That is a shockingly user hostile take, especially considering you call out the reason why so many people still use it: it is the only solution for most users that consistently works.

The main reason people still use it is despite the issues with MMS (and SMS in general) the reality is that every vendor wants to own the messaging stack to build or strengthen moat, and the regulators who are in a position to enforce standard protocols have incentives in many or all countries to weaken the security of messaging protocols to meet surveillance objectives (whether those objectives are well scrutinized methods with judicial oversight, or blanket surveillance requirements).

Blaming the user as lazy or incompetent completely overlooks the significant financial incentives that platform owners and network providers have to maintain the status quo, or force the new status quo to strengthen their moats.

Both your post and OP's are confident and emotionally forceful without any reasoning why. On one hand, in most of the world, especially countries less developed than the US, messaging apps are very popular and SMS is either not even provided in the plan or barely used. On the other I do think that at the very least phone manufacturers consider MMS/SMS to be a core functionality because it's built into most phones. As such it does feel user hostile to not care about MMS/SMS. I can see the merits of both but don't know why I'd believe one over the other.

I'm curious where y'all's confidence comes from in user hostility or not and what indicators you have to tip your hand one way or the other. That might result in more elucidating conversation too.

Sure, I consider calling users lazy and incompetent very hostile because I have spent nearly 22 years building, testing and securing systems starting with ecommerce apps in the early 2000s, through government, finance, browsers and supporting services (Mozilla), internet scale infrastructure at OpenDNS, Cisco, And Fastly, and now at Amazon.

All along the way people routinely attack users for making poor decisions when they are simply using defaults, or the easiest to use and most compatible technologies.

* Pffft... Of course they got hacked, they used IE * Of course they got hacked, they opened an email attachment * Of course they got hacked, they clicked that homoglyph

In this particular case, SMS and MMS are baked into the phone, and delivered by the wireless provider, and for better or worse on the UX front, work with just a phone number and across all mobile OS. For anything other than that, if users have peers using other device or services, the alternative is to use multiple services to communicate with different groups based on which services they use. That means repeating messages across multiple providers, and/or missing folks because all the platform services have actively silo'd their platforms to prevent interoperability.

Yeah, SMS and MMS suck, but they suck less for the simple use case of messaging folks with cell phones, because the barrier to messaging those folks is having their phone number.

It's lazy and incompetent to attack users when users actually have very little control over the actual security or usability of the services and systems they use, especially as everything is hosted in cloud platforms.

Most people couldnt care less with sub par video message security for most (not all) uses. The fact that every vendor want anything but a good standard stack for keeping their users captive is imo a more powerful incentive.

Please don't conflate messaging apps with texting, it's disingenuous. Texting is the feature users expect of any smartphone to be able to send a message to any other user who has a smartphone, regardless of what apps they have installed.

My vague understanding is nobody uses SMS outside America and the entire population is on WhatsApp.

If only! My wife seems to juggle her friends between SMS, iMessage, WhatsApp, Telegram, and Signal.

Sounds complicated. No wonder people in the US don't want to do that when texting is 100% free (with their phone plan) and universal.

Android devices can reasonably send messages between each other, by default. The whole issue here is that Apple has been intentionally holding back the cross-platform messaging experience in order to make competitors seem less appealing.

I can easily send SMS to any Android phone from my iPhone. I really dont understand your reasoning.

IOW, SMS is cross-platform. Whats the issue?

As an iOS user myself, SMS is still a low quality messaging experience, cross platform or not. Apple could have taken RCS seriously years ago, raising the standard of cross platform messaging for everyone. This would result in an objectively better experience for users of all platforms, including iOS.

Contrary to you, I only have a subjective opinion on the matter. In the 12 years that I sometimes use SMS on iOS, I never missed anything. What is it that I am apparently not intelligent enough to miss?

In no way am I intending to insult your intelligence, and I apologize for any lack of clarity that could lead to such a misunderstanding.

Unlike modern messaging platforms, SMS has no:

- guaranteed delivery

- read receipts

- proper support for group chats (MMS adds this, but the implementation is poor compared to modern platforms)

- support for multimedia (again, MMS added this, but support is poor)

- support for replies

- support for reactions

- support for any kind of encryption

- support for typing indicators

- ability to work independently of an active cellular connection

If SMS works for your needs, and you have no issues with it, that’s great. Ultimately, SMS does work, but many users rightfully expect more of a messaging platform at this point. There are real benefits to users from upgrading to a more modern system.

And without wanting to insult your intelligence, none of the features you listed were something I really wanted or needed from SMS. Its just that, a short message service. Relying on encryption in a world where each and every country does an attack on E2EE every two years is unrealistic. Read notifications are just a "let me spy into your day" feature that I, no-control-freak, never ever needed. The rest also just reads like a corporate feature list, many nice to haves, but nothing, for me at least, essential.

I am fine with using SMS, and it has always served me well.

