The developers of Signal are currently doing a user survey:
I told them that I really like the app but also that I would like:
a) Signal on @fdroidorg
b) a proper desktop client
c) no data stored in "secure enclaves"
Maybe you'd like to tell them, too?
I am merely asking for them to not change their threat model by storing my data and to support fully free platforms better.
In fact, not using phone numbers is what they are currently planning, I think, and which has led them to store data in the SGX.
Right now the contact list in Signal is stored client side, because the identifier is the phone number and that is stored in your address book. Signal servers don't know who I know or who I am in groups with.
If identifiers are separate, they are not stored in the address book and for any type of usability will be stored server-side. This reverses the trust model.
Whether this data is stored in SGX or not is another matter. Nation-scale adversaries will have access to SGX.
I would prefer decentral, but apparently "like WhatsApp" is the main criterium right now. So I would at least like this service to store as little data as possible.
An entirely separate but important point: SGX is a technology that has always been targetted against users' freedom. While Signal people see the use of SGX as "innovative" or a hack, many other people consider it a form of greenwashing, because it lends an "ethical" use-case to an inherently unethical technology.
Server run by the main developers of the project It is not focused on any particular niche interest - everyone is welcome as long as you follow our code of conduct!