top | item 13898452

(no title)

Author of the paper here.

Yup, in regards to Signal our findings are already obsolete :D I think that the new Signal developments are great. It is better to allow only one key verification mechanism for unified usability and also use key continuity. Before, SAS needed to be verified for each call again.

discuss

jugbee|9 years ago

But isn't now with signal that you have to wiretap it once and your are good to go since there are no sas every time?

Johnny_Brahms|9 years ago

Sure, but "wiretapping it once" would mean breaking a lot of well studied and until now unbroken crypto.