undefined | Better HN

0 pointsFiloSottile3y ago0 comments

(1) and (3), yes. (2) is not about process authentication but about using authenticated encryption that detects tampering.

More broadly, there needs to be a threat model that states what your attacker is capable of.

Even more broadly, I get the impression you’re not an experienced cryptography engineer and you didn’t work with one. Learning is great, but this is not presented with any warnings, which is irresponsible.

0 comments

1 comments · 1 top-level

aegistudio3y ago

You are right. I don't come with cryptography background and haven't consider the attack model carefully. I will warn the users about the current status and strive to design it to confront potential attacks.

1 more reply

j / k navigate · click thread line to collapse