Beeper reverse-engineered iMessage to bring blue bubble texts to Android users::The push to bring iMessage to Android users today adds a new contender. A startup called Beeper, which had been working on a multi-platform messaging

  • gregorum@lemm.ee
    link
    fedilink
    English
    arrow-up
    90
    arrow-down
    7
    ·
    1 year ago

    i had no idea that having green chat bubbles upset people so much.

    • pizza_the_hutt@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      71
      arrow-down
      5
      ·
      1 year ago

      The issue isn’t so much the message color. It’s the ability to send videos that aren’t potato quality and other media.

          • NOT_RICK@lemmy.world
            link
            fedilink
            English
            arrow-up
            3
            arrow-down
            1
            ·
            1 year ago

            They’re doing the GSMA standard and nothing else. I think they refuse to play ball with any standard Google controls either directly or indirectly.

              • NOT_RICK@lemmy.world
                link
                fedilink
                English
                arrow-up
                1
                arrow-down
                1
                ·
                1 year ago

                It’s just smart business. Why give up any level of control of anything to a direct competitor when you don’t have to?

                • BearOfaTime@lemm.ee
                  link
                  fedilink
                  English
                  arrow-up
                  2
                  arrow-down
                  3
                  ·
                  1 year ago

                  Especially Google, and especially the crappy implementation of RCS.

                  I see posts every day of people having issues. Messages not sent, not received, etc.

        • BearOfaTime@lemm.ee
          link
          fedilink
          English
          arrow-up
          1
          arrow-down
          3
          ·
          1 year ago

          They’re not doing encryption, because Google is using their own.

          RCS is too little, too late. It sucks. I refuse to ever use it.

      • gregorum@lemm.ee
        link
        fedilink
        English
        arrow-up
        8
        arrow-down
        130
        ·
        1 year ago

        oh, can’t android users receive high-quality videos and photos? after 16 years of smartphones, you’d think they’d have that figured out…

        • mcqtom@lemmy.world
          link
          fedilink
          English
          arrow-up
          111
          arrow-down
          2
          ·
          1 year ago

          Yeah the whole reason Apple won’t allow it is because they expect you to conclude exactly this.

        • Mountaineer@aussie.zone
          link
          fedilink
          English
          arrow-up
          50
          arrow-down
          4
          ·
          1 year ago

          It’s not the android side that’s failing, it’s Apples refusal to implement anything other than SMS for cross ecosystem compatibility.

          • JeeBaiChow@lemmy.world
            link
            fedilink
            English
            arrow-up
            23
            ·
            1 year ago

            It’s also why third party messaging apps like Whatsapp are thriving, much to the consternation of every person on the network. I used to be able to pick up the phone and call or message anyone. Now I need to check compatibility first. Wtf apple.

          • mike805@fosstodon.org
            link
            fedilink
            arrow-up
            9
            ·
            1 year ago

            @Mountaineer @gregorum Apple is going to implement RCS, the EU put pressure on them.

            However I am surprised that Beeper was able to do this in software. With everyone else using an Apple device as a proxy, I figured the protocol required a magic handshake from the TPM chip in an Apple device. That would be easy to do.

            • Mountaineer@aussie.zone
              link
              fedilink
              English
              arrow-up
              10
              arrow-down
              1
              ·
              1 year ago

              There’s some gotchas in Apples statement:

              They have promised to implement “RCS Universal Profile”
              This means the bare minimum, not the advanced features implemented by Google and Samsung etc.
              An example of a missing feature from Universal Profile is end to end encryption.

              They also said: “This will work alongside iMessage, which will continue to be the best and most secure messaging experience for Apple users.”
              The implication of this is that it won’t be in the iMessage app, it will be in a separate but official app, siloing your Android friends from your iPhone friends.

              When this comes out, every European is going to shrug and keep using Whatsapp.

              • mike805@fosstodon.org
                link
                fedilink
                arrow-up
                6
                ·
                edit-2
                1 year ago

                @Mountaineer Encryption needs to be added to the standard, and then Apple will be expected to implement it. Hopefully the EU knocks some heads together and makes this happen.

                WhatsApp is owned by Facebook and has ads, which is two good reasons not to use it. Europeans are just as “stuck with a bad standard” as Americans are here.

                I use RCS quite a bit and like it. Although nothing on a phone should be regarded as truly secure.

              • PM_Your_Nudes_Please@lemmy.world
                link
                fedilink
                English
                arrow-up
                2
                ·
                1 year ago

                The implication of this is that it won’t be in the iMessage app, it will be in a separate but official app, siloing your Android friends from your iPhone friends.

                Lol wut

                SMS and iMessage both work via the same Messages app. All they’ll do is add RCS functionality to the Messages app, and iPhone users will continue using the same app they’ve always used.