They have completely different privacy and reliability expectations: SMS is ephemeral, unreliable, unencrypted and short; whereas iMessage is semi-persistent, reliable, end-to-end encrypted and long.

The legacy phone system has a lot of features that aren't present in its replacement, such as freedom to connect with anyone who has a phone number, the ability to move your phone number from carrier to carrier, and the knowledge that as an individual the phone company can't block me from contacting its subscribers entirely for free as long as I pay a fee to my own phone company.

It's way better than being on Whatsapp or iMessage or Slack or Teams or whatever you're proposing to replace it because I have a lot of control over who can contact me and nobody is using my presence on the phone network as a means to drag all of my friends over to the same phone network.

The legacy phone system currently enables breathtaking amounts of abuse and fraud. I know all the benefits you're listing, and I would enthusiastically surrender them just to watch the legacy phone system be decommissioned.

If we invented the legacy phone system today, it would be illegal to operate because it's so insecure. We certainly wouldn't dream of forcing everyone to use it.

Any replacement would have the same fraudulent traffic migrate to it.

You can already see this type of fraudulent traffic occur on Telegram with the constant crypto bots and on Signal with the romance scams.

A PSTN sunset would force this fraudulent traffic to migrate to the over the top communications platforms, eliminate many people's ability to access emergency services reliably, destroy reliable voice quality on cellular networks as there's no consistent way to prioritize third party voice and video traffic.

> Any replacement would have the same fraudulent traffic migrate to it.

We've had SSL on the web for 30 years now. We don't visit our bank's web site and wonder if we're really talking to our bank, but we casually accept that of course someone calling from our bank's phone number could be a fraudster. There might be some fraud that is able to migrate, but it wouldn't be the smorgasbord for fraudsters that the legacy phone system has created.

> eliminate many people's ability to access emergency services reliably

This is like saying that we can't put out the dumpster fire because it provides some people with warmth. The 911 system (at least in the US) is already a travesty. Caller locations are a crapshoot for wireless calls. Call centers aren't centralized, standardized, or coordinated, and they're overloaded. The technology is outdated. Moving it off the phone network and onto a centralized digital platform would be a massive improvement.

Right now it's easy for me to buy a look-alike domain name for a bank, host a page on that domain that looks like a bank's login page, and pass through to the real bank to take over someone's account in an automated fashion. TLS doesn't prevent me from doing that.

What TLS does do is ensure that when I communicate with a third party on the internet, that communication can't be intercepted by any intervening switches or routers. TLS per se does not have any other properties. However, we've constructed a system of chains of trust using TLS certificates and trusted third parties. That system is not a technical system and TLS does not have the innate property of enabling you to trust or not to trust someone.

It's an important distinction because the PSTN and our system of TLS Certificate Authorities is a social solution to a social problem. And so suggesting that TLS somehow magically has a property that it prevents fraud is hard for me to follow, because fraud is also a social problem and you can't use technology to solve social problems. Technology can be used to lubricate, to bring people together, and to ensure that conventions are followed and that peoples' solutions can interoperate. But the real innovation in TLS from a fraud perspective is actually the network of companies, nonprofits, third parties, and government agencies who have collectively established root Certificate Authorities and who have ensured that those CAs control who you trust. None of that is specified in any RFC. It's entirely something we humans made up after someone created an enabling technology.

As for problems with PSTN, there are similar technical solutions, but largely PSTN fraud and spam are a social problem and require social interventions. This is why we have the FCC in the US, for example, because when the scope of an intervention becomes large enough it has to be administered by someone. When you say PSTN doesn't work because of fraud and spam, in my mind what you're saying is that the FCC does not do enough to prevent fraud and spam.

All you would need to replace this is a messaging app that uses email addresses as identifiers and then falls back to sending messages via email if the recipient doesn't have the app.

What organization runs the messaging app? Do we have some kind of consortium of companies? And how do we add or remove companies from that list? There are actually a lot of social problems around this that are already solved by the network of arrangements between the companies that run our phone system and the users of the phone system and so on. You'd likely end up recreating that and at the end of the day you'd have rebuilt the phone system. The technical problems are a very small part of this.

No organization runs the messaging app, it's a protocol that anyone can implement. Publish an RFC. The first time you contact someone who uses a different provider, their messaging app or service sends you an email asking you to confirm that you sent the message, after which your app is associated with your email address on their provider. A combined messaging+email app could handle this automatically. At that point you can make calls, video chats, group chats, E2E encrypted direct messaging etc., using an email address as an identifier.

In general, solve problems in the same way that email does but add protocol support for realtime direct communications and end-to-end encryption.

Somebody has to pay for the infrastructure. You can either have a very loose federation of a lot of individuals running their own infrastructure like in the early Internet on one end of the spectrum or a couple of big companies that essentially run everything like we have now with Google and Meta. But someone has to run it. If you rely on a single company to stand up everyone's instance of the application, then you're right back where we are right now. And how do you manage all of the configuration data for all of the users? There are a lot of practicalities here that I worry you don't appreciate when you say "It's a protocol that anyone can implement." Well, so is PSTN. It just so happens that you need a certain amount of infrastructure to implement it, which is true of everything, even email. I'm not convinced that a new protocol gets us anywhere because it doesn't solve the underlying very human tendency to want to pay someone to deal with all the unsightly stuff so you can get on with your life, which is incidentally also the problem we have with email vis a vis Google.

