It should be provable they use the protocol. That’s what goes over the wire and it can be observed.
What’s not provable is that there isn’t a backdoor in the app that allows specific users to be targeted.
Similarly, it’s not provable that there isn’t some client side scanning technology.
Furthermore, it would be difficult to prove that Whatsapp doesn’t send some data back to Meta for all users masked as part of some other network operation.
I suspect any backdoor that happens for all users or regularly would’ve been detected, but that still doesn’t mean it’s safe.
It should be provable they use the protocol. That’s what goes over the wire and it can be observed.
What’s not provable is that there isn’t a backdoor in the app that allows specific users to be targeted.
Similarly, it’s not provable that there isn’t some client side scanning technology.
Furthermore, it would be difficult to prove that Whatsapp doesn’t send some data back to Meta for all users masked as part of some other network operation.
I suspect any backdoor that happens for all users or regularly would’ve been detected, but that still doesn’t mean it’s safe.