Hacker Poesy
  • FAQ
  • Login

  • Public

    • Public
    • Groups
    • Recent tags
    • Popular
    • Directory

Conversation:

Notices

  1. Former Bob Jonkman -- Please use the new server at https://gs.jonkman.ca (bobjonkmanformer)'s status on Friday, 13-Jan-2017 12:50:08 EST Former Bob Jonkman -- Please use the new server at https://gs.jonkman.ca Former Bob Jonkman -- Please use the new server at https://gs.jonkman.ca
    Remote profile options...
    • Bob Mottram
    OTOH: @WilliamTurton writes "…there’s no backdoor in WhatsApp, and according to Alec Muffett, an experienced security researcher who spoke to Gizmodo, the Guardian’s story is “major league fuckwittage.”" http://gizmodo.com/theres-no-security-backdoor-in-whatsapp-despite-report-1791158247
    Friday, 13-Jan-2017 12:50:08 EST from sn.jonkman.ca permalink
    • Former Bob Jonkman -- Please use the new server at https://gs.jonkman.ca (bobjonkmanformer)'s status on Friday, 13-Jan-2017 12:57:22 EST Former Bob Jonkman -- Please use the new server at https://gs.jonkman.ca Former Bob Jonkman -- Please use the new server at https://gs.jonkman.ca
      Remote profile options...
      But that re-keying attack seems like an easily fixed design flaw. The keys are already separate from the hardware, so a "clean" hardware replacement should include a transfer of key material from the old hardware to the new hardware so that re-keying queued messages is not necessary. Of course, now there's the vulnerability of exposing key material during the transfer, but that co…
      Friday, 13-Jan-2017 12:57:22 EST permalink

      Attachments

      1. crypto-20170113-ostatus-x8su.html
    • Former Bob Jonkman -- Please use the new server at https://gs.jonkman.ca (bobjonkmanformer)'s status on Friday, 13-Jan-2017 13:08:34 EST Former Bob Jonkman -- Please use the new server at https://gs.jonkman.ca Former Bob Jonkman -- Please use the new server at https://gs.jonkman.ca
      Remote profile options...
      • Tom K
      The security flaw is not in Moxie's Axolotl protocol, but in the #WhatsApp implementation. Signal software doesn't have this flaw, it doesn't automatically re-key messages and just refuse to deliver. I doubt Moxie has control over the WhatsApp implementation.
      Friday, 13-Jan-2017 13:08:34 EST permalink
    • Former Bob Jonkman -- Please use the new server at https://gs.jonkman.ca (bobjonkmanformer)'s status on Friday, 13-Jan-2017 16:12:47 EST Former Bob Jonkman -- Please use the new server at https://gs.jonkman.ca Former Bob Jonkman -- Please use the new server at https://gs.jonkman.ca
      Remote profile options...
      • Tom K
      I'm no fan of Moxie's position on keeping Signal in a non- #FAIF silo. Yes, federating a communications medium is hard; and federating a communications medium *securely* may only be possible for sufficiently low values of "secure".
      Friday, 13-Jan-2017 16:12:47 EST permalink
    • Former Bob Jonkman -- Please use the new server at https://gs.jonkman.ca (bobjonkmanformer)'s status on Saturday, 14-Jan-2017 00:44:48 EST Former Bob Jonkman -- Please use the new server at https://gs.jonkman.ca Former Bob Jonkman -- Please use the new server at https://gs.jonkman.ca
      Remote profile options...
      • Tom K
      • hobbsc
      @hobbsc @thomask Last word goes to Moxie: https://whispersystems.org/blog/there-is-no-whatsapp-backdoor/
      Saturday, 14-Jan-2017 00:44:48 EST permalink

Feeds

  • Activity Streams
  • RSS 2.0
  • Atom
  • Help
  • About
  • FAQ
  • Privacy
  • Source
  • Version
  • Contact

Hacker Poesy is a GNU social hub. It runs version 1.1.3-beta3, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All Hacker Poesy content and data are available under the Creative Commons Attribution 3.0 license.

Switch to mobile site layout.