              • creed10@lemmy.world
                link
                fedilink
                English
                arrow-up
                2
                arrow-down
                1
                ·
                1 year ago

                what? that’s not the implication at all. it’ll work just like SMS does now. same app, just RCS instead of SMS

                • Mountaineer@aussie.zone
                  link
                  fedilink
                  English
                  arrow-up
                  2
                  arrow-down
                  1
                  ·
                  edit-2
                  1 year ago

                  it’ll work just like SMS does now

                  I agree with this part of your statement 100%.
                  It will work POORLY.

                  Whether it’s in the same app or simply a different colour like SMS is currently, it’ll be a half assed implementation, designed to segregate your iphone and android friends.

                  Got an existing iphone group chat? Bet you can’t add an RCS participant to it.
                  Create a new RCS group chat so you can include everyone? Bet it’s missing features that you’d get in imessage.
                  Receive a high resolution video from a friend via imessage? Forward that to another friend via RCS and they’ll receive 5 blurry pixels.

                  And throughout all of this, apple will blame the RCS protocol and say “We’re actively working with GSMA to improve RCS”.

                  No one trusts apple for the very simple reason that they have a habit of saying the quiet part out loud: Tim Cook Says ‘Buy Your Mom An iPhone’

            • BearOfaTime@lemm.ee
              link
              fedilink
              English
              arrow-up
              5
              arrow-down
              2
              ·
              1 year ago

              RCS is too liitle, too late. It sucks. People have issues with it today… It’s less reliable than SMS, and it’s E2EE is problematic.

              Fortunately much of the world has moved away from SMS already, so those folks aren’t coming back. I try real hard to get people away from it.

              • mike805@fosstodon.org
                link
                fedilink
                arrow-up
                1
                ·
                1 year ago

                @BearOfaTime I have RCS and use it. It works fine. I have not noticed significant reliability problems, using Google’s servers. If there are problems it’s likely the carrier’s garbage implementation.

                There is no standard here in the USA except SMS.

                • BearOfaTime@lemm.ee
                  link
                  fedilink
                  English
                  arrow-up
                  1
                  arrow-down
                  2
                  ·
                  1 year ago

                  It works fine, for you. When it works is irrelevant. When it doesn’t is what matters.

                  Go to reddit look for RCS problem posts. It’s terrible.

          • BearOfaTime@lemm.ee
            link
            fedilink
            English
            arrow-up
            1
            arrow-down
            1
            ·
            edit-2
            1 year ago

            Even worse, I can send high quality images and video from android to iPhone if they’re both on Verizon. When the iPhone sends it back, it’s trashed.

            That said, SMS/MMS suck. SMS has a known, published loss of messages at about 12%. What the hell?

        • BearOfaTime@lemm.ee
          link
          fedilink
          English
          arrow-up
          27
          ·
          1 year ago

          iOS can’t send hi quality videos or images over SMS. It’s a choice made by Apple.

          I can send large videos (more than 50mb, for sure) over SMS from my Android phone on Verizon to a Verizon iPhone. They receive it in same quality. When they send it back, the iPhone butchers it.

          Verizon, unlike other carriers, doesn’t seem to have an MMS size limit.

        • yeehaw@lemmy.ca
          link
          fedilink
          English
          arrow-up
          12
          arrow-down
          1
          ·
          edit-2
          1 year ago

          You need to think of iMessage as Google messages, Whatsapp, telegram, signal, etc. Except this is only installed on iPhones and they want everyone to know it. It’s arrogant and stupid. The app could just be released for Android and it would be no different than the others I mentioned.

          It’s gatekeeping.

        • Darkassassin07@lemmy.ca
          link
          fedilink
          English
          arrow-up
          13
          arrow-down
          5
          ·
          1 year ago

          Android to Android, sure.

          But Apple and Google refuse to play nicely with each other, so Android to Iphone or Iphone to Android both suck.

          It’s not a lack of capability, it’s the refusal to implement it to try and force users to pick a side.

            • NOT_RICK@lemmy.world
              link
              fedilink
              English
              arrow-up
              3
              arrow-down
              2
              ·
              1 year ago

              To be fair, Google’s messaging plans and implementations have been all over the place for a decade. Apple still should have been more proactive. They promised iMessage would come to Android until they realized how much of a moat it became for their business.

            • Darkassassin07@lemmy.ca
              link
              fedilink
              English
              arrow-up
              3
              arrow-down
              15
              ·
              1 year ago

              I don’t really care which of them is responsible for it not working decently, that’s why I didn’t point the finger at one in particular.

              Point is, it’s between these two companies to agree on a solution that works for both of them and actually implement it. Yet after all this time, they still haven’t to the detriment of consumers globally.

              I’ll believe the IOS RCS implementation when it’s actually released. Promises from corporations are worthless.

            • Darkassassin07@lemmy.ca
              link
              fedilink
              English
              arrow-up
              4
              arrow-down
              1
              ·
              1 year ago

              If you’re talking about RCS, androids newer native messaging system, no apple has not implemented that yet.

