[messaging] EFF Secure Messaging Scorecard
Tao Effect
contact at taoeffect.com
Wed Nov 5 21:31:34 PST 2014
On Nov 5, 2014, at 9:12 PM, zaki at manian.org wrote:
> My understanding is that the mechanism Apple would have to use to actively MITM an account is the same mechanism as adding a new device to a user's iMessage account. This produces a notification on the user's other devices that effectively notify when an additional public key is registered for the user name.
>
> Obviously this is all proprietary software but as designed, an active MITM of iMessage messages would be visible to the recipient as an unexpected "device added" message.
>
I'm pretty sure that is not true.
I have not seen any documentation stating that Apple is forced to send such notifications, but if you have, please do share it.
Kind regards,
Greg Slepak
--
Please do not email me anything that you are not comfortable also sharing with the NSA.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://moderncrypto.org/mail-archive/messaging/attachments/20141105/553c8808/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 841 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://moderncrypto.org/mail-archive/messaging/attachments/20141105/553c8808/attachment.sig>
More information about the Messaging
mailing list