[guardian-dev] ChatSecure

Michael Rogers michael at briarproject.org
Wed Aug 28 13:09:46 EDT 2013


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 27/08/13 18:13, Tim Prepscius wrote:
> I wonder if it would be possible to pre key without needing to
> store the key.
> 
> The premise of ChatSecure seems to be, as long as the password is
> not compromised, PFS exists. I think it may be possible to use the
> password as a salt generator -- ?

Hi Tim,

It seems like your proposal would need a password shared with each
contact, in addition to the user's own password - nice not to have to
store keys, but perhaps it's unrealistic to expect users to remember
that many passwords (without reusing them)?

Cheers,
Michael

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iQEcBAEBAgAGBQJSHi7aAAoJEBEET9GfxSfMHvIH/2YoBdUJpdr8vO9lcYosRNEb
k7bIQe/DZ32QO1pwXSrHadCGiuEwBM6E91vW6urB+xu8jYVXIbJyZ0NE2MI49P3f
9ipFsX54HzAXVspb4vr5Rc2tveC0d259drOPMtoXl7z+3fWaAIJ0HUjXZpFmpUwO
+ec3USqSdgPb7sq/8fj5LApcsEQI56GdrqjrlIxWF8QWrWd3e4cj98j/8XOLSh4I
rfjnU+ac1aFAMGRyaFRtDxXvUsNIBDamxoEsPQtmOreV2Rd21veBOaKt5zhdOmbP
rWKU8f9KQ1i5NrXihrlkaBTFEOMnyYiVUsV2ENVLnpOG4topwt+mIf7mcp2zSU8=
=lmZ0
-----END PGP SIGNATURE-----


More information about the Guardian-dev mailing list