Twitter launches encrypted DMs behind a paywall

In a new support document, Twitter has detailed what you’ll be able to anticipate from the primary model of the platform’s encrypted direct messages. Maybe most notably, to have the ability to ship and obtain encrypted messages, you’ll must pay Twitter for the power to take action. Platforms like WhatsApp, Messenger, Signal, and iMessage already provide encrypted messaging free of charge, so having to pay for the characteristic on Twitter may be a tough tablet to swallow.

In response to the doc, encrypted DMs are solely obtainable if you’re a verified consumer (someone who pays for Twitter Blue), a verified group (a company that pays $1,000 per month), or an affiliate of a verified group (which prices $50 per month per person). Each the sender and recipient have to be on the most recent model of the Twitter app (on cellular and net). And an encrypted DM recipient should comply with the sender, have despatched a message to the sender prior to now, or settle for a DM request from the sender in some unspecified time in the future.

If you’re an individual who can ship encrypted messages to someone who can obtain them, you’ll see a lock toggle whilst you’re drafting a message. In an encrypted dialog, you’ll additionally see a small lock icon subsequent to the avatar of the particular person you’re chatting with. Encrypted DMs might be separate from unencrypted ones.

Encrypted DMs at the moment have just a few limitations and a really huge flaw. You’ll be able to solely ship them in one-on-one conversations; Twitter says it is going to “quickly” convey the characteristic to teams. You’ll be able to solely ship textual content and hyperlinks. And Twitter warns that it doesn’t have protections in opposition to man-in-the-middle assaults. “Because of this, if somebody — for instance, a malicious insider, or Twitter itself on account of a obligatory authorized course of — have been to compromise an encrypted dialog, neither the sender or receiver would know,” Twitter says.

The corporate is planning mechanisms to make man-in-the-middle assaults tougher and alert customers if one occurs. “As Elon Musk stated, in relation to Direct Messages, the usual ought to be, if somebody places a gun to our heads, we nonetheless can’t entry your messages,” the corporate wrote. “We’re not fairly there but, however we’re engaged on it.”

Twitter additionally notes that whereas messages and reactions to encrypted DMs are encrypted, “metadata (recipient, creation time, and many others.) aren’t, and neither is any linked content material (solely hyperlinks themselves, not any content material they consult with, is encrypted).”

Encrypted DMs appear to be a precedence for Musk; it’s a characteristic he spelled out as a part of “Twitter 2.0” for workers in November. However blue checkmarks are already unpopular enough, and I doubt that forcing you to pay for an necessary characteristic you’ll be able to simply get free of charge elsewhere goes to enhance their repute.