On Sat, Nov 1, 2014 at 3:02 PM, Nadim Kobeissi <[email protected]> wrote: > ------ Original Message ------ > From: "David Leon Gil" <[email protected]> > To: "[email protected]" <[email protected]> > Sent: 2014-11-01 12:56:42 AM > Subject: [messaging] How secure is TextSecure? > >> A new paper by Frosch et al. here: http://eprint.iacr.org/2014/904 >> >> -- >> >> They present an unknown key-share attack on TextSecure; this is rather >> serious, to say the least. > > I disagree that this is a serious attack.
I agree, mostly: it's a serious protocol design mistake. But it is not usefully exploitable, AFAIK. (For crypto protocols, I make this distinction: sometimes, by happenstance, a serious mistake is not exploitable -- most of TLS, for example; other times it is.) _______________________________________________ Messaging mailing list [email protected] https://moderncrypto.org/mailman/listinfo/messaging
