[OTR-dev] Persisting userstate object across app restarts.
Greg Troxel
gdt at ir.bbn.com
Mon Aug 11 20:12:52 EDT 2014
Madhav V <madhav at avaamo.com> writes:
> 3. Alice goes into the app. Bob and Alice apps establish a secure session.
> The app persist the session on Alice' device.
> The session is persisted on Bob's device as well.
>
> 4. Now Bob can send Alice messages even when her phone is switched off or
> off the network or the app is in the background.
>
> 5. Alice's app can restore the session on restart or whenever necessary to
> decrypt Bob's message.
I can see why you want to do this, but it more or less breaks the
Perfect Forward Secrecy property to write the encryption keys to other
than RAM. So I would be concerned about this being labeled as OTR.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 180 bytes
Desc: not available
URL: <http://lists.cypherpunks.ca/pipermail/otr-dev/attachments/20140811/4e5a6349/attachment.pgp>
More information about the OTR-dev
mailing list