97
New Pixel update means your RCS messages might be visible to your boss
(www.androidauthority.com)
this post was submitted on 30 Nov 2025
97 points (90.1% liked)
Android
20752 readers
297 users here now
The new home of /r/Android on Lemmy and the Fediverse!
Android news, reviews, tips, and discussions about rooting, tutorials, and apps.
πUniversal Link: !android@lemdro.id
π‘Content Philosophy:
Content which benefits the community (news, rumours, and discussions) is generally allowed and is valued over content which benefits only the individual (technical questions, help buying/selling, rants, self-promotion, etc.) which will be removed if it's in violation of the rules.
Support, technical, or app related questions belong in: !askandroid@lemdro.id
For fresh communities, lemmy apps, and instance updates: !lemdroid@lemdro.id
π¬Matrix Chat
π°Our communities below
Rules
-
Stay on topic: All posts should be related to the Android OS or ecosystem.
-
No support questions, recommendation requests, rants, or bug reports: Posts must benefit the community rather than the individual. Please post to !askandroid@lemdro.id.
-
Describe images/videos, no memes: Please include a text description when sharing images or videos. Post memes to !androidmemes@lemdro.id.
-
No self-promotion spam: Active community members can post their apps if they answer any questions in the comments. Please do not post links to your own website, YouTube, blog content, or communities.
-
No reposts or rehosted content: Share only the original source of an article, unless it's not available in English or requires logging in (like Twitter). Avoid reposting the same topic from other sources.
-
No editorializing titles: You can add the author or website's name if helpful, but keep article titles unchanged.
-
No piracy or unverified APKs: Do not share links or direct people to pirated content or unverified APKs, which may contain malicious code.
-
No unauthorized polls, bots, or giveaways: Do not create polls, use bots, or organize giveaways without first contacting mods for approval.
-
No offensive or low-effort content: Don't post offensive or unhelpful content. Keep it civil and friendly!
-
No affiliate links: Posting affiliate links is not allowed.
Quick Links
Our Communities
- !askandroid@lemdro.id
- !androidmemes@lemdro.id
- !techkit@lemdro.id
- !google@lemdro.id
- !nothing@lemdro.id
- !googlepixel@lemdro.id
- !xiaomi@lemdro.id
- !sony@lemdro.id
- !samsung@lemdro.id
- !galaxywatch@lemdro.id
- !oneplus@lemdro.id
- !motorola@lemdro.id
- !meta@lemdro.id
- !apple@lemdro.id
- !microsoft@lemdro.id
- !chatgpt@lemdro.id
- !bing@lemdro.id
- !reddit@lemdro.id
Lemmy App List
Chat and More
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
The sending and receiving ends are the devices, not the humans. If you don't want the device to see it, you'll need to do the encryption and decryption in your head.
Not sure if you are intentionally being obtuse. But, this is not a hard problem. It has already been solved.
We have Signal, OMEMO in XMPP which already do that. You don't need to do any encryption in your head..
And how do those apps prevent device management from accessing the messages when they're decrypted?
By not storing decrypted message on device? You can also block screenshots if you have a reasonable suspicious your screen can be used to capture the text shown on the device.
The apps run at less privileges than device management apps. They can't do any of that
Apps using Flag_Secure and Secure_display can block screencapture. While user apps stay below MDM apps in privilege. The MDN app themselves reside below the android system.
Do you have a source of MDM apps bypassing secure display and having the ability to capture the display?
My dude.
Google maintains both the Pixel device management and Google Messages. Do you really think they would have locked their own MDM out of their own messaging app?
I was talking about signal. Did you miss that?
No, I saw, but the initial post is about RCS and Google's MDM API. You're fighting real hard over something Google has total control over. Signal might be fine, but if you're not the device owner, you should always assume security is compromised in favor of the actual owner. With MDM, the company can install whatever they want on the device.
I won't accept an MDM device for personal use. I was just replying about signal being compromised with regular MDM in work profile on a non-rooted phone.
Everything would still be monitored. But, messages in signal should not be.
This is why I carry two phones. My work phone is an iPhone managed by Intune. It does work stuff and only work stuff. My personal phone is a Pixel 9 Pro XL. It goes on a VPN when on work wifi.
I do not, nor will I ever, understand those who use their work-issued phone for personal things.
If the app has decrypted messages, device management can see them.
How? The decrypted messages would have to be stored in plan text to be read. Unless, it can be read from RAM..
If you can read it, they can read it. They have root on the company device.
If it's rooted sure. But, regular work profile phones with MDM software are not.
Messaging apps often implement various APIs for better Android integration. But even if they don't, any management service can implement certain APIs, like the accessibility API, that gives them access to everything each app is doing. In that case, it can't necessarily read the messages as data, but it can record your screen as image or video.
True, but Accessibility API cannot bypass secure display, and secure flag I had replied that in another comment so I did not mention that here.
MDM has far more privileges than Accessibility will grant.
Exact same problem it is unencrypted on the device. You know you have to be able to read the message.
It is stored encrypted last I checked the signal website..