[OTR-users] [OTR-dev] otr dh key encryption
Ileana
ileana at fairieunderground.info
Wed Feb 20 16:50:03 EST 2013
On Wed, 20 Feb 2013 15:32:00 -0600
Ileana <ileana at fairieunderground.info> wrote:
> > 3. Frequently (from the top of my head, I think this is on each
> > message) a new session key will be exchanged and the keys used for
> > encryption and the keys used for MACs are renewed. The old keys used
> > for the MACs will be revealed to everyone. This is the function
> > that provides the deniability, because at this point in time,
> > anyone can forge messages that would've been valid earlier.
>
> Revealed to *everyone*, or just revealed to the person you are
> chatting with? If they were revealed to everyone, couldn't anyone
> decrypt the communications?
Sorry, read the spec some more...only the mac keys are revealed...these
are just used for message authentication, not the symmetric keys for
decrypt/encrypt operations...correct?
> _______________________________________________
More information about the OTR-users
mailing list