[messaging] "Pseudoword" base32 fingerprints

Trevor Perrin trevp at trevp.net
Wed Feb 5 19:12:35 PST 2014

On Wed, Feb 5, 2014 at 6:50 PM, Tony Arcieri <bascule at gmail.com> wrote:
> On Wednesday, February 5, 2014, Robert Ransom <rransom.8774 at gmail.com>
> wrote:
>> If you're talking about authenticating an interactive connection
> I am not. There's SRP or PSK for that.
> I'm talking about using a randomly generated password in lieu of public key
> fingerprints for authenticating public keys.

Hi Tony,

Yeah, you're talking about the case where Alice and Bob can manually
exchange a secret to bootstrap their communication (scribbled password
on a napkin, QR code, etc).

That's a very interesting case, particularly when you consider
leveraging that secret to try to hide even the fact of their
communication (like Pond's "PANDA" protocol), or authenticate a key
agreement that sets up forward secrecy.

But that's a whole other thing than the public-key fingerprints this
thread is considering.  I also think that fingerprints and
"introduction secrets" may be complementary instead of mutually

Anyways, I suggest we let the fingerprints discussion run its course
but discuss that "PANDA" scenario later (maybe next week)?


More information about the Messaging mailing list