              There has always been dozens of messaging apps users can use, including Google Chat, but they are all seprate apps that both you and the recipient have to choose to install and use. That’s the main problem.

              The goal is to have the native messaging apps on both platforms be able to speak to each other with the same quality right out of the box, just as they can within the same platform right now (apple to apple, and android to android).

        • creed10@lemmy.world
          link
          fedilink
          English
          arrow-up
          7
          ·
          1 year ago

          you can when it’s android to android. as soon as an iphone is in play, the iphone immediately decreases the quality, even though the MMS standard allows for attachments up to 100MB in size

        • BearOfaTime@lemm.ee
          link
          fedilink
          English
          arrow-up
          3
          arrow-down
          2
          ·
          1 year ago

          iOS can’t send hi quality videos or images over SMS. It’s a choice made by Apple.

          I can send large videos (more than 50mb, for sure) over SMS from my Android phone on Verizon to a Verizon iPhone. They receive it in same quality. When they send it back, the iPhone butchers it.

          Verizon, unlike other carriers, doesn’t seem to have an MMS size limit.

    • Fubarberry@sopuli.xyz
      link
      fedilink
      English
      arrow-up
      35
      ·
      1 year ago

      I’ve seen a lot of people complain online about getting dropped by a tinder date/etc because they swapped numbers and the other person realized they didn’t have an iPhone from the green text. Probably best not to date someone who would drop you over that, but there’s a weird elitism over blue/green texts.

      • 𝔼𝕩𝕦𝕤𝕚𝕒@lemmy.world
        link
        fedilink
        English
        arrow-up
        18
        ·
        1 year ago

        Attempting to get a date in the current US scene was hard enough without this petty bullshit. While it was certainly disheartening to see another one slip away, knowing I was dodging a bullet was worth the time. I did enjoy (only once) getting “ugh green bubbles? Srs?” And sliding back “yeah sorry I have a Fold#, iPhones r for brokies” and blocking the contact

        (People are free to own iPhone and you’re free to make your own descicions or debate the merits of android/iphone, I am more just intolerant of the fan elitism - not iPhone owners in general, hope you have a nice day)

      • Nacktmull@lemm.ee
        link
        fedilink
        English
        arrow-up
        18
        arrow-down
        1
        ·
        1 year ago

        Weird, is that an excursively US American thing? I am European and have never experienced “phone racism”.

      • Toes♀@ani.social
        link
        fedilink
        English
        arrow-up
        7
        ·
        1 year ago

        I’ve never heard of that, that’s kinda hilarious and really helps them dodge a bullet.

        Apple has spent a significant amount of effort over creating a sense of elitism for using its products but that’s largely unique to the western world. Most of the world uses android devices by far.

        • Corkyskog@sh.itjust.works
          link
          fedilink
          English
          arrow-up
          2
          ·
          1 year ago

          Western World

          Did you mean mostly just the US?

          Android has almost 83% market share in the EU.

          An interesting fact while researching is that Iphone has over a 99% market share in North Korea. I assumed that the data might be thrown off by one individual maybe owning like ten thousand Iphones… but surprisingly NK is more connected then I thought with like 7M registered cellular devices

      • Scubus@sh.itjust.works
        link
        fedilink
        English
        arrow-up
        6
        arrow-down
        1
        ·
        1 year ago

        Nah bro, if they bought an iPhone that means I can’t trust them with money. Screw that noise

        • Fubarberry@sopuli.xyz
          link
          fedilink
          English
          arrow-up
          8
          ·
          edit-2
          1 year ago

          As much as I dislike apple, I don’t really hold it against people if they choose to use iPhones. Iphones are overpriced, but they’re decent phones and I can’t really blame someone for not wanting to learn a different mobile OS or lose out on all the apps they’ve paid for. Also a lot of android OEMs make terrible design decisions with their software modifications/bloatware, and it can be really hard for someone non-tech savvy to know how to buy a good android phone. Iphones are comparably simple to shop for, you only have a few options and they’re all going to be decent (if not necessarily a good value).

          Iphone elitism really bothers me though, it feels like it’s taking a lack of knowledge/experience and turning it into something to feel smug about.

          • BearOfaTime@lemm.ee
            link
            fedilink
            English
            arrow-up
            2
            arrow-down
            1
            ·
            1 year ago

            Exactly.

            I use an iPhone for work, because they pay for it, it does the essentials well, and since they manage the device, I get no benefit from Android’s openness.

            My personal phone will always be Android, because I like to use a pocket computer the way I want to use it, not how the vendor thinks I should use it.

        • nexas_XIII@lemm.ee
          link
          fedilink
          English
          arrow-up
          1
          arrow-down
          1
          ·
          1 year ago

          As someone who started with Android, went to iOS, back to Android, and stayed with iOS I feel like you’re not trying to understand why some people choose an iPhone. I personally chose it because of the incredible battery life.

          Skip the rest of this if you don’t want to hear a rambling mess of my phone history. There is a bit at the end regarding prices and why I own what I own now.

