[OTR-dev] Are the security issues outlined in the 2005 Raimondo paper fixed?

Greg greg at kinostudios.com
Sun Nov 10 22:32:02 EST 2013


On Nov 10, 2013, at 4:16 AM, Kjell Braden <afflux at pentabarf.de> wrote:
> Hi Greg,
> 
> the paper appears to apply to a signed DH key exchange as it was used
> in OTRv1. It was replaced by a SIGMA AKE (which given as an alternative
> in the paper) in OTRv2, so my understanding is that this issue is fixed.

Thanks Kjell!

Cheers,
Greg

--
Please do not email me anything that you are not comfortable also sharing with the NSA.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 495 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.cypherpunks.ca/pipermail/otr-dev/attachments/20131110/de387b3b/attachment.pgp>


More information about the OTR-dev mailing list