[messaging] EFF Secure Messaging Scorecard

Tao Effect contact at taoeffect.com
Wed Nov 5 21:31:34 PST 2014

On Nov 5, 2014, at 9:12 PM, zaki at manian.org wrote:
> My understanding is that the mechanism Apple would have to use to actively MITM an account is the same mechanism as adding a new device to a user's iMessage account. This produces a notification on the user's other devices that  effectively notify when an additional public key is registered for the user name.
> Obviously this is all proprietary software but as designed, an active MITM of iMessage messages would be visible to the recipient as an unexpected "device added" message.
I'm pretty sure that is not true.

I have not seen any documentation stating that Apple is forced to send such notifications, but if you have, please do share it.

Kind regards,
Greg Slepak

Please do not email me anything that you are not comfortable also sharing with the NSA.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://moderncrypto.org/mail-archive/messaging/attachments/20141105/553c8808/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 841 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://moderncrypto.org/mail-archive/messaging/attachments/20141105/553c8808/attachment.sig>

More information about the Messaging mailing list