Using LINE more privately

Privacy Questions
1

I need to use LINE for some business contacts. Search results on the topic have been scarce, so any tips on using it more privately/securely would be welcome. For example, is there an alternative Android app like Aliucord for Discord? I’m also having trouble finding a place to download it from on MacOS (other than Apple App Store).
If it’s not apparent from my post, my threat model is pretty lax, especially compared to a lot of the people here. I’ve found a good balance between convenience and keeping personal info out of the hands of big tech. I use GrapheneOS and MacOS and followed MB’s guides for setting up each.

2

LINE isn’t exactly privacy-first by design, but here are a few tips to help you use it a bit more privately:

  1. Limit permissions:
    Only grant LINE the bare minimum permissions it requires to function. You can manage this tightly on GrapheneOS.
  2. Don’t sync contacts:
    Avoid allowing LINE access to your phone contacts to minimize personal data exposure.
  3. Separate identity:
    Consider creating a LINE account with a secondary email or phone number dedicated exclusively to business contacts.
  4. Use compartmentalization:
    On GrapheneOS, you can take advantage of user profiles to isolate LINE from your other apps and data.

Unfortunately, LINE doesn’t have a secure alternative client like Aliucord for Discord. You’re generally stuck with the official client, which limits privacy options somewhat.

1 Like
3

Also make sure you enable E2EE in settings. Under privacy settings turn on “letter sealing”.

Don’t know how effective their E2EE implementation is but you are better off with it on.

2 Likes
4

if an Independent Audit Paper is anything to go by
(Alice and Bob, who the FOCI are they?: Analysis of end-to-end encryption in the LINE messaging application | USENIX)
Not great
it’s a paper from 2017 not sure if things have changed but other than that the lack of forward secrecy and successfully doing things like Replay Attack does make it weak
for sure it’s better than nothing and unless things have changed, assume messages are compromised. Also Line says it is turned on by default:
About Letter Sealing | LINE Help Center

2 Likes
5

Besides what others have already said, make sure to disable automatic downloads of images or files. This should protect you from some zero-click attacks.

Although your threat model isn’t significant, this document might also be useful.

Source

Screenshot 2025-03-03 at 2.24.01 PM
Screenshot 2025-03-03 at 2.24.01 PM1920×1044 332 KB

1 Like