          I had an HTC Desire, Samsung Galaxy S2, HTC One M7, Sony Xperia Z1, iPhone 7, Nexus 6P, iPhone X, iPhone 12 Pro, iPhone 15.

          I’ve rooted a bunch of the early Android phones, loved having removable batteries and having expandable storage. As the platform evolved and started following Apple’s lead on design decisions (no removable batteries, no expandable storage, etc.) I was wondering why I was still with Android. After having a the Xperia I noticed that the battery didn’t last as long as it used to and if I remember right (possibly not, a bit tipsy) the Xperia was advertised as having a very long battery but it didn’t last very long past a year or so (was getting less than a full day and having to charge when I was driving home). I also had how slow Sony was to get OS upgrades it I decided to try a new phone. At the time I cared more about the battery and the iPhone 7 was my next try. It was amazing, I didn’t actually enable iMessage because I hated the bubble bs that I heard about. Eventually the 6p was announced and I missed the freedom of android and decided to give it a try. This was the generation where Android started cracking down on rooting and the battery life was awful. I eventually went full in on iOS after that and here we are. I miss what Android was, I do sometimes miss the tinkering but I also don’t hate how things normally just work.

          Now in regards to cost, the name brands for Android phones are around the same price. They usually promise 2-3 years of updates while currently Apple had a history of supporting phones for 4-5 years.

          I understand you can get lower range phones for cheaper but I guess I’m not into the phone scene like I used to because I guess I assume the lower range phones aren’t getting the updates that the flagships are and I don’t want to have to either compromise security or shell out more money to get another phone. So for me, I’m typically buying around a $1000 phone but after 3 years I can trade in my phone for a decent amount of money off the new one, or sell it for even more and pay a mid range Android prices for a new iPhone. Or if I’m not feeling the upgrades are worth it I’ll just stick with my phone for the 5 years+ (only went to iPhone 15 to get USB-C and remove lightning from my place).

          • BearOfaTime@lemm.ee
            link
            fedilink
            English
            arrow-up
            2
            arrow-down
            1
            ·
            1 year ago

            Battery life hasn’t been an issue on Android for like 5 years. Phone I’m using at the moment is a low-end Samsung, I have hundreds of apps, run a VPN and Tailscale, lots of automation, two sync apps, and a bunch of other stuff.

            With normal use it lasts most of a day. When I say normal, I mean my normal, which is to hammer on the poor thing, the screen is rarely off.

            For the average user this thing would last 2 days (I tested it when I got it, just put a few typical apps on).

            Though you know your way around phones, and have developed your reasons for choosing the things you do, like long battery life.

            You’re not the user who chooses iPhone because they don’t know anything and hear iPhone is better, Android is green low-rent bubbles.

    • nolannice@lemmy.world
      link
      fedilink
      English
      arrow-up
      8
      arrow-down
      3
      ·
      edit-2
      1 year ago

      I think they’re hated because they’re synonymous with broken group chats and low res photos. Hopefully EU forcing rss adoption fixes these instead of having to download an app to ‘fit in’.

      • gregorum@lemm.ee
        link
        fedilink
        English
        arrow-up
        4
        arrow-down
        14
        ·
        edit-2
        1 year ago

        why should the EU have anything to do with who “fits in”? maybe i misunderstood what you’re saying here…

        • Darkassassin07@lemmy.ca
          link
          fedilink
          English
          arrow-up
          8
          ·
          1 year ago

          EU implements legislation forcing Android + Apple to use standards that actually work properly with each other. (they usually spearhead this type of change)

          People using android no longer break group chats or have terrible sent image/video quality when messaging Iphone users.

          With this ammunition gone, teens stop using it to attack each other for their familys (lack of) income. Ie those kids ‘fit in’ better.

          • gregorum@lemm.ee
            link
            fedilink
            English
            arrow-up
            5
            arrow-down
            2
            ·
            edit-2
            1 year ago

            Oh, OK. I did misunderstand what was being said. Thank you for clarifying.

          • BearOfaTime@lemm.ee
            link
            fedilink
            English
            arrow-up
            1
            arrow-down
            1
            ·
            1 year ago

            I’d say it’s people using Apple that break group chats, since Apple doesn’t utilize SMS/MMS correctly.

            Not Android’s fault that Apple butchers MMS quality.

            Though carriers have some culpability here, even if a carrier allowed higher quality MMS (Verizon), iPhone still wouldn’t use that capability, while Android can if configured to do so.

            • Darkassassin07@lemmy.ca
              link
              fedilink
              English
              arrow-up
              1
              ·
              1 year ago

              Thats a fair argument; though in this context it’s more about how the teens causing social issues perceive it.

              It’s not the Iphone users getting picked on in schools.

