Most private messaging advice says: use a secure messenger.
That makes sense for transport and server-side privacy, but every mobile message exists somewhere before it reaches the messenger. On Android that place is often the keyboard/input layer.
Questions:
- Would you ever trust a keyboard for encryption-related workflows?
- What would such a keyboard need to prove before you considered it safe?
- Is privacy at the input layer useful, or does it create too much trust friction?
- Is local-only/no-network enough, or would you need open source/audit?
No product link. I am trying to understand the threat model and UX objections.
reply