[OTR-dev] SESS_DIR_LOW vs SESS_DIR_HIGH?
Greg Troxel
gdt at ir.bbn.com
Wed Jan 26 10:18:50 EST 2005
The private keys are used to sign the DH key exchange; that's the
primary way you know the person at the other end of the DH-secured
tunnel is who you think it is. But if the DH keys have been
compromised, hearing your friend read the secure session id (which is a
hash of the DH shared secret) will do just as well to convince you.
Sure, but this is way down on the usability scale. I suspect almost
no one does this, so perhaps showing the conection hashes should be a
'show details' option, rather than a 'in your face' behavior.
Plus, a threat model that leads to DSA key compromise is likely to
include trojaned software.
--
Greg Troxel <gdt at ir.bbn.com>
More information about the OTR-dev
mailing list