    • Bobby Turkalino@lemmy.yachts
      link
      fedilink
      English
      arrow-up
      15
      arrow-down
      10
      ·
      1 year ago

      In the US, every millenial is a communist until a green bubble shows up in the group chat… then the poverty jokes commence

    • PM_Your_Nudes_Please@lemmy.world
      link
      fedilink
      English
      arrow-up
      3
      arrow-down
      3
      ·
      1 year ago

      It’s all the other features in iMessage that android users “ruin” in group chats. Things like read receipts, typing indicators, reactions, animated/spoiler text messages, sending media in full quality, etc… A single android user is enough to downgrade an entire group chat, so apple users tend to be a little bit resentful.

      It’d be a little bit like if one person on a Discord server disabled all the fun parts of Discord, and it killed the functionality for everyone on that server. Now nobody in the server can add fun little reactions to messages, or start threads, or send embedded gifs. All because that one person decided they didn’t like it.

      • PobrePerformer@lemmy.pt
        link
        fedilink
        English
        arrow-up
        6
        ·
        1 year ago

        All because that one person decided they didn’t like it.

        More like “all because Discord decided to remove those things from anyone not using Windows”

        Nothing in this scenario is in the users hands, it’s all Apple, what any given user likes or want makes no difference.

        • FaeDrifter@midwest.social
          link
          fedilink
          English
          arrow-up
          2
          ·
          1 year ago

          Apple, Google, and Microsoft commit antitrust violations too fast and numerous for the legal systems to keep up.

          That and they spy on consumers for the US government so that gives them free passes at a lot of things.

    • kia@lemmy.ca
      link
      fedilink
      English
      arrow-up
      36
      arrow-down
      4
      ·
      1 year ago

      Is it even a garden though? I don’t see any benefit in using it over something like Signal other than it coming pre-installed on your phone.

      • inverted_deflector@startrek.website
        link
        fedilink
        English
        arrow-up
        10
        ·
        1 year ago

        Sure, but they wont. The insidious thing about iMessenger is that it isnt iChat. It is the apple default text messaging app. Which is good because it means that all your messages are in one place, and you dont have to try to convince your older family member to install a 3rd party chat app. You just have a chat app. This tricks users not into thinking that texting is just better on apple.

        But its bad because it only works between other apple products and users. This is objectively Apple’s shortcoming, however there are enough iPhones in the wild and enough people in the US who defaulted to just hitting the sms/mms icon instead of downloading a chat app that the odd man out might be the android user. And it’s not just about the green bubble being green. If you invite an a green bubble to a group text then all your rich chat messenger features go away and it turns into an MMS thread. Which is objectively bad.

        But yes they could just download and use whatsapp,line, telegram, signal, facebook messenger(and in the early days things like aim/yim/msn) But they dont. The fact is their default messenger app works, and it works well with most people they talk to so the problem is the green text.

        It’s especially silly when you consider the “there’s an app for that” generation of user and so many things are apps but they refuse to engage on other chat channels. People download different apps to get dates, the navigate, to browse websites that shouldnt even be apps, to order food, order groceries, order taxi’s, but a chat app just to talk with you? ehhhhhhhhh.

        • AThing4String@sh.itjust.works
          link
          fedilink
          English
          arrow-up
          6
          ·
          edit-2
          1 year ago

          needing to ask people what 3rd party chat service they prefer

          Yeah Signal’s great and all, but my spouse’s family refuses to use anything but WhatsApp, half my family uses FB Messenger while the other half use Discord (and they are feuding about it), the older folks in my hobby group refuse to learn anything but the default text on their phone (that group chat is an unmanageable NIGHTMARE), and anything from work uses teams…except the US folks who use slack, and now my friends want to get me on Signal, too? Relevant XKCD.

          The solution to my problem is not yet another messaging app. I just want ONE inbox!

          I’ve been pretty happy with Beeper so far. There are some features that aren’t quite as good as using each app natively, yet, but I think they’re off to a great start considering the sheer scale and variety of interfaces they’re working with. It even gives me tools to deal with the hobby chat anarchy, and now I can send default SMS messages from my computer!

          • BearOfaTime@lemm.ee
            link
            fedilink
            English
            arrow-up
            1
            arrow-down
            1
            ·
            edit-2
            1 year ago

            Beeper Mini is working towards an all-in-one app. We’ll see what happens

    • Toes♀@ani.social
      link
      fedilink
      English
      arrow-up
      3
      ·
      1 year ago

      In some cases you can manually select the type of service on your phone. Try changing your phone manually to 3g and see if that helps. I find it works well in areas where I have poor LTE/5G coverage.

    • Gogo Sempai@programming.dev
      link
      fedilink
      English
      arrow-up
      3
      ·
      1 year ago

      They should add login and subscription handling on their website as well like so many do, with 30% off on the subscription fee because there’d be no Google tax.

    • BearOfaTime@lemm.ee
      link
      fedilink
      English
      arrow-up
      2
      arrow-down
      1
      ·
      edit-2
      1 year ago

      Is it just you can’t pay for the subscription or the notification process (MicroG GCM) doesn’t work?

