undefined | Better HN

0 pointsmnw21cam5y ago0 comments

No perfect forward security. It's a feature, not a bug.

0 comments

It doesn’t feel like a feature to me. And neither does the lack of deniability. They both feel like things that leak information that doesn’t need to be leaked.

mnw21camOP5y ago

Perfect forward secrecy requires two-way real-time communication, in order to construct a session key that can't be computed from just the private keys and the encrypted message. Therefore the way that PGP's lack of perfect forward secrecy is a feature is that it allows an encrypted message to be generated in a way that doesn't require two-way real-time communication, and can therefore be sent by email.

The trade-off is that you then don't have perfect forward secrecy.

dan-robertson5y ago

Why does signal still work when the other party is offline?

hkt5y ago

Seems somewhat like threat model will determine the need for deniability etc. I don't consider myself to need it, and mine seems like a common enough case - compatible with a normal WhatsApp user's use case.

j / k navigate · click thread line to collapse

0 comments

dan-robertson5y ago

It doesn’t feel like a feature to me. And neither does the lack of deniability. They both feel like things that leak information that doesn’t need to be leaked.

mnw21camOP5y ago

The trade-off is that you then don't have perfect forward secrecy.

dan-robertson5y ago

Why does signal still work when the other party is offline?

hkt5y ago

j / k navigate · click thread line to collapse