects the people operating the infrastructure. And that’s why it still matters.

E2EE Should Be Ubiquitous

Secure end-to-end encryption needs to become table stakes for communication software.

In an age where user data is sold to the advertising industry and large language models are trained on users’ posts, the less data that service operators can slurp up, the better.

But additionally, we need to make its existence so mundane that no one becomes overconfident about their use of encryption.

“Don’t plan your crimes in a chatroom full of 300 people” should be common sense, whether or not that chatroom uses encryption properly.

Closing Thoughts

I was originally going to write this as an addendum to my Discord post, but ultimately felt it was nuanced enough to warrant a separate, focused discussion.