[guardian-dev] Key verification removed from TextSecure

Hans-Christoph Steiner hans at guardianproject.info
Fri May 31 12:44:40 EDT 2013 

TOFU/POP is the model that ssh has used for years (how many people actually
validate the fingerprints?).  POP is a key part of the idea: Persistence of
Pseudonym.  When you accept a key, you're creating a pseudonym, so the other
half of that model is keeping that pseudonym ID around to validate agaisnt.

.hc

On 05/31/2013 06:33 AM, Bernard Tyers - ei8fdb wrote:
> What is the implications for the security and verification of the users SMS in this case?
> 
> To me that seems like: if the initial SMS is bogus, then the rest of the conversation can be bogus?
> 
> Is there any idea of the reasoning for this change? Technical, commercial?
> 
> I guess overall: how more or less secure is the user because of this change?
> 
> 
> The only information I can find on TOFU (TUFU) is:
> 
> http://en.wikipedia.org/wiki/User:Dotdotike/Trust_Upon_First_Use
> http://defcon.org/html/defcon-18/dc-18-speakers.html#
> http://static.usenix.org/events/usenix08/tech/full_papers/wendlandt/wendlandt_html/index.html
> 
> anyone got any other info?
> 
> thanks,
> Bernard
> 
> 
> On 31 May 2013, at 00:07, Abel Luck wrote:
> 
>> TextSecure no longer supports the concept of "verified" and
>> "unverified", instead Moxie has moved to this concept of an identity key
>> combined with TOFU POP.
> 
>> "There is no longer a concept of "verified" or "unverified."
>>   Only "what we saw last time" and "different from last time."
>> See:
>> https://github.com/WhisperSystems/TextSecure/commit/24fc93e9aeb5d0810eb9c7e7d79da019b84035f5
> 
>> ~abel
> 
>> _______________________________________________
>> Guardian-dev mailing list
> 
>> Post: Guardian-dev at lists.mayfirst.org
>> List info: https://lists.mayfirst.org/mailman/listinfo/guardian-dev
> 
>> To Unsubscribe
>>        Send email to:  Guardian-dev-unsubscribe at lists.mayfirst.org
>>        Or visit: https://lists.mayfirst.org/mailman/options/guardian-dev/ei8fdb%40ei8fdb.org
> 
>> You are subscribed as: ei8fdb at ei8fdb.org
> 
> --------------------------------------
> Bernard / bluboxthief / ei8fdb
> 
> IO91XM / www.ei8fdb.org
> 
> _______________________________________________
> Guardian-dev mailing list
> 
> Post: Guardian-dev at lists.mayfirst.org
> List info: https://lists.mayfirst.org/mailman/listinfo/guardian-dev
> 
> To Unsubscribe
>         Send email to:  Guardian-dev-unsubscribe at lists.mayfirst.org
>         Or visit: https://lists.mayfirst.org/mailman/options/guardian-dev/hans%40guardianproject.info
> 
> You are subscribed as: hans at guardianproject.info
> 

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 939 bytes
Desc: OpenPGP digital signature
URL: <http://lists.mayfirst.org/pipermail/guardian-dev/attachments/20130531/4b5fe7e2/attachment.pgp>

More information about the Guardian-dev mailing list