[OTR-users] does authentication depend on secrecy of private key
ketmar
ketmar at ketmar.no-ip.org
Fri Apr 17 10:55:20 EDT 2015
On Fri, 17 Apr 2015 10:53:01 -0400
Greg Reagle <reagle at cepr.net> wrote:
> It is really not that hard for Mallory to get Bob's private key. If he
> leaves his computer unattended for 5 minutes Mallory could stick in a
> USB flash drive and copy his private key. Or Mallory could use spyware
> or some sort of other hacking. Or Bob might include his private key
> file in an online backup or Dropbox not realizing it.
if someone got physicall access to Bob's machine, Bob's machine IS
compromised. without any other conditions.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 181 bytes
Desc: not available
URL: <http://lists.cypherpunks.ca/pipermail/otr-users/attachments/20150417/746a3172/attachment.pgp>
More information about the OTR-users
mailing list