[guardian-dev] Key verification removed from TextSecure
Hans-Christoph Steiner
hans at guardianproject.info
Fri May 31 12:44:40 EDT 2013
TOFU/POP is the model that ssh has used for years (how many people actually
validate the fingerprints?). POP is a key part of the idea: Persistence of
Pseudonym. When you accept a key, you're creating a pseudonym, so the other
half of that model is keeping that pseudonym ID around to validate agaisnt.
.hc
On 05/31/2013 06:33 AM, Bernard Tyers - ei8fdb wrote:
> What is the implications for the security and verification of the users SMS in this case?
>
> To me that seems like: if the initial SMS is bogus, then the rest of the conversation can be bogus?
>
> Is there any idea of the reasoning for this change? Technical, commercial?
>
> I guess overall: how more or less secure is the user because of this change?
>
>
> The only information I can find on TOFU (TUFU) is:
>
> http://en.wikipedia.org/wiki/User:Dotdotike/Trust_Upon_First_Use
> http://defcon.org/html/defcon-18/dc-18-speakers.html#
> http://static.usenix.org/events/usenix08/tech/full_papers/wendlandt/wendlandt_html/index.html
>
> anyone got any other info?
>
> thanks,
> Bernard
>
>
> On 31 May 2013, at 00:07, Abel Luck wrote:
>
>> TextSecure no longer supports the concept of "verified" and
>> "unverified", instead Moxie has moved to this concept of an identity key
>> combined with TOFU POP.
>
>> "There is no longer a concept of "verified" or "unverified."
>> Only "what we saw last time" and "different from last time."
>> See:
>> https://github.com/WhisperSystems/TextSecure/commit/24fc93e9aeb5d0810eb9c7e7d79da019b84035f5
>
>> ~abel
>
>> _______________________________________________
>> Guardian-dev mailing list
>
>> Post: Guardian-dev at lists.mayfirst.org
>> List info: https://lists.mayfirst.org/mailman/listinfo/guardian-dev
>
>> To Unsubscribe
>> Send email to: Guardian-dev-unsubscribe at lists.mayfirst.org
>> Or visit: https://lists.mayfirst.org/mailman/options/guardian-dev/ei8fdb%40ei8fdb.org
>
>> You are subscribed as: ei8fdb at ei8fdb.org
>
> --------------------------------------
> Bernard / bluboxthief / ei8fdb
>
> IO91XM / www.ei8fdb.org
>
> _______________________________________________
> Guardian-dev mailing list
>
> Post: Guardian-dev at lists.mayfirst.org
> List info: https://lists.mayfirst.org/mailman/listinfo/guardian-dev
>
> To Unsubscribe
> Send email to: Guardian-dev-unsubscribe at lists.mayfirst.org
> Or visit: https://lists.mayfirst.org/mailman/options/guardian-dev/hans%40guardianproject.info
>
> You are subscribed as: hans at guardianproject.info
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 939 bytes
Desc: OpenPGP digital signature
URL: <http://lists.mayfirst.org/pipermail/guardian-dev/attachments/20130531/4b5fe7e2/attachment.pgp>
More information about the Guardian-dev
mailing list