-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On 2014.12.10 17.00, Jacob Appelbaum wrote: > Why not have both options, legally and cryptographically?
Because if you want to have both options, even if there was absolutely no cost in terms of protocol design, has a significant cost in terms of user experience, user education, and end-user security planning overhead. Every security invariant that you intend to support must have a specific cost justification in terms of end-user outcomes. Adding a new one because it has no protocol cost ignores massive costs elsewhere, in a way that exactly parallels the complete usability failures of most encryption protocols. Usability and user requirements analysis must be part of cryptographic protocol design if there is any hope it will work. E. - -- Ideas are my favorite toys. -----BEGIN PGP SIGNATURE----- iF4EAREIAAYFAlSIzb4ACgkQQwkE2RkM0woEfAD/R2kHVPOogGR1BgH8nZoH5yvM HCu1KJC39LuPlQ7SWx4A/RpAyDMRlFJHn2m9wm76zshM4SR5wAgTlnjF+aCotP/8 =cEoL -----END PGP SIGNATURE----- _______________________________________________ Messaging mailing list [email protected] https://moderncrypto.org/mailman/listinfo/messaging