      • RubberElectrons@lemmy.world
        link
        fedilink
        English
        arrow-up
        1
        ·
        1 year ago

        Looks like both. Beeper mini (and a lot of other apps) ask the play store if the user paid for the app, which is a heavily pretexts part of goggles services… so using non-Google services means I can’t sign into beeper mini at all. They can’t prove I paid for it, especially since I don’t have a Google account at all.

        • BearOfaTime@lemm.ee
          link
          fedilink
          English
          arrow-up
          1
          ·
          1 year ago

          Oh, so no Google account. Yea, looks like Beeper Mini relies on GCM, so without an account there’s no way to notify you that messages are to be retrieved.

          I was really wondering if the issue was MicroG.

          Hopefully the devs will be willing to work on using a notification process outside of GCM, even if that means polling by Beeper, once they get to a level of stability.

          Though I think they’ll likely work on integrating other messengers first.

          • RubberElectrons@lemmy.world
            link
            fedilink
            English
            arrow-up
            1
            ·
            1 year ago

            Well I do have GCM, it’s how all my other apps are able to work, even pokemon etc.

            I think it’s purely that beeper is relying on Google authenicating that I paid for the app. Could there be a cracked apk? Probably, but I’m not willing to risk using that.

  • Lantern@lemmy.world
    link
    fedilink
    English
    arrow-up
    14
    arrow-down
    1
    ·
    1 year ago

    Assuming that it’s actually reverse engineered, this is great news. If not, there’s a massive lawsuit brewing.

  • Mandy@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    13
    arrow-down
    2
    ·
    1 year ago

    Why is this even a need to be solved? are people that stupidly superficial about the color of y fucking message bubble? (im not american but where im from literally nobody wiorth their salt gives a hoot)

    • Stephen304@lemmy.ml
      link
      fedilink
      English
      arrow-up
      20
      arrow-down
      5
      ·
      1 year ago

      The color of the bubble is only important because it helps iPhone users know who not to add to group chats, since the presence of a non-imessage user in an iMessage group chat downgrades the entire chat to grainy photos, no reactions/ read receipts, voice memos, typing indicators, etc. I don’t blame them at all, many of them don’t use any third party messaging apps because iMessage is built in and gives them everything that other chat apps have, with the benefit that they don’t have to convince anybody to install it because all their iPhone owning friends have it preinstalled.

  • felixwhynot@lemmy.world
    link
    fedilink
    English
    arrow-up
    15
    arrow-down
    4
    ·
    edit-2
    1 year ago

    Seems like Beeper will see the cleartext of the replies, though, since they send the notifications via BPNs, right?

    [edit: thanks for the replies. I see now the footnote on their BPNs diagram: “Push notification does not contain message contents” so it seems like the answer is “no they will not”]

    • LinuxSBC@lemm.ee
      link
      fedilink
      English
      arrow-up
      17
      ·
      1 year ago

      No, they know that a message has been received, but the phone is what decrypts the message. Beeper can’t see it.

    • 𝕽𝖔𝖔𝖙𝖎𝖊𝖘𝖙@lemmy.world
      link
      fedilink
      English
      arrow-up
      15
      ·
      1 year ago

      No, with this new app messages are encrypted between you and Apple’s iMessage servers using iMessage encryption more or less the same way an iPhone does.

      The push service simply notifies your device it has a message waiting, no message content passes through Beeper servers.

    • bamboo@lemm.ee
      link
      fedilink
      English
      arrow-up
      4
      ·
      1 year ago

      I don’t know for sure, but often mobile notification protocols are more like “wake up and check your incoming messages” than “user foo says bar”. If this is true then the best they could do is collect timestamps of when you probably received messages.

  • pastabatman@lemmy.world
    link
    fedilink
    English
    arrow-up
    9
    arrow-down
    1
    ·
    1 year ago

    It still needs Apple’s servers, which tells me they will try and find a way to shut it down. Now that Apple is going to implement RCS, I care a lot less about this.

    • poopkins@lemmy.world
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 year ago

      What exactly do you mean with it requiring Apple’s servers? All of the services Beeper integrates with require it to communicate with the servers those services belong to.

      • pastabatman@lemmy.world
        link
        fedilink
        English
        arrow-up
        5
        ·
        1 year ago

        I don’t, I want modern messaging features like typing indicators, read receipts, and videos that have more than 10 pixels total

  • KinNectar@kbin.run
    link
    fedilink
    arrow-up
    4
    ·
    1 year ago

    I really want to sign up for Beeper, but the fact I have to give them my phone number to sign up for a waitlist seemed like a red flag. How is their security profile?

