Twitter: Pay us to encrypt your direct messages

Martin Brinkmann
May 11, 2023
Updated • May 11, 2023
Twitter
|
6

Elon Musk confirmed the availability of encrypted direct messages on Twitter earlier today after he teased it last week.

The milestone is marred by restrictions, as the feature is only available for direct messages exchanged between two accounts that pay Twitter for Twitter Blue or are linked to a verified organization, and has other restrictions.

Musk recommends to try the new security feature, but to "don't trust it yet", which is anything but encouraging.

A new support page on the official Twitter Help website provides additional information on the launch of the new feature.

It points out that Twitter users need the latest version of the Twitter app, either the web-based version or the Android or iOS apps. These generate device specific keys, a private and public key pair for the Twitter user.

Twitter explains that the public key is "automatically registered when a user logs into Twitter" and that the private key stays on the user's device and is never shared with others or Twitter.

There is also a conversation key, which is used to encrypt the content of messages. Twitter employs " a combination of strong cryptographic schemes" to encrypt messages, links and reactions that are part of an encrypted conversation on Twitter. Media content is not encrypted currently.

The encrypting happens on the user's device and content is stored encrypted by Twitter on its servers. The encrypted message is decrypted on the recipients device so that the content can be accessed by the user.

Confusing limitations

The launch enables a much requested feature on Twitter, but it is limited in several ways. While it is somewhat understandable that sender and recipient need to use the latest version of Twitter, the same can't be said for the other limitations.

Only verified users on Twitter or "affiliates to a verified organization" may use the feature to encrypt direct messages.

There is a third limit, which makes things even more complicated. Encrypted messages require that the recipient either follows the sender, has sent a message to the sender previously, or has accepted a direct message request from the sender before.

Encryption of direct messages is not enabled by default. Twitter users who meet all the requirements need to enable encrypted mode when sending messages or "start an encrypted message" by tapping on the information icon in unencrypted conversations in the inbox.

Encrypted conversations show a lock icon on the avatar and also in the inbox. They also highlight if a message is encrypted when a message is opened.

Twitter confirms that there are other limitations in place currently. Group encryption is not supported yet, but the feature is planned.

Another major limitation is that "new devices cannot join existing encrypted conversations". These messages are filtered automatically by Twitter and any attempt to open such a conversation is met with an error message. Reinstalling the Twitter app on a device is considered a new device in this context.

Last but not least, Twitter's system does not include protection against man-in-the-middle attacks. There are no integrity verifications, but the feature is planned.

Closing Words

Twitter's new security feature is limited to paying users of the service; this restricts  it significantly, and the other limitations reduce the use of the feature further.

Twitter plans to launch updates in the future to address some of these issues. The company has not revealed if it plans to roll out the feature to free users of the service as well in the future.

Summary
Twitter: Pay us to encrypt your direct messages
Article Name
Twitter: Pay us to encrypt your direct messages
Description
Elon Musk confirmed the availability of encrypted direct messages on Twitter earlier today after he teased it last week.
Author
Publisher
Ghacks Technology News
Logo
Advertisement

Previous Post: «
Next Post: «

Comments

  1. Anonymous said on May 25, 2023 at 4:21 am
    Reply

    Pay for privacy, while encryption doesn’t cost anything more to Twitter ? What a cunt.

  2. Anonymous said on May 11, 2023 at 10:32 pm
    Reply

    Why would anyone pay for something so useless when there are many alternatives?

  3. Rogue Ghost said on May 11, 2023 at 9:50 pm
    Reply

    If you don’t like Twitter, or what Elon Musk is doing, feel free to leave…

    1. Someone said on May 12, 2023 at 1:53 pm
      Reply

      With Elon is much better. Full of NSFW content, without going on cringelooking
      sites to search for it. Also has great community. SO why to leave ?
      ;)

    2. Ghostbuster said on May 12, 2023 at 10:42 am
      Reply

      If you don’t like comments feel free to leave comment section…

  4. Leopeva64 said on May 11, 2023 at 1:27 pm
    Reply

    >The company has not revealed if it plans to roll out the feature to free users of the service as well in the future.

    Lol, it’s Elmo Musk, that as*hole is desperate to get money from Twitter at all costs, I don’t think this feature will be available for free users in the future.

Leave a Reply

Check the box to consent to your data being stored in line with the guidelines set out in our privacy policy

We love comments and welcome thoughtful and civilized discussion. Rudeness and personal attacks will not be tolerated. Please stay on-topic.
Please note that your comment may not appear immediately after you post it.