[OTR-users] OTR mentioned in Snowden documents?

Ian Goldberg ian at cypherpunks.ca
Fri Sep 13 12:02:03 EDT 2013


On Thu, Sep 12, 2013 at 01:04:16PM -0700, Gregory Maxwell wrote:
> On Thu, Sep 12, 2013 at 12:51 PM, Ian Goldberg <ian at cypherpunks.ca> wrote:
> > Securely comparing the session keys with the person you think your buddy
> > is, is exactly what the SMP does.
> 
> Ah, for some reason I thought the SMP compared the public key hashes. Great.

That's in there, too:

Version (BYTE)
    The version of SMP used. The version described here is 1.
Initiator fingerprint (20 BYTEs)
    The fingerprint that the party initiating SMP is using in the current conversation.
Responder fingerprint (20 BYTEs)
    The fingerprint that the party that did not initiate SMP is using in the current conversation.
Secure Session ID
    The ssid described below.
User-specified secret
    The input string given by the user at runtime. 

   - Ian



More information about the OTR-users mailing list