      • pitninja@lemmy.pit.ninja
        link
        fedilink
        English
        arrow-up
        4
        ·
        1 year ago

        By that logic, there’s nothing guaranteeing iMessage on iPhones is secure or private either because it’s closed source. If you don’t want to trust Beeper mini, you’ll be free to run their iMessage bridge on your own Matrix stack when they open source it at some point, which they’re promising to do (and you still won’t know that Apple isn’t scraping your messages on the iOS side). When I decide to trust a company, it’s because I look at what they’re transparently communicating to their end users. Every indication is that they are trying to get out of the middle of handling encrypted messages. Their first move to make this happen was allowing people to self host their own Beeper bridges (which you can still do with Beeper Cloud if you prefer and you will know that your messages are always encrypted within the Beeper infrastructure). They aren’t going to release the source for their client ever because that’s the only way they make any money.

          • BearOfaTime@lemm.ee
            link
            fedilink
            English
            arrow-up
            2
            arrow-down
            1
            ·
            1 year ago

            You should read the docs. It’s impressive.

            I get where you’re coming from, but after readinhow badly security is implemented in iMessage frankly I trust the Beeper devs more than Apple.

            Get this, iMessage delivers the AES encrypted message in a package with the AES key, that package is encrypted with your RSA key.

            iMessage lacks forward secrecy. So if anyone ever got your RSA key, they could read all your messages, including past messages, because your RSA key never changes!

      • twix@infosec.pub
        link
        fedilink
        English
        arrow-up
        4
        ·
        1 year ago

        They do have to run servers in order to keep the service alive. If you want to run this stuff yourself on your own server that’s possible using PyPush. The reason they have to run those servers for you is to keep the notification service alive.

          • twix@infosec.pub
            link
            fedilink
            English
            arrow-up
            1
            ·
            1 year ago

            Yeah, sorry, I got confused. Beeper mini does need servers to keep the notification service alive. And thus not crazy to ask for 2$ a month. Beeper cloud could indeed do without servers I guess, but I don’t know anything about that. I was just keeping up with the development of pypush (the python poc) and reverse engineering progress.

            I don’t understand your point of “you have to log in with a google account”. I understood that was a requirement to check subscription status (and as such limit fraudulent apk’s).

            But that seems to be a different story than “opensourcing this would mean a competitor could do it for free”.

            You can already do this for free with pypush. And if you want to use something else then python you could build something based on it with any language as pypush is completely open source.

            • BearOfaTime@lemm.ee
              link
              fedilink
              English
              arrow-up
              1
              arrow-down
              1
              ·
              1 year ago

              Your Google account is required because it uses GCM for notifications on the phone. The Mini servers act as a middleman between GCM and ANP (Apples background notification protocol).

              They talk about this in the docs, they didn’t think it was realistic to try to reproduce ANP on Android, besides Android already has a service.

      • 𝕽𝖔𝖔𝖙𝖎𝖊𝖘𝖙@lemmy.world
        link
        fedilink
        English
        arrow-up
        2
        ·
        1 year ago

        Notice how in the article they say “we’re not the middle man… Any more”? That’s because, up until now, Beeper has been working on a system where they operate as a middle man for your data.

        To be fair they never claimed otherwise and all of the code for the bridges are open-sourced and can be run on your own servers so that those servers you control (as opposed to Beeper-owned servers) act as a “middle man” and none of your messages need be trusted to a 3rd party.

        To put it simply: only the actual bridge on Beeper Cloud has access to unencrypted messages and you do have the option to run the bridge yourself while continuing to use the Beeper app. You can use as many or as few self-hosted bridges as you’d like.

        A few bridges are preconfigured for self-hosting with just a couple of clicks for free through fly.io here

    • jamon@lemmy.world
      link
      fedilink
      English
      arrow-up
      5
      ·
      1 year ago

      This post is referring to beeper mini. It’s confusing naming, but that’s not the same as beeper(cloud service). Beeper mini is available to everyone on the play store and is not a cloud service. You just get it, login to Google (to pay the subscription cost) and it works. No invite needed

    • LinuxSBC@lemm.ee
      link
      fedilink
      English
      arrow-up
      4
      arrow-down
      1
      ·
      1 year ago

      That’s to prevent multiple entries by one person. Their security is very good, with audits and their products being largely open source (for this, PyPush. For Beeper Cloud, their Synapse fork and their bridges.). Only the parts that don’t matter to security (the clients, mostly) are closed source.

      • MarkPotatoes@lemm.ee
        link
        fedilink
        English
        arrow-up
        1
        ·
        1 year ago

        Btw will they continue to live as Element changed licences to Synapse and Dendrite projects ?

        • LinuxSBC@lemm.ee
          link
          fedilink
          English
          arrow-up
          1
          ·
          1 year ago

          Yes. They have a fork of Synapse that they can continue to use even if the license prevents them from using upstream (which doesn’t seem true, but I could be wrong).

  • 🇰 🌀 🇱 🇦 🇳 🇦 🇰 ℹ️@yiffit.net
    link
    fedilink
    English
    arrow-up
    4
    arrow-down
    1
    ·
    edit-2
    1 year ago

    Are their messages from their app going to show blue to iMessage users or something? Cuz I don’t see why you’d need to reverse engineer that otherwise. Even then… How hard is it to spoof a Mac address or other hardware identifier that says the message came from an iPhone?

