Welcome to The Lock & Key Lounge, the official podcast from ArmorText, the leader in secure out-of-band communications. Each episode brings you into the conversation with the sharpest minds in cybersecurity, law, critical infrastructure, intelligence, and government. We go beyond the headlines and vendor buzzwords to unpack real-world challenges—from incident response and cybercrime innovation to legal landmines, boardroom decisions, and threat intelligence at scale.
Why Enterprises Simply Can’t Take CISA and the FBI’s Guidance at Face Value.
April 30, 2025
After the Salt Typhoon breaches in telecom, both the FBI and CISA urged Americans—especially businesses—to use consumer end-to-end encrypted messaging apps for greater data security. However, other federal regulators (e.g., DOJ, SEC, FTC) have made it clear that ephemeral messaging can land corporations in hot water if key data is lost or destroyed. In other words, enterprises could unknowingly violate recordkeeping, discovery, and compliance obligations if they adopt ephemeral messengers (Signal, WhatsApp, iMessage, etc.) without implementing robust retention or governance. We’ll explore these conflicting signals and ask how companies can protect themselves.
Signal-gate Unlocked: Striking the Balance Between Secure Communications and Legal Oversight in Government
May 01, 2025
While this episode of The Lock & Key Lounge was initially slated to continue our discussion with Marisa on the advisability of using consumer E2EE apps like Signal for government communications, recent developments from ‘Signal-gate’ compel us to focus sharply on the serious legal and operational pitfalls exposed by such guidance. Today, we’ll delve into how these recommendations, aimed at bolstering operational security, clash with the intricate requirements of laws like the Presidential Records Act and broader operational security concerns that extend beyond mere encryption.