[messaging] encryption of Signal notification messages

Tony Arcieri bascule at gmail.com
Mon Feb 22 18:11:18 PST 2016

> If the recipient can decrypt and authenticate your messages, you cannot
>> have any guarantees around this.
> Actually you do - this is where the deniability inherent in Axolotl plays
> a role. The recipient can authenticate the message, but no one else can.
> From anyone else's perspective the message is just as likely fake as
> real.

You missed the point: the intended use case was "If the recipient can
decrypt and authenticate your messages"

All that said: the sender can potentially provide a flag as to whether or
not they would prefer a plaintext decrypt be displayed. This can't be
enforced by cryptography, but Signal could attempt to honor such a flag.

Tony Arcieri
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://moderncrypto.org/mail-archive/messaging/attachments/20160222/a6f9f1ba/attachment.html>

More information about the Messaging mailing list