    The fact this is even an issue is just ridiculous to begin with. If you give that much of a shit: Use a different god damn messenger that treats everyone the same.

    • yukijoou@lemmy.blahaj.zone
      link
      fedilink
      English
      arrow-up
      2
      ·
      1 year ago

      afaik, their while thing is that they do everything on-device, so your device is the only one with access to your messages

  • AutoTL;DR@lemmings.worldB
    link
    fedilink
    English
    arrow-up
    4
    arrow-down
    1
    ·
    1 year ago

    This is the best summary I could come up with:


    What may hold it at bay is the Digital Markets App (DMA), a law in Europe that says big tech companies will have to have an interoperable interface for their chat networks.

    In addition, Beeper uses certificate pinning, which makes network traffic analysis more difficult to perform in order to verify its claims.

    To work around this limitation, the team built BPNs to connect to Apple’s servers on the user’s behalf when the app isn’t running.

    When the Android phone’s battery died, however, the texts reverted to green bubbles and did not make it to Beeper’s app — they went to Google Messages instead.

    The company is also hoping to gain trust by building in public, with 50-plus projects that it’s published to GitHub with the open source code that goes into the app.

    Founded in 2020, Beeper comes from former Y Combinator partner Eric Migicovsky and CTO Brad Murray, previously of wholesale marketplace startup Faire and Fitbit.


    The original article contains 1,306 words, the summary contains 158 words. Saved 88%. I’m a bot and I’m open source!

    • Zak@lemmy.world
      link
      fedilink
      English
      arrow-up
      33
      ·
      1 year ago

      The other app was running iMessage on Macs owned by the company and relaying the messages insecurely to its Android app. What we see here is a third-party implementation of the iMessage protocol running on Android devices directly, an example of adversarial interoperability.

    • LinuxSBC@lemm.ee
      link
      fedilink
      English
      arrow-up
      12
      arrow-down
      1
      ·
      1 year ago

      No. This is much more impressive, useful, secure, and sustainable because it’s totally different internally.

  • Fades@lemmy.world
    link
    fedilink
    English
    arrow-up
    3
    arrow-down
    17
    ·
    edit-2
    1 year ago

    In exchange for security loss, is it really worth it?

    Edit: the downvotes are very expected. You people need to lean about why this is important

    https://www.androidauthority.com/beeper-app-opinion-3345142/

    First, the elephant in the room needs to be addressed: security. In Beeper’s start-up guide, the first thing you see is a huge alert box: “Beeper may be less secure than using encrypted chat apps by themselves.” Fundamentally, there’s no way to fix this. To use any of the chat apps, you need to link Beeper to that service using your credentials, which is inherently more insecure than logging into the app directly. Beeper is quick to defend itself by pointing out its robust privacy policy, its ethical business practices with a user-centered focus, and its use of end-to-end encryption (E2EE). However, that doesn’t protect your credentials from hackers that could gain access to Beeper and send your grandma a message through WhatsApp pretending to be you and asking to wire $1,000 to an account in China.

    More in depth: https://www.reddit.com/r/beeper/comments/13hhx9e/transient_key_retention_a_suggestion_to_solve/?rdt=61709

      • Fades@lemmy.world
        link
        fedilink
        English
        arrow-up
        1
        ·
        edit-2
        1 year ago

        These: https://www.androidauthority.com/beeper-app-opinion-3345142/

        First, the elephant in the room needs to be addressed: security. In Beeper’s start-up guide, the first thing you see is a huge alert box: “Beeper may be less secure than using encrypted chat apps by themselves.” Fundamentally, there’s no way to fix this. To use any of the chat apps, you need to link Beeper to that service using your credentials, which is inherently more insecure than logging into the app directly. Beeper is quick to defend itself by pointing out its robust privacy policy, its ethical business practices with a user-centered focus, and its use of end-to-end encryption (E2EE). However, that doesn’t protect your credentials from hackers that could gain access to Beeper and send your grandma a message through WhatsApp pretending to be you and asking to wire $1,000 to an account in China.

        More in depth: https://www.reddit.com/r/beeper/comments/13hhx9e/transient_key_retention_a_suggestion_to_solve/?rdt=61709

        • Stephen304@lemmy.ml
          link
          fedilink
          English
          arrow-up
          5
          ·
          1 year ago

          That’s about beeper, not beeper mini. Mini was just launched, that’s older information that only applies to the MITM version (beeper which is now beeper cloud).

          Beeper mini talks directly to the services you use, no MITM, which is why they plan on adding more services to mini until it can replace the older Beeper (cloud).

        • drislands@lemmy.world
          link
          fedilink
          English
          arrow-up
          2
          ·
          1 year ago

          My understanding is that this absolutely applies to their previous iterations, but not this – there’s no authenticating with your Apple ID, for example. It’s sending and receiving iMessage data directly between the Apple servers and your device, now.