[messaging] Google End-to-End plans on using key directories with a CT-like verification protocol
agl at imperialviolet.org
Fri Aug 29 10:13:02 PDT 2014
On Fri, Aug 29, 2014 at 8:24 AM, Ben Laurie <ben at links.org> wrote:
> I am failing to figure out what SPAM problem you think there is -
> could you elaborate?
I believe it's that a log of email address -> key mappings contains a
lot of email addresses, which could be harvested and spammed.
Additionally, email addresses are sufficiently predictable that even
hashing them likely leaves most vulnerable.
Adam Langley agl at imperialviolet.org https://www.imperialviolet.org
More information about the Messaging