This is the part where things get ambiguous and it's hard to say how things go. On paper, you are correct and I 100% agree with everything in this comment. In practice, I have no reason to believe anything Facebook says correlates with the implementation of their encryption.
I want to believe it's a safe system, but as-always it comes down to trusting trust. Without accountability, it's hard to take WhatsApp or iMessage or any E2EE service at face value. E2EE leaves so many exploits on the table that I basically treat it as marketing fluff.
I want to believe it's a safe system, but as-always it comes down to trusting trust. Without accountability, it's hard to take WhatsApp or iMessage or any E2EE service at face value. E2EE leaves so many exploits on the table that I basically treat it as marketing fluff.