You don't quite understand. The threat model here is "a Snapchat user copying/saving a Snapchat image they receive", not TextSecure's threat model of "a third party observer or man in the middle". Implement whatever protocol you like, it doesn't matter; a user who roots his own device will be able to do whatever he likes to data stored on that device.