> You can either have a very loose federation of a lot of individuals running their own infrastructure like in the early Internet on one end of the spectrum or a couple of big companies that essentially run everything like we have now with Google and Meta.

Or you could have thousands of medium-sized companies that each operate nodes that interoperate with each other even though none of them is the size of Google or Meta, and users could choose one based on whether they want to see ads or pay a few bucks a year, or run their own if they're into that sort of thing.

> It just so happens that you need a certain amount of infrastructure to implement it, which is true of everything, even email.

The infrastructure you need for email is any functioning general purpose computer, including ones you can find in the trash, and a domain name, which you can also get for free if you really want to and in practice costs around $15/year to do it properly. Anyone with the inclination can do this and many solitary individuals actually do.

The infrastructure you would need for this thing would be even less, because the premise is that you already have an email address/provider, so all you'd really need is the ability to map a port so you can make a direct connection to the other endpoint -- or IPv6.

Whereas the infrastructure you need to participate in the PSTN... I think you're required to be a CLEC to even have a block of numbers assigned. If all you had to do was install Asterisk on the trash PC it would be something else entirely, but the telcos do a lot of regulatory gatekeeping, which is another reason the legacy phone network should be decommissioned and replaced by a modern IETF protocol.

My understanding is that used to be how most text messaging was done pre-smartphone in Japan.

Currently the only similar thing I'm aware of is https://delta.chat/en/, though I believe it does all of its networking over email, rather than only using it as a fallback.

I wonder what the pitfalls of using email this way are; it seems like a great way to get a free backend and growth-hack a chat app, so there must be some reason it's not more common.

It's the idealist's solution because it benefits the user. Companies typically want to use phone numbers because they're more expensive for users to maintain separate identities with, which helps when you want to track them. Moreover, companies want lock-in to their own network effect, not a federated network that anybody else can permissionlessly join.

It's the sort of thing you get when somebody builds it as a hobby project, or a skunkworks project escapes from a large corporation and is already open source by the time the MBAs get their hands on it. Or, in the old days, DARPA funding.

https://delta.chat/ does this.

99 standards on the wall, 99 standards... take one down, pass it around, 101 standards on the wall.

https://xkcd.com/927/

Except that the popular messaging apps don't have published standards and you can't interoperate with them even if you wanted to. How do you implement the iMessage protocol on Android or Windows?

Point me to the existing IETF RFC for e.g. mapping email addresses as identifiers for use in a standard communications protocol for voice and video calls.

You used to be able to, with tools like Trillian and Gaim.

Not any more, at least for any semi-popular chat. The throwaway and no-names? Yeah you can, well until IF they get big. And well, they won't.

> I have a lot of control over who can contact me

This might be the funniest thing I’ve ever heard. It’s literally legal in my country to spam me on my phone number and there is ZERO I can do to change that. Ergo I have fuck all control over who can contact me.

It does allow it for SMS apparently, but the UI is easy to misunderstand. In the "Unknown & Spam" settings where you picked "Filter Unknown Senders" there is an option below it marked "SMS Filtering" and you need to set that to... "SMS Filter".

https://www.guidingtech.com/how-to-block-text-messages-from-...

Even if it couldn't do this, that would just bolster the case that Apple is making SMS worse than it has to be on their platform to promote iMessage and its network effects.

EDIT: I booted up my iPhone 14 on the latest iOS and I guess this has changed? There isn't a "SMS Filtering" option near the Filter Unknown Senders option which has moved to the top level Messages settings page versus when the guide was written.

I'm not sure if that means it always filters SMS or it never does, but again if it doesn't filter SMS at all that's an Apple choice, it doesn't mean you can't do it on SMS.

When I was on Android it did allow me to do this for SMS.

> holds us back from adopting modern technology.

Where we're all captive subjects of some cloud asshole spoon-feeding us bits of infrastructure we used to be able to run ourselves

US should sue themselves for requiring a phone number for a person to exist to begin with.

TLDR: It has nothing to do with MMS

But that didn't address GP's comment. Apple states that green bubbles are pariahs because messages can't be sent to androids so it breaks the system, or something like that [BS]

Iphone users think that green bubbles are pariahs because they aren't part of their exclusive group, and because green bubbles turn chat groups into rubbish, because yada yada not iphone. (spoiler alert, apple does it on purpose)

https://www.msn.com/en-us/news/technology/android-users-stig...

For laughs: Tim Cook telling someone he has to buy her mom an iphone (1hr 0mins 17secs)

https://m.youtube.com/watch?t=3615&v=sdvzYtgmIjs&feature=you...